last executing test programs: 1h37m37.610839114s ago: executing program 0 (id=179): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@msr={0x14, 0x20, {0x603000000013df40, 0x8000}}], 0x20}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@msr={0x14, 0x20, {0x603000000013df40, 0x8000}}], 0x20}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000bc2000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000440)={0x0, &(0x7f00000000c0)=[@svc={0x122, 0x40, {0xc5000020, [0x6, 0x3, 0x1, 0x711ec83f, 0x8000]}}], 0x40}, &(0x7f0000000480)=[@featur1={0x1, 0x43}], 0x1) (async) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000440)={0x0, &(0x7f00000000c0)=[@svc={0x122, 0x40, {0xc5000020, [0x6, 0x3, 0x1, 0x711ec83f, 0x8000]}}], 0x40}, &(0x7f0000000480)=[@featur1={0x1, 0x43}], 0x1) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) (async) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000140)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h37m25.549930254s ago: executing program 0 (id=181): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 64) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (rerun: 64) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0x2, 0x10000000000000) (async, rerun: 32) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 32) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async) r5 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@code={0xa, 0x6c, {"007008d50040c00d00f4006f0080e00d007008d5000028d540ce9cd20080b0f2e10180d2e20180d2830080d2c40180d2020000d4a0588bd200a0b0f2210080d2420080d2830180d2840080d2020000d4000008d5000008d5"}}, @msr={0x14, 0x20, {0x0, 0xd609}}], 0x8c}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) (async, rerun: 32) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) (rerun: 32) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) munmap$KVM_VCPU(0x0, 0x1000000000) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r8, 0x0) (async) r9 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x27) ioctl$KVM_IRQ_LINE(r9, 0x4008ae61, &(0x7f0000000140)={0x400, 0x7}) (async) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) (async) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000100)={0x7}) ioctl$KVM_PPC_ALLOCATE_HTAB(r12, 0xc004aea7, &(0x7f0000000040)=0xe) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async, rerun: 32) ioctl$KVM_RUN(r5, 0xae80, 0x0) (rerun: 32) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 64) r13 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) (rerun: 64) syz_kvm_setup_cpu$arm64(r7, r13, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000300)=[{0x0, &(0x7f0000000a40)=[@code={0xa, 0x54, {"000440b8000028d50000402d00004038401d8ed20020b0f2010180d2a20080d2230180d2240080d2020000d400c0202e007008d50030200e000820bc000028d5"}}, @msr={0x14, 0x20, {0x9f36f15b1e71e7a7}}, @code={0xa, 0x9c, {"40b488d20020b8f2410180d2220080d2430180d2c40080d2020000d4000840f820a490d200c0b0f2e10180d2c20080d2a30180d2040080d2020000d4007008d5007008d540dd8ed200c0b8f2e10080d2a20180d2c30080d2640180d2020000d4a0bd83d200a0b0f2c10180d2220080d2830080d2840180d2020000d40000651e008008d50094005f"}}, @msr={0x14, 0x20, {0x603000000013df60, 0xfffffffffffffffb}}, @eret={0xe6, 0x18, 0x6}, @its_setup={0x82, 0x28, {0x0, 0x1, 0x2f5}}, @code={0xa, 0x6c, {"00004008e0eb95d200e0b8f2c10180d2220080d2230080d2e40180d2020000d41820601e0000007a80619cd20060b0f2010180d2c20080d2630180d2c40180d2020000d4bf2003d5000008d50068216e008008d5007008d5"}}, @svc={0x122, 0x40, {0xc4000005, [0x1, 0x1d1f38aa, 0x0, 0x7, 0x9]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x3, 0xc, 0x71b, 0x6, 0x2}}, @hvc={0x32, 0x40, {0xc4000011, [0xffff, 0x8, 0xe5, 0x3, 0x5]}}, @irq_setup={0x46, 0x18, {0x3, 0x2af}}, @msr={0x14, 0x20, {0x6030000000131a01, 0x2}}, @smc={0x1e, 0x40, {0x84000053, [0x0, 0x0, 0x6, 0x3, 0xb]}}, @msr={0x14, 0x20, {0x3865, 0x6}}, @mrs={0xbe, 0x18, {0x603000000013806e}}, @msr={0x14, 0x20, {0x603000000013deaf, 0xffffffff}}, @uexit={0x0, 0x18, 0xd842}, @uexit={0x0, 0x18, 0x101}, @smc={0x1e, 0x40, {0xc4000010, [0x7, 0x9, 0x80000001, 0x4, 0xfffffffffffffffa]}}, @msr={0x14, 0x20, {0x603000000013c032, 0x6}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x4, 0xf, 0x3, 0x8000, 0x1}}, @hvc={0x32, 0x40, {0x4000000, [0x1, 0x9, 0x810, 0x51f, 0x3]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x2, 0xc, 0x0, 0x4, 0x1}}, @uexit={0x0, 0x18, 0x89}, @svc={0x122, 0x40, {0x8000, [0x9, 0x8000, 0x1, 0x8e1, 0x2]}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x1, 0xb, 0x0, 0x1000, 0x1}}, @code={0xa, 0xcc, {"e05090d200c0b0f2c10080d2c20080d2a30080d2c40180d2020000d4a07b99d20060b0f2a10180d2420080d2830180d2040180d2020000d4008008d5409b8fd20040b0f2c10180d2220180d2e30180d2040080d2020000d4000000330084200e000008d560a887d20020b0f2e10080d2c20080d2830080d2040080d2020000d420a599d200e0b8f2410080d2e20080d2e30080d2840080d2020000d4c0028cd20000b0f2e10080d2020080d2e30180d2640180d2020000d4"}}, @uexit={0x0, 0x18, 0x2}, @smc={0x1e, 0x40, {0x84000005, [0x4, 0x7, 0xfffffffffffffffb, 0xb867, 0x6]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x3, 0x8, 0x4, 0xfffffffd, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x88, 0x8000000000000001}}], 0x670}], 0x1, 0x0, &(0x7f0000000340), 0x1) 1h37m14.250307354s ago: executing program 0 (id=183): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x93}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f0000001480)={0xfffffffffffffdfd, 0x13000, 0xffffffff}) write$eventfd(r3, &(0x7f00000001c0)=0x3, 0xfdef) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0xa983453cd6cf818b, 0x0, 0x6000, 0x2000, &(0x7f0000e65000/0x2000)=nil}) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x100) r5 = openat$kvm(0x0, &(0x7f0000000040), 0xa400, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f00000000c0)={0x1}) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x1000000000000) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1) syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r12, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x2, 0x100) 1h36m59.718467992s ago: executing program 0 (id=185): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x0, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x7fffd, 0x10000, 0x20, 0x0, 0x2}}], 0x50}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async, rerun: 64) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100028, 0x0}) (async) ioctl$KVM_CREATE_VM(r5, 0x40086602, 0x20000000) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32) 1h36m47.453072868s ago: executing program 0 (id=187): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x32) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2e) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r5, 0x4004ae99, &(0x7f0000000180)=0xa) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000002c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013df19, &(0x7f0000000000)=0x7fffffffffffffff}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r12 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r11, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r11, 0x0) r13 = eventfd2(0x70, 0x0) close(r13) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r13, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r14 = eventfd2(0x0, 0x0) close(r14) r15 = eventfd2(0x0, 0x0) close(r15) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r15, 0x0) 1h36m0.880631483s ago: executing program 32 (id=187): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x32) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2e) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r5, 0x4004ae99, &(0x7f0000000180)=0xa) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000002c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013df19, &(0x7f0000000000)=0x7fffffffffffffff}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r12 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r11, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r11, 0x0) r13 = eventfd2(0x70, 0x0) close(r13) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r13, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r14 = eventfd2(0x0, 0x0) close(r14) r15 = eventfd2(0x0, 0x0) close(r15) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r15, 0x0) 1h22m31.206177323s ago: executing program 1 (id=288): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x1}], 0x1) syz_kvm_vgic_v3_setup(r3, 0x3, 0x320) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) r6 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x6030000000138084, 0x3ff}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 1h22m23.111520077s ago: executing program 2 (id=289): munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x25) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x1, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) r6 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x40) ioctl$KVM_HAS_DEVICE_ATTR(r6, 0x4018aee3, &(0x7f0000000040)=@attr_other={0x0, 0x9, 0xffffffffffff4a09, 0x0}) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000bff000/0x400000)=nil) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x80) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x40032, 0xffffffffffffffff, 0x0) 1h22m19.589532883s ago: executing program 1 (id=290): r0 = eventfd2(0x7, 0x1) close(r0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x6000004, 0x10, r0, 0x0) r1 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)={0xd000}) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x35) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x8400000a, [0x84000001, 0xa, 0x0, 0x6, 0x10]}}], 0x40}, &(0x7f00000000c0)=[@featur1={0x1, 0x4}], 0x1) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000001c0)={0x0, &(0x7f0000000340)=[@its_setup={0x82, 0x28, {0x2, 0x0, 0xed}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x0, 0xa, 0x86c4, 0x1, 0x10001}}, @msr={0x14, 0x20, {0x603000000013df4c, 0x200}}, @uexit={0x0, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013804f, 0x7}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2c}}], 0xd0}, &(0x7f0000000280)=[@featur1={0x1, 0x80}], 0x1) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1800, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2b) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000aec000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000040)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f00000000c0)=@arm64={0x7, 0x0, 0xfc, '\x00', 0x4}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000080)=@arm64={0xd, 0x8, 0x7, '\x00', 0x2d}) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000080)={0x1, 0x0, [{0x2, 0x0, 0x0, 0x0, @msi={0x0, 0x0, 0x4000}}]}) munmap(&(0x7f00005ed000/0x800000)=nil, 0x800000) ioctl$KVM_CAP_HALT_POLL(r2, 0x4068aea3, &(0x7f00000002c0)={0xb6, 0x0, 0x100000001}) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000180)={0x8}) r11 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2b) syz_kvm_vgic_v3_setup(r11, 0x1, 0x100) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1h22m11.141451058s ago: executing program 2 (id=291): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1e) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000000)=@x86={0x1, 0x80, 0x7, 0x0, 0x0, 0x2, 0x6e, 0xf8, 0x46, 0x3, 0x8, 0xb9, 0x0, 0x8d0, 0xffffff80, 0x4, 0x5, 0xec, 0x9, '\x00', 0xff, 0x80000001}) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0x40000000, [0x8000000000c, 0x1000000000000, 0x6, 0x800000006, 0x800]}}], 0x40}, 0x0, 0x18) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x95}) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7f, 0x4, 0x3, 0x0, 0x8, 0x9, 0x8, 0x8b, 0x4, 0x0, 0xf, 0x0, 0x0, 0xebf, 0x6, 0x0, 0xd, 0xfe, 0x3, '\x00', 0x3, 0x8}) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r10, &(0x7f00000001c0)=0x9, 0x1d) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@arm64={0x3, 0xe0, 0xb4, '\x00', 0x1}) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100022, 0x0}) r11 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r13, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x80000, 0x10000, 0x0, 0x101, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x2, 0x40) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000180)={0x8}) 1h22m5.12832921s ago: executing program 1 (id=292): r0 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x600040, 0x0) close(r2) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000040)=@arm64_ccsidr={0x6020000000110004, 0x0}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x100000c, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x600040, 0x0) (async) close(r2) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) (async) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000040)=@arm64_ccsidr={0x6020000000110004, 0x0}) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x100000c, 0x4d832, 0xffffffffffffffff, 0x0) (async) 1h21m54.919876288s ago: executing program 2 (id=293): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8360ae81, &(0x7f0000000140)) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0x8494, 0x0, &(0x7f0000000040)=0x5}) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0xc5000021, [0x8001, 0xffffffffffff449b, 0xffffffffffffffff, 0x2, 0xfffffffffffffff9]}}], 0x40}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h21m51.527936567s ago: executing program 1 (id=294): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async, rerun: 64) r1 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) (rerun: 64) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) (async) r5 = eventfd2(0x0, 0x0) close(r5) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) (async, rerun: 32) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) (rerun: 32) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r6, 0x3000009, 0x11, r3, 0x0) (async) write$eventfd(r5, &(0x7f0000000180)=0x5, 0xfffffde3) (async) r7 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x27) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f00000002c0)=0x8}) (async) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0x80111500, 0x20000004) write$eventfd(r12, &(0x7f0000000000)=0xe0, 0xfdf8) (async) r13 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r10, 0x4010aeb5, &(0x7f00000002c0)={0x200}) r14 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) ioctl$KVM_RUN(r14, 0xae80, 0x0) 1h21m44.331576869s ago: executing program 2 (id=295): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa8200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) syz_kvm_vgic_v3_setup(r1, 0x4, 0x1a0) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000000)={0x7}) r4 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000080)={0x0, 0x6000, 0x0, r4, 0xc}) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000002c0)={0x0, 0x10000}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000000c0)={0x8}) ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000000)={0x6000}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@arm64={0x0, 0x9, 0x5, '\x00', 0xfffffffffffffffe}) r5 = openat$kvm(0xffffffffffffff9c, 0xfffffffffffffffe, 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r7, &(0x7f00000001c0)=0x3, 0xfdef) r8 = eventfd2(0x2, 0x80000) r9 = eventfd2(0xf, 0x80001) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r9, 0x0, 0x1, r8}) r10 = syz_kvm_vgic_v3_setup(r6, 0x3, 0x500) ioctl$KVM_GET_DEVICE_ATTR(r10, 0x4018aee2, &(0x7f00000000c0)=@attr_other={0x0, 0x6, 0x7, &(0x7f0000000080)=0x8001}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2) r14 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) r15 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r14, 0x1000002, 0x13, r13, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r15, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r13, 0x0) 1h21m37.83049441s ago: executing program 1 (id=296): munmap$KVM_VCPU(0x0, 0x1000000000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000180)=@arm64_ccsidr={0x6020000000110004, &(0x7f00000000c0)=0x4}) r3 = mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000e, 0x24132, 0xffffffffffffffff, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x25) ioctl$KVM_CAP_ARM_MTE(r5, 0x4068aea3, &(0x7f00000000c0)={0xf5}) r6 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_HAS_DEVICE_ATTR_vm(r8, 0x4018aee3, &(0x7f0000000100)=@attr_other={0x0, 0xc5fb, 0x8, 0x0}) r9 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2) r11 = syz_kvm_vgic_v3_setup(r9, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000240)=0x7}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000000)="caf9d6ac7953c5a4571996b36c0135c684c5c0d4fad93b80dd7cb2b66d542f6173f233a6e1606154cf719c2550e01ad56fce42d3686e6f9b00a64f3728849edd28e62dda6398ff0f", 0x0, 0x48) r12 = mmap$KVM_VCPU(&(0x7f0000ff7000/0x2000)=nil, 0x0, 0x4, 0x10010, r10, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(r12, 0x20, &(0x7f0000000080)="e6742faa89eb40095e2541cda75100ee9a051bb94f8cb149", 0x0, 0x18) 1h21m30.981925692s ago: executing program 2 (id=297): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000b46000/0x1000)=nil, 0x1000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000bc7000/0x4000)=nil, 0x4000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2b) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000aec000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000040)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000000c0)=@arm64={0x7, 0x0, 0xfc, '\x00', 0x4}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h21m28.828611778s ago: executing program 1 (id=298): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2f) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = eventfd2(0x3, 0x0) r5 = eventfd2(0xb2d5, 0x80001) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r5, 0x39309594, 0x3, r4}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) r9 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r8, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r4, 0x5b, 0x1, r4}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000040)=@attr_irq_timer={0x0, 0x1, 0x1, 0x0}) openat$kvm(0x0, 0x0, 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) r12 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) ioctl$KVM_SET_REGS(r14, 0x4360ae82, 0xfffffffffffffffe) ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f00000000c0)=@arm64_sve_vls={0x606000000015ffff, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) close(0x4) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0x1, &(0x7f0000000000)=0x263}) close(0x5) 1h21m20.362436474s ago: executing program 2 (id=299): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x100) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0) (async) r6 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0) r7 = mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r5, 0x3, 0x11, r4, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r4, r7, 0xffffffffffffffff) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1}) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) (async) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x1, 0x10002, 0xfffffff9, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) (async) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r6, 0xfffffffffffffffe) (async) syz_kvm_assert_syzos_uexit$arm64(r3, r6, 0xfffffffffffffffe) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) (async) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0) openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) (async) r15 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x29) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000340)=[@uexit={0x0, 0x18, 0x1fd}, @smc={0x1e, 0x40, {0x84000050, [0x3, 0xc4, 0x80000000, 0x80000000]}}, @irq_setup={0x46, 0x18, {0x1, 0x28e}}], 0x70}, 0x0, 0x0) r17 = ioctl$KVM_CREATE_VCPU(r16, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r17, 0x0) 1h20m42.393493822s ago: executing program 33 (id=298): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2f) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = eventfd2(0x3, 0x0) r5 = eventfd2(0xb2d5, 0x80001) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r5, 0x39309594, 0x3, r4}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) r9 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r8, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r4, 0x5b, 0x1, r4}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000040)=@attr_irq_timer={0x0, 0x1, 0x1, 0x0}) openat$kvm(0x0, 0x0, 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) r12 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) ioctl$KVM_SET_REGS(r14, 0x4360ae82, 0xfffffffffffffffe) ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f00000000c0)=@arm64_sve_vls={0x606000000015ffff, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) close(0x4) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0x1, &(0x7f0000000000)=0x263}) close(0x5) 1h20m32.867488382s ago: executing program 34 (id=299): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x100) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0) (async) r6 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0) r7 = mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r5, 0x3, 0x11, r4, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r4, r7, 0xffffffffffffffff) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1}) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) (async) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x1, 0x10002, 