last executing test programs: 18m7.180254273s ago: executing program 1 (id=56): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0) r1 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x800, 0x4, 0x1}}, @uexit={0x0, 0x18, 0x1}, @uexit={0x0, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x0, 0x1, 0x1f8}}], 0x88}, 0x0, 0x0) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x2, 0x100) ioctl$KVM_PPC_ALLOCATE_HTAB(0xffffffffffffffff, 0xc004aea7, &(0x7f0000000000)=0x2) ioctl$KVM_RUN(r1, 0xae80, 0x0) 18m3.956411808s ago: executing program 0 (id=57): openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) 18m0.78926874s ago: executing program 1 (id=58): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = eventfd2(0xffff10c0, 0x801) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0xf0b, 0x8080000, 0x8, r3}) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000280)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x25) r7 = eventfd2(0x1, 0x1) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000000)={r7, 0xb, 0x2, r7}) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000300)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 17m57.795105742s ago: executing program 0 (id=59): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x22) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x5, 0x2, 0xe000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000180)={0x4}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0x4}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) 17m49.823524375s ago: executing program 1 (id=60): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000004}}], 0x50}, 0x0, 0x0) r6 = syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x4, 0x3, 0x0}) r8 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) r11 = eventfd2(0x5, 0x800) write$eventfd(r11, &(0x7f0000000000)=0xffffffffffffffff, 0x8) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(r10, 0xc0189436, 0x20004000) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@mrs={0xbe, 0x18, {0x603000000013df40}}], 0x18}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r15, 0x4018aee1, &(0x7f0000000140)=@attr_pmu_init) r16 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r12, 0xae04) r17 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r16, 0x3, 0x11, r15, 0x0) ioctl$KVM_RUN(r15, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r15, r17, 0xffffffffffffffff) ioctl$KVM_RUN(r9, 0xae80, 0x0) 17m48.711499155s ago: executing program 0 (id=61): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0xb6) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000200)="b0ac1391162b6716b8c9322e30ce180953525c3442c304d43fbad20e7173b65fabe4624e6a19b25698d5acc0b47e29ba4388905c809e9384280c4c3450de86beab1ebb24a58490ac", 0x0, 0x48) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@arm64={0x5e, 0xbd, 0x46}) write$eventfd(r6, &(0x7f00000001c0)=0x3, 0x50) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r9, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f0000000280)="d6011813013c360000000000f4ff8000802346cbd98762c7795582ba3948ecff090001000000000000000000040000000100", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r9, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x40305828, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) 17m38.158894168s ago: executing program 0 (id=62): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfff7fffffffffffd) ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000000000)={0xb, "a606b4b3b73a726ca995b1"}) (async, rerun: 32) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32) r3 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) (async) r6 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000180)=@arm64_sys={0x603000000013d801, &(0x7f0000000000)=0x1}) ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, 0x0) (async) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000140)=[@eret={0xe6, 0x18, 0x3}, @hvc={0x32, 0x40, {0x6380ff33, [0x2, 0x4, 0x7fff, 0xb, 0x1]}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x28f}}, @eret={0xe6, 0x18, 0x5}, @msr={0x14, 0x20, {0x603000000013c2a2, 0x7}}, @smc={0x1e, 0x40, {0x2000, [0x2, 0x3, 0x3, 0x2, 0x5]}}, @code={0xa, 0xb4, {"209f8dd20060b8f2810080d2a20180d2630180d2e40080d2020000d40000591e0004805aa0fc80d20080b8f2210080d2a20180d2630180d2a40080d2020000d4a08697d20020b0f2c10080d2e20080d2e30080d2a40180d2020000d40000291ee08f93d200e0b0f2c10180d2420080d2830080d2e40180d2020000d4000008d5007008d5c01b99d20060b8f2c10180d2820180d2e30180d2640080d2020000d4"}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x3, 0x1, 0x10, 0x8, 0x1}}, @uexit={0x0, 0x18, 0x80000001}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000e, [0x7fff, 0xde, 0x9, 0x7, 0x3]}}, @eret={0xe6, 0x18, 0x300000000}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x1, 0x5, 0xfffffffa, 0x21e, 0x2}}, @uexit={0x0, 0x18, 0x8001}, @eret={0xe6, 0x18, 0x3}], 0x2b4}], 0x1, 0x0, &(0x7f0000000480)=[@featur2={0x1, 0x80}], 0x1) 17m31.380066416s ago: executing program 1 (id=63): openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) 17m25.098459197s ago: executing program 1 (id=64): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x10200, 0x4, 0x3000, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) r1 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r2 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000040)={0x9, 0x3}) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffc000/0x3000)=nil, r3, 0xc, 0x12, r1, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000080)={0x0, 0x454}}) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, r4, 0x2000000, 0x11, r2, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000100)={0x8000000, 0x10a000, 0x1}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000140)={0x80000000}) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000340)={0x0, &(0x7f0000000180)=[@code={0xa, 0x54, {"0000589ea07296d20060b0f2c10180d2020180d2030180d2840080d2020000d4007008d5007008d50078214e000080f9000080d2007008d500a0c00d000008d5"}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x2, 0xa, 0x1f4, 0xffff}}, @uexit={0x0, 0x18, 0x401}, @hvc={0x32, 0x40, {0x84000004, [0x1, 0x10001, 0x0, 0x200, 0x81]}}, @irq_setup={0x46, 0x18, {0x1, 0xc0}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x2000, 0x2}}, @code={0xa, 0x9c, {"80e586d20040b8f2010180d2c20180d2430180d2c40080d2020000d400000010403a84d20000b8f2010180d2020180d2230180d2640180d2020000d4007008d5a06e93d200c0b8f2410080d2820180d2e30180d2c40180d2020000d40068284e000040b3000040b8606382d20020b0f2c10180d2c20080d2c30180d2040080d2020000d4bf2003d5"}}], 0x1b8}, &(0x7f0000000380)=[@featur2={0x1, 0x3a}], 0x1) syz_kvm_setup_cpu$arm64(r2, r6, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000005c0)=[{0x0, &(0x7f00000003c0)=[@uexit={0x0, 0x18, 0xfffffffffffffffa}, @uexit={0x0, 0x18, 0x4}, @hvc={0x32, 0x40, {0xc5000020, [0xd50, 0x3, 0xfffffffffffffffd, 0x9, 0x6]}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x4, 0xb, 0x20a, 0x2, 0x2}}, @irq_setup={0x46, 0x18, {0x1, 0x88}}, @hvc={0x32, 0x40, {0x8600ff01, [0xfffffffffffffc00, 0xf00, 0xfffffffffffffffa, 0x2, 0x31c8]}}, @svc={0x122, 0x40, {0x8600ff01, [0x3, 0xf3f, 0x0, 0xe62a, 0x38ae]}}, @hvc={0x32, 0x40, {0x1000000, [0xd5b0, 0x1, 0x9, 0x4, 0x4]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18, 0x7, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf20, 0x8, 0x8}}, @msr={0x14, 0x20, {0x603000000013c64a, 0x9}}], 0x1f0}], 0x1, 0x0, &(0x7f0000000600)=[@featur2={0x1, 0xa}], 0x1) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000640)={0x3, 0xffffffffffffffff, 0x1}) r8 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000006c0)={0x0, &(0x7f0000000680)=[@eret={0xe6, 0x18, 0x8}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x2e4}}], 0x40}, &(0x7f0000000700)=[@featur2={0x1, 0x15}], 0x1) ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000740)={0x1fd, 0x1, 0x7000, 0x2000, &(0x7f0000ffb000/0x2000)=nil, 0x86f2, r1}) ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000800)={0xe000, 0x0, 0x8, 0x1, 0xc650}) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000880)=@riscv64_v={0x803000000900000d, &(0x7f0000000840)=0x8}) syz_kvm_setup_cpu$arm64(r2, r8, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000d00)=[{0x0, &(0x7f00000008c0)=[@svc={0x122, 0x40, {0x8ad0f8b0289bdea0, [0x75d14dec, 0x1, 0x0, 0x2, 0x9809]}}, @smc={0x1e, 0x40, {0x4000, [0x8000, 0xffffffffffffffff, 0x0, 0x4000000000, 0x9]}}, @mrs={0xbe, 0x18, {0x603000000013804c}}, @irq_setup={0x46, 0x18, {0x3, 0x2e2}}, @hvc={0x32, 0x40, {0x2000, [0x4, 0x0, 0x8000000000000001, 0x9, 0x20]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xb, 0x81, 0xeab4dfc, 0x4}}, @hvc={0x32, 0x40, {0x84000008, [0x0, 0x8, 0x7, 0x9, 0x7fffffff]}}, @code={0xa, 0xe4, {"e04b88d20040b0f2210180d2e20180d2830180d2a40180d2020000d4202590d20020b8f2010080d2620180d2430080d2c40080d2020000d4008008d540ef89d200a0b0f2010080d2220080d2e30080d2040080d2020000d4201e9ad200a0b0f2e10180d2820180d2e30180d2e40180d2020000d420839bd200c0b8f2410180d2020080d2a30080d2a40180d2020000d40070400ca02898d200e0b8f2410180d2220180d2c30080d2240180d2020000d4a09482d200e0b0f2410080d2820080d2830080d2240180d2020000d4008008d5"}}, @svc={0x122, 0x40, {0x84000003, [0x7a, 0xa8, 0xfffffffffffffffd, 0x400000000, 0xffffffff]}}, @code={0xa, 0x84, {"000008d5000008d580cd9cd20060b0f2e10180d2420080d2230180d2640180d2020000d4000040c860a69cd20000b0f2010180d2620080d2430180d2e40180d2020000d4008008d50014202e0000c028c0fb87d200a0b0f2a10080d2420080d2830180d2c40080d2020000d4007008d5"}}, @uexit={0x0, 0x18, 0x25e}, @uexit={0x0, 0x18, 0x1}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x2, 0xb, 0x8, 0x3, 0x4}}, @eret={0xe6, 0x18, 0x8001}, @eret={0xe6, 0x18}, @irq_setup={0x46, 0x18, {0x4, 0x61}}, @svc={0x122, 0x40, {0x20, [0x2, 0x10000, 0x200, 0xe3a, 0xb0b]}}, @hvc={0x32, 0x40, {0x80000001, [0x5, 0x1ff, 0x7, 0x8, 0x3]}}], 0x420}], 0x1, 0x0, &(0x7f0000000d40)=[@featur2={0x1, 0x20}], 0x1) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000d80)={0x8, 0x0, [{0x70, 0x2, 0x0, 0x0, @msi={0x3, 0xffffff94, 0x6, 0xff}}, {0xe, 0x2, 0x0, 0x0, @msi={0x8, 0x8, 0xdee, 0x7ff}}, {0x3, 0x3, 0x1, 0x0, @adapter={0xfffffffffffffffc, 0x0, 0x0, 0xffffffff, 0x2}}, {0x0, 0x4, 0x0, 0x0, @sint={0x1, 0x3}}, {0x3, 0x4, 0x1, 0x0, @irqchip={0x9, 0xe4d6}}, {0x6, 0x1, 0x0, 0x0, @irqchip={0xd9d, 0x3}}, {0x93, 0x1, 0x0, 0x0, @adapter={0x5, 0xbc2e, 0x82, 0x40, 0x3ff}}, {0x7fff, 0x4, 0x1, 0x0, @adapter={0xd9, 0x2, 0x0, 0x7f}}]}) eventfd2(0x7, 0x801) r9 = ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000f40)={0x0, 0x6, 0x40000, 0x2000, &(0x7f0000de6000/0x2000)=nil}) r10 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x4) r11 = eventfd2(0x10001, 0x80801) ioctl$KVM_IRQFD(r10, 0x4020ae76, &(0x7f0000000f80)={r11, 0x8000, 