last executing test programs: 1h37m39.671775114s ago: executing program 1 (id=29): r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000580)={0x0, &(0x7f0000000000)=[@eret={0xe6, 0x18, 0x704e7f41}, @mrs={0xbe, 0x18, {0x603000000013df05}}, @hvc={0x32, 0x40, {0x84000000, [0xd, 0x7, 0x5c, 0x2, 0x9]}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x325}}, @irq_setup={0x46, 0x18, {0x0, 0x1a1}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x2, 0x3, 0x8, 0x9, 0x3}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x0, 0x7, 0x3, 0x80000001, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1a00, 0x7, 0xb}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x1ca}}, @irq_setup={0x46, 0x18, {0x4, 0x327}}, @smc={0x1e, 0x40, {0xc4000010, [0x1, 0xfffffffffffffc01, 0x6, 0x4, 0xfffffffffffffffe]}}, @uexit={0x0, 0x18, 0xde}, @smc={0x1e, 0x40, {0x30000000, [0x2, 0x200, 0x9, 0x60, 0x6]}}, @svc={0x122, 0x40, {0xc400000c, [0x7, 0x1, 0x61d800000000000, 0x9, 0x7a]}}, @svc={0x122, 0x40, {0xc4000001, [0x8000, 0x7, 0x1, 0x9, 0x1]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1600, 0x5e, 0xfa54dc7b106e194d}}, @code={0xa, 0x84, {"007008d50000202e0040601ee05580d200e0b8f2610080d2220180d2e30180d2240080d2020000d4007008d560f08cd200e0b8f2010080d2420080d2c30180d2640080d2020000d40000000d60429bd20060b8f2c10180d2220180d2c30180d2240180d2020000d4007008d50000009b"}}, @msr={0x14, 0x20, {0x603000000013e64d, 0x9}}, @memwrite={0x6e, 0x30, @generic={0x7000, 0x434, 0x0, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0xe}}, @code={0xa, 0xcc, {"e0ce91d20060b0f2210080d2620180d2c30080d2840080d2020000d4c0f983d20060b8f2210080d2820180d2e30180d2c40080d2020000d4000008d5604496d20020b0f2810180d2a20180d2030080d2c40080d2020000d4202197d200a0b8f2210180d2c20080d2e30180d2040180d2020000d4007008d50000669e008008d500a896d200e0b0f2810180d2220180d2630180d2040180d2020000d4804185d200c0b8f2c10180d2020180d2630180d2a40080d2020000d4"}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x26e}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x8, 0x1, 0x8}}, @mrs={0xbe, 0x18, {0x603000000013e101}}, @code={0xa, 0x84, {"0030000e007008d5609694d200a0b8f2e10080d2820180d2430180d2640080d2020000d4000028d5603f98d200a0b8f2210180d2e20180d2630180d2240180d2020000d40044002f007008d5007008d5e01b93d200c0b0f2a10180d2a20080d2830080d2a40080d2020000d400004093"}}], 0x574}, &(0x7f00000005c0)=[@featur1={0x1, 0x10}], 0x1) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000640)=@riscv64_csr={0x8030000000300000, &(0x7f0000000600)=0x4eff7ef}) ioctl$KVM_ARM_VCPU_FINALIZE(r0, 0x4004aec2, &(0x7f0000000680)=0x3) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x840, 0x0) ioctl$KVM_ARM_VCPU_INIT(r0, 0x4020aeae, &(0x7f0000000700)={0x5, 0xab}) munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2a) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x3c) ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000740)={0x3, 0x3ff}) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2b) r5 = ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece) r6 = ioctl$KVM_GET_STATS_FD_cpu(r5, 0xaece) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f00000007c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000780)=0xfffffffa}) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000800)={0x10001, 0x0, 0x1, r5, 0xa}) ioctl$KVM_SET_SIGNAL_MASK(r5, 0x4004ae8b, &(0x7f0000000840)={0xb6, "cd26b0e0c5f343f6cf6f21d174cf82f323006ca91933361b96888142c14e11fe1036af040f5c3fd3d4b93a5cf2c9ba9de44a4ee7ee6734ef8582d10d8a1233cf8f276940fc074d9bfe2ce646f9cae540900d60210e12660feec137ee82343818716b8ad01c76e3bf82d2c6d7f93fef2d60cc0cd8b4f2b052b36fd547818a4862a7ed3501962c2f4418ec9af28669618bec63e3c8fd53e1cda81e9a958cf61d1f43eb03bc37468f589ae3c57c0ada5f6676bc50eb7333"}) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f0000000940)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000900)=0x81}) ioctl$KVM_ARM_VCPU_FINALIZE(r6, 0x4004aec2, &(0x7f0000000980)=0x5) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r5, 0x4010ae74, &(0x7f00000009c0)={0x8, 0x80, 0xffff}) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x33) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000a00)={0x100000000, 0x7}) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000000a40)={0x8, 0x0, [{0x7e, 0x5, 0x1, 0x0, @irqchip={0x5555, 0x40000000}}, {0x3, 0x4, 0x1, 0x0, @adapter={0x401, 0xa5, 0x6, 0x9, 0x6}}, {0x7, 0x2, 0x1, 0x0, @sint={0x1}}, {0x5, 0x5, 0x0, 0x0, @adapter={0x7fffffff, 0x7, 0x1, 0x9, 0x7fffffff}}, {0x8, 0x3, 0x1, 0x0, @irqchip={0x1, 0x8}}, {0x3505, 0x4, 0x0, 0x0, @msi={0x821b, 0x6, 0x80000001, 0xbee}}, {0x3, 0x5, 0x1, 0x0, @adapter={0xb75, 0x0, 0x3, 0x7, 0xc0000000}}, {0x6, 0x3, 0x0, 0x0, @irqchip={0x32, 0x5}}]}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000c00), 0x100300, 0x0) ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, &(0x7f0000000c40)={0x1, 0xc}) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000001340)={0x0, &(0x7f0000000c80)=[@its_setup={0x82, 0x28, {0x2, 0x0, 0x129}}, @smc={0x1e, 0x40, {0x8400000f, [0x1000, 0x2, 0x6, 0xef, 0xaeaf]}}, @eret={0xe6, 0x18, 0x1}, @msr={0x14, 0x20, {0x603000000013c010, 0x8001}}, @smc={0x1e, 0x40, {0x84000052, [0x4, 0x0, 0x6143, 0x6, 0x8]}}, @uexit={0x0, 0x18, 0xc80}, @memwrite={0x6e, 0x30, @generic={0x60000, 0x5e6, 0x1, 0x4}}, @irq_setup={0x46, 0x18, {0x1, 0x3aa}}, @svc={0x122, 0x40, {0x8400000d, [0x8, 0x9, 0x10001, 0x7, 0x9]}}, @its_setup={0x82, 0x28, {0x2, 0x0, 0x2fe}}, @code={0xa, 0xb4, {"00fc007fe0048bd20020b0f2210180d2c20180d2630180d2840080d2020000d4a0fb80d20060b0f2010180d2a20180d2630080d2840080d2020000d4e0ee90d200e0b0f2210180d2020080d2c30080d2840180d2020000d4000000eb0044202e80d48bd20000b0f2210180d2420180d2430180d2840180d2020000d4c0b091d200a0b0f2610180d2c20180d2630180d2c40180d2020000d40040202e007008d5"}}, @eret={0xe6, 0x18, 0xfff}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x1, 0xc, 0x3ff, 0x1ff}}, @code={0xa, 0x84, {"00639bd20080b8f2410080d2220180d2030180d2c40080d2020000d4e05e97d20080b0f2a10180d2820080d2e30080d2e40180d2020000d4000028d50004803c00a0600d007008d5007008d5007008d5007008d5c0ca8fd20040b8f2e10180d2820080d2a30080d2e40080d2020000d4"}}, @mrs={0xbe, 0x18, {0x603000000013800f}}, @irq_setup={0x46, 0x18, {0x3, 0x31e}}, @eret={0xe6, 0x18, 0x1}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf00, 0x1}}, @smc={0x1e, 0x40, {0xc4000003, [0xb0, 0xffffffffffffc3e6, 0x172, 0x100, 0x6]}}, @eret={0xe6, 0x18, 0x5}, @eret={0xe6, 0x18, 0x6}, @irq_setup={0x46, 0x18, {0x2, 0x35}}, @smc={0x1e, 0x40, {0x1, [0x4fa9, 0x5, 0x2000000, 0x480000000, 0x2]}}, @svc={0x122, 0x40, {0x3000000, [0x9, 0x400, 0x8000, 0x8, 0x3]}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x0, 0x2, 0x4, 0x3, 0x3}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x78, 0x8000000000000001}}, @code={0xa, 0x6c, {"a0ea9ad20020b8f2410080d2820180d2a30080d2840080d2020000d400d196d20080b0f2a10180d2820180d2430180d2c40080d2020000d4000028d50060006fe00300cb000c00780070004f000000f10000208b0000c0a9"}}, @uexit={0x0, 0x18, 0x9}, @memwrite={0x6e, 0x30, @generic={0x200000, 0xb69, 0xe924, 0x8}}, @code={0xa, 0x9c, {"000028d5000028d5e00784d20020b0f2210080d2820080d2e30180d2e40080d2020000d4c0018bd200e0b0f2610180d2c20080d2830180d2640180d2020000d4a09586d200a0b0f2010180d2c20180d2830180d2a40180d2020000d4007008d5007008d5008008d5e05597d20060b0f2410180d2c20180d2230080d2440080d2020000d400000053"}}, @hvc={0x32, 0x40, {0xc400000c, [0x8c7, 0x6, 0x8, 0x8, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0x4, 0x6, 0x6, 0x1}}], 0x6b0}, &(0x7f0000001380)=[@featur2={0x1, 0x9c}], 0x1) syz_kvm_setup_cpu$arm64(r4, r9, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001800)=[{0x0, &(0x7f00000013c0)=[@eret={0xe6, 0x18, 0x4}, @irq_setup={0x46, 0x18, {0x4, 0x22b}}, @eret={0xe6, 0x18, 0x2}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x7f, 0x8}}, @uexit={0x0, 0x18, 0x5}, @irq_setup={0x46, 0x18, {0x3, 0x29d}}, @code={0xa, 0x54, {"0038302e000040bdc0689dd20080b8f2a10180d2620080d2e30080d2640080d2020000d4007008d5020000d4008008d50040800d000008d50068e0380068216e"}}, @eret={0xe6, 0x18, 0x8}, @irq_setup={0x46, 0x18, {0x0, 0x205}}, @mrs={0xbe, 0x18, {0x603000000013c4f6}}, @mrs={0xbe, 0x18, {0x603000000013c112}}, @hvc={0x32, 0x40, {0x84000053, [0x100000001, 0x9, 0x5, 0x9, 0x8000]}}, @irq_setup={0x46, 0x18, {0x4, 0x2ba}}, @eret={0xe6, 0x18, 0x9}, @uexit={0x0, 0x18, 0x81}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x391}}, @irq_setup={0x46, 0x18, {0x0, 0x352}}, @uexit={0x0, 0x18, 0x6}, @mrs={0xbe, 0x18, {0x603000000013da28}}, @smc={0x1e, 0x40, {0x0, [0xa, 0x7ff, 0x2, 0x8, 0xffffffffffffff53]}}, @msr={0x14, 0x20, {0x603000000013dee0, 0x9}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x78, 0x5, 0x2}}, @mrs={0xbe, 0x18, {0x3049}}, @msr={0x14, 0x20, {0x603000000013c039, 0x9}}, @smc={0x1e, 0x40, {0x100, [0x8, 0x0, 0x2, 0x1, 0x8b]}}, @mrs={0xbe, 0x18, {0x603000000013c086}}, @msr={0x14, 0x20, {0x603000000013803d, 0x4}}, @hvc={0x32, 0x40, {0x32008008, [0x5, 0x401, 0x2, 0x1]}}, @msr={0x14, 0x20, {0x50280000001a0d88, 0x8cd}}, @irq_setup={0x46, 0x18, {0x1, 0x90}}, @irq_setup={0x46, 0x18, {0x4, 0x193}}], 0x424}], 0x1, 0x0, &(0x7f0000001840), 0x1) ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001880)) ioctl$KVM_CAP_PTP_KVM(r5, 0x4068aea3, &(0x7f00000018c0)) 1h37m30.142496232s ago: executing program 1 (id=31): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x161642, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013df19, &(0x7f0000000040)=0x5}) (async) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013df19, &(0x7f0000000040)=0x5}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xe1) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) (async) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) write$eventfd(0xffffffffffffffff, 0x0, 0x0) (async) write$eventfd(0xffffffffffffffff, 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x12) syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) (async) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x1, 0x0, 0x80000001, 0x2, 0x8, 0x5, 0x7, 0x0, 0x2, 0x6f, 0x0, 0x8, 0x7, 0x0, 0x3, 0x3c, 0x2, '\x00', 0x0, 0x80000000}) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) ioctl$KVM_SET_REGS(r3, 0x4360ae82, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init) ioctl$KVM_ARM_PREFERRED_TARGET(r2, 0x8020aeaf, &(0x7f0000000080)) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x1000, 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) close(r1) (async) close(r1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1h37m15.012010729s ago: executing program 1 (id=33): mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) (async) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) r0 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, r0, 0x1000000, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) (async) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000080)=@arm64_sve_vls={0x606000000015ffff, &(0x7f0000000040)=0x6}) (async) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000080)=@arm64_sve_vls={0x606000000015ffff, &(0x7f0000000040)=0x6}) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r3, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000667000/0x2000)=nil, 0x2000) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) 1h37m0.000412256s ago: executing program 1 (id=34): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x80000, 0x10000, 0x0, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000200)=0x5}) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x80000, 0x10000, 0x0, 0x0, 0x2}}], 0x50}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8}) (async) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000200)=0x5}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 1h36m49.14155243s ago: executing program 1 (id=36): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REG_LIST(r2, 0x4020aeae, &(0x7f0000000000)={0x5, [0x0, 0x0, 0xfc, 0x52, 0x4]}) (async) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0xcf}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8000}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x2b) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dcf0, 0x7fff}}], 0x20}, 0x0, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async) r13 = eventfd2(0x0, 0x0) r14 = eventfd2(0x8801, 0x800) r15 = eventfd2(0x3ff, 0x0) ioctl$KVM_IRQFD(r11, 0x4020ae76, &(0x7f0000000000)={r15, 0x5, 0x2, r15}) (async) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r11, 0x4068aea3, &(0x7f00000001c0)) ioctl$KVM_IRQFD(r11, 0x4020ae76, &(0x7f0000000080)={r14, 0x1, 0x2, r15}) (async) ioctl$KVM_IRQFD(r11, 0x4020ae76, &(0x7f0000000180)={r13, 0x1c7, 0x2, r13}) 1h36m37.672002648s ago: executing program 1 (id=38): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x408600, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x2, 0x1}}], 0x28}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000240)=@attr_riscv64=@attr_imsic={0x0, 0x1, 0x3ba8, &(0x7f0000000180)=0x7}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000080)) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x32) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r10, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8001, 0x55e, 0x1}}) r11 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r6, 0x4018aee3, &(0x7f0000000100)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) 1h35m50.002199362s ago: executing program 32 (id=38): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x408600, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x2, 0x1}}], 0x28}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000240)=@attr_riscv64=@attr_imsic={0x0, 0x1, 0x3ba8, &(0x7f0000000180)=0x7}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000080)) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x32) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r10, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8001, 0x55e, 0x1}}) r11 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r6, 0x4018aee3, &(0x7f0000000100)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) 1h31m43.302288739s ago: executing program 0 (id=62): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bc5000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@mrs={0xbe, 0x18, {0x603000000013dce6}}], 0x18}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71c9d70236fc044842da97e87fd62c18b875c2357c6ed6000000000000000000000000002000e4ff00", 0x0, 0x48) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r6, &(0x7f00000001c0)=0xffffff7f, 0xff25) r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000100)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f00000000c0)={0x2, 0x4, 0x1}}) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x14) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h31m31.740147021s ago: executing program 0 (id=63): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r2, 0x800454d3, 0x10000000000000) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) r9 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x2, 0x100) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) r11 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r10, 0x3, 0x11, r8, 0x0) r12 = mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r10, 0x3, 0x11, r9, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r9, r12, 0xffffffffffffffff) ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1}) ioctl$KVM_RUN(r8, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r8, r11, 0xfffffffffffffffe) ioctl$KVM_CAP_ARM_USER_IRQ(r4, 0x4068aea3, &(0x7f0000000180)) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000000)=0x400000000}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000100)=0x8010000000000001}) close(0x4) close(0x5) 1h31m18.991560507s ago: executing program 0 (id=64): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x8002, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x26000, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000300)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) ioctl$KVM_SET_USER_MEMORY_REGION2(r4, 0x40a0ae49, &(0x7f0000000040)={0x1fd, 0x4, 0x10000, 0x2000, &(0x7f0000ffe000/0x2000)=nil, 0xfffffffffffff000}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x88601, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r4, 0x4068aea3, &(0x7f0000000280)) r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r6, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2000003, 0x2013, r7, 0x0) close(r7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000007, 0x23ac5f9b426eccb2, 0xffffffffffffffff, 0x0) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2) ioctl$KVM_SET_DEVICE_ATTR_vm(r8, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x2, 0x8000f7c, 0x2}}) ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f0000000180)={0x1}) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) 1h30m58.113433304s ago: executing program 0 (id=65): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x4, 0x3, 0xdddd1000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x3, 0xb000, 0x2000, &(0x7f000000f000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000200)={0x1ff, 0x0, 0x80a0000, 0x2000, &(0x7f0000f8d000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x4, 0x0, 0xeeee8000, 0x1000, &(0x7f0000e0b000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x2900c0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r8 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000de4000/0x1000)=nil, 0x930, 0x1, 0x12, r7, 0x0) r9 = eventfd2(0x7, 0x1801) close(0xffffffffffffffff) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x7a1730, 0x0) write$eventfd(r9, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r10 = eventfd2(0x0, 0x0) close(r10) r11 = eventfd2(0x0, 0x0) close(r11) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xd4d80, 0x0) mmap$KVM_VCPU(&(0x7f0000d91000/0x1000)=nil, 0x930, 0x0, 0x111, r7, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x3000)=nil, 0x930, 0x200000e, 0x2011, r10, 0x0) 1h30m42.922132006s ago: executing program 0 (id=66): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x100) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000080)="fb010640000000300000009610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c86bd62627e72f00000000000000000000e5ff00006f81e44153345c9affffffffffffea00", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(0xffffffffffffffff, 0x4068aea3, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1}) r9 = eventfd2(0x1, 0x801) r10 = eventfd2(0xff, 0x80000) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00000001c0)={r9, 0x3, 0x2, r10}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1h30m37.75496806s ago: executing program 2 (id=43): ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000040)=0x100000001}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7, 0xb, 