0xfffffff9, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) (async) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r6, 0xfffffffffffffffe) (async) syz_kvm_assert_syzos_uexit$arm64(r3, r6, 0xfffffffffffffffe) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) (async) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0) openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) (async) r15 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x29) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000340)=[@uexit={0x0, 0x18, 0x1fd}, @smc={0x1e, 0x40, {0x84000050, [0x3, 0xc4, 0x80000000, 0x80000000]}}, @irq_setup={0x46, 0x18, {0x1, 0x28e}}], 0x70}, 0x0, 0x0) r17 = ioctl$KVM_CREATE_VCPU(r16, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r17, 0x0) 1h9m26.832270347s ago: executing program 3 (id=336): syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@its_setup={0x82, 0xfffffffffffffe6c, {0x4, 0x3, 0x35a}}], 0x28}, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000240)="fb4149dd053be3ac2cc4a22332a77b23b8898600087bb16c94a6ab80313804d92f00000000010000045a96383369d226270080ff000000000000000000a000", 0x0, 0xffa4) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r2, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x40000, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x401c5820, &(0x7f00000000c0)=@attr_other={0x0, 0x9, 0x100000000, 0x0}) r5 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r6, 0x4068aea3, &(0x7f0000000340)={0xdf, 0x0, 0x2000}) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x1) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r8, r9, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r9, 0x4010aeab, &(0x7f0000000100)=@arm64_extra={0x603000000013c036}) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r10 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f000022c000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0xae01, 0x25) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f00000ed000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) 1h9m9.84950168s ago: executing program 4 (id=337): munmap$KVM_VCPU(0x0, 0x1000000000) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r1, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, r1, 0xb, 0x16831, 0xffffffffffffffff, 0x0) (async) r2 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000040)={0x5}) (async) ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f0000000000)={0xfec56000, 0x15000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) 1h9m4.548137132s ago: executing program 3 (id=338): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f0000000140)}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f00000002c0)=@attr_other={0x0, 0x5, 0x6, &(0x7f0000000200)=0x8}) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000001c0)=@arm64_sys={0x603000000013d801, &(0x7f00000000c0)=0x7fff}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000feb000/0x14000)=nil, 0x0, 0x2000003, 0x810, r2, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x181b03, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r9, 0x400454d9, 0x110c23000a) r10 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r11 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) r14 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r13, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r14, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x0, 0x1000001, 0x48010, r13, 0x0) r15 = eventfd2(0xd, 0x1) close(r6) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0) write$eventfd(r15, 0x0, 0x500) 1h8m58.009842372s ago: executing program 4 (id=339): ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async, rerun: 64) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000040)=@arm64_sys={0x603000000013e099, &(0x7f0000000000)=0x80}) (async) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f0000000080)={0x2, [0x10000, 0x1]}) (async) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000100)=@riscv64_csr={0x8030000000300005, &(0x7f00000000c0)=0x2}) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38) (rerun: 64) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000140)={0x70000, 0x2000, 0x6, 0x0, 0x7f}) eventfd2(0x9, 0x80001) (async, rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async, rerun: 32) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) (async) ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000180)={[0xfffffffffffffff8, 0x9, 0x6, 0x1, 0x401, 0x0, 0x8, 0x4, 0x7, 0x8, 0x8, 0x8001, 0x2, 0x7fffffff, 0x3, 0x8], 0x30000, 0x2801c0}) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000240)={0x1, [0x4]}) (async) syz_kvm_setup_cpu$arm64(r2, r0, &(0x7f0000b77000/0x400000)=nil, &(0x7f00000005c0)=[{0x0, &(0x7f0000000280)=[@smc={0x1e, 0x40, {0x1000, [0x94, 0x10, 0x9, 0x10001, 0x1e7]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x800, 0xc6, 0xd}}, @code={0xa, 0x9c, {"c00e84d200c0b8f2a10180d2e20080d2e30180d2a40180d2020000d4000008d50060c00c0040e21e00b39fd20000b8f2210080d2220180d2830080d2440180d2020000d4000028d5000c205e60d894d20060b0f2c10080d2020180d2230080d2640080d2020000d4e0f591d200e0b0f2e10180d2420080d2c30080d2c40080d2020000d4007008d5"}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x0, 0xf, 0x7, 0x0, 0x3}}, @uexit={0x0, 0x18, 0x6ec5}, @smc={0x1e, 0x40, {0xc4000014, [0x0, 0x3, 0x401, 0x7f, 0x80000000]}}, @msr={0x14, 0x20, {0x603000000013c300, 0x4}}, @hvc={0x32, 0x40, {0x84000000, [0x8001, 0xf, 0x8, 0xfff, 0x43]}}, @uexit={0x0, 0x18, 0x6}, @svc={0x122, 0x40, {0x5000000, [0x3, 0x3, 0x30e, 0xffffffffffffff01, 0x2]}}, @eret={0xe6, 0x18, 0x7fff}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x2ac}}, @uexit={0x0, 0x18, 0x3}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x0, 0x4, 0xf9, 0x10001, 0x3}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x0, 0x10, 0x8, 0x7a9, 0x4}}, @irq_setup={0x46, 0x18, {0x0, 0x203}}, @irq_setup={0x46, 0x18, {0x4, 0x1e5}}], 0x31c}], 0x1, 0x0, &(0x7f0000000600)=[@featur1={0x1, 0x88}], 0x1) munmap(&(0x7f0000c67000/0x1000)=nil, 0x1000) (async, rerun: 64) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000640)={0x5, 0x48}) (async, rerun: 64) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000f6f000/0x1000)=nil, r4, 0x2000008, 0x1010, 0xffffffffffffffff, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000740)={0x0, &(0x7f0000000680)=[@irq_setup={0x46, 0x18, {0x4, 0x3c}}, @svc={0x122, 0x40, {0x800, [0x3, 0xc, 0x2, 0x100000000, 0x2]}}, @memwrite={0x6e, 0x30, @generic={0x8080000, 0x39c, 0xfffffffffffffffd, 0x9}}], 0x88}, &(0x7f0000000780)=[@featur1={0x1, 0x10}], 0x1) r7 = ioctl$KVM_GET_STATS_FD_cpu(r6, 0xaece) ioctl$KVM_ASSIGN_SET_MSIX_NR(r7, 0x4008ae73, &(0x7f00000007c0)={0x2, 0xa}) (async) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r2, 0x4068aea3, &(0x7f0000000800)) (async) r8 = eventfd2(0x4, 0x1000) ioctl$KVM_IOEVENTFD(r7, 0x4040ae79, &(0x7f0000000880)={0x2, 0xeeee8000, 0x1, r8, 0x3}) (async) ioctl$KVM_RUN(r0, 0xae80, 0x0) (async) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000900)=@arm64_sve={0x60800000001501b4, &(0x7f00000008c0)=0x100000000}) (async) ioctl$KVM_GET_SREGS(r0, 0x8000ae83, &(0x7f0000000940)) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001040)=[{0x0, &(0x7f0000000a80)=[@memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x4, 0x2, 0x9}}, @uexit={0x0, 0x18, 0xb}, @eret={0xe6, 0x18, 0x8}, @code={0xa, 0xb4, {"60a597d200e0b8f2410080d2020080d2c30080d2440080d2020000d4008008d5000008d5e0228ed200c0b8f2a10180d2620180d2e30180d2240180d2020000d4605f92d20020b0f2010080d2c20180d2630180d2c40180d2020000d4c01786d200a0b0f2a10180d2020080d2430180d2840080d2020000d4a0b882d200c0b8f2410180d2220180d2e30080d2640080d2020000d4000020aa007008d5000028d5"}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x1a0}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x2bb}}, @hvc={0x32, 0x40, {0x84000004, [0x7f, 0x3, 0x1, 0x1, 0x9]}}, @code={0xa, 0x54, {"007008d5000008d500000018007008d50044202e000040a90020c09a0000802800238ed20060b0f2010180d2220080d2c30180d2040080d2020000d400a0bf0d"}}, @smc={0x1e, 0x40, {0x8400000e, [0x100, 0x0, 0x9, 0x80, 0x8]}}, @msr={0x14, 0x20, {0x603000000013e219, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0x10, 0x3, 0x1, 0x4}}, @irq_setup={0x46, 0x18, {0x2, 0x155}}, @eret={0xe6, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x293}}, @msr={0x14, 0x20, {0x603000000013e289, 0x3}}, @smc={0x1e, 0x40, {0x84000008, [0x3d, 0x4, 0x5, 0xfffffffffffffe00]}}, @smc={0x1e, 0x40, {0x40000007, [0x8, 0x1, 0x400, 0x4, 0x4]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff0, 0x2, 0x3}}, @eret={0xe6, 0x18, 0xfffffffffffffffd}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x1b}}, @smc={0x1e, 0x40, {0x84000013, [0x37a, 0x8, 0x24000000000000, 0x7fffffffffffffff, 0xd]}}, @hvc={0x32, 0x40, {0x188000058, [0x5, 0x7f, 0x8000, 0x1, 0x68f]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x1, 0xe, 0x2, 0x7, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013c03a}}, @eret={0xe6, 0x18, 0x7}, @uexit={0x0, 0x18, 0x7fff}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xc, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x8001, 0x2, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013c109}}, @memwrite={0x6e, 0x30, @generic={0x4000, 0x86f, 0x3, 0x1b}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0xd00, 0x8, 0x1}}], 0x5a8}], 0x1, 0x0, &(0x7f0000001080)=[@featur1={0x1, 0x21}], 0x1) (async) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000010c0)={0x9, [0x5, 0x1, 0x8b0, 0x1, 0x1, 0x0, 0x93b9, 0x8d, 0x5]}) 1h8m41.268790015s ago: executing program 4 (id=340): r0 = mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x0, 0x3000000, 0x30, 0xffffffffffffffff, 0x0) munmap$KVM_VCPU(r0, 0x6) (async) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1fe, 0x2, 0x7000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) (async) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000040)={0x31000, 0xdddd1000, 0x4, 0x0, 0xe}) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x2) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_GET_MP_STATE(0xffffffffffffffff, 0x8004ae98, &(0x7f00000000c0)) (async) ioctl$KVM_CAP_ARM_USER_IRQ(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000100)) (async) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x30) ioctl$KVM_CAP_PTP_KVM(r3, 0x4068aea3, &(0x7f0000000180)) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async) r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000002c0)={0x0, &(0x7f0000000200)=[@mrs={0xbe, 0x18, {0x603000000013df5d}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x0, 0x2, 0x4, 0x6, 0x3}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x3db}}, @uexit={0x0, 0x18, 0xed6dae7}, @msr={0x14, 0x20, {0x603000000013e099, 0x2}}], 0xa0}, &(0x7f0000000300)=[@featur1={0x1, 0x20}], 0x1) mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, r4, 0x2, 0x10010, r5, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x3f) eventfd2(0x8b13, 0x800) (async) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r3, 0x4010aeb5, &(0x7f0000000340)={0x10001, 0x70}) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) r7 = syz_kvm_vgic_v3_setup(r3, 0x2, 0x200) (async) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000380)={0x5, 0x4}) r8 = syz_kvm_vgic_v3_setup(r3, 0x1, 0x120) syz_kvm_vgic_v3_setup(r3, 0x4, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000400)=@attr_other={0x0, 0x1, 0x135, &(0x7f00000003c0)=0xfffffffffffffffa}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (async) ioctl$KVM_CAP_ARM_MTE(r1, 0x4068aea3, &(0x7f0000000440)) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r9 = ioctl$KVM_GET_STATS_FD_vm(r7, 0xaece) ioctl$KVM_CAP_HALT_POLL(r9, 0x4068aea3, &(0x7f00000004c0)={0xb6, 0x0, 0x2}) ioctl$KVM_ARM_VCPU_FINALIZE(r5, 0x4004aec2, &(0x7f0000000540)=0x4) 1h8m40.429051141s ago: executing program 3 (id=341): r0 = eventfd2(0x5, 0x800) write$eventfd(r0, &(0x7f0000000000)=0xffffffffffffffff, 0x8) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8000ae83, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000004}}], 0x50}, 0x0, 0x0) r5 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000240)) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x4, 0x3, 0x0}) 1h8m7.980016136s ago: executing program 3 (id=342): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000080)={0x3, [0x0, 0x6, 0x5668]}) r4 = openat$kvm(0x0, 0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x800454d2, 0x40) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100006, &(0x7f0000000000)=0x4}) 1h8m7.979782096s ago: executing program 4 (id=343): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x28) (async) r3 = eventfd2(0xffff, 0x80001) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f00000000c0)={r3, 0x2, 0x1}) (async) r4 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r6, 0x0) (async, rerun: 32) r8 = eventfd2(0x70, 0x0) (rerun: 32) close(r8) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async) write$eventfd(r8, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) (async) r9 = eventfd2(0x1, 0x1) (async) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x40000, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r11, 0x1, 0x100) (async) ioctl$KVM_IRQFD(r11, 0x4020ae76, &(0x7f0000000100)={r9, 0x3, 0x2, r9}) (async, rerun: 64) ioctl$KVM_SET_GSI_ROUTING(r11, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0x3, 0x2, 0x0, 0x0, @sint={0x7fff, 0x5}}]}) (async, rerun: 64) write$eventfd(r9, &(0x7f0000000000)=0x1000007, 0x8) (async) r12 = eventfd2(0x0, 0x0) close(r12) (async) r13 = eventfd2(0x0, 0x0) close(r13) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r13, 0x0) (rerun: 64) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r12, 0x0) (async, rerun: 32) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000000)={0x35, 0xb000, 0x4, 0xffffffffffffffff, 0x5}) (rerun: 32) 1h7m44.093741541s ago: executing program 3 (id=344): r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000040)=@x86={0x6, 0x0, 0x5, 0x0, 0x3, 0x8, 0x3, 0x0, 0x7f, 0x45, 0x3, 0xba, 0x0, 0x1, 0xffff, 0x8, 0x8, 0x96, 0x1, '\x00', 0x9, 0xd132}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x7) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x80000000, 0x6000, 0x0, 0xffffffffffffffff, 0xf}) ioctl$KVM_SET_DEVICE_ATTR_vm(r3, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0xb4, 0x1, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION2(r3, 0x40a0ae49, &(0x7f0000000180)={0x0, 0x8, 0xfec00000, 0x2000, &(0x7f0000ffb000/0x2000)=nil, 0x1}) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r3, 0x4068aea3, &(0x7f0000000100)={0xa8, 0x0, 0x1}) 1h7m42.679650099s ago: executing program 4 (id=345): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4000ae84, &(0x7f0000000200)={{0x0, 0x1000, 0x1, 0x3a, 0x0, 0x9, 0xba, 0xc, 0x2, 0x6, 0x0, 0x9}, {0xeeef0000, 0x0, 0xd, 0x1, 0xfc, 0x1, 0x5, 0xc, 0x7, 0x4, 0x6, 0x6}, {0x0, 0xeeee8000, 0x8, 0x9, 0x6, 0x7, 0x3, 0xdb, 0x8, 0x1, 0x1}, {0x2, 0xe000, 0x0, 0x55, 0x7f, 0x80, 0x4, 0x4, 0xa, 0x1, 0x8, 0x9}, {0x6000, 0x0, 0x0, 0x38, 0x0, 0x6, 0x8, 0x1, 0x81, 0x93, 0x7f, 0x8}, {0xdddd1000, 0x41000, 0xd, 0x5, 0x9, 0x5, 0x2, 0x8, 0x81, 0xf, 0x5, 0xfe}, {0xffff1000, 0xb000, 0x14, 0x1, 0x1, 0x7b, 0xfd, 0x9, 0x6a, 0xe, 0x8, 0xd1}, {0xeeef0000, 0x7000, 0x4, 0x3, 0x0, 0x0, 0x7, 0xfa, 0x10, 0x2, 0x2, 0x1}, {0x40000, 0x2}, {0x8000000, 0xc71}, 0x20000002, 0x0, 0x1000, 0x8, 0x8, 0x8000, 0x7000, [0x3, 0x8000000000000000, 0x89, 0x1]}) write$eventfd(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x5, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r2, &(0x7f00000001c0), 0xe80) 1h7m27.450169226s ago: executing program 4 (id=346): ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000080)=@x86={0x1, 0x7, 0x68, 0x0, 0x5, 0x1c, 0x8, 0x4a, 0x3, 0x9, 0x8, 0x5, 0x0, 0xffff0577, 0x8, 0x9, 0x0, 0x8, 0x0, '\x00', 0x7, 0x3}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0x2, 0x1000000000000) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x4, 0x3, 0xdddd1000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x3, 0x7000, 0x2000, &(0x7f000000f000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x0, 0xeeee0000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r5, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c95000/0x2000)=nil, r5, 0x4, 0x40010, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x26ee, 0x6, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_RESET_DIRTY_RINGS(r2, 0xaec7) 1h7m25.94325503s ago: executing program 3 (id=347): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x5, 0x0, 0x1000, 0x1000, &(0x7f0000275000/0x1000)=nil}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x80111500, 0x20000000) write$eventfd(r1, 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0xffffffff, 0x1a, &(0x7f0000000340)=0x7ff}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000140)={0x3, 0xffffffffffffffff}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x54, 0x86, 0xdd, 0x68, 0x0, 0x20b, 0x0, 0x0, 0x3, 0x5, 0x5, '\x00', 0x1, 0x3}) write$eventfd(r3, &(0x7f00000001c0)=0x3, 0x50) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000235000/0x400000)=nil, &(0x7f00000002c0)=[{0x0, 0x0, 0xffffffffffffff6f}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x2710, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = mmap$KVM_VCPU(&(0x7f0000f7e000/0x3000)=nil, 0x930, 0x200000e, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x9}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000100)={0x8000, 0x3}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x0, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x0, 0x0, 0x6, 0x10, 0x9}}], 0x50}, 0x0, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r9, 0x4018aee3, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, 0x0}) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x3, 0x1, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r9, 0xae80, 0x0) 1h6m39.107817402s ago: executing program 35 (id=346): ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000080)=@x86={0x1, 0x7, 0x68, 0x0, 0x5, 0x1c, 0x8, 0x4a, 0x3, 0x9, 0x8, 0x5, 0x0, 0xffff0577, 0x8, 0x9, 0x0, 0x8, 0x0, '\x00', 0x7, 0x3}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0x2, 0x1000000000000) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x4, 0x3, 0xdddd1000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x3, 0x7000, 0x2000, &(0x7f000000f000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x0, 0xeeee0000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r5, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c95000/0x2000)=nil, r5, 0x4, 0x40010, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x26ee, 0x6, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_RESET_DIRTY_RINGS(r2, 0xaec7) 1h6m32.927555628s ago: executing program 36 (id=347): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x5, 0x0, 0x1000, 0x1000, &(0x7f0000275000/0x1000)=nil}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x80111500, 0x20000000) write$eventfd(r1, 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0xffffffff, 0x1a, &(0x7f0000000340)=0x7ff}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000140)={0x3, 0xffffffffffffffff}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x54, 0x86, 0xdd, 0x68, 0x0, 0x20b, 0x0, 0x0, 0x3, 0x5, 0x5, '\x00', 0x1, 0x3}) write$eventfd(r3, &(0x7f00000001c0)=0x3, 0x50) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000235000/0x400000)=nil, &(0x7f00000002c0)=[{0x0, 0x0, 0xffffffffffffff6f}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x2710, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = mmap$KVM_VCPU(&(0x7f0000f7e000/0x3000)=nil, 0x930, 0x200000e, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x9}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000100)={0x8000, 0x3}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x0, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x0, 0x0, 0x6, 0x10, 0x9}}], 0x50}, 0x0, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r9, 0x4018aee3, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, 0x0}) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x3, 0x1, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r9, 0xae80, 0x0) 34m47.81602643s ago: executing program 5 (id=481): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x500, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_irq={0x0, 0x0, 0x1000000, 0x0}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000b7c000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 34m37.68806993s ago: executing program 6 (id=482): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x80402, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) r4 = eventfd2(0x0, 0x0) r5 = eventfd2(0x8801, 0x800) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r6 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f00000000c0)={0xbbfbfe6201889764, 0xffffffffffffffff, 0x1}) r9 = eventfd2(0x3ff, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) ioctl$KVM_GET_REG_LIST(r12, 0xc008aeb0, 0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000000)={r9, 0x5, 0x2, r9}) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000080)={r5, 0x1, 0x2, r9}) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000180)={r4, 0x1c7, 0x2, r4}) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x21) r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r15, 0x0) 34m28.680333031s ago: executing program 5 (id=483): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @adapter={0x8000000000000001, 0x8, 0x2, 0xb, 0x10}}, {0x9, 0x3, 0x0, 0x0, @adapter={0x4d4ff, 