0x1, r1}) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r8, 0x4018aee2, &(0x7f0000001000)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000fc0)=0x4}) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r3, 0x300000a, 0x10, r2, 0x0) 17m22.168515597s ago: executing program 0 (id=65): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1) r2 = eventfd2(0xeffffffd, 0x801) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0x800000200, 0xc000, 0x2, 0xffffffffffffffff, 0x1}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x930, 0x2000006, 0x13, r3, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0x59) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x2, r2, 0x3}) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r2, 0x5, 0x0, r2}) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x4, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x2, 0x4c, 0x86, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef, 0x7, 0xc, '\x00', 0x1, 0x7}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r9, 0x2, 0x100) r10 = eventfd2(0x1, 0x801) r11 = eventfd2(0xff, 0x80000) ioctl$KVM_IRQFD(r9, 0x4020ae76, &(0x7f00000001c0)={r10, 0x3, 0x2, r11}) r12 = eventfd2(0x1, 0x0) ioctl$KVM_IRQFD(r9, 0x4020ae76, &(0x7f0000000780)={r12, 0x3, 0x2, r11}) r13 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r14, 0x0) ioctl$KVM_SET_GSI_ROUTING(r9, 0x4008ae6a, &(0x7f0000000300)) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000100)={0x3, 0xffffffffffffffff, 0x1}) write$eventfd(r15, &(0x7f00000001c0), 0xe80) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r2, 0xb}) 17m15.021844025s ago: executing program 1 (id=66): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x1, 0x6000, 0x9fff, 0xffffffffffffffff, 0x8}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000001c0)={0x1, 0x1, 0xeeee8000, 0x1000, &(0x7f0000f95000/0x1000)=nil}) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000000c0)={0x945, 0xfffffffe, 0x2}}) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x3000005, 0x10, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) 17m8.658082611s ago: executing program 0 (id=67): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x84000011, [0x99b, 0x100000003, 0x5, 0x101, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000100)={0x1, 0x80000}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) 16m27.89064271s ago: executing program 32 (id=66): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x1, 0x6000, 0x9fff, 0xffffffffffffffff, 0x8}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000001c0)={0x1, 0x1, 0xeeee8000, 0x1000, &(0x7f0000f95000/0x1000)=nil}) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000000c0)={0x945, 0xfffffffe, 0x2}}) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x3000005, 0x10, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) 16m20.420054997s ago: executing program 33 (id=67): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x84000011, [0x99b, 0x100000003, 0x5, 0x101, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000100)={0x1, 0x80000}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) 11m11.469024666s ago: executing program 2 (id=68): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0xa000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) 11m1.760641295s ago: executing program 3 (id=69): r0 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) ioctl$KVM_CLEAR_DIRTY_LOG(r0, 0xc018aec0, &(0x7f0000000400)={0x10201, 0x180, 0x2c0, &(0x7f0000000000)=[0x80000000, 0x401, 0x0, 0x57, 0x8, 0x10, 0x0, 0x5, 0x0, 0x8, 0x40000000000, 0x3, 0x4, 0x3, 0xe7, 0x10001, 0x7ff, 0x5, 0x2, 0x2400000000000, 0x1, 0x7, 0x59fccfbd, 0x2, 0x9, 0x6, 0x7, 0xf, 0x9, 0x9, 0x1000, 0xfed, 0x4ca, 0xe84, 0x3, 0x2, 0x3, 0x4, 0x8000000000000000, 0x2, 0x2, 0x4, 0x6, 0x8000000000000000, 0x5, 0x0, 0x6, 0xcc, 0x9, 0x6, 0x4, 0xfffffffffffffffc, 0x1, 0x80000000, 0xcb, 0x200, 0x9, 0x1319, 0x1, 0x7f, 0xbae2, 0x6, 0xfffffffffffffffd, 0x8, 0x5, 0x9, 0x0, 0x6d65, 0x3ff, 0x401, 0x101, 0x4, 0x7, 0xd4, 0x8000, 0x7, 0xfffffffffffffc00, 0x5, 0xdc, 0x8000, 0x3, 0x101, 0x7ff, 0x7, 0x4, 0x35b9, 0x81, 0x58fb, 0x100000000000000, 0x1, 0x4, 0x6, 0xa4d6, 0x3, 0x7, 0x7fffffff, 0x8001, 0x1, 0x1, 0x5, 0x7, 0x0, 0xc9, 0x3, 0x10000, 0xfffffffffffffffa, 0x3ff, 0x8, 0x4, 0x1000, 0x8, 0x6, 0x4, 0x8, 0x0, 0x4, 0x5, 0x2, 0x4, 0x6, 0x1, 0xd63, 0x0, 0x5, 0x4, 0xf0, 0x5b, 0x31b000000]}) (async) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r0, 0x4068aea3, &(0x7f0000000440)) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f0000000500)=@attr_other={0x0, 0x8000, 0x5, &(0x7f00000004c0)=0x10000}) (async) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) r2 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000980)={0x0, &(0x7f0000000540)=[@mrs={0xbe, 0x18, {0x603000000013deb7}}, @msr={0x14, 0x20, {0x603000000013803f, 0xdd}}, @uexit={0x0, 0x18, 0xffffffffffffffff}, @eret={0xe6, 0x18, 0x2}, @svc={0x122, 0x40, {0xc5000020, [0x6, 0xffffffff, 0x10, 0x6, 0x57684fe4]}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013c646}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x237}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x10, 0xffffffffffffffff, 0xe}}, @hvc={0x32, 0x40, {0x84000005, [0xfffffffffffffffa, 0xad62, 0xff, 0xd, 0x2f21]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x1, 0x7, 0x0, 0x5, 0x2}}, @hvc={0x32, 0x40, {0x460000f4, [0x4, 0x5, 0x7, 0xd4e, 0xc71]}}, @mrs={0xbe, 0x18, {0x603000000013df69}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x1, 0x3, 0x2, 0x2, 0x3}}, @smc={0x1e, 0x40, {0x4, [0x0, 0xd688, 0x3, 0x3, 0x3d]}}, @code={0xa, 0x84, {"80d097d20060b0f2e10080d2a20080d2430180d2040080d2020000d460f992d20060b0f2c10180d2020180d2630080d2440080d2020000d4008008d50088210e804085d20040b8f2810180d2020080d2030180d2240180d2020000d4000008d5007008d50000781e0018285e000028d5"}}, @code={0xa, 0x84, {"00ff95d200a0b0f2a10080d2a20080d2830180d2440080d2020000d4007008d500fca00e007008d5007008d5e003bfd6008008d5c01b8cd200a0b8f2410180d2620180d2030180d2440080d2020000d4a01392d200a0b0f2210080d2a20180d2a30080d2640080d2020000d4007008d5"}}, @code={0xa, 0x6c, {"c05a80d200a0b8f2e10180d2c20080d2230080d2640080d2020000d4007008d5000040b30004407c007008d50000805a209f85d200e0b0f2c10180d2620180d2430180d2840080d2020000d4007008d5007008d50060200d"}}, @svc={0x122, 0x40, {0x3f000000, [0x100000000, 0x2, 0x7f, 0x0, 0x4000000000000000]}}], 0x40c}, &(0x7f00000009c0)=[@featur1={0x1, 0xd48c9126b34a480c}], 0x1) (async) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1f) syz_kvm_setup_cpu$arm64(r3, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000c80)=[{0x0, &(0x7f0000000a00)=[@hvc={0x32, 0x40, {0x80000000, [0x8000000000000000, 0xffffffffffffffff, 0x100000001, 0x1, 0x828]}}, @eret={0xe6, 0x18, 0x6}, @uexit={0x0, 0x18, 0x4}, @hvc={0x32, 0x40, {0x84000005, [0x8, 0xb, 0x81, 0xd8, 0xb9d4]}}, @eret={0xe6, 0x18, 0x81}, @memwrite={0x6e, 0x30, @generic={0x100000, 0x782, 0x4, 0x8}}, @eret={0xe6, 0x18, 0x1}, @mrs={0xbe, 0x18, {0x6030000000139808}}, @uexit={0x0, 0x18, 0xdb}, @code={0xa, 0x9c, {"00a4004fa0a894d20040b8f2010180d2220180d2a30080d2040080d2020000d4007008d50000005e0080804840c38dd20000b0f2610080d2c20080d2e30080d2040180d2020000d4007008d540698bd200c0b8f2e10080d2820080d2230180d2440080d2020000d40078284e00898fd20060b0f2010180d2220080d2a30080d2840080d2020000d4"}}, @eret={0xe6, 0x18, 0x4}, @eret={0xe6, 0x18, 0x1}, @smc={0x1e, 0x40, {0x400, [0x7f, 0x7, 0x9, 0x5, 0x3]}}, @irq_setup={0x46, 0x18, {0x0, 0x242}}], 0x264}], 0x1, 0x0, &(0x7f0000000cc0)=[@featur2={0x1, 0x38}], 0x1) (async) r4 = ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) (async) r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000d00)={0xaa7, 0x4aca}) ioctl$KVM_SET_USER_MEMORY_REGION2(r4, 0x40a0ae49, &(0x7f0000000d40)={0x10003, 0x7, 0x200000, 0x2000, &(0x7f0000e32000/0x2000)=nil, 0x6, r5}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000e00)={0xb, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x16) (async) r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x11) ioctl$KVM_CAP_DIRTY_LOG_RING(r6, 0x4068aea3, &(0x7f0000000e40)={0xc0, 0x0, 0x12000}) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x18) ioctl$KVM_SET_DEVICE_ATTR_vm(r7, 0x4018aee1, &(0x7f0000000f00)=@attr_other={0x0, 0x3, 0x8b, &(0x7f0000000ec0)=0x6}) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r0, 0x4018aee2, &(0x7f0000000f40)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x7f}) (async) ioctl$KVM_PPC_ALLOCATE_HTAB(r3, 0xc004aea7, &(0x7f0000000f80)=0xffffffff) (async) ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000001000)=@attr_irq_timer={0x0, 0x1, 0x0, &(0x7f0000000fc0)=0x10}) (async) r8 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000001580)={0x0, &(0x7f0000001040)=[@msr={0x14, 0x20, {0x603000000013da21, 0x7ff}}, @uexit={0x0, 0x18, 0x2}, @irq_setup={0x46, 0x18, {0x1, 0x148}}, @uexit={0x0, 0x18, 0xce0}, @memwrite={0x6e, 0x30, @generic={0xddcda000, 0xf9e, 0x1000, 0x1}}, @uexit={0x0, 0x18, 0x8}, @code={0xa, 0x84, {"007008d50000206b604988d20040b8f2e10080d2220080d2c30080d2c40080d2020000d4007008d5007008d540cf85d20020b8f2e10080d2820180d2a30180d2e40080d2020000d4007008d50000c03c60fa93d200a0b8f2a10180d2820080d2c30180d2040180d2020000d40020c01a"}}, @svc={0x122, 0x40, {0x20, [0xd, 0xe, 0x9, 0x1f80000000000, 0x4]}}, @irq_setup={0x46, 0x18, {0x2, 0x73}}, @svc={0x122, 0x40, {0x10, [0x401, 0x4, 0x7f, 0x401, 0x5]}}, @mrs={0xbe, 0x18, {0x603000000013e089}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x88}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xe, 0xdcdc, 0x3, 0x2}}, @smc={0x1e, 0x40, {0xfff7, [0xfff, 0x2, 0x4023, 0x100000001, 0x7fff]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2e5}}, @mrs={0xbe, 0x18, {0x603000000013deb7}}, @mrs={0xbe, 0x18, {0x603000000013dce6}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x40}}, @smc={0x1e, 0x40, {0xc4000001, [0xffffffff, 0x1ff, 0xae, 0x0, 0x8]}}, @smc={0x1e, 0x40, {0x84000003, [0xfffffffffffffff7, 0x3, 0xd, 0x8000, 0x4]}}, @smc={0x1e, 0x40, {0xc5000021, [0x4, 0x2, 0x3, 0x1, 0x2]}}, @hvc={0x32, 0x40, {0x84000003, [0x800, 0x8, 0x5aa, 0xffffffffffff75b1, 0x7]}}, @uexit={0x0, 0x18, 0x9}, @smc={0x1e, 0x40, {0x84000003, [0xd, 0x80000000, 0xfffffffffffffffb, 0x1, 0x80]}}, @memwrite={0x6e, 0x30, @generic={0xd000, 0xc1c}}, @mrs={0xbe, 0x18, {0x603000000013c4d1}}, @hvc={0x32, 0x40, {0xc400000c, [0x5bb, 0x3918b7b, 0x3, 0xbd2, 0x38]}}, @memwrite={0x6e, 0x30, @generic={0x5000, 0xc55, 0x1ff, 0xa}}, @eret={0xe6, 0x18, 0x9}], 0x51c}, &(0x7f00000015c0)=[@featur1={0x1, 0x1}], 0x1) (async) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000001600)={0x3}) ioctl$KVM_CLEAR_DIRTY_LOG(r0, 0xc018aec0, &(0x7f0000001a40)={0x10002, 0x3c0, 0x80, &(0x7f0000001640)=[0x3, 0x3, 0x3, 0x3, 0x1, 0x7, 0x2, 0x315, 0x0, 0x6, 0xb28c, 0x7f, 0x8, 0x1b7, 0x6, 0x8, 0x6, 0x6, 0xfffffffffffffff8, 0x2, 0xfffffffffffffe25, 0x4, 