0x89, 0x0, 0x7, 0xd5, 0x20, 0x8, 0x2, 0x7, 0x1, 0x7, 0x0, 0x1000081, 0x8, 0x0, 0x5, 0x1, 0xb1, '\x00', 0x6, 0x3}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0)={0x5000, 0x12000, 0x81}) write$eventfd(r3, &(0x7f00000001c0)=0x8100000001, 0x51a8) 1h30m27.343048135s ago: executing program 2 (id=67): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x0, 0x20}}], 0x18}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0x80111500, 0x20000000) close(r5) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2d) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0x80111500, 0x20000000) ioctl$KVM_CREATE_VM(r7, 0x541b, 0x10000000000000) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bff000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r10, 0x4010aeab, &(0x7f0000000180)=@arm64_extra={0x603000000013c009, &(0x7f0000000200)=0x4}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x8) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x1, 0x3, 0x0}) syz_kvm_vgic_v3_setup(r12, 0x2, 0x100) close(r12) 1h30m24.296490516s ago: executing program 0 (id=68): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f0000000040)=[@msr={0x14, 0x20, {0x603000000013dea4, 0xcf}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x4, 0x3, 0xe2f, 0xa06}}], 0x48}, &(0x7f0000000300)=[@featur2={0x1, 0x24}], 0x1) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r4, 0x401c5820, 0xffff98600fff) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2b) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dcf0, 0x7fff}}], 0x20}, 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x28) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0x8080000, 0x8, 0x8, 0xc, 0xe6, 0x40, 0x9, 0x0, 0x81, 0x80}, {0x7000, 0x3000, 0x3, 0x0, 0x42, 0x5, 0x7d, 0x8, 0x36, 0x0, 0x2, 0x87}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x59, 0x5}, {0x1, 0xffffffff, 0x7, 0x7, 0x5, 0x0, 0xb, 0xff, 0x8, 0x3, 0xe}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x16, 0x88, 0xab, 0x8, 0x9, 0x9, 0xf7, 0x97}, {0xdddd1000, 0xdddd0000, 0xe, 0xa0, 0xb1, 0x8, 0x8, 0xa2, 0x82, 0x2f, 0x1, 0x7}, {0x54000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0xd000, 0xc000, 0xa, 0xf, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x81}, {0x7000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x3000, 0x82a5, 0xfffffffffffffffe, 0x0, 0x200000, [0x6800000000000000, 0x4, 0x6, 0x8]}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) write$eventfd(0xffffffffffffffff, &(0x7f00000001c0)=0x1, 0x11) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x3, 0xe0, 0xb4, '\x00', 0xfffffffffffffffd}) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100022, 0x0}) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x33) r12 = eventfd2(0x0, 0x80000) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r12, 0x3}) r13 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000, 0x0, r13}) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0) 1h29m40.192607626s ago: executing program 33 (id=67): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x0, 0x20}}], 0x18}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0x80111500, 0x20000000) close(r5) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2d) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0x80111500, 0x20000000) ioctl$KVM_CREATE_VM(r7, 0x541b, 0x10000000000000) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bff000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r10, 0x4010aeab, &(0x7f0000000180)=@arm64_extra={0x603000000013c009, &(0x7f0000000200)=0x4}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x8) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x1, 0x3, 0x0}) syz_kvm_vgic_v3_setup(r12, 0x2, 0x100) close(r12) 1h29m35.855205379s ago: executing program 34 (id=68): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f0000000040)=[@msr={0x14, 0x20, {0x603000000013dea4, 0xcf}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x4, 0x3, 0xe2f, 0xa06}}], 0x48}, &(0x7f0000000300)=[@featur2={0x1, 0x24}], 0x1) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r4, 0x401c5820, 0xffff98600fff) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2b) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dcf0, 0x7fff}}], 0x20}, 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x28) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0x8080000, 0x8, 0x8, 0xc, 0xe6, 0x40, 0x9, 0x0, 0x81, 0x80}, {0x7000, 0x3000, 0x3, 0x0, 0x42, 0x5, 0x7d, 0x8, 0x36, 0x0, 0x2, 0x87}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x59, 0x5}, {0x1, 0xffffffff, 0x7, 0x7, 0x5, 0x0, 0xb, 0xff, 0x8, 0x3, 0xe}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x16, 0x88, 0xab, 0x8, 0x9, 0x9, 0xf7, 0x97}, {0xdddd1000, 0xdddd0000, 0xe, 0xa0, 0xb1, 0x8, 0x8, 0xa2, 0x82, 0x2f, 0x1, 0x7}, {0x54000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0xd000, 0xc000, 0xa, 0xf, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x81}, {0x7000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x3000, 0x82a5, 0xfffffffffffffffe, 0x0, 0x200000, [0x6800000000000000, 0x4, 0x6, 0x8]}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) write$eventfd(0xffffffffffffffff, &(0x7f00000001c0)=0x1, 0x11) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x3, 0xe0, 0xb4, '\x00', 0xfffffffffffffffd}) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100022, 0x0}) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x33) r12 = eventfd2(0x0, 0x80000) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r12, 0x3}) r13 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000, 0x0, r13}) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0) 1h9m55.785131917s ago: executing program 4 (id=168): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000240)=[@its_setup={0x82, 0x28, {0x3, 0x0, 0x16f}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x2, 0x8, 0x8, 0x100}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x40) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h9m40.495199034s ago: executing program 4 (id=170): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x8800, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xf0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x40000000000001, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x80000, 0x10007, 0x0, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000240)=0x8080000}) ioctl$KVM_RUN(r9, 0xae80, 0x0) r11 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x29) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) r14 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r13, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r14, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r13, 0x0) openat$kvm(0x3f, &(0x7f0000000040), 0x785000, 0x0) r15 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r15, 0x20, &(0x7f0000000180)="f30138dd56bf00e2004b584bd92e00000f00000000000100010000020000000083f402000000235acbd98700000000000200", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r5, 0x0) r16 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r17 = ioctl$KVM_CREATE_VM(r16, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r17, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) 1h9m18.802374242s ago: executing program 4 (id=174): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000000), 0x800, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000100)=@arm64={0x4e, 0x2, 0x0, '\x00', 0x4}) ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, &(0x7f0000000000)=@arm64) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0xe) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r9, 0x4010ae68, &(0x7f0000000040)={0xdddd1000, 0x2000}) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r10, 0x4b47, 0xfffffffffffffffe) r11 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@hvc={0x32, 0x40, {0x84000050, [0x2, 0x2, 0x2, 0x3, 0x3]}}], 0x40}, 0x0, 0x0) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x26000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000040)=@arm64_core={0x603000000010001c, &(0x7f0000000000)=0x1000}) 1h8m59.493349602s ago: executing program 4 (id=175): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_CREATE_GUEST_MEMFD(r3, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2000003, 0x12, r4, 0x200001fe0000) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r6 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x29) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x5) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r8, 0x4018aee2, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r8, 0x4018aee2, &(0x7f0000000280)=@attr_pmu_init) syz_kvm_setup_cpu$arm64(r1, r5, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000c00)=[{0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x208}], 0x1, 0x0, &(0x7f0000000c40)=[@featur2={0x1, 0x8}], 0x1) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f00000000c0)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000000)=0x400000000}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000100)=0x8010000000000001}) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xc2881, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r15 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r16 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) r17 = syz_kvm_add_vcpu$arm64(r16, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@svc={0x122, 0x40, {0x800, [0xffffffeffffffff8, 0x8, 0x8000000005, 0x5, 0x400]}}], 0x40}, 0x0, 0x0) r18 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r15, 0xae04) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r18, 0x3, 0x40b2811, r17, 0x0) ioctl$KVM_RUN(r17, 0xae80, 0x0) 1h8m42.122342945s ago: executing program 4 (id=177): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x140, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x2203, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000200)=@arm64_sys={0x603000000013e71a, &(0x7f0000000180)=0xd1}) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, 0x0, 0x2000003, 0x80010, r4, 0x0) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x5, 0x4, &(0x7f0000000200)=0x100000004}) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x54, 0x86, 0xdd, 0x68, 0x0, 0x20b, 0x0, 0x0, 0x3, 0x5, 0x5, '\x00', 0x1, 0x3}) write$eventfd(r8, &(0x7f00000001c0)=0x3, 0x50) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x100) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000040)={0x4, 0x4, 0x2, 0xffffffffffffffff, 0xc}) 1h8m26.083209795s ago: executing program 4 (id=178): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xab) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x37d03030d7a92616, 0xffffffff}) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) r7 = eventfd2(0x8, 0x80801) syz_kvm_vgic_v3_setup(r4, 0x1, 0x3a0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000140)={0x8000000}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) ioctl$KVM_RUN(r6, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xab) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x37d03030d7a92616, 0xffffffff}) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30) (async) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) (async) syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) (async) eventfd2(0x8, 0x80801) (async) syz_kvm_vgic_v3_setup(r4, 0x1, 0x3a0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000140)={0x8000000}) (async) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) 1h7m37.003378891s ago: executing program 35 (id=178): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xab) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x37d03030d7a92616, 0xffffffff}) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) r7 = eventfd2(0x8, 0x80801) syz_kvm_vgic_v3_setup(r4, 0x1, 0x3a0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000140)={0x8000000}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) ioctl$KVM_RUN(r6, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xab) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x37d03030d7a92616, 0xffffffff}) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30) (async) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) (async) syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) (async) eventfd2(0x8, 0x80801) (async) syz_kvm_vgic_v3_setup(r4, 0x1, 0x3a0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000140)={0x8000000}) (async) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) 47m8.466765569s ago: executing program 3 (id=288): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r5 = ioctl$KVM_CREATE_VM(r4, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xb702, 0x0) r6 = eventfd2(0xeffffffd, 0x801) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x1, r6, 0xb}) r7 = eventfd2(0x3ff, 0x80401) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0x0, 0xfff8c000, 0x4, r7, 0x1}) (async) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000100)={0x0, &(0x7f0000000040)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, 0x0) (async) ioctl$KVM_RUN(r11, 0xae80, 0x0) (async) ioctl$KVM_SET_MP_STATE(r11, 0x4004ae99, &(0x7f0000000000)=0x6) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r6, 0xf}) 47m6.357049453s ago: executing program 5 (id=289): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x6) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_REG_LIST(r6, 0xc008aeb0, &(0x7f0000000300)={0x2000034d, [0x6, 0x8, 0x1000, 0x100000001, 0x5, 0x4, 0x10001]}) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000100)=0x10}) 46m51.170448773s ago: executing program 3 (id=290): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, 0x0, 0x22840, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2a) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x25) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000300)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) 46m47.782664505s ago: executing program 5 (id=291): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2b) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xc0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r4, 0x2, 0x12, r3, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f000000f000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r4, 0x100000a, 0x12, r3, 0x0) 46m31.254356261s ago: executing program 5 (id=292): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x1, 0xb, 0x0, 0xb5c, 0x6, 0x6, 0x9, 0x8, 0x89, 0x2f, 0x2, 0x0, 0x6, 0x6, 0x9, 0x3, 0x27, 0x0, '\x00', 0x12, 0x6}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x6030000000138084, 0x3ff}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) write$eventfd(r2, &(0x7f00000001c0)=0x7ffffff, 0xe80) 46m30.954614742s ago: executing program 3 (id=293): mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x0, 0x100000e, 0x12, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x1e9840, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x19, 0x9b, 0xf, 0x0, 0x5, 0x48, 0x82, 0x42, 0x48, 0x86, 0xdd, 0x85, 0x0, 0x100001, 0x132, 0x9, 0x3, 0x4, 0x8, '\x00', 0x5, 0x80000008}) write$eventfd(r7, &(0x7f00000001c0)=0x3, 0x8e80) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xea7f2, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, 0x930, 0x3000003, 0x12, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r0, 0x401054d6, 0x29) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) 46m13.952767368s ago: executing program 5 (id=294): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fb707cd24b7eebb20700000000000000000000000100", 0x0, 0x48) munmap$KVM_VCPU(r3, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x0) write$eventfd(r4, 0xffffffffffffffff, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0x40305839, 0x19) 46m12.572504737s ago: executing program 3 (id=295): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r4, 0x4010aeb5, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f00000000c0)=@arm64_core={0x6030000000100022, &(0x7f00000003c0)=0xffffffff}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0x80111500, 0x20000000) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0) r8 = openat$kvm(0x0, 0x0, 0x400, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x9, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x4000000000807}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r11, &(0x7f00000001c0)=0x3, 0xfdef) r12 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r12, 0xae04) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000e61000/0x3000)=nil, r13, 0x300000d, 0x13, r7, 0x0) 46m0.438692231s ago: executing program 5 (id=296): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xe}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000280)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000000c0)={0x2}) 45m53.796048727s ago: executing program 3 (id=297): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000000), 0x2, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000e31000/0x2000)=nil, r7, 0x1, 0x2012, r6, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r1, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_PRE_FAULT_MEMORY(r8, 0xc040aed5, &(0x7f00000000c0)={0xd000, 0x108000}) mmap$KVM_VCPU(&(0x7f0000ebf000/0x1000)=nil, r1, 0x1000018, 0x1c013, r8, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200800, 0x0) 45m44.062382178s ago: executing program 5 (id=298): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2e) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0xc8000, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, &(0x7f00000002c0)=[@hvc={0x32, 0x40, {0x8400000a, [0xfffffffffffff801, 0x0, 0x21, 0x10, 0x5]}}, @smc={0x1e, 0x40, {0x20, [0x2, 0x3, 0x8, 0x8, 0xfb]}}, @irq_setup={0x46, 0x18, {0x3, 0x2ec}}, @code={0xa, 0x84, {"000008d5000080ad000008d560e79ed20000b0f2010180d2220080d2c30080d2c40180d2020000d400000048a03f83d20020b0f2810180d2220180d2630180d2240080d2020000d40000611e007008d5005a84d200e0b0f2a10180d2220180d2c30180d2840180d2020000d4007008d5"}}], 0x11c}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r7, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000180)=@arm64_ccsidr={0x6020000000110004, &(0x7f00000000c0)=0x4}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x30) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000a21000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) r11 = eventfd2(0x8, 0x80801) syz_kvm_vgic_v3_setup(r9, 0x1, 0x3a0) ioctl$KVM_REGISTER_COALESCED_MMIO(r9, 0x4010ae67, &(0x7f0000000140)={0x8000000}) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r11}) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x2c) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r15, 0x4010aeac, &(0x7f0000000100)=@arm64_fw={0x6030000000140002, &(0x7f0000000000)=0x1}) 45m36.542996013s ago: executing program 3 (id=299): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r3, 0x2, 