0xffffffffffffffff}}, {0x0, 0x4, 0x1, 0x0, @sint={0x7fffffff, 0x6}}, {0x0, 0x6, 0x0, 0x0, @adapter={0x8000, 0x7fffffff, 0x20000000401, 0x7f, 0xb2d}}]}) write$eventfd(r3, &(0x7f00000001c0)=0x3, 0x50) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r4, 0x4068aea3, &(0x7f0000000040)={0xe4, 0x0, 0x1000}) r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000680)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x3, 0x40}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xffe8, 0xef6, 0x4}}, @msr={0x14, 0x20, {0x603000000013e710, 0x9fab}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0xb4}}, @mrs={0xbe, 0x18, {0x603000000013c65e}}, @irq_setup={0x46, 0x18, {0x2, 0x35}}, @code={0xa, 0x9c, {"a03996d20080b8f2610180d2220180d2c30080d2440080d2020000d420b686d20000b0f2410080d2020180d2230080d2240180d2020000d4c0ca87d200c0b0f2e10180d2620180d2c30080d2440080d2020000d4008008d50060206e000840fa604782d20040b8f2810080d2c20180d2230180d2040180d2020000d4007008d5008008d50034000f"}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x25a}}, @msr={0x14, 0x20, {0x603000000013e089}}, @code={0xa, 0x9c, {"000c0078e0968cd20040b0f2a10080d2220180d2c30180d2840080d2020000d480a583d20060b8f2a10180d2220080d2830180d2640080d2020000d400fc000f0000803c0000803880cd96d20000b0f2e10080d2820080d2630180d2640080d2020000d4004292d20040b0f2010080d2020080d2830080d2840080d2020000d4000080da1f2003d5"}}, @code={0xa, 0xb4, {"0000c06c007008d5007008d5407f94d20080b0f2210180d2820080d2830080d2c40180d2020000d4000008d5e05c87d20060b0f2610180d2e20180d2e30180d2840180d2020000d400da85d200e0b0f2810080d2820080d2230080d2640080d2020000d460cf95d20060b0f2810080d2a20180d2e30080d2c40180d2020000d4a00095d20020b8f2010080d2620180d2430080d2240080d2020000d4007008d5"}}, @hvc={0x32, 0x40, {0x86000001, [0xffffffffffff0000, 0x8, 0x0, 0x401, 0x7]}}, @irq_setup={0x46, 0x18, {0x0, 0x8b}}, @msr={0x14, 0x20, {0x603000000013df58}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1c00, 0x2, 0xe}}, @mrs={0xbe, 0x18, {0x603000000013de91}}, @code={0xa, 0x84, {"000028d5000028d5007008d50000005a00a0000f205296d20000b0f2810180d2c20080d2a30180d2840180d2020000d4e06f8fd200a0b8f2610080d2e20180d2c30080d2440080d2020000d400a8212e008008d520858ed20040b0f2010080d2020180d2c30180d2c40080d2020000d4"}}, @memwrite={0x6e, 0x30, @generic={0x40000, 0xfffffffffffffff7, 0x0, 0xc}}, @memwrite={0x6e, 0x30, @generic={0x8080000, 0x778, 0xbd4, 0x8}}, @eret={0xe6, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013dcf3, 0x7}}, @hvc={0x32, 0x40, {0x84000008, [0xb10b, 0x40, 0xffffffffffffffff, 0x1, 0xa10]}}, @uexit={0x0, 0x18, 0x9}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x2fe}}], 0x550}, &(0x7f00000006c0)=[@featur2={0x1, 0x31}], 0x1) ioctl$KVM_RUN(r5, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a89000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x2, 0xdddd0000, 0x2000, &(0x7f000000a000/0x2000)=nil}) 34m10.241268059s ago: executing program 6 (id=484): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x21) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x6) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r4, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x444802, 0x0) close(r5) r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x2) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f00000000c0)={0x10002, 0x3, 0xe000, 0x2000, &(0x7f0000e14000/0x2000)=nil}) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0) 34m7.583094081s ago: executing program 5 (id=485): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x68}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x68}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x80402, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, &(0x7f0000000140)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x7fe, 0x4, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x1, 0x1f8}}], 0x58}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x2, 0x100) (async) syz_kvm_vgic_v3_setup(r6, 0x2, 0x100) ioctl$KVM_RUN(r8, 0xae80, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r9, 0x3, 0x11, r3, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r10, 0xfffffffffffffffe) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r10, 0xffffffffffffffff) (async) syz_kvm_assert_syzos_uexit$arm64(r3, r10, 0xffffffffffffffff) 33m48.074981457s ago: executing program 6 (id=486): r0 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r0, 0x4068aea3, &(0x7f0000000000)) (async) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r0, 0x4068aea3, &(0x7f0000000000)) r1 = syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000bff000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r1, &(0x7f00000005c0)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x8000, [0x2, 0x5, 0x7f, 0x0, 0xa35]}}, @code={0xa, 0x9c, {"400983d200e0b8f2010080d2e20080d2a30180d2440180d2020000d460ab83d200e0b0f2810080d2020180d2630180d2040180d2020000d4602d9dd20080b8f2210080d2020180d2430080d2240080d2020000d4007008d580d19bd20060b0f2010180d2420080d2c30180d2240180d2020000d4000010d5007008d5007008d50000af9e007008d5"}}, @eret={0xe6, 0x18, 0x5}, @mrs={0xbe, 0x18, {0x603000000013e6d1}}, @mrs={0xbe, 0x18, {0x603000000013df7f}}, @svc={0x122, 0x40, {0x80, [0xff, 0x3, 0x4, 0x8d, 0x7]}}, @smc={0x1e, 0x40, {0x80008000, [0x36, 0x9, 0x3, 0x200, 0x6]}}, @irq_setup={0x46, 0x18, {0x0, 0x152}}, @msr={0x14, 0x20, {0x603000000013dcea, 0xad94}}, @hvc={0x32, 0x40, {0x84000053, [0x9, 0x2c000, 0x333]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x3f7}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0xc9}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x21d}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x2, 0x7, 0x7ff, 0x1}}, @hvc={0x32, 0x40, {0x80000000, [0x0, 0x80, 0x968c, 0x8000, 0x3]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x2, 0x8, 0x0, 0x2, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e537}}, @mrs={0xbe, 0x18, {0x46a2b7060293336a}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x3, 0x5, 0x0, 0x3ff, 0x1}}, @uexit={0x0, 0x18, 0xdff0}, @irq_setup={0x46, 0x18, {0x2, 0x167}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x4, 0x2, 0x4, 0x7fffffff, 0x2}}, @uexit={0x0, 0x18, 0x80}, @eret={0xe6, 0x18, 0x3a33}, @eret={0xe6, 0x18, 0x9}, @uexit={0x0, 0x18}, @code={0xa, 0x9c, {"a09e8ad20040b0f2210080d2a20180d2630180d2640080d2020000d4000000f8000040381f0020eb007008d5607c99d20080b0f2410180d2020080d2030080d2e40180d2020000d4000008d5800c89d200e0b8f2a10180d2620080d2430080d2240080d2020000d40024200ec09281d20060b8f2c10180d2020180d2430180d2840080d2020000d4"}}, @msr={0x14, 0x20, {0x6030000000130204, 0xfff}}, @uexit={0x0, 0x18, 0x3}], 0x508}, &(0x7f0000000600)=[@featur2={0x1, 0x88}], 0x1) (async) r2 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000005c0)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x8000, [0x2, 0x5, 0x7f, 0x0, 0xa35]}}, @code={0xa, 0x9c, {"400983d200e0b8f2010080d2e20080d2a30180d2440180d2020000d460ab83d200e0b0f2810080d2020180d2630180d2040180d2020000d4602d9dd20080b8f2210080d2020180d2430080d2240080d2020000d4007008d580d19bd20060b0f2010180d2420080d2c30180d2240180d2020000d4000010d5007008d5007008d50000af9e007008d5"}}, @eret={0xe6, 0x18, 0x5}, @mrs={0xbe, 0x18, {0x603000000013e6d1}}, @mrs={0xbe, 0x18, {0x603000000013df7f}}, @svc={0x122, 0x40, {0x80, [0xff, 0x3, 0x4, 0x8d, 0x7]}}, @smc={0x1e, 0x40, {0x80008000, [0x36, 0x9, 0x3, 0x200, 0x6]}}, @irq_setup={0x46, 0x18, {0x0, 0x152}}, @msr={0x14, 0x20, {0x603000000013dcea, 0xad94}}, @hvc={0x32, 0x40, {0x84000053, [0x9, 0x2c000, 0x333]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x3f7}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0xc9}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x21d}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x2, 0x7, 0x7ff, 0x1}}, @hvc={0x32, 0x40, {0x80000000, [0x0, 0x80, 0x968c, 0x8000, 0x3]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x2, 0x8, 0x0, 0x2, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e537}}, @mrs={0xbe, 0x18, {0x46a2b7060293336a}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x3, 0x5, 0x0, 0x3ff, 0x1}}, @uexit={0x0, 0x18, 0xdff0}, @irq_setup={0x46, 0x18, {0x2, 0x167}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x4, 0x2, 0x4, 0x7fffffff, 0x2}}, @uexit={0x0, 0x18, 0x80}, @eret={0xe6, 0x18, 0x3a33}, @eret={0xe6, 0x18, 0x9}, @uexit={0x0, 0x18}, @code={0xa, 0x9c, {"a09e8ad20040b0f2210080d2a20180d2630180d2640080d2020000d4000000f8000040381f0020eb007008d5607c99d20080b0f2410180d2020080d2030080d2e40180d2020000d4000008d5800c89d200e0b8f2a10180d2620080d2430080d2240080d2020000d40024200ec09281d20060b8f2c10180d2020180d2430180d2840080d2020000d4"}}, @msr={0x14, 0x20, {0x6030000000130204, 0xfff}}, @uexit={0x0, 0x18, 0x3}], 0x508}, &(0x7f0000000600)=[@featur2={0x1, 0x88}], 0x1) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r0, 0x4068aea3, &(0x7f0000000640)={0xdf, 0x0, 0x4000}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r0, 0x4068aea3, &(0x7f00000006c0)={0xdf, 0x0, 0x4000}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000740)={0x3, 0x101}) ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000780)={0x3, 0x1, 0x6000, 0x2000, &(0x7f0000ffb000/0x2000)=nil, 0x2, r0}) r3 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000d40)={0x0, &(0x7f0000000840)=[@eret={0xe6, 0x18, 0x4}, @uexit={0x0, 0x18, 0x5}, @mrs={0xbe, 0x18, {0x603000000013deb9}}, @smc={0x1e, 0x40, {0x7ccf4c206184e915, [0x6, 0x4, 0x3ff, 0x80000001, 0x7]}}, @irq_setup={0x46, 0x18, {0x4, 0x15}}, @eret={0xe6, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013debc}}, @mrs={0xbe, 0x18, {0x6730}}, @uexit={0x0, 0x18, 0x2312}, @hvc={0x32, 0x40, {0x80003fff, [0xc, 0xffffffffffffff6d, 0x5, 0xe7, 0x6]}}, @msr={0x14, 0x20, {0x603000000013dce1, 0x5}}, @svc={0x122, 0x40, {0x86000001, [0x1, 0x1, 0x8, 0x2, 0x9]}}, @eret={0xe6, 0x18, 0x3}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x2, 0x2, 0x4}}, @irq_setup={0x46, 0x18, {0x3, 0x2c7}}, @hvc={0x32, 0x40, {0x800, [0x7, 0xff, 0x1, 0x8000, 0x7ff]}}, @irq_setup={0x46, 0x18, {0x2, 0x33e}}, @code={0xa, 0x54, {"007008d50068216e00a0ff0d0084ff0d008008d50200a0d4008008d500a8a12e0098200ec0f68bd20060b0f2a10080d2820080d2830080d2040180d2020000d4"}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x40, 0xf, 0x8}}, @svc={0x122, 0x40, {0x2000000, [0x800, 0x4, 0x2, 0x6, 0x5]}}, @eret={0xe6, 0x18, 0x2}, @mrs={0xbe, 0x18, {0x603000000013df76}}, @smc={0x1e, 0x40, {0x4000, [0x1000, 0x7, 0x3ff, 0xe, 0x6]}}, @smc={0x1e, 0x40, {0xc5000020, [0x1762, 0x60000000000, 0x9, 0x3, 0x101]}}, @uexit={0x0, 0x18, 0x7}, @eret={0xe6, 0x18, 0x9}, @eret={0xe6, 0x18}, @msr={0x14, 0x20, {0x603000000013c214, 0x87}}, @hvc={0x32, 0x40, {0x84000014, [0x2fbe, 0x6, 0x0, 0x3, 0xa]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x3, 0x8, 0x3, 0x9e7c9ce3}}, @smc={0x1e, 0x40, {0x84000003, [0x2, 0x4a1, 0x8, 0x3, 0x7]}}], 0x4d4}, &(0x7f0000000d80)=[@featur1={0x1, 0x2}], 0x1) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000dc0)=@arm64={0xd, 0x6, 0x1, '\x00', 0x9}) (async) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000dc0)=@arm64={0xd, 0x6, 0x1, '\x00', 0x9}) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000e00)={0x4, 0xffffffffffffffff, 0x1}) (async) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000e00)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xc) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000e40)={0x2, 0xc000, 0x5, 0x1, 0x1}) ioctl$KVM_CAP_ARM_USER_IRQ(r0, 0x4068aea3, &(0x7f0000000e80)) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3e) (async) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3e) ioctl$KVM_HAS_DEVICE_ATTR_vm(r4, 0x4018aee3, &(0x7f0000000f40)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000f00)={0xd, 0x2}}) (async) ioctl$KVM_HAS_DEVICE_ATTR_vm(r4, 0x4018aee3, &(0x7f0000000f40)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000f00)={0xd, 0x2}}) ioctl$KVM_RESET_DIRTY_RINGS(r0, 0xaec7) (async) ioctl$KVM_RESET_DIRTY_RINGS(r0, 0xaec7) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000d9e000/0x4000)=nil, 0x0, 0x0, 0x80010, r2, 0x0) (async) r5 = mmap$KVM_VCPU(&(0x7f0000d9e000/0x4000)=nil, 0x0, 0x0, 0x80010, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000f80)="243dcc796c1709532dc5f2976d1bd206f59918ec45857e96f283e0ef14f189cbe4bc2c73d47393844ffb88a2fd762598d6b40c82e2b408a6a46db210ab06e87093f6e05dc2b6e07c", 0x0, 0x48) r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x1d) ioctl$KVM_CAP_HALT_POLL(r6, 0x4068aea3, &(0x7f0000001000)={0xb6, 0x0, 0x5}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffd000/0x1000)=nil, r7, 0x1000001, 0x1010, r3, 0x0) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) munmap$KVM_VCPU(r5, 0x80000000) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000001080)={0x0, 0x4000, 0x1}) 33m42.631560748s ago: executing program 5 (id=487): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f0000000180)=[@smc={0x1e, 0x40, {0xef000000, [0x0, 0x1, 0x2, 0x3, 0x4]}}, @hvc={0x32, 0x40, {0xef000000, [0x0, 0x1, 0x2, 0x3, 0x4]}}], 0x80}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000040)={0xe000, 0x2000}) 33m29.188685265s ago: executing program 6 (id=488): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0x80111500, 0xfffffffffffff000) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2000000008003d) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000000)=@attr_pmu_init) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xc2881, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r7 = eventfd2(0x6, 0x800) r8 = openat$kvm(0x0, &(0x7f0000000280), 0x40000, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000300)={0x0, 0x0, 0x23}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) r12 = eventfd2(0x1, 0x0) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000000100)={0x2, 0x8080000, 0x8, r12}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f00000002c0)={0xcae, 0x1000, 0x0, r7}) ioctl$KVM_SIGNAL_MSI(r9, 0x4020aea5, &(0x7f0000000140)={0xffffffff, 0xffffffff, 0x4}) r13 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, &(0x7f0000000200), 0x4f}, 0x0, 0x0) r15 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r15, 0x3, 0x40b2811, r14, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000240)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) 33m20.58111885s ago: executing program 5 (id=489): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b7b000/0x400000)=nil) r2 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000040)=@arm64_sys={0x603000000013c020, &(0x7f00000003c0)=0x6}) r3 = mmap$KVM_VCPU(&(0x7f0000df2000/0x2000)=nil, 0x930, 0x100000e, 0x8010, r2, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r4, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x8, 0x23ac5f9b426ec4b1, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0xdc032, 0xffffffffffffffff, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000100)="746abf250f7959c813e4adfb369b808022e69fe80cfadce4a1259e77bab54ac9749537b3d016bb7f745a6e22d2f9ff443f19467748a3fe02c239457600", 0x0, 0xfffffffffffffec5) 33m9.09024511s ago: executing program 6 (id=490): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4}) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r1, 0x4068aea3, &(0x7f0000000080)) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x2}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x0, 0x380000b, 0x10, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0xfffffffffffffffe}}, @msr={0x14, 0x20, {0x603000000013dce1, 0x7}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) r10 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r10, 0x4018aee1, &(0x7f00000011c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f00000000c0)=0x8}) r11 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f00000000c0)=@arm64_sys={0x603000000013df01, &(0x7f0000000100)=0x3}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8001, 0x55e}}) r15 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffd}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) 33m6.706010191s ago: executing program 5 (id=491): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x30) (async) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x30) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) (async) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) (async) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) eventfd2(0x8, 0x1) (async) r7 = eventfd2(0x8, 0x1) syz_kvm_vgic_v3_setup(r4, 0x1, 0x3a0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000140)={0x8000000}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) (async) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) (async) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (async) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0x7ff, 0x401}}) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x1}}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r12 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(r13, 0xffffffffffffffff, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r13, 0x4068aea3, &(0x7f0000000000)={0xe4, 0x0, 0x7}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x5000}) r14 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) 32m41.829667594s ago: executing program 6 (id=492): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(r0, 0xae01, 0xc) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f00000000c0)="442d0d703a08972c13c020c781e5a33a9265357d6b2ad690", 0x0, 0x18) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c807, &(0x7f0000000000)=0x1}) 32m18.179916466s ago: executing program 37 (id=491): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x30) (async) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x30) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) (async) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000a21000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) (async) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x210}}], 0x18}, 0x0, 0x0) eventfd2(0x8, 0x1) (async) r7 = eventfd2(0x8, 0x1) syz_kvm_vgic_v3_setup(r4, 0x1, 0x3a0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000140)={0x8000000}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) (async) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x6, 0x8000000, 0x0, r7}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) (async) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (async) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0x7ff, 0x401}}) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x1}}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r12 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(r13, 0xffffffffffffffff, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r13, 0x4068aea3, &(0x7f0000000000)={0xe4, 0x0, 0x7}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x5000}) r14 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) 31m55.668041576s ago: executing program 38 (id=492): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(r0, 0xae01, 0xc) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f00000000c0)="442d0d703a08972c13c020c781e5a33a9265357d6b2ad690", 0x0, 0x18) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c807, &(0x7f0000000000)=0x1}) 14m40.492003067s ago: executing program 7 (id=528): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000080)={0xc82, 0x0, 0xb5e4996915292310}}) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000040)) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=[@hvc={0x32, 0x40, {0x8600ff01, [0x7, 0x9, 0x8, 0xfffffffffffffff8, 0x100]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_S390_VCPU_FAULT(r5, 0x4008ae52, &(0x7f0000000000)=0x465) 14m12.326536855s ago: executing program 7 (id=530): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x60000, 0x0) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x260) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = eventfd2(0x1, 0x80000) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x81, 0x200000, 0x0, r3}) ioctl$KVM_CREATE_VM(r2, 0x400454cc, 0x110c230020) 14m10.618314041s ago: executing program 8 (id=531): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}], 0x28}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000100)=@arm64_extra={0x603000000013c103, &(0x7f00000000c0)=0xa0}) r4 = openat$kvm(0x0, &(0x7f0000000240), 0x480000, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r7, 0x4040ae79, &(0x7f0000000080)={0x7, 0xfffffffffffffffb, 0x2, 0xffffffffffffffff, 0x8a4fa382f1515d0b}) r8 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r9 = syz_kvm_vgic_v3_setup(r8, 0x3, 0xc0) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x1, &(0x7f0000000100)=0x8}) r10 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) mmap$KVM_VCPU(&(0x7f0000764000/0x4000)=nil, 0x930, 0x3, 0x4102932, r10, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r12 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r12, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) r14 = mmap$KVM_VCPU(&(0x7f0000647000/0x4000)=nil, r13, 0x0, 0x810, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r14, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r15 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r15, 0xae04) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, r12, 0x3000002, 0x8a031, 0xffffffffffffffff, 0x0) r16 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r17 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r16, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, r17, 0x1, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c6c000/0x4000)=nil, r17, 0x0, 