0xff, 0x3ff, 0x8, 0x0, 0x1d, 0xffff, 0x2, 0x0, 0x7, 0x400, 0x1, 0x9, 0xffff, 0x6, 0x1, 0x60, 0x100000000, 0x100000001, 0xa438, 0x1b1c, 0x4, 0x0, 0x2, 0x0, 0x5, 0x0, 0x2, 0x8, 0x0, 0x7, 0x80000001, 0x9, 0xff, 0xbc, 0x9, 0x9, 0x4, 0x6, 0x5, 0xd3a, 0x7, 0xcee9, 0x0, 0xffff, 0x1, 0xc333, 0x9, 0x7fffffff, 0x6, 0x7fff, 0x7, 0x0, 0x0, 0x8, 0x839f, 0x1e, 0x100000001, 0x1, 0x9de, 0x8, 0x6, 0xaf, 0x5, 0x5fe, 0xff, 0xc1, 0x7, 0x3583, 0x401, 0x1, 0x7, 0x9, 0x9, 0x4a0, 0xffffffffffffff11, 0x54a5dd4c, 0x7fffffff, 0xe5, 0x5, 0x7, 0x7, 0x6, 0x8, 0x6, 0x39, 0x9dbb, 0x5, 0x3ff, 0x2, 0x6, 0x8, 0x8000000000000000, 0xd2b, 0x2, 0xeffb8ee, 0xa579, 0x8560, 0x7ff, 0x9, 0x6, 0x7, 0x1, 0x0, 0x5, 0xb458, 0x51]}) (async) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000dc6000/0x2000)=nil, r9, 0x2000000, 0x11, r8, 0x0) (async) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r6, 0x4068aea3, &(0x7f0000001a80)) (async) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001b00), 0x480881, 0x0) close(r10) (async) ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f0000001b40)={0x80000000, 0x1ff}) 10m56.983267764s ago: executing program 2 (id=70): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x80000, 0x30000, 0x0, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000040)=@arm64_ccsidr={0x6020000000110008, &(0x7f0000000000)=0x5}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 10m51.1562907s ago: executing program 3 (id=71): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x21) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) r6 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r5, 0x2800002, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000240)="fb4149dd033b08000000a22332a77b23b0892152f70bb14c94a6ab8031d1dfd92f00400000090000005a9610fbff67521ce16f8f1f44da7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r8, 0x8030aeb4, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x9e, 0x7fffffff, 0x2}}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r4, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x803, 0x0) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80400, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2b) ioctl$KVM_REGISTER_COALESCED_MMIO(r10, 0x4010ae67, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_FINALIZE(r13, 0xc018ae85, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x2010, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r10, 0x4010ae68, &(0x7f0000001480)={0xfffffffffffffdfd, 0x13000, 0xffffffff}) syz_kvm_vgic_v3_setup(r1, 0x1, 0x80) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000040)={0x2000010, 0xbb28}) 10m42.1611078s ago: executing program 2 (id=72): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bc2000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_SET_GUEST_DEBUG_arm64(r4, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0x1, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x80000000, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c8, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x9]}}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x89, 0x2, 0x2, 0x0, 0x6, 0x6, 0xe2, 0x3, 0x29, 0x0, '\x00', 0x10, 0x6}) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r7, &(0x7f00000001c0), 0xe80) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x3, 0x27, 0x6, 0x0, 0x4, 0x9, 0xff, 0x7, 0xc7, 0x43, 0x5, 0x7, 0x0, 0x5, 0x2e, 0xd7, 0x10, 0xaa, 0x7, '\x00', 0x2, 0x100000000000000}) write$eventfd(r9, &(0x7f00000001c0)=0x9, 0x1d) 10m28.114612944s ago: executing program 3 (id=73): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x0, &(0x7f0000000000)=0x10}) 10m21.191420788s ago: executing program 2 (id=74): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0xa000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) 10m12.331871195s ago: executing program 3 (id=75): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r2, 0x0) r4 = eventfd2(0x2, 0x80001) close(r4) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r4, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r5 = eventfd2(0x0, 0x0) close(r5) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r6, 0x2000004, 0x2011, r5, 0x0) 10m6.511112328s ago: executing program 2 (id=76): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000280)={0xdf, 0x0, 0x2000}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000e31000/0x2000)=nil, 0x930, 0xa, 0x2012, r2, 0x40000) 9m57.321577194s ago: executing program 3 (id=77): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r3, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) (async) ioctl$KVM_CREATE_VM(r5, 0x5460, 0x0) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bc2000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_SET_GUEST_DEBUG_arm64(r10, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc, 0x20000000], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0xa2a, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x5, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c5, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x8009]}}) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040)) (async) ioctl$KVM_SET_SREGS(r10, 0x4000ae84, &(0x7f0000000400)={{0xeeef0000, 0x9000, 0xb, 0x3, 0x81, 0x51, 0x1, 0x9, 0xfd, 0x2, 0x8, 0x6}, {0x25000, 0x1, 0x3, 0x5, 0x0, 0x5, 0x8, 0x6, 0x2, 0x32, 0x6, 0xf6}, {0x2, 0xa000, 0xdf9484286f7aee38, 0x3, 0x3, 0xf5, 0x1d, 0x2, 0x4, 0xe, 0x9, 0x2}, {0x1000, 0x200000, 0xe, 0xd, 0x6d, 0xff, 0x7, 0xe, 0x8, 0x8, 0x24, 0x2}, {0x80a0000, 0xe6ef0000, 0x4, 0x9, 0x4, 0x10, 0x2, 0x6, 0x2, 0x3, 0x6, 0x1}, {0x70000, 0x0, 0x4, 0x9, 0x80, 0x2, 0x8, 0x4, 0x5, 0x3, 0x6}, {0xfec00000, 0x0, 0xa, 0x57, 0x0, 0x0, 0x2, 0x5, 0x3, 0x4, 0x1, 0x1b}, {0x58000, 0xd000, 0xd, 0x0, 0x7, 0xe, 0x0, 0x3, 0xb, 0x95, 0x22, 0x9}, {0xf000, 0x55}, {0x1}, 0x10008, 0x0, 0x10000, 0x52388, 0x1, 0x5400, 0xdddd1000, [0x4, 0x1, 0x7fffffffffffffff, 0x8]}) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) ioctl$KVM_CREATE_VM(r11, 0x5421, 0x20004000) ioctl$KVM_CHECK_EXTENSION_VM(r6, 0xae03, 0x83) 9m51.57920412s ago: executing program 2 (id=78): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0xdca01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xab) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r6 = syz_kvm_vgic_v3_setup(r5, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x1, 0x408, &(0x7f0000000140)=0x200a88}) r7 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000040)={0x5}) ioctl$KVM_RUN(r10, 0xae80, 0x0) syz_kvm_vgic_v3_setup(r9, 0x2, 0x40) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) r11 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xe}}], 0x28}, 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0x401c5820, 0x20000007) 9m9.267967845s ago: executing program 34 (id=77): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r3, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) (async) ioctl$KVM_CREATE_VM(r5, 0x5460, 0x0) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bc2000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_SET_GUEST_DEBUG_arm64(r10, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc, 0x20000000], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0xa2a, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x5, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c5, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x8009]}}) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040)) (async) ioctl$KVM_SET_SREGS(r10, 0x4000ae84, &(0x7f0000000400)={{0xeeef0000, 0x9000, 0xb, 0x3, 0x81, 0x51, 0x1, 0x9, 0xfd, 0x2, 0x8, 0x6}, {0x25000, 0x1, 0x3, 0x5, 0x0, 0x5, 0x8, 0x6, 0x2, 0x32, 0x6, 0xf6}, {0x2, 0xa000, 0xdf9484286f7aee38, 0x3, 0x3, 0xf5, 0x1d, 0x2, 0x4, 0xe, 0x9, 0x2}, {0x1000, 0x200000, 0xe, 0xd, 0x6d, 0xff, 0x7, 0xe, 0x8, 0x8, 0x24, 0x2}, {0x80a0000, 0xe6ef0000, 0x4, 0x9, 0x4, 0x10, 0x2, 0x6, 0x2, 0x3, 0x6, 0x1}, {0x70000, 0x0, 0x4, 0x9, 0x80, 0x2, 0x8, 0x4, 0x5, 0x3, 0x6}, {0xfec00000, 0x0, 0xa, 0x57, 0x0, 0x0, 0x2, 0x5, 0x3, 0x4, 0x1, 0x1b}, {0x58000, 0xd000, 0xd, 0x0, 0x7, 0xe, 0x0, 0x3, 0xb, 0x95, 0x22, 0x9}, {0xf000, 0x55}, {0x1}, 0x10008, 0x0, 0x10000, 0x52388, 0x1, 0x5400, 0xdddd1000, [0x4, 0x1, 0x7fffffffffffffff, 0x8]}) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) ioctl$KVM_CREATE_VM(r11, 0x5421, 0x20004000) ioctl$KVM_CHECK_EXTENSION_VM(r6, 0xae03, 0x83) 8m58.88916382s ago: executing program 35 (id=78): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0xdca01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xab) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r6 = syz_kvm_vgic_v3_setup(r5, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x1, 0x408, &(0x7f0000000140)=0x200a88}) r7 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000040)={0x5}) ioctl$KVM_RUN(r10, 0xae80, 0x0) syz_kvm_vgic_v3_setup(r9, 0x2, 0x40) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) r11 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xe}}], 0x28}, 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0x401c5820, 0x20000007) 2m33.84085473s ago: executing program 5 (id=80): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0xa000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) 2m25.409451075s ago: executing program 4 (id=79): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x0, &(0x7f0000000000)=0x10}) 2m15.507806787s ago: executing program 5 (id=81): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x603000000013c802, 0x7ff}}, @uexit={0x0, 0x18, 0x2}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1600, 0x3, 0xa}}, @smc={0x1e, 0x40, {0x8, [0x5, 0x7fffffff, 0x8, 0x2000000000000, 0x5]}}, @uexit={0x0, 0x18, 0x6}, @smc={0x1e, 0x40, {0xc4000003, [0x4, 0xc, 0x5, 0x7, 0x2]}}, @svc={0x122, 0x40, {0x80000001, [0x401, 0x5, 0xffffffffffffffff, 0x10000, 0x3]}}, @irq_setup={0x46, 0x18, {0x4, 0x201aa}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x78, 0x4, 0x2}}, @msr={0x14, 0x20, {0x603000000013e208, 0x6}}, @uexit={0x0, 0x18, 0x100}, @mrs={0xbe, 0x18, {0x603000000013dea8}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x3, 0x1, 0x401, 0x42a, 0x3}}, @svc={0x122, 0x40, {0x4000000, [0x1, 0x6, 0x2, 0x1004, 0x1c000000]}}, @smc={0x1e, 0x40, {0x1, [0xffffffffffffffac, 0xfffffffffffffff9, 0x6, 0x9, 0x4]}}], 0x280}, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000300)=[@featur2={0x1, 0x9}], 0x1) syz_kvm_vgic_v3_setup(r5, 0x3, 0x320) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f00000000c0)=0x11}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) r11 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r10, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000c36000/0x3000)=nil, 0x930, 0x1000001, 0x11, r10, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r12, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@mrs={0xbe, 0x18, {0x603000000013800f}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r15, 