0x100) close(r3) (async) close(r3) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000}}) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x84000052, [0x0, 0x1, 0x2, 0x9, 0x6]}}, @smc={0x1e, 0x40, {0x86000001, [0xffffffffffffff37, 0x6, 0x2, 0x5, 0x5]}}], 0x80}, 0x0, 0x0) (async) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x84000052, [0x0, 0x1, 0x2, 0x9, 0x6]}}, @smc={0x1e, 0x40, {0x86000001, [0xffffffffffffff37, 0x6, 0x2, 0x5, 0x5]}}], 0x80}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r8) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30) 44m55.34198943s ago: executing program 36 (id=298): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2e) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0xc8000, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, &(0x7f00000002c0)=[@hvc={0x32, 0x40, {0x8400000a, [0xfffffffffffff801, 0x0, 0x21, 0x10, 0x5]}}, @smc={0x1e, 0x40, {0x20, [0x2, 0x3, 0x8, 0x8, 0xfb]}}, @irq_setup={0x46, 0x18, {0x3, 0x2ec}}, @code={0xa, 0x84, {"000008d5000080ad000008d560e79ed20000b0f2010180d2220080d2c30080d2c40180d2020000d400000048a03f83d20020b0f2810180d2220180d2630180d2240080d2020000d40000611e007008d5005a84d200e0b0f2a10180d2220180d2c30180d2840180d2020000d4007008d5"}}], 0x11c}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r7, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000180)=@arm64_ccsidr={0x6020000000110004, &(0x7f00000000c0)=0x4}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x30) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000a21000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) r11 = eventfd2(0x8, 0x80801) syz_kvm_vgic_v3_setup(r9, 0x1, 0x3a0) ioctl$KVM_REGISTER_COALESCED_MMIO(r9, 0x4010ae67, &(0x7f0000000140)={0x8000000}) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r11}) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x2c) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r15, 0x4010aeac, &(0x7f0000000100)=@arm64_fw={0x6030000000140002, &(0x7f0000000000)=0x1}) 44m44.105936189s ago: executing program 37 (id=299): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r3, 0x2, 0x100) close(r3) (async) close(r3) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000}}) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x84000052, [0x0, 0x1, 0x2, 0x9, 0x6]}}, @smc={0x1e, 0x40, {0x86000001, [0xffffffffffffff37, 0x6, 0x2, 0x5, 0x5]}}], 0x80}, 0x0, 0x0) (async) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x84000052, [0x0, 0x1, 0x2, 0x9, 0x6]}}, @smc={0x1e, 0x40, {0x86000001, [0xffffffffffffff37, 0x6, 0x2, 0x5, 0x5]}}], 0x80}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r8) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30) 30m3.023531449s ago: executing program 7 (id=331): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) close(0x4) munmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) syz_kvm_vgic_v3_setup(r1, 0x1, 0x80) 29m47.205650199s ago: executing program 6 (id=332): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x13}) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x30) ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000000)={0x2, 0x0, &(0x7f0000ffa000/0x3000)=nil}) openat$kvm(0xffffffffffffff9c, 0x0, 0x4eed40, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000240)="57ffe02b199233af1c100f993e9c1541d69a2077275a13cf", 0x0, 0x18) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x20080, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x800000, 0x0, 0x3, 0x5, 0x8, '\x00', 0x9, 0x93}) write$eventfd(r8, &(0x7f00000001c0)=0x3, 0xfdef) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r10, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0xfffffff7, 0x6, &(0x7f0000000200)=0x2}) r11 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r12, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, &(0x7f0000000200)}, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) r15 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r10, r15, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000004000000000000000000000ef000000000000000000000000010000000000000000000000000000000300000000000000f28028000000000032000000000000004000000000000000080000ef0000000000000000000000000100000000000000020000000000000003000000000000000400000000000000"], 0x80}], 0x1, 0x0, 0x0, 0x0) 29m43.146978992s ago: executing program 7 (id=333): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000a00)={0x0, &(0x7f0000000540)=[@uexit={0x0, 0x18, 0xff98}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0x4, 0x9, 0x5, 0x2}}, @code={0xa, 0x84, {"0000403d007008d5000008d5007008d50008601e000008d5403289d200c0b0f2210080d2e20180d2a30080d2240080d2020000d4000008d540d381d20080b0f2210180d2220080d2a30180d2640080d2020000d4206691d20080b0f2610180d2420080d2630080d2640080d2020000d4"}}, @mrs={0xbe, 0x18, {0x603000000013c4ce}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x100, 0x2, 0x1}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x23b}}, @smc={0x1e, 0x40, {0x1, [0x6, 0xffffffffffffff35, 0x0, 0x2]}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x2, 0x3, 0xfffffffd, 0x2, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x80, 0x8, 0x3}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x278}}, @smc={0x1e, 0x40, {0x80008000, [0x0, 0x7fffffff, 0x8, 0x100000001, 0x3]}}, @msr={0x14, 0x20, {0x0, 0x7b}}, @code={0xa, 0xcc, {"c09696d20040b8f2210180d2e20080d2230180d2240180d2020000d4000028d5c07c9ed200a0b8f2010080d2620180d2c30080d2a40080d2020000d400a0a00da0d195d20060b0f2c10080d2c20080d2230080d2c40180d2020000d4c00b8cd200a0b8f2210180d2420180d2230180d2440080d2020000d40000c06c000008d5607081d200c0b8f2810080d2420180d2a30080d2840180d2020000d4e0779ed20020b0f2810080d2420080d2c30180d2c40080d2020000d4"}}, @mrs={0xbe, 0x18, {0x603000000013e510}}, @msr={0x14, 0x20, {0x603000000013e534, 0x35d9cb98}}, @hvc={0x32, 0x40, {0x80000000, [0x5, 0x3, 0x4, 0x3, 0x7]}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013da17}}, @smc={0x1e, 0x40, {0x6000000, [0x8c1, 0xff, 0x7ff, 0x8, 0x1]}}, @svc={0x122, 0x40, {0x400, [0x6, 0x9, 0x0, 0x7, 0x81]}}, @uexit={0x0, 0x18, 0x8}, @msr={0x14, 0x20, {0x603000000013df77, 0x4}}, @eret={0xe6, 0x18, 0x8}, @uexit={0x0, 0x18, 0xc}], 0x4b0}, &(0x7f0000000a40)=[@featur2={0x1, 0xa0}], 0x1) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@x86={0x1, 0x80, 0x7, 0x0, 0x0, 0x2, 0x6e, 0xf8, 0x46, 0x3, 0x8, 0xb9, 0x0, 0x8d0, 0xffffff80, 0x4, 0x5, 0xec, 0x9, '\x00', 0xff, 0x80000001}) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0xc4000053, [0x9, 0x0, 0x6, 0x6, 0x800]}}], 0x40}, 0x0, 0x0) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) 29m21.224545078s ago: executing program 7 (id=334): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x4280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000000)={0x22996df4, 0x8000000000000000}) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x4a}) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x200000c, 0x18e832, r2, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000040)={0x6c, 0x1}) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000da9000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) mmap$KVM_VCPU(&(0x7f0000cbb000/0xf000)=nil, 0x930, 0x100000c, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0xfffffffffffffffe}}, @msr={0x14, 0x20, {0x603000000013dce1, 0x7}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) r9 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f00000011c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f00000000c0)=0x8}) 29m11.949962802s ago: executing program 6 (id=335): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000002c0)=@arm64_sys={0x603000000013df61, &(0x7f00000001c0)=0xa17e}) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x43ff}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r4, 0x4068aea3, &(0x7f0000000300)={0xe4, 0x0, 0x1}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71c9d70236fc044842da97e87fd62c18b875c2357c6ed6000000000000000000000000002000e4ff00", 0x0, 0x48) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r5, &(0x7f00000001c0)=0xffffff7f, 0xff25) 29m2.342456223s ago: executing program 7 (id=336): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x8) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r1, 0x4068aea3, &(0x7f0000000040)={0xe4, 0x0, 0x1000}) (async, rerun: 32) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async, rerun: 32) r3 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r4, 0x2800002, 0x4010, 0xffffffffffffffff, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async, rerun: 32) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r4, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) (async, rerun: 32) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_vgic_v3_setup(r8, 0x3, 0x340) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000240)=@attr_irq_timer={0x0, 0x1, 0x435d278e9d37e2af, &(0x7f0000000200)=0x15}) (async, rerun: 32) r10 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) (rerun: 32) r11 = syz_kvm_add_vcpu$arm64(r10, 0x0, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_SET_ONE_REG(r11, 0x4010aeac, &(0x7f0000000000)=@arm64_fw={0x6030000000140000, 0x0}) (async) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async, rerun: 32) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async, rerun: 32) syz_kvm_vgic_v3_setup(r6, 0x0, 0x380) (async) r12 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x3) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r12, r13, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r13, 0xae80, 0x0) (async) ioctl$KVM_GET_ONE_REG(r13, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c000}) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a89000/0x400000)=nil) (async) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) eventfd2(0xeffffffd, 0x801) 28m50.928465613s ago: executing program 6 (id=337): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000080)={0x100000000, 0x3}) ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000080)={0x1fd, 0x4, 0xdddd0000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x110000, r2}) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f00008e4000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, &(0x7f0000000140)={0x7a, "a40ca76cd3fe85020eec3710547b0a30f42d121c9f939831b65e0bd5907b4ca3ef8c315d2ef7d9acc1d602fbde1cf00705d9a21ee0d4a4ab634226152aebebf2a87d9c52104cea26e4901e70d0b89754bdb5c0e75122dc24e52537f82492d0705ec06c2bf40668880e03c5b5858a7563b042b154f75aaf0eb70b"}) 28m35.808006224s ago: executing program 6 (id=338): r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000040)={0x5}) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10002, 0x6, 0x1, 0x2000, &(0x7f0000000000/0x2000)=nil}) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b7b000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x189d80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x26) ioctl$KVM_CAP_ARM_MTE(r6, 0x4068aea3, &(0x7f0000000200)={0x3e8}) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000b7b000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000040)=@arm64_sys={0x603000000013c020, &(0x7f00000003c0)=0x6}) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) r11 = syz_kvm_vgic_v3_setup(r10, 0x1, 0x100) ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f0000000200)=@attr_arm64={0x0, 0x1, 0x304, &(0x7f00000001c0)=0x7}) r12 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x6030000000138084, 0x8000}}, @msr={0x14, 0x20, {0x603000000013809c, 0x8000}}, @msr={0x14, 0x20, {0x603000000013c081, 0x8000}}], 0x60}, 0x0, 0x0) ioctl$KVM_RUN(r13, 0xae80, 0x0) 28m33.918940835s ago: executing program 7 (id=339): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) r6 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000280)="d6011813013c360000000000f4ff8000802346cbd98762c7795582ba3948ecff090001000000000000000000040000000100", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r5, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4030582b, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) (async) r7 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0xb, 0x30d2a4fbfbfad6b8, 0xffffffffffffffff, 0x0) (async) r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x3d) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000180)={0x0, 0x6, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000040)={0x5}) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) r11 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r12 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) (async) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x1d) ioctl$KVM_CREATE_DEVICE(r13, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r14, 0x4018aee3, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x4, 0x0}) (async) r15 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0x84000052, [0x5, 0x81, 0x9, 0x4, 0x2]}}, @hvc={0x32, 0x40, {0x8400000b, [0x4d5c, 0x800, 0x2, 0xb, 0xfff]}}], 0x80}, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) 28m11.732723832s ago: executing program 6 (id=340): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@mrs={0xbe, 0x18, {0x6030000000138010}}], 0x18}, 0x0, 0x0) (async) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r4, 0x3, 0x11, r3, 0x0) (async) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_vgic_v3_setup(r7, 0x2, 0x100) (async) ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, &(0x7f0000000180)={0x1010020}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r5, 0xffffffffffffffff) ioctl$KVM_SET_GSI_ROUTING(r7, 0x4008ae6a, &(0x7f0000000100)={0x5555555555556e6, 0x0, [{0xfffffffd, 0x3, 0x0, 0x0, @sint={0x5, 0x9}}, {0x9, 0x2, 0x1, 0x0, @msi={0x7fffffff, 0xf0, 0x2, 0x5}}]}) 28m8.221795483s ago: executing program 7 (id=341): r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r1 = syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_ARM_USER_IRQ(r0, 0x4068aea3, &(0x7f0000000000)) ioctl$KVM_KVMCLOCK_CTRL(r0, 0xaead) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000080)={0x61, "4b8eb469856f506353bc2b76e2b15cf034fd9a1978b554facc5f55f4d3e51b5d2446a029a3757d9b3637241c9481214b1d0b54c389217ba0bd7fa0bc906ea5f47414bee2603be75435479807fe0341ba2d0feb34ba191592101e35f8b1ec54d66b"}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1d) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000100)={0x9, 0x0, [{0x200, 0x3, 0x1, 0x0, @irqchip={0xffffffff, 0x4}}, {0x5, 0x5, 0x1, 0x0, @msi={0x0, 0x2, 0x0, 0x40}}, {0x7fff, 0x5, 0x0, 0x0, @irqchip={0x44865e3, 0x10001}}, {0x7, 0x1, 0x0, 0x0, @irqchip={0xf, 0xffffffff}}, {0xffffffff, 0x4, 0x0, 0x0, @adapter={0xffff, 0x7, 0x9, 0x7, 0x8}}, {0x4, 0x2, 0xb7fb3bcaf12e993b, 0x0, @adapter={0x7, 0x9a, 0x3, 0x7, 0x7}}, {0x5, 0x3, 0x1, 0x0, @msi={0x40, 0x7fffffff, 0x4, 0x1ff}}, {0xdc, 0x1, 0x1, 0x0, @msi={0xf, 0x81, 0x100, 0x7}}, {0x0, 0x3, 0x0, 0x0, @adapter={0x400, 0x600, 0x8, 0xfffff801, 0x3}}]}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x109002, 0x0) ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000300)=0xe) ioctl$KVM_SET_SREGS(r0, 0x4000ae84, &(0x7f0000000340)={{0xe000, 0xeeef0000, 0x8, 0xd, 0x61, 0x7, 0x4, 0xb7, 0x8, 0x8, 0x2, 0x6}, {0x13d0002, 0x9000, 0x9, 0x5, 0x3d, 0x8c, 0xb, 0x1, 0x3, 0x5, 0x7, 0x8}, {0x1000, 0x200000, 0xe, 0x5, 0x8, 0xb, 0x4, 0x7, 0x81, 0x63, 0x1, 0xb}, {0xffffffff, 0xeeee0000, 0x0, 0x80, 0x7, 0x86, 0x8, 0x2, 0xc0, 0xc, 0xe, 0x6}, {0x10000, 0xfec00000, 0x10, 0xa9, 0x8, 0xe, 0x9, 0x7, 0x3, 0x6b, 0x4, 0x7}, {0x0, 0xfec00000, 0xc, 0xff, 0x7f, 0x3, 0x5, 0x0, 0x80, 0x0, 0x0, 0x8}, {0xeeee8000, 0xfec00000, 0x0, 0x0, 0x5, 0x7, 0x9, 0x81, 0xb7, 0x7, 0x8, 0x55}, {0x80a0000, 0x4000, 0xa, 0x5, 0x2, 0x0, 0x0, 0x8, 0x6, 0x7, 0x2, 0xfd}, {0x9000, 0x3}, {0x58000, 0x4}, 0x0, 0x0, 0xffffffff, 0x200100, 0x5, 0x2000, 0x40000, [0x8, 0x3, 0x6, 0x1ff]}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x32) ioctl$KVM_CAP_DIRTY_LOG_RING(r4, 0x4068aea3, &(0x7f0000000480)={0xc0, 0x0, 0xc000}) r5 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000800)={0x0, &(0x7f0000000500)=[@smc={0x1e, 0x40, {0xc4000011, [0x6, 0x2, 0xfffffffffffffff9, 0x3, 0x10000]}}, @irq_setup={0x46, 0x18, {0x2, 0x2ea}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x4, 0x1, 0x7, 0x63, 0x27, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x80, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013c298}}, @hvc={0x32, 0x40, {0x3000000, [0x8000000000000000, 0x100000000, 0x10001, 0x7ff, 0x5]}}, @smc={0x1e, 0x40, {0x200, [0xccd7, 0xe14, 0xfffffffffffffffb, 0x3, 0x100000001]}}, @irq_setup={0x46, 0x18, {0x3, 0x2e1}}, @irq_setup={0x46, 0x18, {0x0, 0x15e}}, @svc={0x122, 0x40, {0x82000010, [0xfffffffffffffffa, 0xe8d5, 0x3, 0x9e8, 0x8000000000000001]}}, @irq_setup={0x46, 0x18, {0x2, 0x3f}}, @code={0xa, 0xcc, {"007008d540df83d20020b0f2610180d2e20080d2c30080d2a40180d2020000d400a4006f20199ed20080b0f2610080d2c20080d2030180d2a40180d2020000d420ea95d200a0b8f2010180d2c20080d2430180d2840080d2020000d40080401f40b894d20000b0f2810180d2220180d2230180d2040180d2020000d400a4000fa01b98d20040b0f2010180d2820180d2c30180d2840080d2020000d4a06880d20080b8f2210080d2020180d2230080d2640180d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013de90, 0x2}}, @msr={0x14, 0x20, {0x603000000013e710, 0x3}}], 0x2dc}, &(0x7f0000000840)=[@featur2={0x1, 0x2}], 0x1) syz_kvm_setup_cpu$arm64(r2, r5, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000f00)=[{0x0, &(0x7f0000000880)=[@its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x1, 0xa, 0x9, 0x7, 0x3}}, @svc={0x122, 0x40, {0x80000000, [0xd3da, 0x8001, 0x6, 0x3, 0x81]}}, @irq_setup={0x46, 0x18, {0x4, 0x141}}, @mrs={0xbe, 0x18, {0x603000000013e6d8}}, @msr={0x14, 0x20, {0x603000000013e132, 0x3}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0xc, 0xca75, 0xb4, 0x4}}, @eret={0xe6, 0x18}, @code={0xa, 0x84, {"0084000f000028d580c798d20040b8f2210080d2420180d2830180d2e40080d2020000d4000028d500a4006f007008d50000689e00ec91d20040b0f2e10080d2020080d2c30180d2040180d2020000d4a07482d20040b0f2610180d2820080d2830080d2840180d2020000d4000080da"}}, @smc={0x1e, 0x40, {0x40000000, [0x7ff, 0x5, 0xf, 0x1, 0x8]}}, @uexit={0x0, 0x18, 0x2}, @mrs={0xbe, 0x18, {0xa05000000034097f}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x1, 0x1, 0x0, 0x3, 0x4}}, @code={0xa, 0x9c, {"007008d500fb98d20060b8f2c10080d2c20080d2a30080d2440180d2020000d400209f0c007008d5007008d560af8fd200a0b0f2410080d2c20080d2430080d2c40080d2020000d4602f97d200a0b8f2210080d2a20080d2030180d2a40080d2020000d4e0039f5a007008d5408f9bd20060b8f2210180d2020180d2430180d2640080d2020000d4"}}, @uexit={0x0, 0x18, 0xfffffffffffffffc}, @eret={0xe6, 0x18, 0x2}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x1, 0x6, 0xfffffff7, 0x0, 0x1}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x33f}}, @hvc={0x32, 0x40, {0x0, [0x97, 0x6, 0xc, 0x6, 0x2]}}, @irq_setup={0x46, 0x18, {0x2, 0x2d8}}, @svc={0x122, 0x40, {0x200, [0x8, 0x100000001, 0x8, 0x4, 