0x810, r3, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) 13m49.007671021s ago: executing program 7 (id=532): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xa) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff}) ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000040)={0x10201, 0x0, &(0x7f0000ffb000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x18) ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000480)={0x10001, 0x2c0, 0x40, &(0x7f0000000080)=[0x6, 0x6, 0x4, 0x6, 0x0, 0x4, 0x9c98, 0x400, 0x9, 0x4, 0x9, 0x4, 0x1000, 0x2, 0xfffffffffffffffa, 0x7, 0x101, 0x7ff, 0x8, 0x83ee, 0x2, 0x9, 0x23a, 0x1ff8000000000000, 0x358, 0x8, 0xffffffff, 0x1, 0x4, 0xfffffffffffffffd, 0x8, 0x2, 0x8, 0x6, 0x6, 0x4, 0x42, 0xffffffffffffffff, 0x7, 0x0, 0x4, 0x3, 0x5, 0x6, 0x8000000000000001, 0x1, 0x3, 0xa, 0x7, 0x80, 0x7, 0x2, 0x9, 0x92e2, 0x7, 0xfff, 0x2, 0x3ff, 0x2, 0x0, 0x0, 0x456a, 0xe, 0xffffffffffffffff, 0x7a2e58, 0x8000000000000000, 0x9, 0x5, 0xa, 0x1000, 0x2aa, 0xfffffffffffffff8, 0x8, 0xffffffff, 0x7, 0x4, 0x1, 0x7, 0x4, 0x80, 0xffff, 0x80000000, 0x8, 0x101, 0x9, 0x9, 0x6, 0x1, 0x4, 0x0, 0x8, 0xe6cf, 0xca1, 0x100000000, 0x7fff, 0x4, 0x0, 0x101, 0x2fd4000000000, 0x9, 0x7fffffffffffffff, 0x800, 0x2, 0x1000, 0x0, 0x4, 0xfff, 0x200, 0x2, 0x4, 0x5, 0x1, 0x40, 0x7fffffffffffffff, 0x10001, 0x8000, 0x7, 0x4, 0x5, 0x200000000, 0x7b7b, 0x7, 0x0, 0x10000, 0x6, 0x9, 0x5, 0x8]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_ARM_PREFERRED_TARGET(r3, 0x8020aeaf, &(0x7f00000004c0)) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000540)=@riscv64_core={0x803000000020000c, &(0x7f0000000500)=0x3ff}) r4 = syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000580)=@x86={0x3, 0x7, 0x5, 0x0, 0x4, 0x70, 0x9, 0x2, 0xb, 0x5, 0x8, 0x0, 0x0, 0x7, 0xa66, 0xa, 0x3b, 0xfd, 0x81, '\x00', 0xda, 0x4000000000}) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f00000005c0)=0x6) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000640)=@attr_arm64={0x0, 0x5, 0x4, &(0x7f0000000600)}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000680)={0xe, 0xeb2}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f00000006c0)={0x1, 0xd4}) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x6) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f0000000740)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000700)={0x3, 0x2, 0x1}}) r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2e) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000780)={0x1ff, 0x0, 0x10000, 0x1000, &(0x7f0000f81000/0x1000)=nil}) syz_kvm_vgic_v3_setup(r2, 0x4, 0xc0) ioctl$KVM_CHECK_EXTENSION_VM(r6, 0xae03, 0x10001) r8 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000e00)={0x0, &(0x7f00000007c0)=[@eret={0xe6, 0x18, 0x9}, @eret={0xe6, 0x18, 0x8001}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x6d}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xdd7, 0x0, 0xc}}, @irq_setup={0x46, 0x18, {0x0, 0xfa}}, @code={0xa, 0x84, {"80839cd200c0b0f2610080d2020180d2430180d2040080d2020000d4000028d5609d96d20020b0f2610180d2420180d2230080d2c40180d2020000d4007008d500d8217e007008d5008008d50060a00d0000407d601983d200e0b0f2010080d2020180d2e30080d2640180d2020000d4"}}, @svc={0x122, 0x40, {0x8, [0x401, 0x3, 0xe, 0x4, 0x4]}}, @mrs={0xbe, 0x18, {0x603000000013c4ca}}, @uexit={0x0, 0x18, 0x5}, @svc={0x122, 0x40, {0x8600ff01, [0x962, 0x100, 0x1b18897a, 0x5, 0x5186ae7a]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x10040, 0x9, 0x7}}, @msr={0x14, 0x20, {0x603000000013e64a, 0xff}}, @svc={0x122, 0x40, {0x80000000, [0xfffffffffffffff7, 0x4, 0x6, 0xf2, 0x3]}}, @msr={0x14, 0x20, {0x603000000013e661, 0x8000000000000001}}, @msr={0x14, 0x20, {0x603000000013c032, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0x1, 0x7ff, 0x7}}, @irq_setup={0x46, 0x18, {0x1, 0x6}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x3d2}}, @hvc={0x32, 0x40, {0x2, [0x6, 0x6, 0x0, 0x101]}}, @hvc={0x32, 0x40, {0x8400000b, [0x100, 0x1, 0x5, 0xff, 0x1]}}, @code={0xa, 0x84, {"208095d20000b8f2610180d2820080d2e30080d2040180d2020000d4007008d5000008d5000028d500a4e00d609281d20000b8f2010180d2220180d2a30180d2840080d2020000d40020400ca0a894d200a0b8f2010080d2a20080d2230080d2c40080d2020000d4007008d50004202e"}}, @eret={0xe6, 0x18, 0x8000000000000001}, @code={0xa, 0x84, {"008008d5008008d5002c207e000008d520ae89d20080b8f2010180d2020180d2e30080d2640180d2020000d4e00e95d20000b8f2010080d2220180d2a30080d2040080d2020000d400a8300e0000261e000008d5201194d200e0b8f2e10180d2020180d2030180d2e40080d2020000d4"}}, @hvc={0x32, 0x40, {0xc4000004, [0x200, 0x8, 0x6, 0x8000000000000001, 0xffffffff80000001]}}, @memwrite={0x6e, 0x30, @generic={0xffffffff, 0x5f5, 0x7, 0xc}}, @hvc={0x32, 0x40, {0x84000006, [0x7, 0x3, 0x1, 0x9, 0x80000000]}}, @hvc={0x32, 0x40, {0xc4000005, [0x471, 0x3, 0x7, 0x5, 0x4]}}, @irq_setup={0x46, 0x18, {0x3, 0x51}}, @eret={0xe6, 0x18, 0x6}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe0, 0xfffffffffffffff9, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013c4d3}}, @irq_setup={0x46, 0x18, {0x2, 0x229}}], 0x62c}, &(0x7f0000000e40)=[@featur2={0x1, 0x13}], 0x1) ioctl$KVM_SET_SREGS(r8, 0x4000ae84, &(0x7f0000000e80)={{0x41000, 0xd000, 0xb, 0xf2, 0x62, 0x7, 0x0, 0x81, 0x9, 0xf, 0x6, 0x6}, {0x60000, 0x6000, 0xb, 0x1, 0x13, 0x9, 0x6, 0x7f, 0x7, 0x40, 0x4, 0x7}, {0xffff6fff, 0x2, 0x8, 0x7, 0x8, 0x4, 0x7d, 0x9, 0x20, 0x9, 0xf9, 0xe}, {0x202c18e2166734ed, 0x1000, 0x4, 0x4, 0xc, 0x1, 0x7d, 0xf, 0xfa, 0x8, 0x6, 0x9}, {0xd000, 0xdddd0000, 0x10, 0x0, 0x90, 0x7, 0x7, 0x7, 0x0, 0x2, 0xe, 0xbc}, {0x1, 0x8000000, 0xa, 0x84, 0xff, 0xc0, 0x7, 0x0, 0x8, 0x2, 0x7, 0x7c}, {0x1000, 0xf000, 0xb, 0x7f, 0x3, 0x5, 0x5, 0x0, 0x9c, 0x1, 0x9, 0xff}, {0x2, 0x200000, 0xd, 0xf1, 0x1, 0x3, 0x0, 0x7, 0x3d, 0x2, 0x6, 0x5}, {0xffff1000, 0x6}, {0x54000, 0x8001}, 0x10016, 0x0, 0x8000000, 0x12320, 0xb, 0xe900, 0x54000, [0xd9, 0xc2, 0x7f, 0x5]}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000fc0)={0x1, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000001000)=@x86={0x0, 0x7, 0x6, 0x0, 0x8001, 0x6, 0x2, 0x4, 0xfa, 0x58, 0xff, 0xe, 0x0, 0xfffffff7, 0x2, 0x1, 0xff, 0x7, 0x1, '\x00', 0x0, 0x7ff}) close(r9) ioctl$KVM_GET_STATS_FD_cpu(r3, 0xaece) ioctl$KVM_SET_DEVICE_ATTR_vm(r7, 0x4018aee1, &(0x7f0000001080)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000001040)={0x4, 0x0, 0x2}}) ioctl$KVM_GET_REGS(r8, 0x8360ae81, &(0x7f00000010c0)) 13m43.610776115s ago: executing program 8 (id=533): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r1, 0x5421, &(0x7f0000000100)={0x0, 0x11}) (async) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0xcf}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8000}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (async) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x2b) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dcf0, 0x7fff}}], 0x20}, 0x0, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000000)=@attr_set_pmu={0x0, 0x0, 0x3, 0xfffffffffffffffe}) (async) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (async) r12 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_GET_API_VERSION(r12, 0xae00, 0x0) (async) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000769000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000380)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000006, [0x7, 0x3, 0x2, 0x3f8b, 0xf7b0]}}], 0x40}, &(0x7f00000000c0)=[@featur2={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r15, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x2010, 0xffffffffffffffff, 0x0) 13m27.812186894s ago: executing program 7 (id=534): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x8400000a, [0x84000006, 0x7, 0xaca, 0x2, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x7, 0xf, 0x0, 0x9, 0x9, 0x86, 0x2, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x408011, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x93}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r6, &(0x7f00000001c0)=0x4000000001, 0xfdef) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f0000000000)=0x2) 13m11.441663829s ago: executing program 8 (id=535): munmap(&(0x7f0000865000/0x4000)=nil, 0x4000) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2e) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x400000000000012) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x380, 0x8, 0x4}}, @irq_setup={0x46, 0x18, {0x2, 0x6f}}, @irq_setup={0x46, 0x18, {0x1, 0xd6}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x1, 0x2, 0xffffffff, 0x4}}, @hvc={0x32, 0x40, {0x2000000, [0x2, 0x80, 0x2, 0xadf3, 0x4]}}, @irq_setup={0x46, 0x18, {0x1, 0xa9}}, @mrs={0xbe, 0x18, {0x603000000013ff10}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x10, 0x2, 0x9, 0x3}}, @smc={0x1e, 0x40, {0x80003fff, [0x7, 0x8, 0x8000, 0x2]}}, @mrs={0xbe, 0x18}, @smc={0x1e, 0x40, {0x4000110, [0x2, 0x6, 0x8, 0x4]}}, @code={0xa, 0x84, {"00d09bd20080b8f2810080d2220080d2030180d2440080d2020000d4007008d50064002f000028d50000789e20ba8ad20060b8f2e10080d2e20080d2430180d2240080d2020000d4005c207e801d81d20000b0f2e10080d2420080d2030180d2c40080d2020000d4000c8038008008d5"}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x3, 0x7, 0x0, 0x3, 0x1}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x3, 0x3, 0x3, 0xfffffffb}}, @eret={0xe6, 0x18}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe8, 0x7f, 0x4}}], 0x2ec}, 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bff000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x4, 0x6, 0x0}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 12m57.409737658s ago: executing program 7 (id=536): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0x4}) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@code={0xa, 0x18, {"7f2003d5"}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x0, 0x81}) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000004}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r5, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x3, 0x10000000004}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000005}}], 0x50}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r7, 0xae80, 0x0) 12m42.417702906s ago: executing program 8 (id=537): ioctl$KVM_SET_GUEST_DEBUG_arm64(0xffffffffffffffff, 0x4208ae9b, &(0x7f0000000040)={0x20003, 0x0, {[0x7, 0x5, 0xb598000000000000, 0x200, 0xfb, 0xfffffffffffffff8, 0x6698, 0x1, 0xf, 0x9, 0x7, 0x6, 0x3, 0xfffffffffffffff8, 0x7f8000], [0x9, 0x6, 0x2, 0x44, 0x100000001, 0x40, 0x800, 0x2, 0x0, 0x6, 0xffffffff, 0x9, 0x2, 0xc, 0x8, 0xffffffffffffff00], [0xb, 0x8a9, 0xf9, 0x2, 0x7, 0x5, 0x3, 0xf9, 0x200, 0x100, 0x9, 0x6, 0x101, 0x2000000000000001, 0x10c, 0x3], [0x35aa36e9, 0x8, 0x7, 0xf, 0x9, 0x0, 0xc4, 0x7f, 0x7fffffffffffffff, 0x9, 0xfffffffffffffff8, 0x2, 0x4000000000007, 0x8f, 0x7, 0x60000]}}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r1, 0x4010aeb5, &(0x7f0000000000)={0x7, 0xfffffffffffffffd}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000040)={0xdf, 0x0, 0x8000}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000000)="7cfaa2bfd6dd76375aa1bde04fceeb33743b07d73b3e9aac", 0x0, 0xffffffffffffff94) r4 = eventfd2(0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r6, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0x86000000, [0x10000, 0xfff, 0x7e8, 0x7, 0x4000004]}}], 0x40}, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r4, 0x4020940d, 0x20000000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r9 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r10, &(0x7f00000001c0), 0xe80) 12m30.739127789s ago: executing program 7 (id=538): ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x9, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x9, 0x5, &(0x7f0000000040)=0x3}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x40, &(0x7f00000000c0)=0x2}) munmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, &(0x7f00000001c0)=@attr_arm64={0x0, 0x3, 0x1, &(0x7f0000000180)=0x100000000}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x22200, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xb7) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000780)={0x0, &(0x7f0000000240)=[@eret={0xe6, 0x18, 0x6}, @mrs={0xbe, 0x18, {0x603000000013c3a0}}, @uexit={0x0, 0x18, 0x7}, @eret={0xe6, 0x18, 0x5}, @smc={0x1e, 0x40, {0xc4000011, [0x9d, 0x8000000000000000, 0x0, 0x0, 0x4]}}, @smc={0x1e, 0x40, {0x84000000, [0x1000, 0x80000000, 0xc9, 0xb, 0x69]}}, @msr={0x14, 0x20, {0x603000000013e288, 0x9}}, @hvc={0x32, 0x40, {0x84000004, [0xfff, 0x19df, 0x865, 0x1, 0x80]}}, @its_setup={0x82, 0x28, {0x2, 0x0, 0x3f3}}, @hvc={0x32, 0x40, {0x1000, [0xcd, 0xdf9, 0x8, 0x0, 0x6]}}, @hvc={0x32, 0x40, {0x8400000d, [0x7, 0x400, 0x7, 0x7, 0xfffffffffffffc00]}}, @msr={0x14, 0x20, {0x603000000013df56, 0x97}}, @uexit={0x0, 0x18, 0x7fffffffffffffff}, @smc={0x1e, 0x40, {0xc4000012, [0x60000000000, 0x4, 0x7, 0x0, 0x8]}}, @code={0xa, 0x6c, {"000028d5408e89d20020b0f2210180d2a20180d2c30080d2040080d2020000d40040ff0d0004803c007008d5007008d5000028d50038200e00b8315e205187d20060b0f2210080d2020180d2a30180d2840080d2020000d4"}}, @code={0xa, 0x84, {"000028d5007008d50000407900ef94d20040b0f2010080d2a20080d2030180d2e40080d2020000d4000008d500668bd20020b8f2210180d2e20080d2a30180d2240080d2020000d4000028d5e06499d200a0b0f2a10180d2e20080d2430080d2240180d2020000d4000028d5003c202e"}}, @smc={0x1e, 0x40, {0x84000014, [0x0, 0x36d, 0xb, 0xfe14, 0x6]}}, @code={0xa, 0x54, {"00a0df0d00001fd6005c202e000028d50000409b0084007f000008d5000040a8008008d560a387d20080b0f2010080d2c20180d2630180d2640080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x1, 0x16}}, @eret={0xe6, 0x18, 0x9}, @svc={0x122, 0x40, {0x4, [0x6, 0x2, 0x10, 0x1e, 0x1]}}, @uexit={0x0, 0x18, 0x15}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8, 0x5d1e91a8, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18, 0x8000000000000000, 0x5}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x1, 0xd, 0x3, 0x3, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xe00, 0x2, 0x6}}], 0x524}, &(0x7f00000007c0)=[@featur2={0x1, 0x40}], 0x1) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000800)={0x1fe, 0x2, 0x4, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000c40)={0x0, &(0x7f0000000840)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x327}}, @smc={0x1e, 0x40, {0x200, [0x7d8e, 0x1, 0x0, 0x7fffffff, 0x3]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0x9, 0x6, 0x7, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x11}}, @smc={0x1e, 0x40, {0xc4000011, [0x7fffffff, 0x3, 0x0, 0x9, 0x8000]}}, @eret={0xe6, 0x18, 0x81}, @irq_setup={0x46, 0x18, {0x1, 0x38}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8000, 0x7, 0xf}}, @svc={0x122, 0x40, {0x84000010, [0x6, 0x7ff, 0x10001, 0xffffffffffff8c34, 0x3]}}, @irq_setup={0x46, 0x18, {0x0, 0x141}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x2, 0x10, 0x1, 0x3, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e65b}}, @irq_setup={0x46, 0x18, {0x1, 0x1f1}}, @svc={0x122, 0x40, {0x80000001, [0xfffffffffffffff8, 0x6, 0x8000000000000001, 0xfffffffffffffff5, 0x1]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18, 0x1, 0x4}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x2b1}}, @svc={0x122, 0x40, {0x100, [0x400, 0x4, 0x4, 0x4, 0xffffffff]}}, @irq_setup={0x46, 0x18, {0x4, 0x10a}}, @hvc={0x32, 0x40, {0x84000003, [0x4, 0x7fff, 0xb, 0x7fff, 0xffffffffffffffff]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x78, 0x4}}, @irq_setup={0x46, 0x18, {0x1, 0xa1}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18}}, @svc={0x122, 0x40, {0xc400000d, [0x1, 0x80000000, 0x7, 0x4, 0x5]}}], 0x3f0}, &(0x7f0000000c80)=[@featur1={0x1, 0x80}], 0x1) mmap$KVM_VCPU(&(0x7f0000f08000/0x1000)=nil, r3, 0x1, 0x20010, r7, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_ARM_PREFERRED_TARGET(r7, 0x8020aeaf, &(0x7f0000000cc0)) write$eventfd(r6, &(0x7f0000000d00)=0x10000, 0x8) close(r5) r8 = eventfd2(0x1, 0x80000) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000d40)={0xb4ad, 0x6000, 0x1, r8, 0xa}) mmap$KVM_VCPU(&(0x7f0000d87000/0x1000)=nil, r3, 0x0, 0x10010, r7, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x32) r9 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x3d) ioctl$KVM_CHECK_EXTENSION_VM(r9, 0xae03, 0x7) ioctl$KVM_SET_REGS(r5, 0x4360ae82, &(0x7f0000000d80)={[0x6, 0x7, 0x9, 0xf, 0xb5bd, 0x3, 0x100000001, 0x8, 0x8, 0xc, 0x2, 0x0, 0x3, 0x3, 0x1, 0xf], 0x1000, 0x285004}) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2) r10 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x23) ioctl$KVM_DIRTY_TLB(r7, 0x4010aeaa, &(0x7f0000000e40)={0xfffffffffffffffa, 0x6}) ioctl$KVM_CAP_ARM_USER_IRQ(r10, 0x4068aea3, &(0x7f0000000e80)) 12m12.78023914s ago: executing program 8 (id=539): r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x101fffe, [0x101, 0x5, 0x4, 0x401, 0x4]}}, @hvc={0x32, 0x40, {0x400, [0x10001, 0x0, 0x3, 0x691, 0x8]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x400, 0x0, 0x4}}], 0xb0}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r0, 0x4000ae84, &(0x7f0000000140)={{0xd000, 0x50000, 0x9, 0x5, 0x20, 0x5, 0x26, 0x4, 0x5, 0x2, 0x3, 0x7e}, {0x26000, 0x70000, 0xa, 0x1c, 0x7, 0x6, 0x60, 0xc, 0x2, 0x5, 0xf8, 0x2}, {0x1000, 0x80a0000, 0x4, 0xfe, 0x2, 0x7, 0x79, 0xe, 0x7, 0x81, 0x3, 0xe}, {0x80a0000, 0x1, 0x10, 0x7, 0x8, 0x5, 0x3, 0x0, 0x7, 0xb}, {0x7000, 0x10000, 0xf, 0xa, 0x8c, 0x4, 0xc, 0x46, 0x40, 0x2, 0x83, 0x6}, {0x2000, 0x30000, 0x8, 0x5, 0x6, 0x1, 0x6, 0x8d, 0xe, 0xfe, 0x4, 0x8}, {0xdddd1000, 0xeeee0000, 0x4, 0x1, 0x9, 0x9, 0x3, 0x2, 0x7, 0x9, 0xac, 0x4}, {0x4000, 0x8096001, 0x10, 0x9, 0x7, 0xb, 0x96, 0x7, 0x7, 0x8, 0x9, 0x3}, {0xeeee8000, 0x4}, {0xf000, 0x9d}, 0x40010, 0x0, 0xffff1000, 0x104404, 0x0, 0x0, 0x3000, [0x649, 0x2, 0x7, 0x6]}) r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000006c0)={0x0, &(0x7f0000000280)=[@irq_setup={0x46, 0x18, {0x0, 0x20f}}, @mrs={0xbe, 0x18, {0x603000000013c02c}}, @mrs={0xbe, 0x18, {0x603000000013e721}}, @msr={0x14, 0x20, {0x603000000013c4f2, 0x2}}, @hvc={0x32, 0x40, {0x0, [0x5, 0x3, 0x8, 0x4a88, 0x7fffffffffffffff]}}, @eret={0xe6, 0x18, 0x2}, @hvc={0x32, 0x40, {0xc400000c, [0x2359, 0x1, 0x7, 0x1, 0xfffffffffffffff7]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x80, 0x1, 0x8}}, @mrs={0xbe, 0x18, {0x603000000013e6d9}}, @mrs={0xbe, 0x18, {0x603000000013e6d3}}, @msr={0x14, 0x20, {0x603000000013deee, 0x8000000000000001}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x0, 0x5, 0x6}}, @eret={0xe6, 0x18, 0x100}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x3, 0xc, 0x1, 0x800, 0x1}}, @mrs={0xbe, 0x18, {0x603000000013c108}}, @code={0xa, 0x54, {"000008d500e4006f007008d500000035000020ea3f2003d5007008d500a8215e003181d20000b8f2610080d2820180d2c30080d2a40080d2020000d40028601e"}}, @code={0xa, 0xb4, {"007008d5001ca02e00044038000020cb202287d200e0b8f2010080d2820080d2a30080d2440080d2020000d4a06085d20000b0f2410080d2220180d2a30080d2e40080d2020000d4a03e90d200a0b8f2210180d2220080d2e30080d2c40180d2020000d440a18ad200c0b0f2210180d2620180d2030080d2240180d2020000d4000028d540f493d20080b8f2a10180d2a20180d2630180d2e40180d2020000d4"}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf10, 0x3}}, @hvc={0x32, 0x40, {0xc4000011, [0x7, 0x1, 0x1cb8, 0x9, 0x80000000]}}, @uexit={0x0, 0x18, 0x6}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x3, 0x9, 0x6, 0x2}}, @eret={0xe6, 0x18, 0x6}, @svc={0x122, 0x40, {0x84000009, [0x400, 0x5, 0x200000000, 0x9, 0xe322]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x201}}], 0x440}, &(0x7f0000000700)=[@featur1={0x1, 0x80}], 0x1) ioctl$KVM_SET_SIGNAL_MASK(r1, 0x4004ae8b, &(0x7f0000000740)={0x15, "fab55880141468060cdbcd26d98a8b5750aad03c00"}) r2 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000a40)=[{0x0, &(0x7f0000000780)=[@hvc={0x32, 0x40, {0xc4000014, [0x4, 0x3b8d, 0x22e, 0x6, 0x40]}}, @mrs={0xbe, 0x18, {0x19f7}}, @uexit={0x0, 0x18, 0x2}, @code={0xa, 0xb4, {"000028d50000007d408695d200e0b8f2010080d2c20080d2430080d2240080d2020000d480b18bd20060b0f2010080d2220180d2030080d2040080d2020000d4402e80d20060b8f2810080d2420080d2e30180d2840080d2020000d40050000e000008d520cb8cd20000b8f2c10180d2a20080d2430180d2440080d2020000d4000028d5202789d200c0b0f2010080d2620080d2a30180d2240180d2020000d4"}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0xb0, 0x9, 0x6}}, @uexit={0x0, 0x18, 0x7}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xc, 0x8, 0xfff, 0x4}}, @memwrite={0x6e, 0x30, @generic={0x70000, 0x5eb, 0x2, 0x1}}, @uexit={0x0, 0x18, 0x369}, @mrs={0xbe, 0x18, {0x603000000013e711}}, @eret={0xe6, 0x18, 0x1}, @irq_setup={0x46, 0x18, {0x1, 0xf9}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0xea}}, @msr={0x14, 0x20, {0x6030000000138074, 0x7}}, @hvc={0x32, 0x40, {0x0, [0x666, 0x1, 0x9, 0x5, 0x5684]}}], 0x2ac}], 0x1, 0x0, &(0x7f0000000a80)=[@featur2={0x1, 0x26}], 0x1) ioctl$KVM_SET_REGS(r0, 0x4360ae82, &(0x7f0000000ac0)={[0x10001, 0x95f2, 0xa551, 0x2, 0x6, 0x4, 0xffffffffffffffff, 0xff, 0xfffffffffffffff8, 0x3, 0x6, 0x3, 0x40, 0x5, 0xaa61, 0x5], 0x4000, 0x100800}) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000bc0)=@attr_other={0x0, 0x7, 0x3, &(0x7f0000000b80)=0x9}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000c00)={0x10001, 0x0, 0x5000, 0x2000, &(0x7f0000f4b000/0x2000)=nil}) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000c80)=@arm64_extra={0x603000000013c03f, &(0x7f0000000c40)=0x400}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000d00)=@attr_riscv64=@attr_aplic={0x0, 0x1, @valid=0x2004, &(0x7f0000000cc0)=0xffffffffffffffff}) write$eventfd(r2, &(0x7f0000000d40)=0x7, 0x8) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000d80), 