0xae80, 0x0) r16 = eventfd2(0x0, 0x0) close(r16) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) r17 = eventfd2(0x0, 0x0) write$eventfd(r17, &(0x7f0000000100)=0x1000000006, 0x5) 2m7.103377969s ago: executing program 4 (id=82): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, 0x0}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000240)=@arm64_core={0x603000000010003c, &(0x7f0000000080)=0x5}) 1m48.836331299s ago: executing program 5 (id=83): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0xffffffff, 0x102000}) ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000180)={0x101ff, 0x0, 0xdddd0000, 0x1000, &(0x7f0000e8b000/0x1000)=nil, 0xe}) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x101ff, 0x3, 0x8080000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) 1m47.633688851s ago: executing program 4 (id=84): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x10001, 0x1, 0x5000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x2002, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000000c0)={0x5}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r8 = ioctl$KVM_CREATE_VM(r7, 0x894c, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xb701, 0x0) ioctl$KVM_CREATE_VCPU(r9, 0x8004b707, 0x2) r10 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0x8000000000000000}}], 0x20}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r3, 0x3, 0xa0) r11 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r13, 0x800454d3, 0x10000000000000) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x1000002, 0x10c332, r10, 0x0) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r15, 0xae03, 0x80) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000100)={0x2, 0x18000}) 1m22.709446015s ago: executing program 5 (id=85): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0xa000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000002000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) 1m19.650161077s ago: executing program 4 (id=86): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) r1 = eventfd2(0x0, 0x0) close(r1) write$eventfd(r1, &(0x7f0000000180)=0x5, 0xfffffde3) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x16) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) munmap(&(0x7f0000d18000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) r5 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000000c0)={0x8080000, 0x1c000, 0x1}) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0x1100000000000000}) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000cbb000/0xf000)=nil, 0x930, 0x100000c, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000fee000/0x1000)=nil, 0x930, 0x1000008, 0x13, 0xffffffffffffffff, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000eed000/0x4000)=nil, 0x4000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x4}) 1m3.238735773s ago: executing program 5 (id=87): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) (async) r2 = mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) (async) r4 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x8010, r3, 0x0) r5 = eventfd2(0x0, 0x0) close(r5) (async) close(r5) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f00000000c0)=@arm64_fp_extra={0x60200000001000d5, &(0x7f0000000200)=0x5e}) (async) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f00000000c0)=@arm64_fp_extra={0x60200000001000d5, &(0x7f0000000200)=0x5e}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x210200, 0x1f01) write$eventfd(r5, &(0x7f0000000180)=0x5, 0xfffffde3) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x0, 0x20031, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x0, 0x4010, 0xffffffffffffffff, 0x0) r9 = eventfd2(0x5, 0x800) write$eventfd(r9, &(0x7f0000000000)=0xffffffffffffffff, 0x8) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) 49.170188288s ago: executing program 4 (id=88): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x101e40, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0x40086602, 0x8000000400000004) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000b75000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@code={0xa, 0xb4, {"00a4006f007008d5800284d200a0b8f2610080d2820180d2030080d2e40080d2020000d420b495d20080b8f2a10180d2c20180d2c30080d2640180d2020000d4a0de8dd20060b8f2610180d2220080d2c30180d2840080d2020000d40028c09a000028d560899ad20060b0f2410180d2c20080d2a30080d2e40080d2020000d40000581e409789d20000b8f2000008d5820080d2a30080d2440180d2020000d4"}}], 0xb4}, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000940)={0x0, &(0x7f0000000240)=[@irq_setup={0x46, 0x18, {0x1, 0xc3}}, @eret={0xe6, 0x18, 0x552}, @svc={0x122, 0x40, {0x200, [0x1, 0x8001, 0x7, 0x1ff, 0xb]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x200, 0x3, 0x6}}, @msr={0x14, 0x20, {0x603000000013e648, 0x7}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe4, 0x6, 0x4}}, @code={0xa, 0x84, {"0068217e007008d5402395d20000b0f2e10080d2c20080d2c30180d2240180d2020000d4000028d500d8a15ee04e97d20000b8f2410180d2420180d2630180d2040180d2020000d4007008d5007008d50060800d002c92d20000b8f2610080d2220180d2830080d2840080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x0, 0x73}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x3, 0xa, 0x3, 0xd623}}, @msr={0x14, 0x20, {0x6030000000138016, 0xe78}}, @mrs={0xbe, 0x18, {0x16f6}}, @eret={0xe6, 0x18, 0x1}, @uexit={0x0, 0x18, 0xfffffffffffffffc}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2d0}}, @uexit={0x0, 0x18, 0x53e}, @code={0xa, 0xb4, {"00a0000f000008d5e0578cd20060b8f2010080d2c20080d2e30080d2840080d2020000d4e02d9cd20080b8f2410180d2a20080d2e30080d2a40180d2020000d4007008d5a07992d20080b8f2610080d2a20080d2830080d2a40180d2020000d4e09098d200c0b0f2810180d2220180d2a30080d2840180d2020000d4000008d5007008d5a0d981d200c0b8f2a10180d2a20180d2030080d2240180d2020000d4"}}, @code={0xa, 0x9c, {"a0a682d20020b8f2610080d2820180d2630180d2040080d2020000d460ff91d200e0b8f2410080d2c20080d2430180d2640080d2020000d40068603c008008d5000028d51f0020abc0e58dd200c0b8f2c10080d2820080d2a30180d2e40080d2020000d4000008d5e0f994d20060b8f2a10180d2020180d2a30080d2040080d2020000d4008008d5"}}, @hvc={0x32, 0x40, {0xc400000d, [0x9, 0xec0, 0x0, 0x401, 0x4]}}, @memwrite={0x6e, 0x30, @generic={0x135000, 0xfbb, 0x9, 0xa}}, @eret={0xe6, 0x18, 0x10001}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x287}}, @code={0xa, 0x9c, {"0060000d0000391e40379fd200e0b0f2c10180d2c20180d2830180d2240180d2020000d4000008d5201b9ad200e0b8f2610180d2220180d2a30180d2c40080d2020000d40080e00dc0a095d20020b0f2c10180d2220080d2630080d2a40080d2020000d4000008d5007008d560ce87d20020b8f2a10080d2c20080d2630180d2840080d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013df49, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x0, 0x2, 0xbbe, 0x10001, 0x1}}, @memwrite={0x6e, 0x30, @generic={0xeeef0000, 0xd34, 0xd, 0x8}}, @uexit={0x0, 0x18, 0x5e}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x282}}, @code={0xa, 0x9c, {"000000fc000440bcc04083d20000b0f2e10180d2220080d2c30180d2c40080d2020000d480a499d20040b0f2610180d2220180d2430180d2440080d2020000d40000639e0040400d0020c09a80ad8dd200a0b0f2210180d2e20180d2e30180d2440180d2020000d4808798d200c0b8f2410180d2020180d2830080d2440180d2020000d40008a0f8"}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x3, 0xb, 0x9, 0x0, 0x1}}, @msr={0x14, 0x20, {0x603000000013def4, 0xffffffffffffff4b}}, @irq_setup={0x46, 0x18, {0x3, 0x2b5}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x1e1}}], 0x6d4}, &(0x7f0000000980)=[@featur1={0x1, 0x85}], 0x1) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000a00)=@riscv64_sbi_sta={0x803000000a000001, &(0x7f00000009c0)=0x6}) 13.974304894s ago: executing program 36 (id=87): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) (async) r2 = mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) (async) r4 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x8010, r3, 0x0) r5 = eventfd2(0x0, 0x0) close(r5) (async) close(r5) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f00000000c0)=@arm64_fp_extra={0x60200000001000d5, &(0x7f0000000200)=0x5e}) (async) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f00000000c0)=@arm64_fp_extra={0x60200000001000d5, &(0x7f0000000200)=0x5e}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x210200, 0x1f01) write$eventfd(r5, &(0x7f0000000180)=0x5, 0xfffffde3) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x0, 0x20031, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x0, 0x4010, 0xffffffffffffffff, 0x0) r9 = eventfd2(0x5, 0x800) write$eventfd(r9, &(0x7f0000000000)=0xffffffffffffffff, 0x8) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) 0s ago: executing program 37 (id=88): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x101e40, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0x40086602, 0x8000000400000004) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000b75000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@code={0xa, 0xb4, {"00a4006f007008d5800284d200a0b8f2610080d2820180d2030080d2e40080d2020000d420b495d20080b8f2a10180d2c20180d2c30080d2640180d2020000d4a0de8dd20060b8f2610180d2220080d2c30180d2840080d2020000d40028c09a000028d560899ad20060b0f2410180d2c20080d2a30080d2e40080d2020000d40000581e409789d20000b8f2000008d5820080d2a30080d2440180d2020000d4"}}], 0xb4}, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000940)={0x0, &(0x7f0000000240)=[@irq_setup={0x46, 0x18, {0x1, 0xc3}}, @eret={0xe6, 0x18, 0x552}, @svc={0x122, 0x40, {0x200, [0x1, 0x8001, 0x7, 0x1ff, 0xb]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x200, 0x3, 0x6}}, @msr={0x14, 0x20, {0x603000000013e648, 0x7}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe4, 0x6, 0x4}}, @code={0xa, 0x84, {"0068217e007008d5402395d20000b0f2e10080d2c20080d2c30180d2240180d2020000d4000028d500d8a15ee04e97d20000b8f2410180d2420180d2630180d2040180d2020000d4007008d5007008d50060800d002c92d20000b8f2610080d2220180d2830080d2840080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x0, 0x73}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x3, 0xa, 0x3, 0xd623}}, @msr={0x14, 0x20, {0x6030000000138016, 0xe78}}, @mrs={0xbe, 0x18, {0x16f6}}, @eret={0xe6, 0x18, 0x1}, @uexit={0x0, 0x18, 0xfffffffffffffffc}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2d0}}, @uexit={0x0, 0x18, 0x53e}, @code={0xa, 0xb4, {"00a0000f000008d5e0578cd20060b8f2010080d2c20080d2e30080d2840080d2020000d4e02d9cd20080b8f2410180d2a20080d2e30080d2a40180d2020000d4007008d5a07992d20080b8f2610080d2a20080d2830080d2a40180d2020000d4e09098d200c0b0f2810180d2220180d2a30080d2840180d2020000d4000008d5007008d5a0d981d200c0b8f2a10180d2a20180d2030080d2240180d2020000d4"}}, @code={0xa, 0x9c, {"a0a682d20020b8f2610080d2820180d2630180d2040080d2020000d460ff91d200e0b8f2410080d2c20080d2430180d2640080d2020000d40068603c008008d5000028d51f0020abc0e58dd200c0b8f2c10080d2820080d2a30180d2e40080d2020000d4000008d5e0f994d20060b8f2a10180d2020180d2a30080d2040080d2020000d4008008d5"}}, @hvc={0x32, 