0x4]}}, @hvc={0x32, 0x40, {0x8400000c, [0x7, 0x4, 0x5, 0x8b, 0xa]}}, @irq_setup={0x46, 0x18, {0x1, 0x19}}, @msr={0x14, 0x20, {0x603000000013c299, 0x6}}, @msr={0x14, 0x20, {0x603000000013c2a8, 0x2}}, @uexit={0x0, 0x18, 0x9}, @smc={0x1e, 0x40, {0x8400000e, [0x101, 0x8000, 0x602, 0x100000001, 0x9]}}, @hvc={0x32, 0x40, {0x8400000b, [0x4, 0x9327, 0x10, 0x82, 0x88]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x4, 0xc, 0x6, 0xa1}}, @memwrite={0x6e, 0x30, @generic={0x80a0000, 0xf35, 0xa, 0x15}}, @smc={0x1e, 0x40, {0x2, [0x7, 0x0, 0x0, 0x3, 0x85d4]}}, @code={0xa, 0x9c, {"c0fb87d200c0b8f2810180d2420180d2230180d2640180d2020000d40080c088008f85d20060b0f2410080d2420080d2830180d2240080d2020000d4007008d50000691e0000407a00a79dd20080b8f2210080d2c20080d2630180d2040180d2020000d400fc005f0000df0cc08988d20080b8f2410180d2620180d2230180d2e40080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x2, 0xa2}}], 0x644}], 0x1, 0x0, &(0x7f0000000f40)=[@featur2], 0x1) r6 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f0000000f80)={0x6b, "f998f38b8f0095a5b672a1d16cdf9df1ee95b41e9d1660251a7e8eda6a3ece4581c26a26ef3c3d2acb8bc2e036a3a3f53ba5756f735f9f41a6394d6269c7f1feb6fb75645d35660c15e5d5d9a9469273283d3fdeeb4f4cd2300d92e735a907041daf219735f62858179a9e"}) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000001000)=@arm64={0x4, 0x3, 0x3, '\x00', 0x2}) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x6) ioctl$KVM_CAP_ARM_USER_IRQ(0xffffffffffffffff, 0x4068aea3, &(0x7f0000001040)) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r4, 0x4068aea3, &(0x7f00000010c0)={0xdf, 0x0, 0x4000}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001140), 0x4000, 0x0) ioctl$KVM_GET_API_VERSION(r7, 0xae00, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000001180)={0x1fe, 0x0, 0xe000, 0x2000, &(0x7f0000ffe000/0x2000)=nil, 0x400, r0}) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x8040ae9f, &(0x7f0000001240)) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r0, 0x4010aeb5, &(0x7f0000001280)={0x8000000000000001, 0x17}) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) syz_kvm_vgic_v3_setup(r4, 0x2, 0x340) eventfd2(0x4, 0x80000) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000012c0)={0xffffffffffffffff, 0x200, 0x3}) 27m53.910280102s ago: executing program 6 (id=342): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x40) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000200)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000240)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x3, 0xffffffffffffffff, 0x1}) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r7 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) r9 = syz_kvm_vgic_v3_setup(r8, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000240)=0x7}) r10 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_HAS_DEVICE_ATTR(r6, 0x4018aee3, &(0x7f0000000380)=@attr_riscv64=@attr_addr={0x0, 0x1, @aplic, &(0x7f00000002c0)=0x9}) syz_kvm_vgic_v3_setup(r5, 0x1, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000000)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000040)=0xe7}) ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f00000001c0)={0x51, "9483c7d77c9ec3b3654f492e8b10a1380a6d6111930b00f01a74dab8711685e1de646037ca208170074e7590600ae4585bda83db854512e85fa6b3305f67571f92bd003df34f3d396890849906c2b971ad"}) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r11, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000080)=0x7}) 27m19.994198405s ago: executing program 38 (id=341): r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r1 = syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_ARM_USER_IRQ(r0, 0x4068aea3, &(0x7f0000000000)) ioctl$KVM_KVMCLOCK_CTRL(r0, 0xaead) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000080)={0x61, "4b8eb469856f506353bc2b76e2b15cf034fd9a1978b554facc5f55f4d3e51b5d2446a029a3757d9b3637241c9481214b1d0b54c389217ba0bd7fa0bc906ea5f47414bee2603be75435479807fe0341ba2d0feb34ba191592101e35f8b1ec54d66b"}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1d) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000100)={0x9, 0x0, [{0x200, 0x3, 0x1, 0x0, @irqchip={0xffffffff, 0x4}}, {0x5, 0x5, 0x1, 0x0, @msi={0x0, 0x2, 0x0, 0x40}}, {0x7fff, 0x5, 0x0, 0x0, @irqchip={0x44865e3, 0x10001}}, {0x7, 0x1, 0x0, 0x0, @irqchip={0xf, 0xffffffff}}, {0xffffffff, 0x4, 0x0, 0x0, @adapter={0xffff, 0x7, 0x9, 0x7, 0x8}}, {0x4, 0x2, 0xb7fb3bcaf12e993b, 0x0, @adapter={0x7, 0x9a, 0x3, 0x7, 0x7}}, {0x5, 0x3, 0x1, 0x0, @msi={0x40, 0x7fffffff, 0x4, 0x1ff}}, {0xdc, 0x1, 0x1, 0x0, @msi={0xf, 0x81, 0x100, 0x7}}, {0x0, 0x3, 0x0, 0x0, @adapter={0x400, 0x600, 0x8, 0xfffff801, 0x3}}]}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x109002, 0x0) ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000300)=0xe) ioctl$KVM_SET_SREGS(r0, 0x4000ae84, &(0x7f0000000340)={{0xe000, 0xeeef0000, 0x8, 0xd, 0x61, 0x7, 0x4, 0xb7, 0x8, 0x8, 0x2, 0x6}, {0x13d0002, 0x9000, 0x9, 0x5, 0x3d, 0x8c, 0xb, 0x1, 0x3, 0x5, 0x7, 0x8}, {0x1000, 0x200000, 0xe, 0x5, 0x8, 0xb, 0x4, 0x7, 0x81, 0x63, 0x1, 0xb}, {0xffffffff, 0xeeee0000, 0x0, 0x80, 0x7, 0x86, 0x8, 0x2, 0xc0, 0xc, 0xe, 0x6}, {0x10000, 0xfec00000, 0x10, 0xa9, 0x8, 0xe, 0x9, 0x7, 0x3, 0x6b, 0x4, 0x7}, {0x0, 0xfec00000, 0xc, 0xff, 0x7f, 0x3, 0x5, 0x0, 0x80, 0x0, 0x0, 0x8}, {0xeeee8000, 0xfec00000, 0x0, 0x0, 0x5, 0x7, 0x9, 0x81, 0xb7, 0x7, 0x8, 0x55}, {0x80a0000, 0x4000, 0xa, 0x5, 0x2, 0x0, 0x0, 0x8, 0x6, 0x7, 0x2, 0xfd}, {0x9000, 0x3}, {0x58000, 0x4}, 0x0, 0x0, 0xffffffff, 0x200100, 0x5, 0x2000, 0x40000, [0x8, 0x3, 0x6, 0x1ff]}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x32) ioctl$KVM_CAP_DIRTY_LOG_RING(r4, 0x4068aea3, &(0x7f0000000480)={0xc0, 0x0, 0xc000}) r5 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000800)={0x0, &(0x7f0000000500)=[@smc={0x1e, 0x40, {0xc4000011, [0x6, 0x2, 0xfffffffffffffff9, 0x3, 0x10000]}}, @irq_setup={0x46, 0x18, {0x2, 0x2ea}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x4, 0x1, 0x7, 0x63, 0x27, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x80, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013c298}}, @hvc={0x32, 0x40, {0x3000000, [0x8000000000000000, 0x100000000, 0x10001, 0x7ff, 0x5]}}, @smc={0x1e, 0x40, {0x200, [0xccd7, 0xe14, 0xfffffffffffffffb, 0x3, 0x100000001]}}, @irq_setup={0x46, 0x18, {0x3, 0x2e1}}, @irq_setup={0x46, 0x18, {0x0, 0x15e}}, @svc={0x122, 0x40, {0x82000010, [0xfffffffffffffffa, 0xe8d5, 0x3, 0x9e8, 0x8000000000000001]}}, @irq_setup={0x46, 0x18, {0x2, 0x3f}}, @code={0xa, 0xcc, {"007008d540df83d20020b0f2610180d2e20080d2c30080d2a40180d2020000d400a4006f20199ed20080b0f2610080d2c20080d2030180d2a40180d2020000d420ea95d200a0b8f2010180d2c20080d2430180d2840080d2020000d40080401f40b894d20000b0f2810180d2220180d2230180d2040180d2020000d400a4000fa01b98d20040b0f2010180d2820180d2c30180d2840080d2020000d4a06880d20080b8f2210080d2020180d2230080d2640180d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013de90, 0x2}}, @msr={0x14, 0x20, {0x603000000013e710, 0x3}}], 0x2dc}, &(0x7f0000000840)=[@featur2={0x1, 0x2}], 0x1) syz_kvm_setup_cpu$arm64(r2, r5, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000f00)=[{0x0, &(0x7f0000000880)=[@its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x1, 0xa, 0x9, 0x7, 0x3}}, @svc={0x122, 0x40, {0x80000000, [0xd3da, 0x8001, 0x6, 0x3, 0x81]}}, @irq_setup={0x46, 0x18, {0x4, 0x141}}, @mrs={0xbe, 0x18, {0x603000000013e6d8}}, @msr={0x14, 0x20, {0x603000000013e132, 0x3}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0xc, 0xca75, 0xb4, 0x4}}, @eret={0xe6, 0x18}, @code={0xa, 0x84, {"0084000f000028d580c798d20040b8f2210080d2420180d2830180d2e40080d2020000d4000028d500a4006f007008d50000689e00ec91d20040b0f2e10080d2020080d2c30180d2040180d2020000d4a07482d20040b0f2610180d2820080d2830080d2840180d2020000d4000080da"}}, @smc={0x1e, 0x40, {0x40000000, [0x7ff, 0x5, 0xf, 0x1, 0x8]}}, @uexit={0x0, 0x18, 0x2}, @mrs={0xbe, 0x18, {0xa05000000034097f}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x1, 0x1, 0x0, 0x3, 0x4}}, @code={0xa, 0x9c, {"007008d500fb98d20060b8f2c10080d2c20080d2a30080d2440180d2020000d400209f0c007008d5007008d560af8fd200a0b0f2410080d2c20080d2430080d2c40080d2020000d4602f97d200a0b8f2210080d2a20080d2030180d2a40080d2020000d4e0039f5a007008d5408f9bd20060b8f2210180d2020180d2430180d2640080d2020000d4"}}, @uexit={0x0, 0x18, 0xfffffffffffffffc}, @eret={0xe6, 0x18, 0x2}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x1, 0x6, 0xfffffff7, 0x0, 0x1}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x33f}}, @hvc={0x32, 0x40, {0x0, [0x97, 0x6, 0xc, 0x6, 0x2]}}, @irq_setup={0x46, 0x18, {0x2, 0x2d8}}, @svc={0x122, 0x40, {0x200, [0x8, 0x100000001, 0x8, 0x4, 0x4]}}, @hvc={0x32, 0x40, {0x8400000c, [0x7, 0x4, 0x5, 0x8b, 0xa]}}, @irq_setup={0x46, 0x18, {0x1, 0x19}}, @msr={0x14, 0x20, {0x603000000013c299, 0x6}}, @msr={0x14, 0x20, {0x603000000013c2a8, 0x2}}, @uexit={0x0, 0x18, 0x9}, @smc={0x1e, 0x40, {0x8400000e, [0x101, 0x8000, 0x602, 0x100000001, 0x9]}}, @hvc={0x32, 0x40, {0x8400000b, [0x4, 0x9327, 0x10, 0x82, 0x88]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x4, 0xc, 0x6, 0xa1}}, @memwrite={0x6e, 0x30, @generic={0x80a0000, 0xf35, 0xa, 0x15}}, @smc={0x1e, 0x40, {0x2, [0x7, 0x0, 0x0, 0x3, 0x85d4]}}, @code={0xa, 0x9c, {"c0fb87d200c0b8f2810180d2420180d2230180d2640180d2020000d40080c088008f85d20060b0f2410080d2420080d2830180d2240080d2020000d4007008d50000691e0000407a00a79dd20080b8f2210080d2c20080d2630180d2040180d2020000d400fc005f0000df0cc08988d20080b8f2410180d2620180d2230180d2e40080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x2, 0xa2}}], 0x644}], 0x1, 0x0, &(0x7f0000000f40)=[@featur2], 0x1) r6 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f0000000f80)={0x6b, "f998f38b8f0095a5b672a1d16cdf9df1ee95b41e9d1660251a7e8eda6a3ece4581c26a26ef3c3d2acb8bc2e036a3a3f53ba5756f735f9f41a6394d6269c7f1feb6fb75645d35660c15e5d5d9a9469273283d3fdeeb4f4cd2300d92e735a907041daf219735f62858179a9e"}) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000001000)=@arm64={0x4, 0x3, 0x3, '\x00', 0x2}) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x6) ioctl$KVM_CAP_ARM_USER_IRQ(0xffffffffffffffff, 0x4068aea3, &(0x7f0000001040)) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r4, 0x4068aea3, &(0x7f00000010c0)={0xdf, 0x0, 0x4000}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001140), 0x4000, 0x0) ioctl$KVM_GET_API_VERSION(r7, 0xae00, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000001180)={0x1fe, 0x0, 0xe000, 0x2000, &(0x7f0000ffe000/0x2000)=nil, 0x400, r0}) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x8040ae9f, &(0x7f0000001240)) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r0, 0x4010aeb5, &(0x7f0000001280)={0x8000000000000001, 0x17}) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) syz_kvm_vgic_v3_setup(r4, 0x2, 0x340) eventfd2(0x4, 0x80000) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000012c0)={0xffffffffffffffff, 0x200, 0x3}) 27m2.844820091s ago: executing program 39 (id=342): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x40) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000200)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000240)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x3, 0xffffffffffffffff, 0x1}) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r7 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) r9 = syz_kvm_vgic_v3_setup(r8, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000240)=0x7}) r10 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_HAS_DEVICE_ATTR(r6, 0x4018aee3, &(0x7f0000000380)=@attr_riscv64=@attr_addr={0x0, 0x1, @aplic, &(0x7f00000002c0)=0x9}) syz_kvm_vgic_v3_setup(r5, 0x1, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000000)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000040)=0xe7}) ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f00000001c0)={0x51, "9483c7d77c9ec3b3654f492e8b10a1380a6d6111930b00f01a74dab8711685e1de646037ca208170074e7590600ae4585bda83db854512e85fa6b3305f67571f92bd003df34f3d396890849906c2b971ad"}) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r11, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000080)=0x7}) 3m18.956251493s ago: executing program 9 (id=401): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013df65}}], 0x20}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) (async, rerun: 64) ioctl$KVM_CAP_ARM_MTE(r1, 0x4068aea3, &(0x7f0000000000)) (rerun: 64) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3m1.851907592s ago: executing program 9 (id=402): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7f, 0x4, 0x3, 0x0, 0x8, 0x9, 0xd, 0x8b, 0x4, 0x0, 0xf, 0x0, 0x0, 0x2, 0x6, 0x0, 0xd, 0xfe, 0xa, '\x00', 0x0, 0x8}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x88601, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2000003, 0x2013, r5, 0x0) close(r5) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000007, 0x23ac5f9b426eccb2, 0xffffffffffffffff, 0x0) write$eventfd(r2, &(0x7f00000001c0)=0x9, 0x1d) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2, 0x23ac5f9b426ec4b2, 0xffffffffffffffff, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x88201, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x25) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013808c, &(0x7f00000001c0)}) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000001c0)=@arm64_core={0x603000000010002e, &(0x7f0000000000)=0x8}) ioctl$KVM_ARM_SET_DEVICE_ADDR(r9, 0x4010aeab, &(0x7f0000000000)={0xffffffffffffff1e, 0x58000}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0xdc032, 0xffffffffffffffff, 0x0) 2m53.376282436s ago: executing program 8 (id=403): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xeeee0000, 0x1000, &(0x7f0000fd1000/0x1000)=nil}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f00000000c0)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_IOEVENTFD(r8, 0x5452, &(0x7f0000000180)={0x6, 0x2, 0x4, 0xffffffffffffffff, 0x7}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x1ff, 0x0, 0x6000, 0x1000, &(0x7f0000ec2000/0x1000)=nil}) r9 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r9, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) r10 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x8400000a, [0x84000006, 0x7, 0xaca, 0x2, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r11, 0xae80, 0x0) 2m35.880301996s ago: executing program 9 (id=404): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000769000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000380)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000006, [0x7, 0x3, 0x2, 0x3f8b, 0xf7b0]}}], 0x40}, &(0x7f00000000c0)=[@featur2={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000769000/0x400000)=nil) (async) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000380)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000006, [0x7, 0x3, 0x2, 0x3f8b, 0xf7b0]}}], 0x40}, &(0x7f00000000c0)=[@featur2={0x1, 0x4}], 0x1) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 2m18.463446429s ago: executing program 8 (id=405): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xa2) 2m14.05025642s ago: executing program 9 (id=406): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r4, 0x280000b, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) r6 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) r7 = eventfd2(0x0, 0x0) close(r7) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r7, &(0x7f0000000180)=0x5, 0xfffffde3) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f000036d000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x0, 0x10000000004}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000005}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000000)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 2m4.317146418s ago: executing program 8 (id=407): openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@eret={0xe6, 0x18, 0x80000001}, @code={0xa, 0x6c, {"007008d5408896d20000b0f2610180d2a20180d2e30080d2c40080d2020000d4007008d5007008d5000008d5008008d5007008d500a0800d0000402d60c79ed200a0b0f2a10080d2620180d2630080d2240180d2020000d4"}}, @smc={0x1e, 0x40, {0x84000013, [0x9, 0x401, 0x92b, 0x101, 0x7f]}}, @mrs={0xbe, 0x18, {0x2ba3}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x1, 0x8, 0x80, 0x2}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0xd7}}, @msr={0x14, 0x20, {0x603000000013df59, 0xc4e1}}, @mrs={0xbe, 0x18, {0x603000000013c4d1}}, @uexit={0x0, 0x18, 0xfff}, @hvc={0x32, 0x40, {0x80003fff, [0x8, 0x6, 0xfffffffffffffffa, 0x1, 0x7f]}}, @mrs={0xbe, 0x18, {0x603000000013e64a}}, @code={0xa, 0x84, {"202683d20080b0f2a10080d2020080d2e30080d2440080d2020000d4008008d5001c202e007008d5008008d500004093000008d5008008d5803886d20040b8f2c10080d2420180d2430080d2440180d2020000d4403b95d20080b8f2410180d2e20080d2e30180d2640080d2020000d4"}}, @eret={0xe6, 0x18, 0x9}, @mrs={0xbe, 0x18, {0x3f1b1c0397b3c0ea}}, @code={0xa, 0x84, {"008c002f007008d5007008d560b985d200e0b0f2410080d2420180d2430180d2440080d2020000d4002e96d20040b8f2210180d2220180d2630080d2c40080d2020000d400a09f0c60d584d20080b0f2e10080d2c20180d2830180d2240080d2020000d400fc205e007ca09b0088207e"}}, @svc={0x122, 0x40, {0x1000000, [0x1, 0x8, 0x4, 0x4]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x5d8, 0xfffffffffffffffb, 0xa}}, @svc={0x122, 0x40, {0x84000002, [0x3, 0x7fff, 0x7, 0x7fffffff, 0x8]}}, @hvc={0x32, 0x40, {0x84000006, [0xd, 0x80, 0x0, 0x1ff, 0xa77]}}, @uexit={0x0, 0x18, 0x2}, @smc={0x1e, 0x40, {0xc4000004, [0x7, 0x401, 0x2, 0x4, 0x81]}}, @svc={0x122, 0x40, {0x5000000, [0xdfed, 0x8001, 0x5, 0x31, 0x100]}}, @uexit={0x0, 0x18, 0x96d}, @eret={0xe6, 0x18, 0x2}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x3, 0x8, 0x5, 0x2}}, @hvc={0x32, 0x40, {0x80, [0x99, 0x7, 0xa2, 0xc, 0xd]}}, @hvc={0x32, 0x40, {0x0, [0x1, 0x88d1, 0xa, 0x1b, 0x1]}}, @hvc={0x32, 0x40, {0x1000, [0x9, 0x7, 0x86c9, 0x8, 0x4]}}, @code={0xa, 0x6c, {"0000002d000028d500fc005f001c202e008008d5602184d200a0b8f2e10180d2a20080d2e30080d2240180d2020000d420ad82d20020b8f2810180d2820080d2230180d2040080d2020000d4000c4038000028d5000028d5"}}], 0x618}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x25) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x2, 0x4, 0x1}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x3ee}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000180)=[@uexit={0x0, 0x18, 0x8}, @irq_setup={0x46, 0x18, {0x3, 0x30c}}, @hvc={0x32, 0x40, {0x2000000, [0xfff, 0x5, 0xfffffffffffffff7, 0x8e, 0x10001]}}, @eret={0xe6, 0x18, 0x6}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x0, 0x6, 0xffff8001, 0x8000, 0x1}}], 0xb0}, 0x0, 0x0) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r12 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x19, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x82, 0x42, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x100001, 0x129, 0x0, 0x3, 0xa, 0x8, '\x00', 0x1, 