0x2c440, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2c) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000800000/0x800000)=nil, r5, 0x1000000, 0x30, r0, 0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000dc0)={r2, 0x401, 0x1, r2}) ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f0000000e00)={0x3, 0x8080000}) ioctl$KVM_GET_SREGS(r2, 0x8000ae83, &(0x7f0000000e40)) ioctl$KVM_RUN(r1, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f0000000fc0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000f80)=0x7}) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r2, 0x4068aea3, &(0x7f0000001000)) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000001080)={0x10002, 0x0, 0xb000, 0x2000, &(0x7f0000df9000/0x2000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000001100)=@attr_arm64={0x0, 0x5, 0x3, &(0x7f00000010c0)=0xf}) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x18) ioctl$KVM_HAS_DEVICE_ATTR_vm(r7, 0x4018aee3, &(0x7f0000001180)=@attr_other={0x0, 0x1, 0x9, &(0x7f0000001140)=0x10001}) ioctl$KVM_GET_SREGS(r1, 0x8000ae83, &(0x7f00000011c0)) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000001300)={0x1fe, 0x2, 0x0, 0x2000, &(0x7f0000830000/0x2000)=nil}) 11m53.793264635s ago: executing program 8 (id=540): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x280000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f00000000c0)=@arm64_bitmap={0x6030000000160000, &(0x7f0000000100)=0x8}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r6, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000b74000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=[@smc={0x1e, 0x40, {0xc5000020, [0x6, 0x5f9, 0x3, 0x401, 0x1000]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0xb4, 0x1, 0x0}) 11m39.450972082s ago: executing program 39 (id=538): ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x9, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x9, 0x5, &(0x7f0000000040)=0x3}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x40, &(0x7f00000000c0)=0x2}) munmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, &(0x7f00000001c0)=@attr_arm64={0x0, 0x3, 0x1, &(0x7f0000000180)=0x100000000}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x22200, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xb7) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000780)={0x0, &(0x7f0000000240)=[@eret={0xe6, 0x18, 0x6}, @mrs={0xbe, 0x18, {0x603000000013c3a0}}, @uexit={0x0, 0x18, 0x7}, @eret={0xe6, 0x18, 0x5}, @smc={0x1e, 0x40, {0xc4000011, [0x9d, 0x8000000000000000, 0x0, 0x0, 0x4]}}, @smc={0x1e, 0x40, {0x84000000, [0x1000, 0x80000000, 0xc9, 0xb, 0x69]}}, @msr={0x14, 0x20, {0x603000000013e288, 0x9}}, @hvc={0x32, 0x40, {0x84000004, [0xfff, 0x19df, 0x865, 0x1, 0x80]}}, @its_setup={0x82, 0x28, {0x2, 0x0, 0x3f3}}, @hvc={0x32, 0x40, {0x1000, [0xcd, 0xdf9, 0x8, 0x0, 0x6]}}, @hvc={0x32, 0x40, {0x8400000d, [0x7, 0x400, 0x7, 0x7, 0xfffffffffffffc00]}}, @msr={0x14, 0x20, {0x603000000013df56, 0x97}}, @uexit={0x0, 0x18, 0x7fffffffffffffff}, @smc={0x1e, 0x40, {0xc4000012, [0x60000000000, 0x4, 0x7, 0x0, 0x8]}}, @code={0xa, 0x6c, {"000028d5408e89d20020b0f2210180d2a20180d2c30080d2040080d2020000d40040ff0d0004803c007008d5007008d5000028d50038200e00b8315e205187d20060b0f2210080d2020180d2a30180d2840080d2020000d4"}}, @code={0xa, 0x84, {"000028d5007008d50000407900ef94d20040b0f2010080d2a20080d2030180d2e40080d2020000d4000008d500668bd20020b8f2210180d2e20080d2a30180d2240080d2020000d4000028d5e06499d200a0b0f2a10180d2e20080d2430080d2240180d2020000d4000028d5003c202e"}}, @smc={0x1e, 0x40, {0x84000014, [0x0, 0x36d, 0xb, 0xfe14, 0x6]}}, @code={0xa, 0x54, {"00a0df0d00001fd6005c202e000028d50000409b0084007f000008d5000040a8008008d560a387d20080b0f2010080d2c20180d2630180d2640080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x1, 0x16}}, @eret={0xe6, 0x18, 0x9}, @svc={0x122, 0x40, {0x4, [0x6, 0x2, 0x10, 0x1e, 0x1]}}, @uexit={0x0, 0x18, 0x15}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8, 0x5d1e91a8, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18, 0x8000000000000000, 0x5}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x1, 0xd, 0x3, 0x3, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xe00, 0x2, 0x6}}], 0x524}, &(0x7f00000007c0)=[@featur2={0x1, 0x40}], 0x1) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000800)={0x1fe, 0x2, 0x4, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000c40)={0x0, &(0x7f0000000840)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x327}}, @smc={0x1e, 0x40, {0x200, [0x7d8e, 0x1, 0x0, 0x7fffffff, 0x3]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0x9, 0x6, 0x7, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x11}}, @smc={0x1e, 0x40, {0xc4000011, [0x7fffffff, 0x3, 0x0, 0x9, 0x8000]}}, @eret={0xe6, 0x18, 0x81}, @irq_setup={0x46, 0x18, {0x1, 0x38}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8000, 0x7, 0xf}}, @svc={0x122, 0x40, {0x84000010, [0x6, 0x7ff, 0x10001, 0xffffffffffff8c34, 0x3]}}, @irq_setup={0x46, 0x18, {0x0, 0x141}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x2, 0x10, 0x1, 0x3, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e65b}}, @irq_setup={0x46, 0x18, {0x1, 0x1f1}}, @svc={0x122, 0x40, {0x80000001, [0xfffffffffffffff8, 0x6, 0x8000000000000001, 0xfffffffffffffff5, 0x1]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18, 0x1, 0x4}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x2b1}}, @svc={0x122, 0x40, {0x100, [0x400, 0x4, 0x4, 0x4, 0xffffffff]}}, @irq_setup={0x46, 0x18, {0x4, 0x10a}}, @hvc={0x32, 0x40, {0x84000003, [0x4, 0x7fff, 0xb, 0x7fff, 0xffffffffffffffff]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x78, 0x4}}, @irq_setup={0x46, 0x18, {0x1, 0xa1}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x18}}, @svc={0x122, 0x40, {0xc400000d, [0x1, 0x80000000, 0x7, 0x4, 0x5]}}], 0x3f0}, &(0x7f0000000c80)=[@featur1={0x1, 0x80}], 0x1) mmap$KVM_VCPU(&(0x7f0000f08000/0x1000)=nil, r3, 0x1, 0x20010, r7, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_ARM_PREFERRED_TARGET(r7, 0x8020aeaf, &(0x7f0000000cc0)) write$eventfd(r6, &(0x7f0000000d00)=0x10000, 0x8) close(r5) r8 = eventfd2(0x1, 0x80000) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000d40)={0xb4ad, 0x6000, 0x1, r8, 0xa}) mmap$KVM_VCPU(&(0x7f0000d87000/0x1000)=nil, r3, 0x0, 0x10010, r7, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x32) r9 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x3d) ioctl$KVM_CHECK_EXTENSION_VM(r9, 0xae03, 0x7) ioctl$KVM_SET_REGS(r5, 0x4360ae82, &(0x7f0000000d80)={[0x6, 0x7, 0x9, 0xf, 0xb5bd, 0x3, 0x100000001, 0x8, 0x8, 0xc, 0x2, 0x0, 0x3, 0x3, 0x1, 0xf], 0x1000, 0x285004}) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2) r10 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x23) ioctl$KVM_DIRTY_TLB(r7, 0x4010aeaa, &(0x7f0000000e40)={0xfffffffffffffffa, 0x6}) ioctl$KVM_CAP_ARM_USER_IRQ(r10, 0x4068aea3, &(0x7f0000000e80)) 11m3.687729053s ago: executing program 40 (id=540): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x280000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f00000000c0)=@arm64_bitmap={0x6030000000160000, &(0x7f0000000100)=0x8}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r6, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000b74000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=[@smc={0x1e, 0x40, {0xc5000020, [0x6, 0x5f9, 0x3, 0x401, 0x1000]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0xb4, 0x1, 0x0}) 1m59.409918082s ago: executing program 9 (id=541): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x5}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000240)=@arm64_core={0x6030000000100038, &(0x7f0000000080)=0x5}) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x3, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000540)=@attr_other={0x0, 0x8, 0x80, &(0x7f0000000500)=0x5}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0xa0000, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r9, 0x8004b708, 0x20000000000f) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f0000000500)={0x5, 0x0, 0x1000000000000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) r15 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000700)={0x0, &(0x7f00000002c0)=[@eret={0xe6, 0x18, 0xd}, @hvc={0x32, 0x40, {0x8600ff01, [0x200, 0x6, 0xffffffff7fffffff, 0x10000, 0x4]}}], 0x58}, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) syz_kvm_vgic_v3_setup(r12, 0x3, 0xc0) r17 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_IRQ_LINE(r17, 0x4008ae61, &(0x7f0000000000)={0x1002020, 0x5}) 1m24.839839582s ago: executing program 9 (id=543): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71ba470236fc044800fff7ffffffd249f297e87fd600000000000000002000e4ff000000f500", 0x0, 0x48) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) r6 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a97f2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@msr={0x14, 0x0, {0x603000000013df11, 0x3}}], 0x28}, 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0x401c5820, 0x20000007) r7 = eventfd2(0x3, 0x1) write$eventfd(r7, &(0x7f00000001c0)=0x94, 0x8) 1m22.109399314s ago: executing program 0 (id=542): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000040)=@attr_other={0x0, 0x9, 0xffffffffffff4a09, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000080)=@x86={0x0, 0x9, 0x3, 0x0, 0x3, 0x17, 0x6, 0xe, 0x10, 0x0, 0x6, 0xfd, 0x0, 0xc03, 0x8, 0x3, 0x10, 0x0, 0x0, '\x00', 0x87, 0xfffffffffffffffe}) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x34) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8004000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) r8 = syz_kvm_vgic_v3_setup(r7, 0x3, 0x40) r9 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b7b000/0x400000)=nil) r10 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x3d) ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101900, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x26) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000b7b000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000040)=@arm64_sys={0x603000000013e66a, &(0x7f00000003c0)=0x1101001001111110}) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20080, 0x0) ioctl$KVM_CREATE_VM(r14, 0xc0189436, 0x20003fff) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x6, 0x382bc663, &(0x7f0000000200)=0xffffffff}) 55.282986345s ago: executing program 9 (id=544): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x20) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f0000000180)=@attr_other={0x0, 0x9, 0x3, &(0x7f0000000140)=0x4}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000001c0)={0x5, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000240)=@attr_other={0x0, 0x0, 0xb58, &(0x7f0000000200)=0x4}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f0000000000)={0xdf, 0x0, 0x10000}) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f00000000c0)={0xe1, 0x0, 0x3}) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CLEAR_DIRTY_LOG(r7, 0xc018aec0, &(0x7f0000000540)={0x0, 0x280, 0x3c0, 0x0}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x27) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x0, 0x0, 0x6, 0x0, 0x9}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x7, 0x5, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_GET_REG_LIST(r8, 0xc008aeb0, &(0x7f0000000280)={0x3, [0x5, 0x9, 0xe]}) r13 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_GUEST_MEMFD(r13, 0xc040aed4, 0xfffffffffffffffe) r14 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r15 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r14, r15, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r15, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, &(0x7f00000000c0)=0x3}) 30.015675601s ago: executing program 41 (id=542): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000040)=@attr_other={0x0, 0x9, 0xffffffffffff4a09, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000080)=@x86={0x0, 0x9, 0x3, 0x0, 0x3, 0x17, 0x6, 0xe, 0x10, 0x0, 0x6, 0xfd, 0x0, 0xc03, 0x8, 0x3, 0x10, 0x0, 0x0, '\x00', 0x87, 0xfffffffffffffffe}) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x34) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8004000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) r8 = syz_kvm_vgic_v3_setup(r7, 0x3, 0x40) r9 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b7b000/0x400000)=nil) r10 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x3d) ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101900, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x26) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000b7b000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000040)=@arm64_sys={0x603000000013e66a, &(0x7f00000003c0)=0x1101001001111110}) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20080, 0x0) ioctl$KVM_CREATE_VM(r14, 0xc0189436, 0x20003fff) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x6, 0x382bc663, &(0x7f0000000200)=0xffffffff}) 0s ago: executing program 42 (id=544): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x20) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f0000000180)=@attr_other={0x0, 0x9, 0x3, &(0x7f0000000140)=0x4}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000001c0)={0x5, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000240)=@attr_other={0x0, 0x0, 0xb58, &(0x7f0000000200)=0x4}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f0000000000)={0xdf, 0x0, 0x10000}) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f00000000c0)={0xe1, 0x0, 0x3}) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CLEAR_DIRTY_LOG(r7, 0xc018aec0, &(0x7f0000000540)={0x0, 0x280, 0x3c0, 0x0}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x27) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x0, 0x0, 0x6, 0x0, 0x9}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x7, 0x5, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_GET_REG_LIST(r8, 0xc008aeb0, &(0x7f0000000280)={0x3, [0x5, 0x9, 0xe]}) r13 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_GUEST_MEMFD(r13, 0xc040aed4, 0xfffffffffffffffe) r14 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r15 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r14, r15, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r15, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, &(0x7f00000000c0)=0x3}) kernel console output (not intermixed with test programs): [ 383.468345][ T24] audit: type=1400 audit(382.660:77): avc: denied { write } for pid=3269 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 388.759270][ T24] audit: type=1400 audit(387.920:78): avc: denied { write } for pid=3274 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 401.479699][ T24] audit: type=1400 audit(400.600:79): avc: denied { write } for pid=3279 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 405.329620][ T24] audit: type=1400 audit(404.520:80): avc: denied { write } for pid=3282 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 417.346304][ T24] audit: type=1400 audit(416.540:81): avc: denied { write } for pid=3287 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 421.052613][ T24] audit: type=1400 audit(420.240:82): avc: denied { write } for pid=3290 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 423.788015][ T3204] eql: remember to turn off Van-Jacobson compression on your slave devices [ 431.414425][ T24] audit: type=1400 audit(430.610:83): avc: denied { write } for pid=3295 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 435.314212][ T24] audit: type=1400 audit(434.510:84): avc: denied { write } for pid=3298 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 448.443119][ T24] audit: type=1400 audit(447.620:85): avc: denied { write } for pid=3304 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 453.383077][ T24] audit: type=1400 audit(452.520:86): avc: denied { write } for pid=3307 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 462.183650][ T24] audit: type=1400 audit(461.340:87): avc: denied { write } for pid=3310 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 466.042859][ T24] audit: type=1400 audit(465.210:88): avc: denied { write } for pid=3313 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 477.846742][ T24] audit: type=1400 audit(477.040:89): avc: denied { write } for pid=3319 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 481.649011][ T24] audit: type=1400 audit(480.840:90): avc: denied { write } for pid=3322 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 487.045432][ T24] audit: type=1400 audit(486.240:91): avc: denied { write } for pid=3324 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 491.087072][ T24] audit: type=1400 audit(490.280:92): avc: denied { write } for pid=3327 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 496.462169][ T24] audit: type=1400 audit(495.640:93): avc: denied { write } for pid=3329 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 500.439272][ T24] audit: type=1400 audit(499.630:94): avc: denied { write } for pid=3332 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 525.371426][ T24] audit: type=1400 audit(524.530:95): avc: denied { write } for pid=3344 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 529.031262][ T24] audit: type=1400 audit(528.220:96): avc: denied { write } for pid=3347 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 538.964358][ T24] audit: type=1400 audit(538.150:97): avc: denied { write } for pid=3351 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 543.091246][ T24] audit: type=1400 audit(542.240:98): avc: denied { write } for pid=3354 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 553.734010][ T24] audit: type=1400 audit(552.930:99): avc: denied { write } for pid=3358 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 557.753304][ T24] audit: type=1400 audit(556.930:100): avc: denied { write } for pid=3361 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:15160' (ED25519) to the list of known hosts. [ 596.536932][ T24] audit: type=1400 audit(595.730:101): avc: denied { name_bind } for pid=3366 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 597.372785][ T24] audit: type=1400 audit(596.560:102): avc: denied { execute } for pid=3367 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 597.396400][ T24] audit: type=1400 audit(596.580:103): avc: denied { execute_no_trans } for pid=3367 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 621.926344][ T24] audit: type=1400 audit(621.120:104): avc: denied { mounton } for pid=3367 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 621.964888][ T24] audit: type=1400 audit(621.160:105): avc: denied { mount } for pid=3367 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 622.052387][ T3367] cgroup: Unknown subsys name 'net' [ 622.106868][ T24] audit: type=1400 audit(621.300:106): avc: denied { unmount } for pid=3367 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 622.520996][ T3367] cgroup: Unknown subsys name 'cpuset' [ 622.636090][ T3367] cgroup: Unknown subsys name 'rlimit' [ 623.004500][ T24] audit: type=1400 audit(622.200:107): avc: denied { setattr } for pid=3367 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 623.023786][ T24] audit: type=1400 audit(622.210:108): avc: denied { mounton } for pid=3367 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 623.048421][ T24] audit: type=1400 audit(622.240:109): avc: denied { mount } for pid=3367 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 624.059375][ T3370] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 624.082551][ T24] audit: type=1400 audit(623.270:110): avc: denied { relabelto } for pid=3370 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 624.107222][ T24] audit: type=1400 audit(623.300:111): avc: denied { write } for pid=3370 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 624.294751][ T24] audit: type=1400 audit(623.480:112): avc: denied { read } for pid=3367 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 624.312458][ T24] audit: type=1400 audit(623.500:113): avc: denied { open } for pid=3367 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 624.366075][ T3367] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 683.958062][ T24] audit: type=1400 audit(683.150:114): avc: denied { execmem } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 688.614963][ T24] audit: type=1400 audit(687.780:115): avc: denied { read } for pid=3374 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 688.634296][ T24] audit: type=1400 audit(687.800:116): avc: denied { open } for pid=3373 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 688.692639][ T24] audit: type=1400 audit(687.870:117): avc: denied { mounton } for pid=3374 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 688.934557][ T24] audit: type=1400 audit(688.130:118): avc: denied { module_request } for pid=3373 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 688.982373][ T24] audit: type=1400 audit(688.150:119): avc: denied { module_request } for pid=3374 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 689.893336][ T24] audit: type=1400 audit(689.080:120): avc: denied { sys_module } for pid=3373 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 715.275460][ T3374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 715.532853][ T3374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 715.596346][ T3373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 716.033955][ T3373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 727.535612][ T3374] hsr_slave_0: entered promiscuous mode [ 727.563666][ T3374] hsr_slave_1: entered promiscuous mode [ 728.355373][ T3373] hsr_slave_0: entered promiscuous mode [ 728.387735][ T3373] hsr_slave_1: entered promiscuous mode [ 728.417508][ T3373] debugfs: 'hsr0' already exists in 'hsr' [ 728.431886][ T3373] Cannot create hsr debugfs directory [ 734.025104][ T24] audit: type=1400 audit(733.210:121): avc: denied { create } for pid=3374 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 734.086803][ T24] audit: type=1400 audit(733.280:122): avc: denied { write } for pid=3374 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 734.143268][ T24] audit: type=1400 audit(733.330:123): avc: denied { read } for pid=3374 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 734.297251][ T3374] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 734.634822][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 734.736855][ T3374] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 734.942087][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 735.008081][ T3374] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 735.168662][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 735.342214][ T3374] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 735.456263][ T3374] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 736.742540][ T3373] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 736.826057][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 736.894782][ T3373] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 736.986885][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 737.119154][ T3373] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 737.336802][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 737.426120][ T3373] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 737.625516][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 749.702011][ T3374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 751.545849][ T3373] 8021q: adding VLAN 0 to HW filter on device bond0 [ 803.848378][ T3374] veth0_vlan: entered promiscuous mode [ 804.364480][ T3374] veth1_vlan: entered promiscuous mode [ 806.088089][ T3373] veth0_vlan: entered promiscuous mode [ 806.829855][ T3374] veth0_macvtap: entered promiscuous mode [ 806.984563][ T3373] veth1_vlan: entered promiscuous mode [ 807.389765][ T3374] veth1_macvtap: entered promiscuous mode [ 809.705508][ T3422] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.783914][ T3373] veth0_macvtap: entered promiscuous mode [ 809.834222][ T3422] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.846250][ T3422] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.971166][ T3422] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 810.366797][ T3373] veth1_macvtap: entered promiscuous mode [ 812.535957][ T24] audit: type=1400 audit(811.720:124): avc: denied { mount } for pid=3374 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 812.778097][ T24] audit: type=1400 audit(811.950:125): avc: denied { mounton } for pid=3374 comm="syz-executor" path="/syzkaller.Mo3nuS/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 813.051394][ T24] audit: type=1400 audit(812.240:126): avc: denied { mount } for pid=3374 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 813.625804][ T3336] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 813.632853][ T3336] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 813.647704][ T3336] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 813.658072][ T24] audit: type=1400 audit(812.840:127): avc: denied { mounton } for pid=3374 comm="syz-executor" path="/syzkaller.Mo3nuS/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 813.766693][ T3336] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 813.953618][ T24] audit: type=1400 audit(813.140:128): avc: denied { mounton } for pid=3374 comm="syz-executor" path="/syzkaller.Mo3nuS/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3771 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 814.948900][ T24] audit: type=1400 audit(814.140:129): avc: denied { unmount } for pid=3374 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 815.322838][ T24] audit: type=1400 audit(814.510:130): avc: denied { mounton } for pid=3374 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 815.589267][ T24] audit: type=1400 audit(814.770:131): avc: denied { mount } for pid=3374 comm="syz-executor" name="/" dev="gadgetfs" ino=3782 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 816.283370][ T24] audit: type=1400 audit(815.470:132): avc: denied { mount } for pid=3374 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 816.428267][ T24] audit: type=1400 audit(815.610:133): avc: denied { mounton } for pid=3374 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 818.223502][ T3374] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 819.942372][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 819.958521][ T24] audit: type=1400 audit(819.130:135): avc: denied { read write } for pid=3374 comm="syz-executor" name="loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 820.025758][ T24] audit: type=1400 audit(819.180:136): avc: denied { open } for pid=3374 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 820.042132][ T24] audit: type=1400 audit(819.230:137): avc: denied { ioctl } for pid=3374 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 833.353852][ T24] audit: type=1400 audit(832.540:138): avc: denied { write } for pid=3527 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 833.894216][ T24] audit: type=1400 audit(832.980:139): avc: denied { read } for pid=3526 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 833.941683][ T24] audit: type=1400 audit(833.130:140): avc: denied { open } for pid=3526 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 834.922484][ T24] audit: type=1400 audit(834.100:141): avc: denied { ioctl } for pid=3526 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 839.941712][ T24] audit: type=1400 audit(839.130:142): avc: denied { write } for pid=3528 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 840.094326][ T24] audit: type=1400 audit(839.270:143): avc: denied { map } for pid=3528 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 840.763310][ T24] audit: type=1400 audit(839.900:144): avc: denied { write } for pid=3535 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 865.592994][ T24] audit: type=1400 audit(864.750:145): avc: denied { execute } for pid=3550 comm="syz.0.7" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4116 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 994.852378][ T24] audit: type=1400 audit(994.040:146): avc: denied { append } for pid=3619 comm="syz.1.29" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 998.375362][ T24] audit: type=1400 audit(997.560:147): avc: denied { create } for pid=3619 comm="syz.1.29" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 998.501797][ T24] audit: type=1400 audit(997.690:148): avc: denied { map } for pid=3619 comm="syz.1.29" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=5461 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 998.561552][ T24] audit: type=1400 audit(997.750:149): avc: denied { read } for pid=3619 comm="syz.1.29" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=5461 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1079.642328][ T24] audit: type=1400 audit(1078.780:150): avc: denied { write } for pid=3665 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1086.856885][ T24] audit: type=1400 audit(1086.010:151): avc: denied { write } for pid=3673 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1208.556871][ T24] audit: type=1400 audit(1207.670:152): avc: denied { ioctl } for pid=3741 comm="syz.0.64" path="net:[4026532628]" dev="nsfs" ino=4026532628 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1399.277646][ T24] audit: type=1400 audit(1398.410:153): avc: denied { execute } for pid=3838 comm="syz.1.95" path="/sys/kernel/debug/kcov" dev="debugfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1 [ 1436.709287][ T3853] kvm [3853]: Failed to find VMA for hva 0x20c79000 [ 1520.275258][ T24] audit: type=1400 audit(1519.440:154): avc: denied { execute } for pid=3900 comm="syz.1.114" path=2F35362FFF67521CD66F8F1F447D3570707CD24B7EEBB207 dev="tmpfs" ino=301 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 1524.587864][ T3904] kvm [3904]: Failed to find VMA for hva 0x20c01000 [ 1563.154339][ T24] audit: type=1400 audit(1562.330:155): avc: denied { write } for pid=3927 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1571.861335][ T24] audit: type=1400 audit(1571.040:156): avc: denied { write } for pid=3935 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1574.824963][ T3937] kvm [3937]: Failed to find VMA for hva 0x20d8d000 [ 1685.817794][ T4005] KVM: debugfs: duplicate directory 4005-4 [ 1948.456302][ T24] audit: type=1400 audit(1947.650:157): avc: denied { write } for pid=4156 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1954.273591][ T24] audit: type=1400 audit(1953.450:158): avc: denied { write } for pid=4159 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1980.889622][ T24] audit: type=1400 audit(1980.070:159): avc: denied { module_request } for pid=4163 comm="syz-executor" kmod="netdev-nr2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 1989.759129][ T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1991.466501][ T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1992.607571][ T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1993.896033][ T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2011.613898][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2011.851980][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2012.037820][ T41] bond0 (unregistering): Released all slaves [ 2014.105959][ T41] hsr_slave_0: left promiscuous mode [ 2014.183542][ T41] hsr_slave_1: left promiscuous mode [ 2014.733647][ T41] veth1_macvtap: left promiscuous mode [ 2014.753956][ T41] veth0_macvtap: left promiscuous mode [ 2014.797035][ T41] veth1_vlan: left promiscuous mode [ 2014.823106][ T41] veth0_vlan: left promiscuous mode [ 2055.604219][ T24] audit: type=1400 audit(2054.790:160): avc: denied { write } for pid=4202 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2062.049577][ T24] audit: type=1400 audit(2061.240:161): avc: denied { write } for pid=4211 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2066.736145][ T3204] 8021q: adding VLAN 0 to HW filter on device eth1 [ 2080.465044][ T24] audit: type=1400 audit(2079.660:162): avc: denied { write } for pid=4228 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2081.379186][ T4163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2081.678822][ T4163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2088.039747][ T24] audit: type=1400 audit(2087.200:163): avc: denied { write } for pid=4237 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2093.711988][ T3204] 8021q: adding VLAN 0 to HW filter on device eth2 [ 2108.901672][ T24] audit: type=1400 audit(2108.090:164): avc: denied { write } for pid=4250 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2114.097789][ T4163] hsr_slave_0: entered promiscuous mode [ 2114.211790][ T4163] hsr_slave_1: entered promiscuous mode [ 2115.601314][ T24] audit: type=1400 audit(2114.790:165): avc: denied { write } for pid=4258 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2120.179332][ T3204] 8021q: adding VLAN 0 to HW filter on device eth3 [ 2129.608340][ T4163] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2129.983137][ T4163] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2130.047929][ T4163] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2130.293197][ T4163] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2130.378983][ T4163] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2130.586673][ T4163] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2130.629551][ T4163] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2130.876413][ T4163] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2139.101504][ T24] audit: type=1400 audit(2138.280:166): avc: denied { write } for pid=4278 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2147.881988][ T24] audit: type=1400 audit(2147.020:167): avc: denied { write } for pid=4284 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2154.558107][ T3204] 8021q: adding VLAN 0 to HW filter on device eth4 [ 2158.026968][ T4163] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2191.362560][ T24] audit: type=1400 audit(2190.550:168): avc: denied { write } for pid=4315 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2198.693097][ T24] audit: type=1400 audit(2197.820:169): avc: denied { write } for pid=4324 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2218.897111][ T24] audit: type=1400 audit(2218.090:170): avc: denied { write } for pid=4338 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2228.254237][ T24] audit: type=1400 audit(2227.380:171): avc: denied { write } for pid=4348 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2241.938544][ T24] audit: type=1400 audit(2241.130:172): avc: denied { write } for pid=4358 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2247.712377][ T24] audit: type=1400 audit(2246.900:173): avc: denied { write } for pid=4364 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2258.216302][ T4163] veth0_vlan: entered promiscuous mode [ 2259.213046][ T4163] veth1_vlan: entered promiscuous mode [ 2261.754438][ T24] audit: type=1400 audit(2260.930:174): avc: denied { write } for pid=4371 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2262.868391][ T4163] veth0_macvtap: entered promiscuous mode [ 2263.697163][ T4163] veth1_macvtap: entered promiscuous mode [ 2267.419786][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2267.435908][ T41] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2267.605721][ T3336] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2267.612943][ T3336] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2273.661715][ T24] audit: type=1400 audit(2272.840:175): avc: denied { write } for pid=4379 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2292.672528][ T24] audit: type=1400 audit(2291.770:176): avc: denied { write } for pid=4391 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2301.634019][ T24] audit: type=1400 audit(2300.800:177): avc: denied { write } for pid=4398 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2504.263886][ T24] audit: type=1400 audit(2503.450:178): avc: denied { write } for pid=4507 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2514.281718][ T24] audit: type=1400 audit(2513.450:179): avc: denied { write } for pid=4516 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2773.492306][ T4655] kvm [4655]: Failed to find VMA for hva 0x20c01000 [ 2796.486222][ T24] audit: type=1400 audit(2795.640:180): avc: denied { execute } for pid=4668 comm="syz.1.290" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2800.238641][ T4669] kvm [4669]: Failed to find VMA for hva 0x20c79000 [ 2874.281736][ T24] audit: type=1400 audit(2873.460:181): avc: denied { write } for pid=4706 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2880.372975][ T24] audit: type=1400 audit(2879.540:182): avc: denied { write } for pid=4709 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2962.784642][ T3476] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2963.716586][ T3476] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2964.724065][ T3476] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2965.227953][ T4712] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2965.396308][ T3476] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2966.347580][ T4712] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2979.067157][ T3476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2979.176803][ T3476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2979.272959][ T3476] bond0 (unregistering): Released all slaves [ 2980.383354][ T3476] hsr_slave_0: left promiscuous mode [ 2980.442966][ T3476] hsr_slave_1: left promiscuous mode [ 2980.884257][ T3476] veth1_macvtap: left promiscuous mode [ 2980.902570][ T3476] veth0_macvtap: left promiscuous mode [ 2980.908072][ T3476] veth1_vlan: left promiscuous mode [ 2980.942047][ T3476] veth0_vlan: left promiscuous mode [ 3003.948606][ T4720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3004.397732][ T4720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3007.562933][ T3476] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3008.958894][ T3476] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3010.306311][ T3476] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3011.503324][ T3476] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3016.331557][ T24] audit: type=1400 audit(3015.520:183): avc: denied { write } for pid=4778 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3019.225124][ T4712] hsr_slave_0: entered promiscuous mode [ 3019.315961][ T4712] hsr_slave_1: entered promiscuous mode [ 3019.339024][ T4712] debugfs: 'hsr0' already exists in 'hsr' [ 3019.394993][ T4712] Cannot create hsr debugfs directory [ 3021.916702][ T24] audit: type=1400 audit(3021.110:184): avc: denied { write } for pid=4787 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3028.969268][ T3476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3029.057473][ T3476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3029.117530][ T3476] bond0 (unregistering): Released all slaves [ 3029.998044][ T3204] 8021q: adding VLAN 0 to HW filter on device eth5 [ 3030.307528][ T3476] hsr_slave_0: left promiscuous mode [ 3030.344708][ T3476] hsr_slave_1: left promiscuous mode [ 3030.575438][ T3476] veth1_macvtap: left promiscuous mode [ 3030.585860][ T3476] veth0_macvtap: left promiscuous mode [ 3030.589685][ T3476] veth1_vlan: left promiscuous mode [ 3030.603911][ T3476] veth0_vlan: left promiscuous mode [ 3046.565271][ T4720] hsr_slave_0: entered promiscuous mode [ 3046.594093][ T4720] hsr_slave_1: entered promiscuous mode [ 3053.222506][ T24] audit: type=1400 audit(3052.410:185): avc: denied { write } for pid=4798 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3056.861944][ T4712] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 3057.193316][ T4712] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3057.721801][ T4712] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 3057.944370][ T4712] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3058.876330][ T4712] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 3059.103395][ T4712] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3059.129756][ T4712] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 3059.183410][ T24] audit: type=1400 audit(3058.370:186): avc: denied { write } for pid=4803 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3059.334213][ T4712] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3064.187526][ T3204] 8021q: adding VLAN 0 to HW filter on device eth6 [ 3066.399526][ T4720] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 3066.788973][ T4720] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3066.928763][ T4720] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 3067.385652][ T4720] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3067.564842][ T4720] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 3067.877673][ T4720] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3067.949255][ T4720] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 3068.345653][ T4720] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3079.508420][ T24] audit: type=1400 audit(3078.620:187): avc: denied { write } for pid=4826 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3085.413493][ T4712] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3086.965631][ T24] audit: type=1400 audit(3086.120:188): avc: denied { write } for pid=4834 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3092.027840][ T4720] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3092.277806][ T3204] 8021q: adding VLAN 0 to HW filter on device eth7 [ 3106.385919][ T24] audit: type=1400 audit(3105.550:189): avc: denied { write } for pid=4850 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3116.085328][ T24] audit: type=1400 audit(3115.270:190): avc: denied { write } for pid=4856 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3122.064058][ T3204] 8021q: adding VLAN 0 to HW filter on device eth8 [ 3138.432010][ T24] audit: type=1400 audit(3137.620:191): avc: denied { write } for pid=4871 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3145.271111][ T24] audit: type=1400 audit(3144.460:192): avc: denied { write } for pid=4882 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3149.709280][ T3204] 8021q: adding VLAN 0 to HW filter on device eth9 [ 3164.154517][ T24] audit: type=1400 audit(3163.330:193): avc: denied { write } for pid=4896 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3171.222532][ T24] audit: type=1400 audit(3170.320:194): avc: denied { write } for pid=4907 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3177.368846][ T3204] 8021q: adding VLAN 0 to HW filter on device eth10 [ 3180.134532][ T4712] veth0_vlan: entered promiscuous mode [ 3181.138392][ T4712] veth1_vlan: entered promiscuous mode [ 3185.006864][ T4712] veth0_macvtap: entered promiscuous mode [ 3186.009436][ T4712] veth1_macvtap: entered promiscuous mode [ 3190.916961][ T4770] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3190.942686][ T4770] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3191.033228][ T4770] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3191.058904][ T4837] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3197.967205][ T24] audit: type=1400 audit(3197.150:195): avc: denied { write } for pid=4918 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3207.933786][ T24] audit: type=1400 audit(3207.110:196): avc: denied { write } for pid=4926 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3214.553095][ T3204] 8021q: adding VLAN 0 to HW filter on device eth11 [ 3215.019809][ T4720] veth0_vlan: entered promiscuous mode [ 3216.463103][ T4720] veth1_vlan: entered promiscuous mode [ 3220.123606][ T4720] veth0_macvtap: entered promiscuous mode [ 3220.706663][ T4720] veth1_macvtap: entered promiscuous mode [ 3224.767030][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3224.836053][ T4770] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3224.859277][ T4837] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3224.902182][ T4837] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3248.582218][ T24] audit: type=1400 audit(3247.770:197): avc: denied { write } for pid=4944 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3261.355185][ T24] audit: type=1400 audit(3260.470:198): avc: denied { write } for pid=4955 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3269.647843][ T3204] 8021q: adding VLAN 0 to HW filter on device eth12 [ 3280.697739][ T24] audit: type=1400 audit(3279.810:199): avc: denied { write } for pid=4962 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3291.493683][ T24] audit: type=1400 audit(3290.680:200): avc: denied { write } for pid=4971 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3339.385644][ T24] audit: type=1400 audit(3338.580:201): avc: denied { write } for pid=4995 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3349.964515][ T24] audit: type=1400 audit(3349.120:202): avc: denied { write } for pid=5003 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3401.262090][ T24] audit: type=1400 audit(3400.370:203): avc: denied { write } for pid=5036 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3411.831382][ T24] audit: type=1400 audit(3411.020:204): avc: denied { write } for pid=5047 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3433.304815][ T24] audit: type=1400 audit(3432.480:205): avc: denied { write } for pid=5050 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3446.043911][ T24] audit: type=1400 audit(3445.140:206): avc: denied { write } for pid=5060 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3468.579707][ T24] audit: type=1400 audit(3467.770:207): avc: denied { write } for pid=5074 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3481.322507][ T24] audit: type=1400 audit(3480.500:208): avc: denied { write } for pid=5084 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3524.246380][ T24] audit: type=1400 audit(3523.410:209): avc: denied { write } for pid=5103 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3535.377022][ T24] audit: type=1400 audit(3534.570:210): avc: denied { write } for pid=5112 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3558.886239][ T24] audit: type=1400 audit(3558.000:211): avc: denied { write } for pid=5123 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3570.051710][ T24] audit: type=1400 audit(3569.240:212): avc: denied { write } for pid=5133 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3597.321706][ T24] audit: type=1400 audit(3596.510:213): avc: denied { write } for pid=5146 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3609.483285][ T24] audit: type=1400 audit(3608.560:214): avc: denied { write } for pid=5158 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3629.773409][ T24] audit: type=1400 audit(3628.940:215): avc: denied { write } for pid=5168 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3636.948212][ T24] audit: type=1400 audit(3636.140:216): avc: denied { write } for pid=5172 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3649.521644][ T24] audit: type=1400 audit(3648.710:217): avc: denied { write } for pid=5175 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3661.683907][ T24] audit: type=1400 audit(3660.800:218): avc: denied { write } for pid=5189 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3746.737285][ T4739] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3748.358394][ T4739] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3750.034673][ T4739] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3751.506716][ T4739] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3775.075630][ T4739] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3775.514727][ T4739] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3775.776614][ T4739] bond0 (unregistering): Released all slaves [ 3778.105633][ T4739] hsr_slave_0: left promiscuous mode [ 3778.252291][ T4739] hsr_slave_1: left promiscuous mode [ 3778.985687][ T4739] veth1_macvtap: left promiscuous mode [ 3779.008161][ T4739] veth0_macvtap: left promiscuous mode [ 3779.017927][ T4739] veth1_vlan: left promiscuous mode [ 3779.039605][ T4739] veth0_vlan: left promiscuous mode [ 3827.114359][ T24] audit: type=1400 audit(3826.300:219): avc: denied { write } for pid=5229 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3833.888957][ T24] audit: type=1400 audit(3833.080:220): avc: denied { write } for pid=5234 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3840.216751][ T3204] 8021q: adding VLAN 0 to HW filter on device eth13 [ 3853.264668][ T24] audit: type=1400 audit(3852.460:221): avc: denied { write } for pid=5241 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3863.471589][ T24] audit: type=1400 audit(3862.580:222): avc: denied { write } for pid=5251 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3887.085127][ T5211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3888.552667][ T5211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3888.794663][ T24] audit: type=1400 audit(3887.970:223): avc: denied { write } for pid=5268 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3891.941408][ T5207] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3892.427325][ T5207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3897.647024][ T24] audit: type=1400 audit(3896.830:224): avc: denied { write } for pid=5273 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3904.696917][ T3204] 8021q: adding VLAN 0 to HW filter on device eth14 [ 3927.161960][ T24] audit: type=1400 audit(3926.340:225): avc: denied { write } for pid=5287 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3933.558888][ T5211] hsr_slave_0: entered promiscuous mode [ 3933.678478][ T5211] hsr_slave_1: entered promiscuous mode [ 3936.394059][ T24] audit: type=1400 audit(3935.570:226): avc: denied { write } for pid=5296 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3938.614752][ T5207] hsr_slave_0: entered promiscuous mode [ 3938.759294][ T5207] hsr_slave_1: entered promiscuous mode [ 3938.821935][ T5207] debugfs: 'hsr0' already exists in 'hsr' [ 3938.825953][ T5207] Cannot create hsr debugfs directory [ 3942.598402][ T3204] 8021q: adding VLAN 0 to HW filter on device eth15 [ 3944.975763][ T4739] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3946.114101][ T4739] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3947.272901][ T4739] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3948.447202][ T4739] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3963.108867][ T24] audit: type=1400 audit(3962.300:227): avc: denied { write } for pid=5303 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3972.384089][ T24] audit: type=1400 audit(3971.550:228): avc: denied { write } for pid=5310 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3976.837717][ T4739] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3977.804120][ T4739] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3978.319738][ T4739] bond0 (unregistering): Released all slaves [ 3979.477110][ T3204] 8021q: adding VLAN 0 to HW filter on device eth16 [ 3979.774355][ T4739] hsr_slave_0: left promiscuous mode [ 3979.808791][ T4739] hsr_slave_1: left promiscuous mode [ 3980.218062][ T4739] veth1_macvtap: left promiscuous mode [ 3980.263937][ T4739] veth0_macvtap: left promiscuous mode [ 3980.268953][ T4739] veth1_vlan: left promiscuous mode [ 3980.295015][ T4739] veth0_vlan: left promiscuous mode [ 3999.286633][ T5211] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 3999.876050][ T5211] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4000.104602][ T5211] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 4000.865891][ T5211] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4001.065316][ T5211] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 4001.585877][ T5211] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4002.522499][ T5211] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 4002.816365][ T5211] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4006.673838][ T5207] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 4006.935727][ T5207] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4007.039557][ T5207] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 4007.282297][ T5207] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4007.425631][ T5207] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 4007.649435][ T5207] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4007.779627][ T5207] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 4008.064543][ T5207] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4014.872846][ T24] audit: type=1400 audit(4014.050:229): avc: denied { write } for pid=5323 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4024.771453][ T24] audit: type=1400 audit(4023.850:230): avc: denied { write } for pid=5338 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4031.406398][ T3204] 8021q: adding VLAN 0 to HW filter on device eth17 [ 4037.777012][ T5211] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4043.896604][ T5207] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4058.671673][ T24] audit: type=1400 audit(4057.860:231): avc: denied { write } for pid=5353 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4067.831898][ T24] audit: type=1400 audit(4067.020:232): avc: denied { write } for pid=5363 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4076.106344][ T3204] 8021q: adding VLAN 0 to HW filter on device eth18 [ 4102.188907][ T24] audit: type=1400 audit(4101.380:233): avc: denied { write } for pid=5379 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4112.069560][ T24] audit: type=1400 audit(4111.260:234): avc: denied { write } for pid=5388 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4118.498973][ T3204] 8021q: adding VLAN 0 to HW filter on device eth19 [ 4141.185533][ T24] audit: type=1400 audit(4140.380:235): avc: denied { write } for pid=5407 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4151.691869][ T24] audit: type=1400 audit(4150.870:236): avc: denied { write } for pid=5417 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4159.039842][ T3204] 8021q: adding VLAN 0 to HW filter on device eth20 [ 4177.121633][ T24] audit: type=1400 audit(4176.300:237): avc: denied { write } for pid=5430 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4186.373840][ T5211] veth0_vlan: entered promiscuous mode [ 4186.392873][ T24] audit: type=1400 audit(4185.490:238): avc: denied { write } for pid=5442 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4187.539709][ T5211] veth1_vlan: entered promiscuous mode [ 4192.288866][ T5211] veth0_macvtap: entered promiscuous mode [ 4192.672478][ T5207] veth0_vlan: entered promiscuous mode [ 4193.317572][ T5211] veth1_macvtap: entered promiscuous mode [ 4195.106626][ T5207] veth1_vlan: entered promiscuous mode [ 4200.878718][ T4170] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4200.889839][ T4170] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4200.966912][ T4023] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4200.967869][ T4023] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4203.837252][ T5207] veth0_macvtap: entered promiscuous mode [ 4205.434925][ T5207] veth1_macvtap: entered promiscuous mode [ 4212.093916][ T5426] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4212.132232][ T4170] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4212.149473][ T4170] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4212.203988][ T4170] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4253.301265][ T24] audit: type=1400 audit(4252.480:239): avc: denied { write } for pid=5466 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4268.031553][ T24] audit: type=1400 audit(4267.190:240): avc: denied { write } for pid=5478 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4302.501756][ T24] audit: type=1400 audit(4301.670:241): avc: denied { write } for pid=5492 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4314.672732][ T24] audit: type=1400 audit(4313.830:242): avc: denied { write } for pid=5503 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4342.216587][ T24] audit: type=1400 audit(4341.320:243): avc: denied { write } for pid=5508 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4356.979408][ T24] audit: type=1400 audit(4356.170:244): avc: denied { write } for pid=5516 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4378.882707][ T24] audit: type=1400 audit(4378.070:245): avc: denied { write } for pid=5525 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4393.143810][ T24] audit: type=1400 audit(4392.160:246): avc: denied { write } for pid=5532 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4418.519611][ T24] audit: type=1400 audit(4417.710:247): avc: denied { write } for pid=5540 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4430.735404][ T24] audit: type=1400 audit(4429.790:248): avc: denied { write } for pid=5549 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4506.162236][ T24] audit: type=1400 audit(4505.240:249): avc: denied { write } for pid=5585 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4520.162285][ T24] audit: type=1400 audit(4519.140:250): avc: denied { setattr } for pid=5592 comm="syz.6.370" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 4520.163514][ T24] audit: type=1400 audit(4519.340:251): avc: denied { write } for pid=5594 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4553.157010][ T24] audit: type=1400 audit(4552.310:252): avc: denied { write } for pid=5603 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4567.724124][ T24] audit: type=1400 audit(4566.900:253): avc: denied { write } for pid=5614 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4595.475145][ T24] audit: type=1400 audit(4594.580:254): avc: denied { write } for pid=5628 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4608.194289][ T24] audit: type=1400 audit(4607.360:255): avc: denied { write } for pid=5634 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4637.077904][ T24] audit: type=1400 audit(4636.270:256): avc: denied { write } for pid=5646 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4651.641933][ T24] audit: type=1400 audit(4650.810:257): avc: denied { write } for pid=5656 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5117.542499][ T24] audit: type=1400 audit(5116.700:258): avc: denied { write } for pid=5827 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5131.861509][ T24] audit: type=1400 audit(5131.010:259): avc: denied { write } for pid=5837 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5695.556811][ T24] audit: type=1400 audit(5694.720:260): avc: denied { write } for pid=6056 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5710.326864][ T24] audit: type=1400 audit(5709.440:261): avc: denied { write } for pid=6067 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5902.866642][ T6094] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5903.296200][ T6094] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5940.535347][ T6105] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5941.143025][ T6105] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5951.927530][ T6094] hsr_slave_0: entered promiscuous mode [ 5952.096126][ T6094] hsr_slave_1: entered promiscuous mode [ 5952.272277][ T6094] debugfs: 'hsr0' already exists in 'hsr' [ 5952.291749][ T6094] Cannot create hsr debugfs directory [ 5957.534867][ T4170] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5960.525315][ T4170] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5964.684548][ T4170] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5968.095950][ T4170] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5996.773426][ T4170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5996.937201][ T4170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5997.082009][ T4170] bond0 (unregistering): Released all slaves [ 5999.329737][ T4170] hsr_slave_0: left promiscuous mode [ 5999.401389][ T4170] hsr_slave_1: left promiscuous mode [ 5999.912986][ T4170] veth1_macvtap: left promiscuous mode [ 5999.914382][ T4170] veth0_macvtap: left promiscuous mode [ 5999.926474][ T4170] veth1_vlan: left promiscuous mode [ 5999.955532][ T4170] veth0_vlan: left promiscuous mode [ 6033.587266][ T6105] hsr_slave_0: entered promiscuous mode [ 6033.736007][ T6105] hsr_slave_1: entered promiscuous mode [ 6036.943817][ T4170] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6037.633323][ T6094] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 6038.049218][ T6094] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 6039.109828][ T4170] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6039.754143][ T6094] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 6040.178611][ T6094] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 6040.393085][ T6094] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 6040.675488][ T6094] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 6041.306372][ T4170] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6041.907114][ T6094] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 6042.348858][ T6094] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 6043.948320][ T4170] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6046.552614][ T24] audit: type=1400 audit(6045.730:262): avc: denied { write } for pid=6169 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6055.498823][ T24] audit: type=1400 audit(6054.680:263): avc: denied { write } for pid=6179 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6075.537884][ T4170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6076.008315][ T4170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6076.754658][ T4170] bond0 (unregistering): Released all slaves [ 6078.044419][ T3204] 8021q: adding VLAN 0 to HW filter on device eth21 [ 6079.312443][ T4170] hsr_slave_0: left promiscuous mode [ 6079.389173][ T4170] hsr_slave_1: left promiscuous mode [ 6080.062433][ T4170] veth1_macvtap: left promiscuous mode [ 6080.086134][ T4170] veth0_macvtap: left promiscuous mode [ 6080.094459][ T4170] veth1_vlan: left promiscuous mode [ 6080.113188][ T4170] veth0_vlan: left promiscuous mode [ 6113.008192][ T6105] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 6113.525440][ T6105] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 6113.675301][ T6105] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 6114.085264][ T6105] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 6114.178190][ T6105] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 6114.509015][ T6105] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 6114.782807][ T6105] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 6115.197059][ T6105] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 6125.606222][ T6094] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6133.791767][ T24] audit: type=1400 audit(6132.850:264): avc: denied { write } for pid=6201 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6144.937598][ T24] audit: type=1400 audit(6144.120:265): avc: denied { write } for pid=6211 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6153.588995][ T3204] 8021q: adding VLAN 0 to HW filter on device eth22 [ 6154.529896][ T6105] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6181.355895][ T24] audit: type=1400 audit(6180.550:266): avc: denied { write } for pid=6225 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6195.051344][ T24] audit: type=1400 audit(6194.230:267): avc: denied { write } for pid=6234 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6203.214232][ T3204] 8021q: adding VLAN 0 to HW filter on device eth23 [ 6227.298897][ T24] audit: type=1400 audit(6226.450:268): avc: denied { write } for pid=6250 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6237.274124][ T24] audit: type=1400 audit(6236.450:269): avc: denied { write } for pid=6261 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6244.895069][ T3204] 8021q: adding VLAN 0 to HW filter on device eth24 [ 6260.594852][ T24] audit: type=1400 audit(6259.770:270): avc: denied { write } for pid=6270 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6272.845428][ T24] audit: type=1400 audit(6271.890:271): avc: denied { write } for pid=6281 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6293.955743][ T6094] veth0_vlan: entered promiscuous mode [ 6295.468563][ T6094] veth1_vlan: entered promiscuous mode [ 6299.690819][ T6094] veth0_macvtap: entered promiscuous mode [ 6300.845056][ T6094] veth1_macvtap: entered promiscuous mode [ 6302.269670][ T24] audit: type=1400 audit(6301.450:272): avc: denied { write } for pid=6295 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6305.449856][ T4023] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6305.504925][ T4739] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6305.551784][ T4170] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6305.592520][ T6280] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6316.286143][ T24] audit: type=1400 audit(6315.410:273): avc: denied { write } for pid=6304 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6326.657348][ T3204] 8021q: adding VLAN 0 to HW filter on device eth25 [ 6330.690902][ T6105] veth0_vlan: entered promiscuous mode [ 6332.666623][ T6105] veth1_vlan: entered promiscuous mode [ 6338.447622][ T6105] veth0_macvtap: entered promiscuous mode [ 6339.679523][ T6105] veth1_macvtap: entered promiscuous mode [ 6345.721775][ T5215] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6345.728692][ T5215] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6345.942738][ T4739] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6346.017555][ T4739] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6367.252431][ T24] audit: type=1400 audit(6366.330:274): avc: denied { write } for pid=6318 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6384.701873][ T24] audit: type=1400 audit(6383.810:275): avc: denied { write } for pid=6330 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6395.819815][ T3204] 8021q: adding VLAN 0 to HW filter on device eth26 [ 6435.333463][ T24] audit: type=1400 audit(6434.400:276): avc: denied { write } for pid=6341 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6450.983120][ T24] audit: type=1400 audit(6450.140:277): avc: denied { write } for pid=6351 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6462.289005][ T3204] 8021q: adding VLAN 0 to HW filter on device eth27 [ 6501.241578][ T24] audit: type=1400 audit(6500.420:278): avc: denied { write } for pid=6370 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6517.887224][ T24] audit: type=1400 audit(6517.060:279): avc: denied { write } for pid=6380 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6528.425968][ T3204] 8021q: adding VLAN 0 to HW filter on device eth28 [ 6626.225677][ T24] audit: type=1400 audit(6625.400:280): avc: denied { write } for pid=6420 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6643.031229][ T24] audit: type=1400 audit(6642.160:281): avc: denied { write } for pid=6433 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6673.759317][ T24] audit: type=1400 audit(6672.950:282): avc: denied { write } for pid=6446 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6691.172809][ T24] audit: type=1400 audit(6690.290:283): avc: denied { write } for pid=6456 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6732.754292][ T24] audit: type=1400 audit(6731.900:284): avc: denied { write } for pid=6468 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6749.608512][ T24] audit: type=1400 audit(6748.800:285): avc: denied { write } for pid=6477 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6777.071822][ T24] audit: type=1400 audit(6776.220:286): avc: denied { write } for pid=6488 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6792.669502][ T24] audit: type=1400 audit(6791.860:287): avc: denied { write } for pid=6493 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6825.367394][ T24] audit: type=1400 audit(6824.540:288): avc: denied { write } for pid=6502 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6840.368078][ T24] audit: type=1400 audit(6839.530:289): avc: denied { write } for pid=6512 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6949.088035][ T24] audit: type=1400 audit(6948.260:290): avc: denied { write } for pid=6552 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6965.817847][ T24] audit: type=1400 audit(6964.990:291): avc: denied { write } for pid=6562 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6997.182397][ T24] audit: type=1400 audit(6996.310:292): avc: denied { write } for pid=6570 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7013.212751][ T24] audit: type=1400 audit(7012.400:293): avc: denied { write } for pid=6578 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7049.351142][ T24] audit: type=1400 audit(7048.510:294): avc: denied { write } for pid=6588 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7062.544641][ T24] audit: type=1400 audit(7061.710:295): avc: denied { write } for pid=6591 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7091.252573][ T24] audit: type=1400 audit(7090.410:296): avc: denied { write } for pid=6601 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7106.142404][ T24] audit: type=1400 audit(7105.330:297): avc: denied { write } for pid=6610 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7152.127423][ T4170] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7154.956188][ T4170] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7158.327237][ T4170] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7163.076921][ T4170] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7190.246142][ T4170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7190.476151][ T4170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7190.573747][ T4170] bond0 (unregistering): Released all slaves [ 7193.574626][ T4170] hsr_slave_0: left promiscuous mode [ 7194.062358][ T4170] hsr_slave_1: left promiscuous mode [ 7194.996512][ T4170] veth1_macvtap: left promiscuous mode [ 7195.052964][ T4170] veth0_macvtap: left promiscuous mode [ 7195.069710][ T4170] veth1_vlan: left promiscuous mode [ 7195.102151][ T4170] veth0_vlan: left promiscuous mode [ 7233.938138][ T6592] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7234.499889][ T6592] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7239.451558][ T4170] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7241.916773][ T4170] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7243.975257][ T4170] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7246.178820][ T4170] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7259.996960][ T24] audit: type=1400 audit(7259.190:298): avc: denied { write } for pid=6652 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7271.385761][ T24] audit: type=1400 audit(7270.580:299): avc: denied { write } for pid=6664 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7281.644557][ T4170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7281.973236][ T4170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7282.157962][ T4170] bond0 (unregistering): Released all slaves [ 7284.215828][ T3204] 8021q: adding VLAN 0 to HW filter on device eth29 [ 7284.986954][ T4170] hsr_slave_0: left promiscuous mode [ 7285.323086][ T4170] hsr_slave_1: left promiscuous mode [ 7286.225503][ T4170] veth1_macvtap: left promiscuous mode [ 7286.265026][ T4170] veth0_macvtap: left promiscuous mode [ 7286.277462][ T4170] veth1_vlan: left promiscuous mode [ 7286.331741][ T4170] veth0_vlan: left promiscuous mode [ 7319.576464][ T6592] hsr_slave_0: entered promiscuous mode [ 7319.657221][ T6592] hsr_slave_1: entered promiscuous mode [ 7325.941801][ T24] audit: type=1400 audit(7325.030:300): avc: denied { write } for pid=6673 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7327.836371][ T6607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7328.913765][ T6607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7335.301919][ T24] audit: type=1400 audit(7334.470:301): avc: denied { write } for pid=6678 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7348.044840][ T6592] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 7348.646823][ T6592] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7348.812625][ T6592] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 7349.332321][ T6592] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7349.469150][ T6592] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 7350.035145][ T6592] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7350.227601][ T6592] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 7350.813171][ T6592] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7370.101183][ T24] audit: type=1400 audit(7369.290:302): avc: denied { write } for pid=6698 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7375.418874][ T6607] hsr_slave_0: entered promiscuous mode [ 7375.499492][ T6607] hsr_slave_1: entered promiscuous mode [ 7375.672871][ T6607] debugfs: 'hsr0' already exists in 'hsr' [ 7375.701842][ T6607] Cannot create hsr debugfs directory [ 7380.166060][ T24] audit: type=1400 audit(7379.330:303): avc: denied { write } for pid=6707 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7388.516868][ T3204] 8021q: adding VLAN 0 to HW filter on device eth30 [ 7399.449734][ T6592] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7418.909260][ T6607] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 7419.423160][ T6607] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7419.489804][ T6607] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 7420.365957][ T6607] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7420.622169][ T6607] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 7421.117886][ T6607] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7421.322670][ T6607] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 7421.835622][ T6607] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7426.852771][ T24] audit: type=1400 audit(7426.030:304): avc: denied { write } for pid=6717 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7438.422213][ T24] audit: type=1400 audit(7437.590:305): avc: denied { write } for pid=6733 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7447.607000][ T3204] 8021q: adding VLAN 0 to HW filter on device eth31 [ 7462.167219][ T6607] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7476.162443][ T24] audit: type=1400 audit(7475.210:306): avc: denied { write } for pid=6745 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7487.888146][ T24] audit: type=1400 audit(7487.070:307): avc: denied { write } for pid=6756 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7495.706211][ T3204] 8021q: adding VLAN 0 to HW filter on device eth32 [ 7527.702986][ T24] audit: type=1400 audit(7526.840:308): avc: denied { write } for pid=6773 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7540.974233][ T24] audit: type=1400 audit(7540.120:309): avc: denied { write } for pid=6783 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7548.197206][ T3204] 8021q: adding VLAN 0 to HW filter on device eth33 [ 7576.139055][ T24] audit: type=1400 audit(7575.310:310): avc: denied { write } for pid=6799 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7588.079904][ T6592] veth0_vlan: entered promiscuous mode [ 7589.899608][ T6592] veth1_vlan: entered promiscuous mode [ 7590.823053][ T24] audit: type=1400 audit(7589.800:311): avc: denied { write } for pid=6810 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7594.807710][ T6592] veth0_macvtap: entered promiscuous mode [ 7595.515965][ T6592] veth1_macvtap: entered promiscuous mode [ 7600.769232][ T6280] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7600.814909][ T4837] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7600.966967][ T3204] 8021q: adding VLAN 0 to HW filter on device eth34 [ 7601.014678][ T4170] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7601.172293][ T5840] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7622.624259][ T6607] veth0_vlan: entered promiscuous mode [ 7624.256766][ T6607] veth1_vlan: entered promiscuous mode [ 7630.217427][ T6607] veth0_macvtap: entered promiscuous mode [ 7631.409721][ T6607] veth1_macvtap: entered promiscuous mode [ 7638.072976][ T4170] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7638.136889][ T4296] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7638.137835][ T4296] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7638.138509][ T4296] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7642.283826][ T24] audit: type=1400 audit(7641.450:312): avc: denied { write } for pid=6823 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7660.028277][ T24] audit: type=1400 audit(7659.210:313): avc: denied { write } for pid=6830 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7672.528014][ T3204] 8021q: adding VLAN 0 to HW filter on device eth35 [ 7716.342638][ T24] audit: type=1400 audit(7715.370:314): avc: denied { write } for pid=6848 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7730.091988][ T24] audit: type=1400 audit(7729.240:315): avc: denied { write } for pid=6852 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7739.786307][ T3204] 8021q: adding VLAN 0 to HW filter on device eth36 [ 7765.612905][ T24] audit: type=1400 audit(7764.770:316): avc: denied { write } for pid=6858 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7782.723178][ T24] audit: type=1400 audit(7781.890:317): avc: denied { write } for pid=6868 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7808.572184][ T24] audit: type=1400 audit(7807.740:318): avc: denied { write } for pid=6875 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7824.854251][ T24] audit: type=1400 audit(7824.000:319): avc: denied { write } for pid=6884 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7853.171846][ T24] audit: type=1400 audit(7852.320:320): avc: denied { write } for pid=6889 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7868.094205][ T24] audit: type=1400 audit(7867.270:321): avc: denied { write } for pid=6901 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7891.935500][ T6855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7892.867700][ T6855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7905.415993][ T24] audit: type=1400 audit(7904.460:322): avc: denied { write } for pid=6913 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7918.186587][ T6862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7918.817188][ T6862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7920.921691][ T24] audit: type=1400 audit(7920.090:323): avc: denied { write } for pid=6922 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7951.191576][ T24] audit: type=1400 audit(7950.340:324): avc: denied { write } for pid=6928 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7962.475375][ T6855] hsr_slave_0: entered promiscuous mode [ 7962.665688][ T6855] hsr_slave_1: entered promiscuous mode [ 7962.758285][ T6855] debugfs: 'hsr0' already exists in 'hsr' [ 7962.901820][ T6855] Cannot create hsr debugfs directory [ 7967.179271][ T24] audit: type=1400 audit(7966.240:325): avc: denied { write } for pid=6938 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7991.278622][ T24] audit: type=1400 audit(7990.470:326): avc: denied { write } for pid=6943 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7992.404538][ T6862] hsr_slave_0: entered promiscuous mode [ 7992.596909][ T6862] hsr_slave_1: entered promiscuous mode [ 7992.744866][ T6862] debugfs: 'hsr0' already exists in 'hsr' [ 7992.801173][ T6862] Cannot create hsr debugfs directory [ 8007.946846][ T24] audit: type=1400 audit(8007.110:327): avc: denied { write } for pid=6947 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8036.021482][ T24] audit: type=1400 audit(8035.180:328): avc: denied { write } for pid=6952 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8045.287391][ T6855] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 8046.026863][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 8046.169261][ T6855] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 8046.804757][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 8050.651243][ T24] audit: type=1400 audit(8049.810:329): avc: denied { write } for pid=6957 comm="rm" name="hook-state" dev="tmpfs" ino=115 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8050.672701][ T6855] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 8051.784142][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 8052.145725][ T6855] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 8052.835110][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 8082.845290][ T6862] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 8083.595727][ T6862] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 8083.822757][ T6862] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 8084.375164][ T6862] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 8084.624670][ T6862] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 8085.212519][ T6862] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 8085.488343][ T6862] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 8086.328923][ T6862] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 8119.915776][ T6855] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8137.606382][ T26] INFO: task syz.9.544:6843 blocked for more than 430 seconds. [ 8137.672770][ T26] Not tainted syzkaller #0 [ 8137.732159][ T26] Blocked by coredump. [ 8137.744755][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 8137.745463][ T26] task:syz.9.544 state:D stack:0 pid:6843 tgid:6842 ppid:6592 task_flags:0x40044c flags:0x00000011 [ 8137.746924][ T26] Call trace: [ 8137.747393][ T26] __switch_to+0x5e0/0xb70 (T) [ 8137.925774][ T26] __schedule+0x2554/0x3828 [ 8137.926686][ T26] schedule+0xac/0x278 [ 8137.927177][ T26] schedule_timeout+0x68/0x1ec [ 8137.927672][ T26] do_wait_for_common+0x270/0x428 [ 8137.928103][ T26] wait_for_completion+0x44/0x5c [ 8137.928533][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 8137.929095][ T26] synchronize_srcu+0x668/0x8dc [ 8137.929618][ T26] __mmu_notifier_release+0x668/0x858 [ 8137.993459][ T26] exit_mmap+0xcc/0xb64 [ 8137.994125][ T26] __mmput+0x10c/0x51c [ 8137.994660][ T26] mmput+0x70/0xa8 [ 8137.995162][ T26] exit_mm+0x1e4/0x2f8 [ 8137.995657][ T26] do_exit+0x828/0x23d8 [ 8137.996116][ T26] do_group_exit+0x1d4/0x2ac [ 8137.996603][ T26] get_signal+0x13f8/0x1504 [ 8137.997149][ T26] arch_do_signal_or_restart+0x23c/0x4b50 [ 8137.997702][ T26] exit_to_user_mode_loop+0x88/0x188 [ 8137.998190][ T26] el0_svc+0x184/0x238 [ 8137.998679][ T26] el0t_64_sync_handler+0x84/0x12c [ 8137.999129][ T26] el0t_64_sync+0x198/0x19c [ 8138.175594][ T26] [ 8138.175594][ T26] Showing all locks held in the system: [ 8138.176252][ T26] 3 locks held by kworker/u4:0/12: [ 8138.176897][ T26] 1 lock held by khungtaskd/26: [ 8138.177263][ T26] #0: ffff800087db4518 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 8138.179680][ T26] 2 locks held by dhcpcd/3203: [ 8138.211852][ T24] audit: type=1400 audit(8136.910:330): avc: denied { write } for pid=3367 comm="syz-executor" path="pipe:[2736]" dev="pipefs" ino=2736 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 8138.272283][ T26] #0: ffff8000880df438 (vlan_ioctl_mutex){+.+.}-{4:4}, at: sock_ioctl+0x554/0x848 [ 8138.294035][ T26] #1: ffff8000880e2838 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock+0x20/0x2c [ 8138.295710][ T26] 2 locks held by getty/3234: [ 8138.296032][ T26] #0: 4af00000127ea0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 8138.297643][ T26] #1: 10ff80008cb4b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x314/0x1214 [ 8138.299209][ T26] 2 locks held by syz-executor/3367: [ 8138.426500][ T26] 3 locks held by kworker/u4:6/4296: [ 8138.426962][ T26] 3 locks held by kworker/u4:7/4739: [ 8138.427256][ T26] 3 locks held by kworker/u4:10/4837: [ 8138.427589][ T26] 3 locks held by kworker/u4:11/5218: [ 8138.427924][ T26] 3 locks held by kworker/u4:8/5840: [ 8138.428207][ T26] 2 locks held by kworker/u4:3/6020: [ 8138.428569][ T26] 2 locks held by kworker/u4:15/6788: [ 8138.428902][ T26] #0: d4f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 8138.535500][ T26] #1: ffff80008f5b7cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 8138.537139][ T26] 2 locks held by syz.0.542/6833: [ 8138.537500][ T26] 1 lock held by syz-executor/6862: [ 8138.537833][ T26] 3 locks held by kworker/u4:1/6904: [ 8138.538154][ T26] 2 locks held by modprobe/6998: [ 8138.538466][ T26] 2 locks held by kworker/u4:4/6999: [ 8138.538981][ T26] [ 8138.539236][ T26] ============================================= [ 8138.539236][ T26] [ 8138.540174][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 8138.551458][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 8138.552989][ T26] Hardware name: linux,dummy-virt (DT) [ 8138.553957][ T26] Call trace: [ 8138.554777][ T26] show_stack+0x2c/0x3c (C) [ 8138.555835][ T26] __dump_stack+0x30/0x40 [ 8138.556868][ T26] dump_stack_lvl+0x30/0x12c [ 8138.557876][ T26] dump_stack+0x1c/0x28 [ 8138.558822][ T26] vpanic+0x4cc/0x844 [ 8138.559577][ T26] vpanic+0x0/0x844 [ 8138.560457][ T26] hung_task_panic+0x0/0x2c [ 8138.561471][ T26] kthread+0x4d4/0x51c [ 8138.562418][ T26] ret_from_fork+0x10/0x20 [ 8138.564331][ T26] Kernel Offset: disabled [ 8138.565143][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 8138.566311][ T26] Memory Limit: none [ 8138.568545][ T26] Rebooting in 86400 seconds..