0x40, {0xc400000d, [0x9, 0xec0, 0x0, 0x401, 0x4]}}, @memwrite={0x6e, 0x30, @generic={0x135000, 0xfbb, 0x9, 0xa}}, @eret={0xe6, 0x18, 0x10001}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x287}}, @code={0xa, 0x9c, {"0060000d0000391e40379fd200e0b0f2c10180d2c20180d2830180d2240180d2020000d4000008d5201b9ad200e0b8f2610180d2220180d2a30180d2c40080d2020000d40080e00dc0a095d20020b0f2c10180d2220080d2630080d2a40080d2020000d4000008d5007008d560ce87d20020b8f2a10080d2c20080d2630180d2840080d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013df49, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x0, 0x2, 0xbbe, 0x10001, 0x1}}, @memwrite={0x6e, 0x30, @generic={0xeeef0000, 0xd34, 0xd, 0x8}}, @uexit={0x0, 0x18, 0x5e}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x282}}, @code={0xa, 0x9c, {"000000fc000440bcc04083d20000b0f2e10180d2220080d2c30180d2c40080d2020000d480a499d20040b0f2610180d2220180d2430180d2440080d2020000d40000639e0040400d0020c09a80ad8dd200a0b0f2210180d2e20180d2e30180d2440180d2020000d4808798d200c0b8f2410180d2020180d2830080d2440180d2020000d40008a0f8"}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x3, 0xb, 0x9, 0x0, 0x1}}, @msr={0x14, 0x20, {0x603000000013def4, 0xffffffffffffff4b}}, @irq_setup={0x46, 0x18, {0x3, 0x2b5}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x1e1}}], 0x6d4}, &(0x7f0000000980)=[@featur1={0x1, 0x85}], 0x1) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000a00)=@riscv64_sbi_sta={0x803000000a000001, &(0x7f00000009c0)=0x6}) kernel console output (not intermixed with test programs): [ 384.145335][ T24] audit: type=1400 audit(383.360:75): avc: denied { write } for pid=3259 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 388.306247][ T24] audit: type=1400 audit(387.520:76): avc: denied { write } for pid=3263 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 391.894674][ T3205] 8021q: adding VLAN 0 to HW filter on device bond0 [ 402.252477][ T24] audit: type=1400 audit(401.450:77): avc: denied { write } for pid=3269 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 406.736549][ T24] audit: type=1400 audit(405.950:78): avc: denied { write } for pid=3272 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 419.365026][ T24] audit: type=1400 audit(418.570:79): avc: denied { write } for pid=3278 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 423.381560][ T24] audit: type=1400 audit(422.560:80): avc: denied { write } for pid=3281 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 434.117137][ T24] audit: type=1400 audit(433.330:81): avc: denied { write } for pid=3286 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 438.321831][ T24] audit: type=1400 audit(437.530:82): avc: denied { write } for pid=3289 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 440.916988][ T3205] eql: remember to turn off Van-Jacobson compression on your slave devices [ 451.611101][ T24] audit: type=1400 audit(450.810:83): avc: denied { write } for pid=3295 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 456.952491][ T24] audit: type=1400 audit(456.150:84): avc: denied { write } for pid=3298 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 466.573095][ T24] audit: type=1400 audit(465.760:85): avc: denied { write } for pid=3301 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 470.522528][ T24] audit: type=1400 audit(469.720:86): avc: denied { write } for pid=3304 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 480.901303][ T24] audit: type=1400 audit(480.080:87): avc: denied { write } for pid=3309 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 484.823145][ T24] audit: type=1400 audit(484.010:88): avc: denied { write } for pid=3312 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 492.184038][ T24] audit: type=1400 audit(491.400:89): avc: denied { write } for pid=3315 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 496.101001][ T24] audit: type=1400 audit(495.310:90): avc: denied { write } for pid=3318 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 505.717344][ T24] audit: type=1400 audit(504.930:91): avc: denied { write } for pid=3322 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 509.582663][ T24] audit: type=1400 audit(508.790:92): avc: denied { write } for pid=3325 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 531.079508][ T24] audit: type=1400 audit(530.290:93): avc: denied { write } for pid=3333 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 535.021272][ T24] audit: type=1400 audit(534.210:94): avc: denied { write } for pid=3336 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 549.021245][ T24] audit: type=1400 audit(548.220:95): avc: denied { write } for pid=3342 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 553.002701][ T24] audit: type=1400 audit(552.180:96): avc: denied { write } for pid=3345 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 564.374048][ T24] audit: type=1400 audit(563.580:97): avc: denied { write } for pid=3350 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 568.311051][ T24] audit: type=1400 audit(567.520:98): avc: denied { write } for pid=3353 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 578.651605][ T24] audit: type=1400 audit(577.800:99): avc: denied { write } for pid=3356 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 584.092353][ T24] audit: type=1400 audit(583.300:100): avc: denied { write } for pid=3359 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:18596' (ED25519) to the list of known hosts. [ 617.386022][ T24] audit: type=1400 audit(616.600:101): avc: denied { name_bind } for pid=3364 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 618.302937][ T24] audit: type=1400 audit(617.510:102): avc: denied { execute } for pid=3365 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 618.327340][ T24] audit: type=1400 audit(617.540:103): avc: denied { execute_no_trans } for pid=3365 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 647.324258][ T24] audit: type=1400 audit(646.530:104): avc: denied { mounton } for pid=3365 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 647.365429][ T24] audit: type=1400 audit(646.570:105): avc: denied { mount } for pid=3365 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 647.457868][ T3365] cgroup: Unknown subsys name 'net' [ 647.515247][ T24] audit: type=1400 audit(646.730:106): avc: denied { unmount } for pid=3365 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 647.936546][ T3365] cgroup: Unknown subsys name 'cpuset' [ 648.068250][ T3365] cgroup: Unknown subsys name 'rlimit' [ 648.459673][ T24] audit: type=1400 audit(647.670:107): avc: denied { setattr } for pid=3365 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 648.485734][ T24] audit: type=1400 audit(647.700:108): avc: denied { mounton } for pid=3365 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 648.503890][ T24] audit: type=1400 audit(647.710:109): avc: denied { mount } for pid=3365 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 649.556117][ T3368] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 649.576184][ T24] audit: type=1400 audit(648.780:110): avc: denied { relabelto } for pid=3368 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 649.603922][ T24] audit: type=1400 audit(648.810:111): avc: denied { write } for pid=3368 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 649.805139][ T24] audit: type=1400 audit(649.020:112): avc: denied { read } for pid=3365 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 649.819671][ T24] audit: type=1400 audit(649.030:113): avc: denied { open } for pid=3365 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 649.873816][ T3365] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 712.367922][ T24] audit: type=1400 audit(711.580:114): avc: denied { execmem } for pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 717.236816][ T24] audit: type=1400 audit(716.450:115): avc: denied { read } for pid=3372 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 717.268069][ T24] audit: type=1400 audit(716.480:116): avc: denied { open } for pid=3371 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 717.343397][ T24] audit: type=1400 audit(716.540:117): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 717.607191][ T24] audit: type=1400 audit(716.820:118): avc: denied { module_request } for pid=3371 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 718.607368][ T24] audit: type=1400 audit(717.800:119): avc: denied { sys_module } for pid=3372 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 741.209380][ T3371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 741.346099][ T3372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 741.469814][ T3371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 741.548014][ T3372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 753.738089][ T3371] hsr_slave_0: entered promiscuous mode [ 753.767373][ T3371] hsr_slave_1: entered promiscuous mode [ 754.112194][ T3372] hsr_slave_0: entered promiscuous mode [ 754.133716][ T3372] hsr_slave_1: entered promiscuous mode [ 754.148827][ T3372] debugfs: 'hsr0' already exists in 'hsr' [ 754.171881][ T3372] Cannot create hsr debugfs directory [ 763.762643][ T24] audit: type=1400 audit(762.970:120): avc: denied { create } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 763.812306][ T24] audit: type=1400 audit(763.010:121): avc: denied { write } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 763.862942][ T24] audit: type=1400 audit(763.070:122): avc: denied { read } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 764.096724][ T3371] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 764.503720][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 764.559483][ T3371] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 764.982302][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 765.162492][ T3371] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 765.414705][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 765.653278][ T3371] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 765.746681][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 767.347666][ T3372] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 767.482547][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 767.534872][ T3372] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 767.673145][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 767.718714][ T3372] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 767.907730][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 767.994182][ T3372] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 