0x80000000}) write$eventfd(r13, &(0x7f00000001c0)=0x3, 0x8e80) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) r14 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r14, 0x4018aee3, 0x0) 1m38.952450733s ago: executing program 9 (id=408): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f00000000c0)={0xd8, 0x7}) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, 0x0) (async) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000b46000/0x400000)=nil) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000b46000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000240)={0x1fe, 0x3, 0xffff6000, 0x1000, &(0x7f0000e49000/0x1000)=nil}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0xf0a, 0x12b, &(0x7f0000000000)=0x7}) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x23) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000140), 0x28003, 0x0) (async) r9 = openat$kvm(0x0, &(0x7f0000000140), 0x28003, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000b5b000/0x400000)=nil) (async) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000b5b000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000180)={0x0, &(0x7f00000000c0)=[@hvc={0x32, 0x40, {0x84000007, [0x8, 0x10000, 0x7, 0x3, 0x8]}}], 0x40}, 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) 1m35.57203298s ago: executing program 8 (id=409): mmap$KVM_VCPU(&(0x7f0000006000/0x1000)=nil, 0x0, 0x0, 0x10, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000de6000/0x4000)=nil, 0x0, 0x0, 0x4102932, 0xffffffffffffffff, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r2, 0x894c, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xb702, 0x2) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) (async) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r5, r6, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000180)=@arm64_sve={0x608000000015021e, 0x0}) (async) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async) r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) (async) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r5, 0x4010ae74, &(0x7f00000002c0)={0x0, 0x10000, 0x6}) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000000)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) r12 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x4000010, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) 1m11.276355305s ago: executing program 9 (id=410): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x5, 0x0, 0x1000, 0x1000, &(0x7f0000275000/0x1000)=nil}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f00000000c0)=@arm64_sve={0x6080000000150120, 0x0}) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xe1) r6 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x34) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000000)=0x9}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_ARM_VCPU_FINALIZE(r5, 0x4004aec2, &(0x7f0000000140)=0x5) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x2e) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r11, r12, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x3}], 0x1) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x5}) r13 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r14 = eventfd2(0x80000002, 0x80800) ioctl$KVM_IRQFD(r9, 0x4020ae76, &(0x7f0000000080)={r13, 0x0, 0x2, r14}) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x2710, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r15 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x0, 0xe, 0x16831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r15, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) 1m8.73581982s ago: executing program 8 (id=411): r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r1, 0x4068aea3, &(0x7f00000000c0)={0xe4, 0x0, 0x8000}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f0000000040)={0x5000}) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000000)={0x5}) (async, rerun: 64) ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 64) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000080)=0x3ff) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0xb, 0x100010, 0xffffffffffffffff, 0x0) 51.090208456s ago: executing program 8 (id=412): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000440)={0x0, &(0x7f0000000240)=[@smc={0x1e, 0x40, {0x8400000e, [0x3, 0x6, 0x21f, 0x5, 0x6]}}, @code={0xa, 0xcc, {"00fc005f802490d20040b8f2e10080d2e20080d2630180d2440080d2020000d4007008d520329ad200e0b0f2a10080d2e20080d2430080d2a40180d2020000d4007008d500e4000f207c80d200e0b8f2610080d2020180d2a30180d2040180d2020000d4e0ff85d200a0b0f2410080d2820180d2430180d2a40180d2020000d4806696d20040b8f2c10180d2420080d2e30180d2640180d2020000d4400c88d20000b0f2a10180d2820080d2c30080d2a40080d2020000d4"}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0xefa, 0xa}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x259}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x88, 0x6, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0xb, 0x3, 0x7, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x327}}], 0x1e4}, &(0x7f0000000480)=[@featur1={0x1, 0xa}], 0x1) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bfe000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x80000, 0x10000, 0x20, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000a9c000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000b80)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000300)=@arm64_extra={0x603000000013df02, &(0x7f00000002c0)=0x9}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r4, 0x1, 0x11, r13, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) 21.974039587s ago: executing program 40 (id=410): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x5, 0x0, 0x1000, 0x1000, &(0x7f0000275000/0x1000)=nil}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f00000000c0)=@arm64_sve={0x6080000000150120, 0x0}) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xe1) r6 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x34) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000000)=0x9}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_ARM_VCPU_FINALIZE(r5, 0x4004aec2, &(0x7f0000000140)=0x5) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x2e) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r11, r12, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x3}], 0x1) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x5}) r13 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r14 = eventfd2(0x80000002, 0x80800) ioctl$KVM_IRQFD(r9, 0x4020ae76, &(0x7f0000000080)={r13, 0x0, 0x2, r14}) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x2710, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r15 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x0, 0xe, 0x16831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r15, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) 0s ago: executing program 41 (id=412): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000440)={0x0, &(0x7f0000000240)=[@smc={0x1e, 0x40, {0x8400000e, [0x3, 0x6, 0x21f, 0x5, 0x6]}}, @code={0xa, 0xcc, {"00fc005f802490d20040b8f2e10080d2e20080d2630180d2440080d2020000d4007008d520329ad200e0b0f2a10080d2e20080d2430080d2a40180d2020000d4007008d500e4000f207c80d200e0b8f2610080d2020180d2a30180d2040180d2020000d4e0ff85d200a0b0f2410080d2820180d2430180d2a40180d2020000d4806696d20040b8f2c10180d2420080d2e30180d2640180d2020000d4400c88d20000b0f2a10180d2820080d2c30080d2a40080d2020000d4"}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0xefa, 0xa}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x259}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x88, 0x6, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0xb, 0x3, 0x7, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x327}}], 0x1e4}, &(0x7f0000000480)=[@featur1={0x1, 0xa}], 0x1) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bfe000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x80000, 0x10000, 0x20, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000a9c000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000b80)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000300)=@arm64_extra={0x603000000013df02, &(0x7f00000002c0)=0x9}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r4, 0x1, 0x11, r13, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): [ 382.251100][ T24] audit: type=1400 audit(381.420:76): avc: denied { write } for pid=3269 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 386.212696][ T24] audit: type=1400 audit(385.380:77): avc: denied { write } for pid=3274 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 402.532756][ T24] audit: type=1400 audit(401.700:78): avc: denied { write } for pid=3280 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 406.901475][ T24] audit: type=1400 audit(406.040:79): avc: denied { write } for pid=3283 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 417.238614][ T24] audit: type=1400 audit(416.370:80): avc: denied { write } for pid=3288 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 421.203781][ T24] audit: type=1400 audit(420.370:81): avc: denied { write } for pid=3291 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 423.676190][ T3205] eql: remember to turn off Van-Jacobson compression on your slave devices [ 427.448745][ T24] audit: type=1400 audit(426.610:82): avc: denied { write } for pid=3294 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 431.447080][ T24] audit: type=1400 audit(430.610:83): avc: denied { write } for pid=3297 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 442.743893][ T24] audit: type=1400 audit(441.910:84): avc: denied { write } for pid=3302 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 446.449566][ T24] audit: type=1400 audit(445.590:85): avc: denied { write } for pid=3305 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 458.108645][ T24] audit: type=1400 audit(457.270:86): avc: denied { write } for pid=3309 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 463.169515][ T24] audit: type=1400 audit(462.320:87): avc: denied { write } for pid=3312 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 468.790798][ T24] audit: type=1400 audit(467.950:88): avc: denied { write } for pid=3314 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 472.523126][ T24] audit: type=1400 audit(471.660:89): avc: denied { write } for pid=3317 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 482.034529][ T24] audit: type=1400 audit(481.200:90): avc: denied { write } for pid=3322 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 485.740161][ T24] audit: type=1400 audit(484.900:91): avc: denied { write } for pid=3325 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 496.923639][ T24] audit: type=1400 audit(496.090:92): avc: denied { write } for pid=3330 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 500.619326][ T24] audit: type=1400 audit(499.780:93): avc: denied { write } for pid=3333 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 525.348626][ T24] audit: type=1400 audit(524.470:94): avc: denied { write } for pid=3344 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 529.208993][ T24] audit: type=1400 audit(528.370:95): avc: denied { write } for pid=3347 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 538.970295][ T24] audit: type=1400 audit(538.130:96): avc: denied { write } for pid=3351 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 542.825550][ T24] audit: type=1400 audit(541.990:97): avc: denied { write } for pid=3354 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 553.964310][ T24] audit: type=1400 audit(553.130:98): avc: denied { write } for pid=3358 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 557.910171][ T24] audit: type=1400 audit(557.030:99): avc: denied { write } for pid=3361 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:38319' (ED25519) to the list of known hosts. [ 595.363721][ T24] audit: type=1400 audit(594.520:100): avc: denied { name_bind } for pid=3366 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 596.207100][ T24] audit: type=1400 audit(595.370:101): avc: denied { execute } for pid=3367 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 596.233827][ T24] audit: type=1400 audit(595.380:102): avc: denied { execute_no_trans } for pid=3367 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 621.085706][ T24] audit: type=1400 audit(620.250:103): avc: denied { mounton } for pid=3367 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 621.130656][ T24] audit: type=1400 audit(620.290:104): avc: denied { mount } for pid=3367 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 621.215512][ T3367] cgroup: Unknown subsys name 'net' [ 621.271454][ T24] audit: type=1400 audit(620.440:105): avc: denied { unmount } for pid=3367 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 621.684078][ T3367] cgroup: Unknown subsys name 'cpuset' [ 621.816924][ T3367] cgroup: Unknown subsys name 'rlimit' [ 622.224312][ T24] audit: type=1400 audit(621.390:106): avc: denied { setattr } for pid=3367 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 622.259275][ T24] audit: type=1400 audit(621.410:107): avc: denied { mounton } for pid=3367 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 622.266085][ T24] audit: type=1400 audit(621.420:108): avc: denied { mount } for pid=3367 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 623.276991][ T3370] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 623.296335][ T24] audit: type=1400 audit(622.460:109): avc: denied { relabelto } for pid=3370 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 623.323483][ T24] audit: type=1400 audit(622.490:110): avc: denied { write } for pid=3370 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 623.504229][ T24] audit: type=1400 audit(622.670:111): avc: denied { read } for pid=3367 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 623.526442][ T24] audit: type=1400 audit(622.690:112): avc: denied { open } for pid=3367 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 623.577256][ T3367] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 683.786886][ T24] audit: type=1400 audit(682.950:113): avc: denied { execmem } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 688.369501][ T24] audit: type=1400 audit(687.530:114): avc: denied { read } for pid=3373 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 688.386578][ T24] audit: type=1400 audit(687.550:115): avc: denied { open } for pid=3374 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 688.459344][ T24] audit: type=1400 audit(687.620:116): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 688.686233][ T24] audit: type=1400 audit(687.850:117): avc: denied { module_request } for pid=3373 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 689.605770][ T24] audit: type=1400 audit(688.760:118): avc: denied { sys_module } for pid=3374 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 714.824144][ T3373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 714.903275][ T3374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 714.979867][ T3373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 715.041549][ T3374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 726.691087][ T3373] hsr_slave_0: entered promiscuous mode [ 726.722444][ T3373] hsr_slave_1: entered promiscuous mode [ 728.041134][ T3374] hsr_slave_0: entered promiscuous mode [ 728.074643][ T3374] hsr_slave_1: entered promiscuous mode [ 728.106541][ T3374] debugfs: 'hsr0' already exists in 'hsr' [ 728.115166][ T3374] Cannot create hsr debugfs directory [ 733.436965][ T24] audit: type=1400 audit(732.600:119): avc: denied { create } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 733.459954][ T24] audit: type=1400 audit(732.620:120): avc: denied { write } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 733.571635][ T24] audit: type=1400 audit(732.700:121): avc: denied { read } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 733.693617][ T3373] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 733.943480][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 734.007037][ T3373] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 734.295963][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 734.401348][ T3373] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 734.653309][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 734.841316][ T3373] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 734.903713][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 736.355459][ T3374] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 736.480408][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 736.543502][ T3374] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 736.645473][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 736.751520][ T3374] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 736.862678][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 736.925213][ T3374] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 737.053866][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 748.333162][ T3373] 8021q: adding VLAN 0 to HW filter on device bond0 [ 750.906855][ T3374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 802.113615][ T3373] veth0_vlan: entered promiscuous mode [ 802.625309][ T3373] veth1_vlan: entered promiscuous mode [ 804.735289][ T3374] veth0_vlan: entered promiscuous mode [ 804.886866][ T3373] veth0_macvtap: entered promiscuous mode [ 805.186317][ T3373] veth1_macvtap: entered promiscuous mode [ 805.495498][ T3374] veth1_vlan: entered promiscuous mode [ 807.989486][ T48] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.034165][ T48] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.050908][ T48] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.083714][ T3448] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.319970][ T3374] veth0_macvtap: entered promiscuous mode [ 808.746991][ T3374] veth1_macvtap: entered promiscuous mode [ 810.566605][ T24] audit: type=1400 audit(809.730:122): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 810.801864][ T24] audit: type=1400 audit(809.960:123): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/syzkaller.Z5IUYq/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 811.018979][ T24] audit: type=1400 audit(810.170:124): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 811.457353][ T24] audit: type=1400 audit(810.620:125): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/syzkaller.Z5IUYq/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 811.631868][ T24] audit: type=1400 audit(810.770:126): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/syzkaller.Z5IUYq/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3769 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 811.746165][ T48] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.752749][ T48] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.855198][ T48] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.862229][ T48] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.159343][ T24] audit: type=1400 audit(811.320:127): avc: denied { unmount } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 812.450983][ T24] audit: type=1400 audit(811.610:128): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 812.581000][ T24] audit: type=1400 audit(811.740:129): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="gadgetfs" ino=3780 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 813.021592][ T24] audit: type=1400 audit(812.140:130): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 813.161500][ T24] audit: type=1400 audit(812.320:131): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 814.344017][ T3373] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 827.649177][ T24] kauditd_printk_skb: 4 callbacks suppressed [ 827.656540][ T24] audit: type=1400 audit(826.810:136): avc: denied { read } for pid=3526 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 827.901603][ T24] audit: type=1400 audit(826.910:137): avc: denied { open } for pid=3526 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 828.165106][ T24] audit: type=1400 audit(827.330:138): avc: denied { ioctl } for pid=3526 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 841.658978][ T24] audit: type=1400 audit(840.810:139): avc: denied { append } for pid=3539 comm="syz.0.