768.164837][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 779.943523][ T3371] 8021q: adding VLAN 0 to HW filter on device bond0 [ 782.567614][ T3372] 8021q: adding VLAN 0 to HW filter on device bond0 [ 835.641220][ T24] audit: type=1400 audit(834.850:123): avc: denied { write } for pid=3515 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 838.436934][ T3371] veth0_vlan: entered promiscuous mode [ 839.159606][ T3371] veth1_vlan: entered promiscuous mode [ 842.081643][ T24] audit: type=1400 audit(841.260:124): avc: denied { write } for pid=3523 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 842.184004][ T3371] veth0_macvtap: entered promiscuous mode [ 842.949700][ T3372] veth0_vlan: entered promiscuous mode [ 843.383873][ T3371] veth1_macvtap: entered promiscuous mode [ 844.403190][ T3372] veth1_vlan: entered promiscuous mode [ 846.855259][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 846.865165][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.008316][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.016295][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 848.264973][ T3372] veth0_macvtap: entered promiscuous mode [ 848.925669][ T3372] veth1_macvtap: entered promiscuous mode [ 849.692748][ T24] audit: type=1400 audit(848.900:125): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 849.974753][ T24] audit: type=1400 audit(849.150:126): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/syzkaller.ZtSH0I/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 850.139239][ T24] audit: type=1400 audit(849.350:127): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 850.412076][ T24] audit: type=1400 audit(849.620:128): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/syzkaller.ZtSH0I/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 850.629096][ T24] audit: type=1400 audit(849.840:129): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/syzkaller.ZtSH0I/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3750 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 851.243193][ T24] audit: type=1400 audit(850.450:130): avc: denied { unmount } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 851.348368][ T31] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.359658][ T31] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.429195][ T31] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.458820][ T3466] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.608540][ T24] audit: type=1400 audit(850.810:131): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 851.699634][ T24] audit: type=1400 audit(850.910:132): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="gadgetfs" ino=3759 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 851.955542][ T24] audit: type=1400 audit(851.170:133): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 852.007622][ T24] audit: type=1400 audit(851.220:134): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 853.842787][ T3371] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 854.912821][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 854.924806][ T24] audit: type=1400 audit(854.110:136): avc: denied { read write } for pid=3371 comm="syz-executor" name="loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 855.014664][ T24] audit: type=1400 audit(854.150:137): avc: denied { open } for pid=3371 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 855.053149][ T24] audit: type=1400 audit(854.210:138): avc: denied { ioctl } for pid=3371 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 865.409526][ T24] audit: type=1400 audit(864.620:139): avc: denied { read } for pid=3529 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 865.419544][ T24] audit: type=1400 audit(864.620:140): avc: denied { open } for pid=3529 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 865.898324][ T24] audit: type=1400 audit(865.110:141): avc: denied { ioctl } for pid=3529 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 870.417178][ T24] audit: type=1400 audit(869.540:142): avc: denied { execute } for pid=3531 comm="syz.1.2" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3878 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 898.765075][ T24] audit: type=1400 audit(897.970:143): avc: denied { write } for pid=3548 comm="syz.1.7" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 902.063391][ T24] audit: type=1400 audit(901.190:144): avc: denied { create } for pid=3548 comm="syz.1.7" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 912.174842][ T24] audit: type=1400 audit(911.390:145): avc: denied { append } for pid=3553 comm="syz.1.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 977.474089][ T24] audit: type=1400 audit(976.630:146): avc: denied { map } for pid=3583 comm="syz.1.19" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4802 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 977.502685][ T24] audit: type=1400 audit(976.710:147): avc: denied { read } for pid=3583 comm="syz.1.19" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4802 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1158.452039][ T24] audit: type=1400 audit(1157.640:148): avc: denied { write } for pid=3661 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1166.347243][ T24] audit: type=1400 audit(1165.550:149): avc: denied { write } for pid=3670 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1260.345798][ T24] audit: type=1400 audit(1259.520:150): avc: denied { map } for pid=3719 comm="syz.0.65" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1260.406413][ T24] audit: type=1400 audit(1259.580:151): avc: denied { execute } for pid=3719 comm="syz.0.65" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1376.823545][ T24] audit: type=1400 audit(1376.010:152): avc: denied { write } for pid=3769 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1378.536428][ T3731] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1378.935872][ T3731] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1385.301778][ T24] audit: type=1400 audit(1384.490:153): avc: denied { write } for pid=3778 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1390.714563][ T3736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1391.016224][ T3736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1406.204575][ T3731] hsr_slave_0: entered promiscuous mode [ 1406.267885][ T3731] hsr_slave_1: entered promiscuous mode [ 1406.352506][ T3731] debugfs: 'hsr0' already exists in 'hsr' [ 1406.357859][ T3731] Cannot create hsr debugfs directory [ 1419.488459][ T3736] hsr_slave_0: entered promiscuous mode [ 1419.511451][ T3736] hsr_slave_1: entered promiscuous mode [ 1419.530837][ T3736] debugfs: 'hsr0' already exists in 'hsr' [ 1419.533708][ T3736] Cannot create hsr debugfs directory [ 1422.336867][ T3401] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1424.105226][ T3401] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1425.288616][ T3401] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1427.489025][ T3401] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1432.782111][ T3731] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1433.097635][ T3731] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1434.663079][ T3731] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1435.004484][ T3731] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1435.074818][ T3731] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1435.404998][ T3731] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1436.582372][ T3731] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1436.806225][ T3731] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1442.598014][ T3401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1442.695421][ T3401] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1442.837090][ T3401] bond0 (unregistering): Released all slaves [ 1444.802079][ T3401] hsr_slave_0: left promiscuous mode [ 1444.955009][ T3401] hsr_slave_1: left promiscuous mode [ 1445.395307][ T3401] veth1_macvtap: left promiscuous mode [ 1445.411992][ T3401] veth0_macvtap: left promiscuous mode [ 1445.416889][ T3401] veth1_vlan: left promiscuous mode [ 1445.432075][ T3401] veth0_vlan: left promiscuous mode [ 1465.116680][ T3401] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1466.533571][ T3401] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1467.229203][ T3736] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1467.633619][ T3736] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1468.177904][ T3401] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1468.653471][ T3736] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1469.023036][ T3736] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1469.088975][ T3736] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1469.338975][ T3736] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1469.854561][ T3401] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1470.276235][ T3736] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1470.598331][ T3736] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1475.109511][ T24] audit: type=1400 audit(1474.310:154): avc: denied { write } for pid=3819 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1483.952716][ T24] audit: type=1400 audit(1483.160:155): avc: denied { write } for pid=3838 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1490.063802][ T3401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1490.312283][ T3401] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1490.418657][ T3401] bond0 (unregistering): Released all slaves [ 1491.346530][ T3205] 8021q: adding VLAN 0 to HW filter on device eth1 [ 1491.931895][ T3401] hsr_slave_0: left promiscuous mode [ 1492.007289][ T3401] hsr_slave_1: left promiscuous mode [ 1492.455461][ T3401] veth1_macvtap: left promiscuous mode [ 1492.491896][ T3401] veth0_macvtap: left promiscuous mode [ 1492.502082][ T3401] veth1_vlan: left promiscuous mode [ 1492.511974][ T3401] veth0_vlan: left promiscuous mode [ 1517.178105][ T3731] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1523.025282][ T3736] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1526.653338][ T24] audit: type=1400 audit(1525.810:156): avc: denied { write } for pid=3851 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1532.983664][ T24] audit: type=1400 audit(1532.170:157): avc: denied { write } for pid=3860 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1538.437283][ T3205] 8021q: adding VLAN 0 to HW filter on device eth2 [ 1555.396435][ T24] audit: type=1400 audit(1554.610:158): avc: denied { write } for pid=3874 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1563.551205][ T24] audit: type=1400 audit(1562.750:159): avc: denied { write } for pid=3883 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1568.827762][ T3205] 8021q: adding VLAN 0 to HW filter on device eth4 [ 1580.621733][ T24] audit: type=1400 audit(1579.770:160): avc: denied { write } for pid=3897 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1586.841180][ T24] audit: type=1400 audit(1586.050:161): avc: denied { write } for pid=3908 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1591.357269][ T3205] 8021q: adding VLAN 0 to HW filter on device eth3 [ 1596.962767][ T24] audit: type=1400 audit(1596.170:162): avc: denied { write } for pid=3914 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1603.053779][ T24] audit: type=1400 audit(1602.260:163): avc: denied { write } for pid=3923 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1604.569004][ T3731] veth0_vlan: entered promiscuous mode [ 1605.374102][ T3731] veth1_vlan: entered promiscuous mode [ 1608.674099][ T3731] veth0_macvtap: entered promiscuous mode [ 1609.172999][ T3731] veth1_macvtap: entered promiscuous mode [ 1613.814494][ T3801] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1613.844221][ T3424] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1613.872569][ T3424] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1613.878225][ T3424] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1614.103377][ T3736] veth0_vlan: entered promiscuous mode [ 1616.167057][ T3736] veth1_vlan: entered promiscuous mode [ 1621.401973][ T3736] veth0_macvtap: entered promiscuous mode [ 1622.314015][ T3736] veth1_macvtap: entered promiscuous mode [ 1626.013156][ T31] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1626.052532][ T3401] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1626.094910][ T3762] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1626.257607][ T3762] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1627.109096][ T24] audit: type=1400 audit(1626.320:164): avc: denied { write } for pid=3932 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1637.611199][ T24] audit: type=1400 audit(1636.780:165): avc: denied { write } for pid=3938 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1643.853171][ T3205] 8021q: adding VLAN 0 to HW filter on device eth5 [ 1662.625644][ T24] audit: type=1400 audit(1661.770:166): avc: denied { write } for pid=3954 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1674.084616][ T24] audit: type=1400 audit(1673.240:167): avc: denied { write } for pid=3960 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1681.899259][ T3205] 8021q: adding VLAN 0 to HW filter on device eth6 [ 1702.815318][ T24] audit: type=1400 audit(1701.920:168): avc: denied { write } for pid=3973 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1711.784876][ T24] audit: type=1400 audit(1710.970:169): avc: denied { write } for pid=3983 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1718.536287][ T3205] 8021q: adding VLAN 0 to HW filter on device eth7 [ 1732.130892][ T24] audit: type=1400 audit(1731.340:170): avc: denied { write } for pid=3990 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1738.881692][ T24] audit: type=1400 audit(1738.070:171): avc: denied { write } for pid=3993 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1743.486155][ T3205] 8021q: adding VLAN 0 to HW filter on device eth8 [ 1767.269500][ T3466] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1769.378612][ T3466] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1771.339134][ T3466] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1773.333218][ T3466] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1796.042076][ T3466] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1796.662083][ T3466] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1797.079191][ T3466] bond0 (unregistering): Released all slaves [ 1799.634389][ T3466] hsr_slave_0: left promiscuous mode [ 1800.037596][ T3466] hsr_slave_1: left promiscuous mode [ 1801.032394][ T3466] veth1_macvtap: left promiscuous mode [ 1801.033576][ T3466] veth0_macvtap: left promiscuous mode [ 1801.043278][ T3466] veth1_vlan: left promiscuous mode [ 1801.044487][ T3466] veth0_vlan: left promiscuous mode [ 1824.825132][ T3466] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1826.566223][ T3466] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1827.967112][ T3466] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1829.217711][ T3466] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1836.449631][ T24] audit: type=1400 audit(1835.660:172): avc: denied { write } for pid=4036 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1842.761536][ T24] audit: type=1400 audit(1841.960:173): avc: denied { write } for pid=4045 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1844.945000][ T3466] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1845.098074][ T3466] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1845.225805][ T3466] bond0 (unregistering): Released all slaves [ 1846.199004][ T3205] 8021q: adding VLAN 0 to HW filter on device eth9 [ 1847.411967][ T3466] hsr_slave_0: left promiscuous mode [ 1847.592648][ T3466] hsr_slave_1: left promiscuous mode [ 1848.175329][ T3466] veth1_macvtap: left promiscuous mode [ 1848.187964][ T3466] veth0_macvtap: left promiscuous mode [ 1848.206215][ T3466] veth1_vlan: left promiscuous mode [ 1848.229574][ T3466] veth0_vlan: left promiscuous mode [ 1871.353546][ T24] audit: type=1400 audit(1870.550:174): avc: denied { write } for pid=4048 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1875.305228][ T24] audit: type=1400 audit(1874.510:175): avc: denied { write } for pid=4051 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1883.782387][ T24] audit: type=1400 audit(1882.990:176): avc: denied { write } for pid=4061 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1888.121160][ T24] audit: type=1400 audit(1887.330:177): avc: denied { write } for pid=4069 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1902.172655][ T4016] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1902.316522][ T4016] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1903.571927][ T24] audit: type=1400 audit(1902.770:178): avc: denied { write } for pid=4089 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1903.756685][ T4009] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1904.574508][ T4009] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1909.092632][ T24] audit: type=1400 audit(1908.300:179): avc: denied { write } for pid=4094 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1914.076818][ T3205] 8021q: adding VLAN 0 to HW filter on device eth10 [ 1920.655656][ T24] audit: type=1400 audit(1919.870:180): avc: denied { write } for pid=4102 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1928.012062][ T24] audit: type=1400 audit(1927.200:181): avc: denied { write } for pid=4110 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1932.385410][ T4016] hsr_slave_0: entered promiscuous mode [ 1932.475969][ T4016] hsr_slave_1: entered promiscuous mode [ 1934.797603][ T4009] hsr_slave_0: entered promiscuous mode [ 1934.935605][ T4009] hsr_slave_1: entered promiscuous mode [ 1935.024633][ T4009] debugfs: 'hsr0' already exists in 'hsr' [ 1935.028534][ T4009] Cannot create hsr debugfs directory [ 1939.131112][ T24] audit: type=1400 audit(1938.330:182): avc: denied { write } for pid=4117 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1943.496302][ T24] audit: type=1400 audit(1942.710:183): avc: denied { write } for pid=4121 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1950.358287][ T4016] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1951.095942][ T4016] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1951.329427][ T4016] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1951.723503][ T4016] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1951.895617][ T4016] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1952.303268][ T4016] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1952.953462][ T4016] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1953.225053][ T4016] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1957.408217][ T4009] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1957.705762][ T4009] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1957.837586][ T4009] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1958.247579][ T4009] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1958.374737][ T4009] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1958.795329][ T4009] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1958.888724][ T4009] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1959.335513][ T4009] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1962.624045][ T24] audit: type=1400 audit(1961.830:184): avc: denied { write } for pid=4134 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1970.882737][ T24] audit: type=1400 audit(1970.020:185): avc: denied { write } for pid=4149 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1977.337548][ T3205] 8021q: adding VLAN 0 to HW filter on device eth11 [ 1985.916494][ T4016] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1985.932238][ T24] audit: type=1400 audit(1985.120:186): avc: denied { write } for pid=4157 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1992.455432][ T4009] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1996.271198][ T24] audit: type=1400 audit(1995.480:187): avc: denied { write } for pid=4162 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2027.204619][ T24] audit: type=1400 audit(2026.400:188): avc: denied { write } for pid=4180 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2036.592654][ T24] audit: type=1400 audit(2035.700:189): avc: denied { write } for pid=4191 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2042.968965][ T3205] 8021q: adding VLAN 0 to HW filter on device eth12 [ 2054.135394][ T24] audit: type=1400 audit(2053.320:190): avc: denied { write } for pid=4200 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2062.712507][ T24] audit: type=1400 audit(2061.850:191): avc: denied { write } for pid=4211 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2082.723607][ T24] audit: type=1400 audit(2081.910:192): avc: denied { write } for pid=4226 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2090.571785][ T24] audit: type=1400 audit(2089.770:193): avc: denied { write } for pid=4236 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2097.579109][ T3205] 8021q: adding VLAN 0 to HW filter on device eth13 [ 2119.865406][ T4016] veth0_vlan: entered promiscuous mode [ 2120.957307][ T4016] veth1_vlan: entered promiscuous mode [ 2125.007812][ T4016] veth0_macvtap: entered promiscuous mode [ 2126.234070][ T4016] veth1_macvtap: entered promiscuous mode [ 2127.179750][ T4009] veth0_vlan: entered promiscuous mode [ 2127.508008][ T24] audit: type=1400 audit(2126.610:194): avc: denied { write } for pid=4257 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2129.384106][ T4009] veth1_vlan: entered promiscuous mode [ 2131.154305][ T3508] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2131.204921][ T3801] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2131.249497][ T3762] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2131.278281][ T3762] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2135.968555][ T4009] veth0_macvtap: entered promiscuous mode [ 2136.691301][ T24] audit: type=1400 audit(2135.900:195): avc: denied { write } for pid=4260 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2137.048098][ T4009] veth1_macvtap: entered promiscuous mode [ 2141.323991][ T3801] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2141.326355][ T3801] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2141.472553][ T3801] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2141.481761][ T3801] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2143.079551][ T3205] 8021q: adding VLAN 0 to HW filter on device eth14 [ 2173.498572][ T24] audit: type=1400 audit(2172.670:196): avc: denied { write } for pid=4275 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2187.114445][ T24] audit: type=1400 audit(2186.300:197): avc: denied { write } for pid=4285 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2195.479487][ T3205] 8021q: adding VLAN 0 to HW filter on device eth15 [ 2225.351677][ T24] audit: type=1400 audit(2224.450:198): avc: denied { write } for pid=4297 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2238.823600][ T24] audit: type=1400 audit(2237.970:199): avc: denied { write } for pid=4306 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2248.775433][ T3205] 8021q: adding VLAN 0 to HW filter on device eth16 [ 2254.987511][ T24] audit: type=1400 audit(2254.200:200): avc: denied { setattr } for pid=4316 comm="syz.4.88" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2259.284977][ T24] audit: type=1400 audit(2258.490:201): avc: denied { write } for pid=4314 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2268.268051][ T24] audit: type=1400 audit(2267.480:202): avc: denied { write } for pid=4322 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2290.084102][ T24] audit: type=1400 audit(2289.270:203): avc: denied { write } for pid=4326 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2300.503781][ T24] audit: type=1400 audit(2299.610:204): avc: denied { write } for pid=4330 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2352.037248][ T24] audit: type=1400 audit(2351.250:205): avc: denied { write } for pid=4354 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2364.526714][ T24] audit: type=1400 audit(2363.640:206): avc: denied { write } for pid=4362 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2393.055801][ T24] audit: type=1400 audit(2392.170:207): avc: denied { write } for pid=4376 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2405.072272][ T24] audit: type=1400 audit(2404.260:208): avc: denied { write } for pid=4385 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2425.178312][ T4335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2425.756551][ T4335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2428.369783][ T24] audit: type=1400 audit(2427.580:209): avc: denied { write } for pid=4398 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2438.058593][ T4342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2438.586318][ T4342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2439.213620][ T24] audit: type=1400 audit(2438.360:210): avc: denied { write } for pid=4406 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2460.362193][ T24] audit: type=1400 audit(2459.560:211): avc: denied { write } for pid=4414 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2472.883568][ T24] audit: type=1400 audit(2471.950:212): avc: denied { write } for pid=4423 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2474.762808][ T4335] hsr_slave_0: entered promiscuous mode [ 2474.912366][ T4335] hsr_slave_1: entered promiscuous mode [ 2474.939597][ T4335] debugfs: 'hsr0' already exists in 'hsr' [ 2475.061936][ T4335] Cannot create hsr debugfs directory [ 2492.096952][ T4342] hsr_slave_0: entered promiscuous mode [ 2492.226831][ T4342] hsr_slave_1: entered promiscuous mode [ 2492.326126][ T4342] debugfs: 'hsr0' already exists in 'hsr' [ 2492.361799][ T4342] Cannot create hsr debugfs directory [ 2494.954268][ T24] audit: type=1400 audit(2494.130:213): avc: denied { write } for pid=4430 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2505.209417][ T24] audit: type=1400 audit(2504.420:214): avc: denied { write } for pid=4434 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2518.022903][ T4335] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 2518.587244][ T4335] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2520.912786][ T4335] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 2521.439161][ T4335] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2521.799594][ T4335] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 2522.839191][ T4335] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2523.424973][ T4335] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 2524.065050][ T4335] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2534.514936][ T4342] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 2535.138637][ T4342] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2535.442036][ T4342] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 2536.235951][ T4342] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2536.349799][ T4342] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 2537.164929][ T4342] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2537.299610][ T4342] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 2538.474635][ T4342] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2576.585566][ T4335] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2589.216267][ T4342] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2590.142558][ T24] audit: type=1400 audit(2589.220:215): avc: denied { write } for pid=4475 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2606.014453][ T24] audit: type=1400 audit(2605.190:216): avc: denied { write } for pid=4484 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2642.551841][ T24] audit: type=1400 audit(2641.720:217): avc: denied { write } for pid=4495 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2658.111291][ T24] audit: type=1400 audit(2657.290:218): avc: denied { write } for pid=4505 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2691.241981][ T24] audit: type=1400 audit(2690.430:219): avc: denied { write } for pid=4517 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2695.044944][ T26] INFO: task syz.4.88:4316 blocked for more than 430 seconds. [ 2695.103075][ T26] Not tainted syzkaller #0 [ 2695.118238][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2695.118924][ T26] task:syz.4.88 state:D stack:0 pid:4316 tgid:4316 ppid:4009 task_flags:0x400040 flags:0x00000011 [ 2695.213139][ T26] Call trace: [ 2695.232666][ T26] __switch_to+0x5e0/0xb70 (T) [ 2695.235058][ T26] __schedule+0x2554/0x3828 [ 2695.235597][ T26] schedule+0xac/0x278 [ 2695.236065][ T26] schedule_timeout+0x68/0x1ec [ 2695.236543][ T26] do_wait_for_common+0x270/0x428 [ 2695.237012][ T26] wait_for_completion+0x44/0x5c [ 2695.237480][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 2695.238043][ T26] synchronize_srcu+0x668/0x8dc [ 2695.238574][ T26] mmu_notifier_unregister+0x320/0x428 [ 2695.239112][ T26] kvm_put_kvm+0x69c/0xbbc [ 2695.239557][ T26] kvm_vm_release+0x58/0x78 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 2695.422502][ T26] __fput+0x4ac/0x978 [ 2695.423370][ T26] ____fput+0x20/0x30 [ 2695.423874][ T26] task_work_run+0x1b8/0x250 [ 2695.424371][ T26] exit_to_user_mode_loop+0x110/0x188 [ 2695.424873][ T26] el0_svc+0x184/0x238 [ 2695.425387][ T26] el0t_64_sync_handler+0x84/0x12c [ 2695.425868][ T26] el0t_64_sync+0x198/0x19c [ 2695.427586][ T26] [ 2695.427586][ T26] Showing all locks held in the system: [ 2695.428111][ T26] 1 lock held by khungtaskd/26: [ 2695.428508][ T26] #0: ffff800087db4518 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 2695.538990][ T26] 3 locks held by kworker/u4:3/41: [ 2695.539392][ T26] 3 locks held by kworker/u4:4/47: [ 2695.641238][ T26] 2 locks held by getty/3233: [ 2695.642174][ T26] #0: 2bf000001276e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 2695.644119][ T26] #1: 4bff80008cb4b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x314/0x1214 [ 2695.646332][ T26] 2 locks held by syz-executor/3365: [ 2695.646684][ T26] 3 locks held by kworker/u4:1/3401: [ 2695.647023][ T26] 2 locks held by kworker/u4:5/3424: [ 2695.647327][ T26] #0: 47f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 2695.649294][ T26] #1: ffff8000a3517cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 2695.823389][ T26] 2 locks held by kworker/u4:7/3466: [ 2695.823731][ T26] 2 locks held by kworker/u4:0/3762: [ 2695.824074][ T26] 3 locks held by kworker/u4:6/3801: [ 2695.824387][ T26] 3 locks held by kworker/u4:9/3836: [ 2695.824682][ T26] 4 locks held by kworker/0:1/3931: [ 2695.825012][ T26] 2 locks held by kworker/u4:10/4018: [ 2695.825348][ T26] #0: 47f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 2695.827212][ T26] #1: ffff80008ed17cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 2695.828981][ T26] 2 locks held by syz.5.87/4309: [ 2695.936406][ T26] 3 locks held by kworker/u4:12/4448: [ 2695.964336][ T26] 4 locks held by modprobe/4523: [ 2695.976597][ T26] 1 lock held by cmp/4524: [ 2695.986780][ T26] 2 locks held by modprobe/4525: [ 2696.002081][ T26] [ 2696.051916][ T26] ============================================= [ 2696.051916][ T26] [ 2696.053270][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 2696.058129][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 2696.059803][ T26] Hardware name: linux,dummy-virt (DT) [ 2696.060883][ T26] Call trace: [ 2696.061801][ T26] show_stack+0x2c/0x3c (C) [ 2696.062912][ T26] __dump_stack+0x30/0x40 [ 2696.063990][ T26] dump_stack_lvl+0x30/0x12c [ 2696.065069][ T26] dump_stack+0x1c/0x28 [ 2696.066090][ T26] vpanic+0x4cc/0x844 [ 2696.067002][ T26] vpanic+0x0/0x844 [ 2696.067918][ T26] hung_task_panic+0x0/0x2c [ 2696.068977][ T26] kthread+0x4d4/0x51c [ 2696.069985][ T26] ret_from_fork+0x10/0x20 [ 2696.071940][ T26] Kernel Offset: disabled [ 2696.072773][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 2696.074070][ T26] Memory Limit: none [ 2696.076393][ T26] Rebooting in 86400 seconds..