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 842.222805][ T24] audit: type=1400 audit(841.380:140): avc: denied { create } for pid=3539 comm="syz.0.3" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 842.388917][ T24] audit: type=1400 audit(841.490:141): avc: denied { map } for pid=3539 comm="syz.0.3" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=3997 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 842.419444][ T24] audit: type=1400 audit(841.550:142): avc: denied { read } for pid=3539 comm="syz.0.3" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=3997 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 844.305012][ T24] audit: type=1400 audit(843.430:143): avc: denied { write } for pid=3541 comm="syz.1.4" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 844.439073][ T24] audit: type=1400 audit(843.590:144): avc: denied { execute } for pid=3539 comm="syz.0.3" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 845.121310][ T24] audit: type=1400 audit(844.270:145): avc: denied { map } for pid=3539 comm="syz.0.3" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 908.629439][ T24] audit: type=1400 audit(907.790:146): avc: denied { setattr } for pid=3578 comm="syz.1.15" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 926.809433][ T3589] kvm [3589]: Failed to find VMA for hva 0x20de3000 [ 1001.283783][ T24] audit: type=1400 audit(1000.450:147): avc: denied { write } for pid=3627 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1010.322053][ T24] audit: type=1400 audit(1009.490:148): avc: denied { write } for pid=3633 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1045.196877][ T3655] kvm [3655]: Failed to find VMA for hva 0x20c79000 [ 1102.159415][ T24] audit: type=1400 audit(1101.320:149): avc: denied { module_request } for pid=3681 comm="syz-executor" kmod="netdev-nr2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 1102.355743][ T48] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1103.739560][ T48] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1105.133174][ T48] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1106.295061][ T48] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.781772][ T48] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1123.106054][ T48] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1123.341344][ T48] bond0 (unregistering): Released all slaves [ 1125.264841][ T48] hsr_slave_0: left promiscuous mode [ 1125.343185][ T48] hsr_slave_1: left promiscuous mode [ 1126.229982][ T48] veth1_macvtap: left promiscuous mode [ 1126.252943][ T48] veth0_macvtap: left promiscuous mode [ 1126.274330][ T48] veth1_vlan: left promiscuous mode [ 1126.321070][ T48] veth0_vlan: left promiscuous mode [ 1167.134165][ T24] audit: type=1400 audit(1166.300:150): avc: denied { write } for pid=3719 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1173.079369][ T24] audit: type=1400 audit(1172.230:151): avc: denied { write } for pid=3727 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1177.464907][ T3205] 8021q: adding VLAN 0 to HW filter on device eth1 [ 1191.349327][ T24] audit: type=1400 audit(1190.500:152): avc: denied { write } for pid=3744 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1199.243474][ T24] audit: type=1400 audit(1198.350:153): avc: denied { write } for pid=3756 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1204.194042][ T3205] 8021q: adding VLAN 0 to HW filter on device eth2 [ 1207.171553][ T3681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1207.444877][ T3681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1210.220791][ T24] audit: type=1400 audit(1209.380:154): avc: denied { write } for pid=3761 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1216.482929][ T24] audit: type=1400 audit(1215.580:155): avc: denied { write } for pid=3769 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1232.202344][ T24] audit: type=1400 audit(1231.340:156): avc: denied { write } for pid=3780 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1233.784474][ T3681] hsr_slave_0: entered promiscuous mode [ 1233.882765][ T3681] hsr_slave_1: entered promiscuous mode [ 1233.970732][ T3681] debugfs: 'hsr0' already exists in 'hsr' [ 1233.992330][ T3681] Cannot create hsr debugfs directory [ 1238.743835][ T24] audit: type=1400 audit(1237.820:157): avc: denied { write } for pid=3786 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1240.051404][ T24] audit: type=1400 audit(1239.210:158): avc: denied { execute } for pid=3785 comm="syz.0.55" path="/sys/kernel/debug/kcov" dev="debugfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1 [ 1244.653909][ T3205] 8021q: adding VLAN 0 to HW filter on device eth3 [ 1251.975056][ T3681] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1252.372683][ T3681] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1252.483647][ T3681] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1252.693446][ T3681] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1252.804581][ T3681] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1253.067307][ T3681] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1253.185310][ T3681] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1253.503904][ T3681] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1268.449515][ T24] audit: type=1400 audit(1267.600:159): avc: denied { write } for pid=3805 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1276.051048][ T24] audit: type=1400 audit(1275.150:160): avc: denied { write } for pid=3815 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1279.794754][ T3681] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1281.353854][ T3205] 8021q: adding VLAN 0 to HW filter on device eth4 [ 1319.130722][ T24] audit: type=1400 audit(1318.190:161): avc: denied { write } for pid=3845 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1328.500137][ T24] audit: type=1400 audit(1327.600:162): avc: denied { write } for pid=3857 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1345.947168][ T24] audit: type=1400 audit(1345.080:163): avc: denied { write } for pid=3873 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1353.049735][ T24] audit: type=1400 audit(1352.130:164): avc: denied { write } for pid=3881 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1368.891560][ T24] audit: type=1400 audit(1367.980:165): avc: denied { write } for pid=3891 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1377.630146][ T24] audit: type=1400 audit(1376.730:166): avc: denied { write } for pid=3900 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1385.700448][ T3681] veth0_vlan: entered promiscuous mode [ 1387.025736][ T3681] veth1_vlan: entered promiscuous mode [ 1390.865538][ T3681] veth0_macvtap: entered promiscuous mode [ 1391.584108][ T3681] veth1_macvtap: entered promiscuous mode [ 1394.781272][ T3699] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1394.791861][ T3699] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1394.852971][ T3699] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1394.864133][ T3699] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1395.341626][ T24] audit: type=1400 audit(1394.500:167): avc: denied { write } for pid=3909 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1403.818625][ T24] audit: type=1400 audit(1402.980:168): avc: denied { write } for pid=3916 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1490.913889][ T3848] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1494.006599][ T3848] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1495.587147][ T3848] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1497.401096][ T3848] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1512.105647][ T3848] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1512.214042][ T3848] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1512.263782][ T3848] bond0 (unregistering): Released all slaves [ 1513.110357][ T3848] hsr_slave_0: left promiscuous mode [ 1513.148931][ T3848] hsr_slave_1: left promiscuous mode [ 1513.442119][ T3848] veth1_macvtap: left promiscuous mode [ 1513.454053][ T3848] veth0_macvtap: left promiscuous mode [ 1513.471968][ T3848] veth1_vlan: left promiscuous mode [ 1513.486423][ T3848] veth0_vlan: left promiscuous mode [ 1531.800612][ T3848] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1533.501973][ T3848] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1534.695959][ T3848] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1535.212999][ T24] audit: type=1400 audit(1534.380:169): avc: denied { write } for pid=3958 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1535.837058][ T3848] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1541.249632][ T24] audit: type=1400 audit(1540.410:170): avc: denied { write } for pid=3963 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1552.260464][ T3848] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1552.406535][ T3848] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1552.706045][ T3848] bond0 (unregistering): Released all slaves [ 1554.086335][ T3205] 8021q: adding VLAN 0 to HW filter on device eth5 [ 1555.300461][ T3848] hsr_slave_0: left promiscuous mode [ 1555.680179][ T3848] hsr_slave_1: left promiscuous mode [ 1556.322972][ T3848] veth1_macvtap: left promiscuous mode [ 1556.334386][ T3848] veth0_macvtap: left promiscuous mode [ 1556.361616][ T3848] veth1_vlan: left promiscuous mode [ 1556.381279][ T3848] veth0_vlan: left promiscuous mode [ 1577.721408][ T24] audit: type=1400 audit(1576.880:171): avc: denied { write } for pid=3982 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1581.919314][ T24] audit: type=1400 audit(1581.070:172): avc: denied { write } for pid=3993 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1585.196994][ T3205] 8021q: adding VLAN 0 to HW filter on device eth6 [ 1588.031573][ T3932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1588.687351][ T3932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1588.884977][ T3936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1589.585407][ T3936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1593.942617][ T24] audit: type=1400 audit(1593.050:173): avc: denied { write } for pid=4003 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1598.979954][ T24] audit: type=1400 audit(1598.120:174): avc: denied { write } for pid=4013 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1602.484083][ T3205] 8021q: adding VLAN 0 to HW filter on device eth7 [ 1611.307083][ T3932] hsr_slave_0: entered promiscuous mode [ 1611.422940][ T3932] hsr_slave_1: entered promiscuous mode [ 1613.273671][ T24] audit: type=1400 audit(1612.440:175): avc: denied { write } for pid=4026 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1614.973912][ T3936] hsr_slave_0: entered promiscuous mode [ 1615.104094][ T3936] hsr_slave_1: entered promiscuous mode [ 1615.222863][ T3936] debugfs: 'hsr0' already exists in 'hsr' [ 1615.228553][ T3936] Cannot create hsr debugfs directory [ 1619.531696][ T24] audit: type=1400 audit(1618.660:176): avc: denied { write } for pid=4030 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1623.316078][ T3205] 8021q: adding VLAN 0 to HW filter on device eth8 [ 1627.456325][ T24] audit: type=1400 audit(1626.620:177): avc: denied { write } for pid=4033 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1630.026168][ T3932] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1630.531974][ T3932] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1630.670631][ T3932] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1630.896777][ T3932] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1631.193305][ T3932] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1631.582337][ T3932] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1631.649268][ T3932] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1631.821547][ T3932] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1632.739804][ T24] audit: type=1400 audit(1631.890:178): avc: denied { write } for pid=4037 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1635.954609][ T3936] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1636.366911][ T3936] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1636.570328][ T3936] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1636.764774][ T3936] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1636.855359][ T3936] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1637.054589][ T3936] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1637.144015][ T3936] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1637.321394][ T3936] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1650.363283][ T24] audit: type=1400 audit(1649.530:179): avc: denied { write } for pid=4062 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1656.844182][ T3932] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1657.244642][ T24] audit: type=1400 audit(1656.410:180): avc: denied { write } for pid=4070 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1661.582895][ T3936] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1662.706258][ T3205] 8021q: adding VLAN 0 to HW filter on device eth9 [ 1679.109082][ T24] audit: type=1400 audit(1678.250:181): avc: denied { write } for pid=4083 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1689.549899][ T24] audit: type=1400 audit(1688.610:182): avc: denied { write } for pid=4089 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1695.924176][ T3205] 8021q: adding VLAN 0 to HW filter on device eth10 [ 1711.112483][ T24] audit: type=1400 audit(1710.280:183): avc: denied { write } for pid=4105 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1718.322835][ T24] audit: type=1400 audit(1717.470:184): avc: denied { write } for pid=4114 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1723.193852][ T3205] 8021q: adding VLAN 0 to HW filter on device eth11 [ 1745.369636][ T24] audit: type=1400 audit(1744.530:185): avc: denied { write } for pid=4136 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1754.246646][ T24] audit: type=1400 audit(1753.380:186): avc: denied { write } for pid=4146 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1759.592581][ T3205] 8021q: adding VLAN 0 to HW filter on device eth12 [ 1760.805461][ T3932] veth0_vlan: entered promiscuous mode [ 1762.325556][ T3932] veth1_vlan: entered promiscuous mode [ 1765.662095][ T3932] veth0_macvtap: entered promiscuous mode [ 1766.303002][ T3932] veth1_macvtap: entered promiscuous mode [ 1769.489228][ T4130] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1769.503471][ T4130] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1769.524705][ T4130] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1769.552314][ T4130] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1786.751083][ T3936] veth0_vlan: entered promiscuous mode [ 1787.837259][ T3936] veth1_vlan: entered promiscuous mode [ 1792.363337][ T3936] veth0_macvtap: entered promiscuous mode [ 1793.302532][ T3936] veth1_macvtap: entered promiscuous mode [ 1797.882306][ T3473] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1797.910589][ T3473] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1798.012185][ T31] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1798.020247][ T31] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1810.820857][ T24] audit: type=1400 audit(1809.960:187): avc: denied { write } for pid=4178 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1823.691330][ T24] audit: type=1400 audit(1822.830:188): avc: denied { write } for pid=4187 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1846.339232][ T24] audit: type=1400 audit(1845.480:189): avc: denied { write } for pid=4199 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1858.201053][ T24] audit: type=1400 audit(1857.340:190): avc: denied { write } for pid=4212 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1903.231004][ T24] audit: type=1400 audit(1902.370:191): avc: denied { write } for pid=4231 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1915.542954][ T24] audit: type=1400 audit(1914.700:192): avc: denied { write } for pid=4239 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1939.842652][ T24] audit: type=1400 audit(1938.860:193): avc: denied { write } for pid=4247 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1951.349579][ T24] audit: type=1400 audit(1950.490:194): avc: denied { write } for pid=4258 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1969.106557][ T24] audit: type=1400 audit(1968.270:195): avc: denied { write } for pid=4267 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1981.232132][ T24] audit: type=1400 audit(1980.370:196): avc: denied { write } for pid=4273 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2010.322468][ T24] audit: type=1400 audit(2009.480:197): avc: denied { write } for pid=4286 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2020.430757][ T24] audit: type=1400 audit(2019.590:198): avc: denied { write } for pid=4295 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2047.419474][ T24] audit: type=1400 audit(2046.520:199): avc: denied { write } for pid=4306 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2059.389849][ T24] audit: type=1400 audit(2058.550:200): avc: denied { write } for pid=4316 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2080.440174][ T24] audit: type=1400 audit(2079.600:201): avc: denied { write } for pid=4328 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2091.681497][ T24] audit: type=1400 audit(2090.840:202): avc: denied { write } for pid=4336 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2121.133727][ T24] audit: type=1400 audit(2120.240:203): avc: denied { write } for pid=4348 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2132.919137][ T24] audit: type=1400 audit(2132.070:204): avc: denied { write } for pid=4356 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2262.806217][ T4415] kvm [4415]: Failed to find VMA for hva 0x20de3000 [ 2389.502008][ T24] audit: type=1400 audit(2388.660:205): avc: denied { execute } for pid=4472 comm="syz.4.137" path=2F33332F10FBFF67525673312B0104 dev="tmpfs" ino=186 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 2582.981291][ T24] audit: type=1400 audit(2582.130:206): avc: denied { write } for pid=4551 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2595.711887][ T24] audit: type=1400 audit(2594.870:207): avc: denied { write } for pid=4560 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2686.469671][ T24] audit: type=1400 audit(2685.590:208): avc: denied { ioctl } for pid=4598 comm="syz.3.173" path="net:[4026532790]" dev="nsfs" ino=4026532790 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 2800.759574][ T41] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2802.358828][ T41] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2803.990974][ T41] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2806.067304][ T41] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2832.485048][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2833.064987][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2833.423824][ T41] bond0 (unregistering): Released all slaves [ 2836.139630][ T41] hsr_slave_0: left promiscuous mode [ 2836.214552][ T41] hsr_slave_1: left promiscuous mode [ 2836.869452][ T41] veth1_macvtap: left promiscuous mode [ 2836.879110][ T41] veth0_macvtap: left promiscuous mode [ 2836.883779][ T41] veth1_vlan: left promiscuous mode [ 2836.889600][ T41] veth0_vlan: left promiscuous mode [ 2845.039844][ T24] audit: type=1400 audit(2844.200:209): avc: denied { execute } for pid=4657 comm="syz.3.185" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2896.531638][ T24] audit: type=1400 audit(2895.680:210): avc: denied { write } for pid=4673 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2905.462219][ T24] audit: type=1400 audit(2904.620:211): avc: denied { write } for pid=4686 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2910.820325][ T3205] 8021q: adding VLAN 0 to HW filter on device eth13 [ 2919.471136][ T24] audit: type=1400 audit(2918.640:212): avc: denied { write } for pid=4694 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2928.333819][ T24] audit: type=1400 audit(2927.490:213): avc: denied { write } for pid=4702 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2939.122293][ T4637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2939.666627][ T4637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2956.331463][ T24] audit: type=1400 audit(2955.490:214): avc: denied { write } for pid=4715 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2965.895450][ T24] audit: type=1400 audit(2965.060:215): avc: denied { write } for pid=4723 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2971.656554][ T3205] 8021q: adding VLAN 0 to HW filter on device eth14 [ 2980.521159][ T4637] hsr_slave_0: entered promiscuous mode [ 2980.803917][ T4637] hsr_slave_1: entered promiscuous mode [ 2981.000964][ T4637] debugfs: 'hsr0' already exists in 'hsr' [ 2981.006580][ T4637] Cannot create hsr debugfs directory [ 2989.042671][ T24] audit: type=1400 audit(2988.210:216): avc: denied { write } for pid=4735 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2998.809396][ T24] audit: type=1400 audit(2997.950:217): avc: denied { write } for pid=4747 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3004.373528][ T4637] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 3004.791011][ T4637] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3004.935629][ T4637] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 3005.371231][ T4637] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3005.594800][ T4637] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 3006.093233][ T4637] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3006.371829][ T4637] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 3006.805443][ T4637] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3007.105644][ T3205] 8021q: adding VLAN 0 to HW filter on device eth15 [ 3033.094443][ T24] audit: type=1400 audit(3032.260:218): avc: denied { write } for pid=4769 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3042.723632][ T4637] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3042.943397][ T24] audit: type=1400 audit(3042.020:219): avc: denied { write } for pid=4776 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3049.855927][ T3205] 8021q: adding VLAN 0 to HW filter on device eth16 [ 3112.615435][ T24] audit: type=1400 audit(3111.750:220): avc: denied { write } for pid=4812 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3124.900173][ T24] audit: type=1400 audit(3124.010:221): avc: denied { write } for pid=4823 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3146.166983][ T24] audit: type=1400 audit(3145.330:222): avc: denied { write } for pid=4832 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3156.540154][ T24] audit: type=1400 audit(3155.670:223): avc: denied { write } for pid=4841 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3181.180026][ T24] audit: type=1400 audit(3180.340:224): avc: denied { write } for pid=4855 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3193.236979][ T24] audit: type=1400 audit(3192.390:225): avc: denied { write } for pid=4866 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3212.194772][ T4637] veth0_vlan: entered promiscuous mode [ 3213.351580][ T4637] veth1_vlan: entered promiscuous mode [ 3217.619380][ T24] audit: type=1400 audit(3216.760:226): avc: denied { write } for pid=4877 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3217.650142][ T4637] veth0_macvtap: entered promiscuous mode [ 3218.398492][ T4637] veth1_macvtap: entered promiscuous mode [ 3223.549540][ T4876] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3223.580597][ T4876] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3223.625649][ T4876] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3223.641912][ T2157] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3230.790689][ T24] audit: type=1400 audit(3229.930:227): avc: denied { write } for pid=4885 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3433.811430][ T24] audit: type=1400 audit(3432.960:228): avc: denied { write } for pid=4963 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3447.129254][ T24] audit: type=1400 audit(3446.210:229): avc: denied { write } for pid=4969 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3905.106005][ T24] audit: type=1400 audit(3904.270:230): avc: denied { write } for pid=5149 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3918.657269][ T24] audit: type=1400 audit(3917.790:231): avc: denied { write } for pid=5161 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4077.405785][ T24] audit: type=1400 audit(4076.550:232): avc: denied { map } for pid=5234 comm="syz.3.295" path="pipe:[8915]" dev="pipefs" ino=8915 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 4077.490902][ T24] audit: type=1400 audit(4076.650:233): avc: denied { execute } for pid=5234 comm="syz.3.295" path="pipe:[8915]" dev="pipefs" ino=8915 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 4168.483616][ T4647] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4170.292149][ T4647] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4172.894383][ T4647] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4174.333773][ T4647] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4192.616952][ T4647] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4192.755724][ T4647] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4192.866734][ T4647] bond0 (unregistering): Released all slaves [ 4194.201374][ T4647] hsr_slave_0: left promiscuous mode [ 4194.329262][ T4647] hsr_slave_1: left promiscuous mode [ 4194.988461][ T4647] veth1_macvtap: left promiscuous mode [ 4194.991723][ T4647] veth0_macvtap: left promiscuous mode [ 4195.062634][ T4647] veth1_vlan: left promiscuous mode [ 4195.065046][ T4647] veth0_vlan: left promiscuous mode [ 4229.064919][ T4647] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4230.896044][ T4647] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4232.462981][ T4647] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4233.964576][ T4647] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4242.952266][ T24] audit: type=1400 audit(4242.100:234): avc: denied { write } for pid=5282 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4250.250272][ T24] audit: type=1400 audit(4249.410:235): avc: denied { write } for pid=5291 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4252.712540][ T4647] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4253.000189][ T4647] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4253.171517][ T4647] bond0 (unregistering): Released all slaves [ 4254.254815][ T3205] 8021q: adding VLAN 0 to HW filter on device eth17 [ 4256.115424][ T4647] hsr_slave_0: left promiscuous mode [ 4256.429488][ T4647] hsr_slave_1: left promiscuous mode [ 4257.092159][ T4647] veth1_macvtap: left promiscuous mode [ 4257.100279][ T4647] veth0_macvtap: left promiscuous mode [ 4257.109717][ T4647] veth1_vlan: left promiscuous mode [ 4257.130003][ T4647] veth0_vlan: left promiscuous mode [ 4285.400510][ T24] audit: type=1400 audit(4284.560:236): avc: denied { write } for pid=5295 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4290.381614][ T24] audit: type=1400 audit(4289.530:237): avc: denied { write } for pid=5298 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4305.749296][ T24] audit: type=1400 audit(4304.910:238): avc: denied { write } for pid=5314 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4310.704046][ T24] audit: type=1400 audit(4309.830:239): avc: denied { write } for pid=5323 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4315.383600][ T3205] 8021q: adding VLAN 0 to HW filter on device eth18 [ 4325.466103][ T5255] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4325.792642][ T5260] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4326.016297][ T5255] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4327.279767][ T5260] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4331.449547][ T24] audit: type=1400 audit(4330.590:240): avc: denied { write } for pid=5335 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4340.143411][ T24] audit: type=1400 audit(4339.280:241): avc: denied { write } for pid=5343 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4344.691832][ T3205] 8021q: adding VLAN 0 to HW filter on device eth19 [ 4358.021561][ T5255] hsr_slave_0: entered promiscuous mode [ 4358.064062][ T5255] hsr_slave_1: entered promiscuous mode [ 4359.350691][ T24] audit: type=1400 audit(4358.510:242): avc: denied { write } for pid=5358 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4361.673646][ T5260] hsr_slave_0: entered promiscuous mode [ 4361.756707][ T5260] hsr_slave_1: entered promiscuous mode [ 4361.850803][ T5260] debugfs: 'hsr0' already exists in 'hsr' [ 4361.863639][ T5260] Cannot create hsr debugfs directory [ 4365.920624][ T24] audit: type=1400 audit(4365.070:243): avc: denied { write } for pid=5363 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4369.656886][ T3205] 8021q: adding VLAN 0 to HW filter on device eth20 [ 4378.536679][ T5255] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 4379.345296][ T5255] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4379.457271][ T5255] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 4380.033450][ T5255] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4380.117141][ T5255] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 4380.636449][ T5255] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4380.972946][ T5255] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 4381.571008][ T5255] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4389.652742][ T5260] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 4390.102499][ T5260] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4390.243667][ T5260] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 4390.872801][ T5260] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4391.071027][ T5260] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 4391.563447][ T5260] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4391.760658][ T5260] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 4391.985404][ T24] audit: type=1400 audit(4391.150:244): avc: denied { write } for pid=5370 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4392.287285][ T5260] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4403.679066][ T24] audit: type=1400 audit(4402.810:245): avc: denied { write } for pid=5390 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4410.591754][ T3205] 8021q: adding VLAN 0 to HW filter on device eth21 [ 4419.843575][ T5255] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4427.655285][ T5260] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4442.349366][ T24] audit: type=1400 audit(4441.490:246): avc: denied { write } for pid=5407 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4455.059805][ T24] audit: type=1400 audit(4454.190:247): avc: denied { write } for pid=5417 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4464.287355][ T3205] 8021q: adding VLAN 0 to HW filter on device eth22 [ 4489.533103][ T24] audit: type=1400 audit(4488.650:248): avc: denied { write } for pid=5434 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4500.139314][ T24] audit: type=1400 audit(4499.270:249): avc: denied { write } for pid=5445 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4507.824625][ T3205] 8021q: adding VLAN 0 to HW filter on device eth23 [ 4537.061938][ T24] audit: type=1400 audit(4536.200:250): avc: denied { write } for pid=5464 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4546.384419][ T24] audit: type=1400 audit(4545.530:251): avc: denied { write } for pid=5475 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4553.163268][ T3205] 8021q: adding VLAN 0 to HW filter on device eth24 [ 4572.796510][ T24] audit: type=1400 audit(4571.960:252): avc: denied { write } for pid=5486 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4582.005086][ T5255] veth0_vlan: entered promiscuous mode [ 4583.340980][ T5255] veth1_vlan: entered promiscuous mode [ 4585.261745][ T24] audit: type=1400 audit(4584.420:253): avc: denied { write } for pid=5497 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4588.152514][ T5255] veth0_macvtap: entered promiscuous mode [ 4589.942787][ T5255] veth1_macvtap: entered promiscuous mode [ 4592.305386][ T5260] veth0_vlan: entered promiscuous mode [ 4594.921717][ T5260] veth1_vlan: entered promiscuous mode [ 4597.487338][ T4647] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4597.526653][ T41] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4597.575011][ T5262] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4597.609114][ T4130] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4602.954031][ T5260] veth0_macvtap: entered promiscuous mode [ 4603.814425][ T5260] veth1_macvtap: entered promiscuous mode [ 4608.864972][ T4876] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4608.910162][ T31] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4608.918483][ T2157] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4608.919331][ T2157] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4657.033810][ T24] audit: type=1400 audit(4656.190:254): avc: denied { write } for pid=5523 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4672.088614][ T24] audit: type=1400 audit(4671.220:255): avc: denied { write } for pid=5535 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4710.559392][ T24] audit: type=1400 audit(4709.700:256): avc: denied { write } for pid=5550 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4725.392697][ T24] audit: type=1400 audit(4724.510:257): avc: denied { write } for pid=5561 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4765.744124][ T24] audit: type=1400 audit(4764.900:258): avc: denied { write } for pid=5576 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4781.566598][ T24] audit: type=1400 audit(4780.680:259): avc: denied { write } for pid=5591 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4816.805052][ T24] audit: type=1400 audit(4815.820:260): avc: denied { write } for pid=5603 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4832.740793][ T24] audit: type=1400 audit(4831.880:261): avc: denied { write } for pid=5613 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4866.191736][ T24] audit: type=1400 audit(4865.360:262): avc: denied { write } for pid=5622 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4881.960857][ T24] audit: type=1400 audit(4881.110:263): avc: denied { write } for pid=5632 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4920.240259][ T24] audit: type=1400 audit(4919.370:264): avc: denied { write } for pid=5646 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4935.200571][ T24] audit: type=1400 audit(4934.330:265): avc: denied { write } for pid=5655 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4989.294498][ T24] audit: type=1400 audit(4988.450:266): avc: denied { write } for pid=5676 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5003.751310][ T24] audit: type=1400 audit(5002.880:267): avc: denied { write } for pid=5688 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5037.480210][ T24] audit: type=1400 audit(5036.560:268): avc: denied { write } for pid=5699 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5052.869384][ T24] audit: type=1400 audit(5052.020:269): avc: denied { write } for pid=5709 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5284.575628][ T4876] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5287.062728][ T4876] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5289.475624][ T4876] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5292.604426][ T4876] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5313.954262][ T24] audit: type=1400 audit(5313.100:270): avc: denied { write } for pid=5789 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5324.583099][ T24] audit: type=1400 audit(5323.710:271): avc: denied { write } for pid=5802 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5329.913707][ T4876] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5330.281204][ T4876] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5330.552122][ T4876] bond0 (unregistering): Released all slaves [ 5332.593432][ T4876] hsr_slave_0: left promiscuous mode [ 5332.674227][ T4876] hsr_slave_1: left promiscuous mode [ 5333.260709][ T4876] veth1_macvtap: left promiscuous mode [ 5333.293709][ T4876] veth0_macvtap: left promiscuous mode [ 5333.300113][ T4876] veth1_vlan: left promiscuous mode [ 5333.348991][ T4876] veth0_vlan: left promiscuous mode [ 5370.365246][ T5760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5370.816877][ T5760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5375.233115][ T5429] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5377.691276][ T5429] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5379.684256][ T5429] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5381.590549][ T5429] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5395.689904][ T24] audit: type=1400 audit(5394.840:272): avc: denied { write } for pid=5818 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5406.818442][ T24] audit: type=1400 audit(5405.960:273): avc: denied { write } for pid=5830 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5414.501430][ T5429] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5414.859903][ T5429] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5415.036743][ T5429] bond0 (unregistering): Released all slaves [ 5416.831817][ T3205] 8021q: adding VLAN 0 to HW filter on device eth25 [ 5417.350433][ T5429] hsr_slave_0: left promiscuous mode [ 5417.494433][ T5429] hsr_slave_1: left promiscuous mode [ 5418.334632][ T5429] veth1_macvtap: left promiscuous mode [ 5418.390382][ T5429] veth0_macvtap: left promiscuous mode [ 5418.404786][ T5429] veth1_vlan: left promiscuous mode [ 5418.415931][ T5429] veth0_vlan: left promiscuous mode [ 5448.934823][ T5760] hsr_slave_0: entered promiscuous mode [ 5449.072905][ T5760] hsr_slave_1: entered promiscuous mode [ 5463.102758][ T5767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5464.374849][ T5767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5465.955669][ T24] audit: type=1400 audit(5465.110:274): avc: denied { write } for pid=5842 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5476.383570][ T5760] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 5476.464821][ T24] audit: type=1400 audit(5475.620:275): avc: denied { write } for pid=5847 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5476.981814][ T5760] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5477.233102][ T5760] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 5477.785100][ T5760] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5477.955535][ T5760] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 5478.422635][ T5760] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5478.642336][ T5760] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 5479.213508][ T5760] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5485.205794][ T3205] 8021q: adding VLAN 0 to HW filter on device eth26 [ 5509.856198][ T24] audit: type=1400 audit(5509.020:276): avc: denied { write } for pid=5870 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5510.129776][ T5767] hsr_slave_0: entered promiscuous mode [ 5510.176858][ T5767] hsr_slave_1: entered promiscuous mode [ 5510.322609][ T5767] debugfs: 'hsr0' already exists in 'hsr' [ 5510.329002][ T5767] Cannot create hsr debugfs directory [ 5516.893832][ T5760] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5518.905008][ T24] audit: type=1400 audit(5518.070:277): avc: denied { write } for pid=5875 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5526.643123][ T3205] 8021q: adding VLAN 0 to HW filter on device eth27 [ 5538.435582][ T5767] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 5539.072779][ T5767] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5539.264002][ T5767] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 5539.822234][ T5767] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5539.907343][ T5767] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 5540.573365][ T5767] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5540.830910][ T5767] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 5541.394948][ T5767] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5558.500799][ T24] audit: type=1400 audit(5557.620:278): avc: denied { write } for pid=5893 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5569.720864][ T24] audit: type=1400 audit(5568.850:279): avc: denied { write } for pid=5902 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5577.353490][ T3205] 8021q: adding VLAN 0 to HW filter on device eth28 [ 5581.943814][ T5767] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5610.170473][ T24] audit: type=1400 audit(5609.330:280): avc: denied { write } for pid=5918 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5623.752640][ T24] audit: type=1400 audit(5622.920:281): avc: denied { write } for pid=5927 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5631.262610][ T3205] 8021q: adding VLAN 0 to HW filter on device eth29 [ 5658.539145][ T24] audit: type=1400 audit(5657.570:282): avc: denied { write } for pid=5942 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5671.058569][ T24] audit: type=1400 audit(5670.190:283): avc: denied { write } for pid=5953 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5679.994210][ T3205] 8021q: adding VLAN 0 to HW filter on device eth30 [ 5696.361925][ T24] audit: type=1400 audit(5695.500:284): avc: denied { write } for pid=5963 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5706.432363][ T5760] veth0_vlan: entered promiscuous mode [ 5708.392894][ T5760] veth1_vlan: entered promiscuous mode [ 5709.932736][ T24] audit: type=1400 audit(5709.050:285): avc: denied { write } for pid=5973 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5713.322980][ T5760] veth0_macvtap: entered promiscuous mode [ 5714.524130][ T5760] veth1_macvtap: entered promiscuous mode [ 5719.805843][ T4647] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5719.901634][ T4648] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5719.993837][ T4648] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5720.020625][ T4648] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5754.910922][ T24] audit: type=1400 audit(5754.030:286): avc: denied { write } for pid=5987 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5771.169823][ T24] audit: type=1400 audit(5770.290:287): avc: denied { write } for pid=5999 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5779.627169][ T5767] veth0_vlan: entered promiscuous mode [ 5781.826854][ T5767] veth1_vlan: entered promiscuous mode [ 5782.695823][ T3205] 8021q: adding VLAN 0 to HW filter on device eth31 [ 5788.102790][ T5767] veth0_macvtap: entered promiscuous mode [ 5789.664106][ T5767] veth1_macvtap: entered promiscuous mode [ 5795.553461][ T5262] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5795.595864][ T5491] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5795.596783][ T5491] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5795.795481][ T5491] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5827.400824][ T24] audit: type=1400 audit(5826.500:288): avc: denied { write } for pid=6011 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5844.050147][ T24] audit: type=1400 audit(5843.090:289): avc: denied { write } for pid=6022 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5855.707044][ T3205] 8021q: adding VLAN 0 to HW filter on device eth32 [ 5940.485927][ T24] audit: type=1400 audit(5939.560:290): avc: denied { write } for pid=6059 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5957.754189][ T24] audit: type=1400 audit(5956.880:291): avc: denied { write } for pid=6073 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6021.621448][ T24] audit: type=1400 audit(6020.750:292): avc: denied { write } for pid=6090 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6038.906025][ T24] audit: type=1400 audit(6038.040:293): avc: denied { write } for pid=6101 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6074.632675][ T24] audit: type=1400 audit(6073.730:294): avc: denied { write } for pid=6113 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6092.472673][ T24] audit: type=1400 audit(6091.600:295): avc: denied { write } for pid=6126 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6136.770325][ T24] audit: type=1400 audit(6135.800:296): avc: denied { write } for pid=6139 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6154.689601][ T24] audit: type=1400 audit(6153.820:297): avc: denied { write } for pid=6154 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6184.039460][ T24] audit: type=1400 audit(6183.070:298): avc: denied { write } for pid=6160 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6201.669674][ T24] audit: type=1400 audit(6200.780:299): avc: denied { write } for pid=6173 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6251.541192][ T24] audit: type=1400 audit(6250.580:300): avc: denied { write } for pid=6189 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6268.642416][ T24] audit: type=1400 audit(6267.780:301): avc: denied { write } for pid=6198 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6347.058917][ T24] audit: type=1400 audit(6346.210:302): avc: denied { write } for pid=6226 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6364.013203][ T24] audit: type=1400 audit(6363.160:303): avc: denied { write } for pid=6238 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6413.361111][ T24] audit: type=1400 audit(6412.400:304): avc: denied { write } for pid=6255 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6431.768897][ T24] audit: type=1400 audit(6430.910:305): avc: denied { write } for pid=6268 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6465.033598][ T24] audit: type=1400 audit(6464.170:306): avc: denied { write } for pid=6277 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6483.239577][ T24] audit: type=1400 audit(6482.400:307): avc: denied { write } for pid=6289 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6572.770594][ T24] audit: type=1400 audit(6571.910:308): avc: denied { write } for pid=6318 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6590.710756][ T24] audit: type=1400 audit(6589.870:309): avc: denied { write } for pid=6326 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6861.019718][ T24] audit: type=1400 audit(6860.040:310): avc: denied { write } for pid=6407 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6877.158706][ T24] audit: type=1400 audit(6876.280:311): avc: denied { write } for pid=6416 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6979.160843][ T6403] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6979.686016][ T6403] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7001.301099][ T6415] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7001.867046][ T6415] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7036.976283][ T6403] hsr_slave_0: entered promiscuous mode [ 7037.173439][ T6403] hsr_slave_1: entered promiscuous mode [ 7037.256918][ T6403] debugfs: 'hsr0' already exists in 'hsr' [ 7037.432506][ T6403] Cannot create hsr debugfs directory [ 7064.482095][ T6415] hsr_slave_0: entered promiscuous mode [ 7064.605265][ T6415] hsr_slave_1: entered promiscuous mode [ 7064.674644][ T6415] debugfs: 'hsr0' already exists in 'hsr' [ 7064.731509][ T6415] Cannot create hsr debugfs directory [ 7083.579542][ T24] audit: type=1400 audit(7082.620:312): avc: denied { write } for pid=6475 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7098.443719][ T24] audit: type=1400 audit(7097.560:313): avc: denied { write } for pid=6481 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7111.509655][ T6403] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 7112.124642][ T6403] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7115.715624][ T6403] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 7116.896669][ T6403] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7117.131475][ T6403] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 7117.834868][ T6403] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7121.791621][ T6403] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 7122.895693][ T6403] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7128.820159][ T24] audit: type=1400 audit(7127.960:314): avc: denied { write } for pid=6485 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7144.279989][ T6415] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 7144.959877][ T24] audit: type=1400 audit(7144.090:315): avc: denied { write } for pid=6497 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7144.983003][ T6415] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7145.250325][ T6415] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 7145.697173][ T6415] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7146.003180][ T6415] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 7146.653142][ T6415] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7147.062486][ T6415] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 7147.755979][ T6415] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7172.679578][ T24] audit: type=1400 audit(7171.830:316): avc: denied { write } for pid=6510 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7184.813255][ T6403] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7190.514038][ T24] audit: type=1400 audit(7189.630:317): avc: denied { write } for pid=6519 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7203.176613][ T6415] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7227.030363][ T24] audit: type=1400 audit(7226.170:318): avc: denied { write } for pid=6528 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7245.159965][ T24] audit: type=1400 audit(7244.320:319): avc: denied { write } for pid=6538 comm="rm" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7276.802199][ T24] audit: type=1400 audit(7275.970:320): avc: denied { write } for pid=6545 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=99 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7276.835542][ T26] INFO: task syz.8.412:6398 blocked for more than 430 seconds. [ 7276.836755][ T26] Not tainted syzkaller #0 [ 7276.880896][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 7276.989228][ T26] task:syz.8.412 state:D stack:0 pid:6398 tgid:6398 ppid:5760 task_flags:0x400040 flags:0x00000011 [ 7276.991059][ T26] Call trace: [ 7276.991585][ T26] __switch_to+0x5e0/0xb70 (T) [ 7276.993762][ T26] __schedule+0x2554/0x3828 [ 7276.994290][ T26] schedule+0xac/0x278 [ 7276.994714][ T26] schedule_timeout+0x68/0x1ec [ 7276.995193][ T26] do_wait_for_common+0x270/0x428 [ 7276.995653][ T26] wait_for_completion+0x44/0x5c [ 7276.996093][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 7276.997120][ T26] synchronize_srcu+0x668/0x8dc [ 7277.212746][ T26] mmu_notifier_unregister+0x320/0x428 [ 7277.225127][ T26] kvm_put_kvm+0x69c/0xbbc SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 7277.255531][ T26] kvm_vm_release+0x58/0x78 [ 7277.299118][ T26] __fput+0x4ac/0x978 [ 7277.302393][ T26] ____fput+0x20/0x30 [ 7277.303043][ T26] task_work_run+0x1b8/0x250 [ 7277.303550][ T26] exit_to_user_mode_loop+0x110/0x188 [ 7277.304049][ T26] el0_svc+0x184/0x238 [ 7277.304513][ T26] el0t_64_sync_handler+0x84/0x12c [ 7277.304974][ T26] el0t_64_sync+0x198/0x19c [ 7277.306648][ T26] [ 7277.306648][ T26] Showing all locks held in the system: [ 7277.307144][ T26] 1 lock held by khungtaskd/26: [ 7277.559052][ T26] #0: ffff800087db4518 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 7277.562122][ T26] 3 locks held by kworker/u4:2/31: [ 7277.562525][ T26] 2 locks held by kworker/u4:3/41: [ 7277.563492][ T26] 3 locks held by kworker/u4:6/2157: [ 7277.563845][ T26] 1 lock held by syslogd/3164: [ 7277.564191][ T26] 2 locks held by getty/3235: [ 7277.564507][ T26] #0: 89f000001276a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 7277.566175][ T26] #1: ebff80008cb4b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x314/0x1214 [ 7277.729214][ T26] 2 locks held by syz-executor/3367: [ 7277.730196][ T26] 3 locks held by kworker/u4:8/4648: [ 7277.730563][ T26] 2 locks held by kworker/u4:10/5273: [ 7277.730856][ T26] #0: 8ff000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 7277.732869][ T26] #1: ffff80008e9b7cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 7277.734474][ T26] 3 locks held by kworker/u4:13/5429: [ 7277.734788][ T26] 3 locks held by kworker/u4:14/5491: [ 7277.735146][ T26] 3 locks held by kworker/u4:0/5772: [ 7277.735490][ T26] 2 locks held by kworker/u4:7/5796: [ 7277.735815][ T26] 3 locks held by kworker/u4:11/5911: [ 7277.736169][ T26] 2 locks held by kworker/u4:4/6385: [ 7277.736464][ T26] #0: 8ff000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 7277.980894][ T26] #1: ffff80008f7f7cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 7277.982507][ T26] 2 locks held by syz.9.410/6390: [ 7277.982836][ T26] 4 locks held by kworker/0:1/6414: [ 7277.983207][ T26] 3 locks held by kworker/u4:15/6522: [ 7277.983545][ T26] 1 lock held by dhcpcd-run-hook/6545: [ 7277.983849][ T26] 1 lock held by modprobe/6550: [ 7277.984168][ T26] 1 lock held by modprobe/6551: [ 7277.984669][ T26] [ 7277.984926][ T26] ============================================= [ 7277.984926][ T26] [ 7277.985876][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 7277.998286][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 7277.999878][ T26] Hardware name: linux,dummy-virt (DT) [ 7278.000923][ T26] Call trace: [ 7278.001828][ T26] show_stack+0x2c/0x3c (C) [ 7278.003014][ T26] __dump_stack+0x30/0x40 [ 7278.004086][ T26] dump_stack_lvl+0x30/0x12c [ 7278.005114][ T26] dump_stack+0x1c/0x28 [ 7278.006114][ T26] vpanic+0x4cc/0x844 [ 7278.007045][ T26] vpanic+0x0/0x844 [ 7278.008019][ T26] hung_task_panic+0x0/0x2c [ 7278.009090][ T26] kthread+0x4d4/0x51c [ 7278.010059][ T26] ret_from_fork+0x10/0x20 [ 7278.012035][ T26] Kernel Offset: disabled [ 7278.012845][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 7278.014131][ T26] Memory Limit: none [ 7278.016471][ T26] Rebooting in 86400 seconds..