last executing test programs: 57m12.461824005s ago: executing program 1 (id=414): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@hvc={0x32, 0x40, {0x45000000, [0x3, 0xd6, 0x2e, 0x5, 0x1]}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x2d8}}, @code={0xa, 0x9c, {"000008d5000008d50080001b001f9cd20040b0f2610080d2a20080d2630180d2840080d2020000d40088201e007008d580668bd200a0b0f2010180d2a20080d2230180d2040080d2020000d4007008d560309ad200c0b8f2c10180d2620080d2630180d2e40080d2020000d4e0788ad200a0b8f2a10180d2e20080d2830080d2640080d2020000d4"}}, @uexit={0x0, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013da21, 0x9}}, @eret={0xe6, 0x18, 0xf0f}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x4, 0x73, 0x1, 0x3}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8}}, @svc={0x122, 0x40, {0xc4000001, [0x52da, 0x2, 0xf95e, 0x4, 0x1]}}], 0x1dc}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r4 = eventfd2(0xd, 0x80801) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x40000, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f0000000100)={r4, 0x4000003, 0x2, r4}) ioctl$KVM_SET_GSI_ROUTING(r6, 0x4008ae6a, &(0x7f00000001c0)={0x1, 0x0, [{0x4, 0x2, 0x0, 0x0, @irqchip={0x6, 0x8}}]}) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2b) r7 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r10, 0xae04) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0xfffffffffffffffc) syz_kvm_setup_syzos_vm$arm64(r15, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x84000053, [0x1000009, 0x8000000000000001, 0x0, 0x400, 0xfffffffffffff801]}}], 0x40}, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r13, 0x2000003, 0x11, r12, 0x0) r17 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, &(0x7f0000000880)=[@msr={0x14, 0x20, {0x603000000013defc, 0x5a8}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r17, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) 57m2.712504023s ago: executing program 0 (id=416): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013df61, 0x7}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) write$eventfd(0xffffffffffffffff, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x28) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r7 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000080)="fb01db06033ce3c60100a29ea6ab8031d1dfd92f0000dc0320002c005a9610fbff67521c966f8f1f4408357070c2c7aadaebb20700000000040000000000000100", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r11 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x3800009, 0x8010, r11, 0x0) r12 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r14, 0x0) mmap$KVM_VCPU(&(0x7f0000e04000/0x2000)=nil, 0x930, 0x1, 0x11, r10, 0x0) r15 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r15, 0x8, 0x13, r10, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r16 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x408) ioctl$KVM_CHECK_EXTENSION(r16, 0x541b, 0xfffffffffffffff8) ioctl$KVM_RUN(r3, 0xae80, 0x0) 57m0.06469146s ago: executing program 1 (id=417): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x2041, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r4, 0x3, 0x11, r3, 0x40000) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4a85400005a9610fbff67521cf66f8fd22627e7000000f700000000000000f2000000000000000000000000000000000000f4ffff", 0x0, 0x48) 56m54.130769932s ago: executing program 0 (id=418): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000080)="fb01db06033ce3c60100a29ea6ab8031d1dfd92f0000dc0320002c005a9610fbff67521c966f8f1f4408357070c2c7aadaebb20700000000040000000000000100", 0x0, 0x48) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000240)="8e4862fc1c22ba0733f504cf5821a5199c6cf3535da8bebb6caf8d670c357757efb3093996f21d487f6c3d7efec4f0c47c8683b3436886178d253cc552f249340feec09c2b2db387", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r5, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x408) 56m53.738476876s ago: executing program 1 (id=419): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x1}}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f0000000180)=[@smc={0x1e, 0x40, {0xef000000, [0x0, 0x5, 0x2, 0x3]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r4, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000000)=@x86={0x1, 0x80, 0x7, 0x0, 0x0, 0x2, 0x6e, 0xf8, 0x46, 0x3, 0x8, 0xb9, 0x0, 0x8d0, 0xffffff80, 0x4, 0x5, 0xec, 0x9, '\x00', 0xff, 0x80000001}) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0xc4000053, [0x9, 0x0, 0x6, 0x6, 0x800]}}], 0x40}, 0x0, 0x0) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000080)={0x5}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c006, &(0x7f0000000240)=0x2}) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r11 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f0000000080)={0x7, 0xfffffffffffffffb, 0x2, 0xffffffffffffffff, 0x8a4fa382f1515d0b}) mmap$KVM_VCPU(&(0x7f0000001000/0x2000)=nil, 0x930, 0x2000003, 0x12, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r10, 0x80111500, 0x20000000) 56m44.433312976s ago: executing program 0 (id=420): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000f8e000/0x1000)=nil, r1, 0x3000002, 0x16831, 0xffffffffffffffff, 0x0) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f00000001c0)={0x0, &(0x7f00000002c0)=[@mrs={0xbe, 0x18, {0x603000000013c024}}], 0x18}, 0x0, 0x0) (async) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000001c0)={0x0, &(0x7f00000002c0)=[@mrs={0xbe, 0x18, {0x603000000013c024}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae03, 0xc3) (async) ioctl$KVM_CREATE_VM(r6, 0xae03, 0xc3) mmap$KVM_VCPU(&(0x7f0000f6e000/0x2000)=nil, r1, 0x3, 0x40010, r5, 0x0) 56m41.773397631s ago: executing program 1 (id=421): mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000a1e000/0x400000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r2 = mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r1, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f0000000240)="e65bf643e6e1a3ffc871fcc8064f26b4d9f94b6f1ccd7b41443d2b5486580143226c0ead9a1620b6709fafba2af023314cc4bf610d6a743ad4913910b8364e5f73ea2fc43ac1ebfc", 0x0, 0x48) eventfd2(0x4ef, 0x80000) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 56m36.190351404s ago: executing program 0 (id=422): r0 = openat$kvm(0x0, &(0x7f0000000000), 0x145000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xe) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) ioctl$KVM_CREATE_VM(r2, 0x5421, 0x20004000) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1, 0x0}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0x894c, 0x4) ioctl$KVM_CREATE_VCPU(r4, 0xb704, 0x0) 56m34.65633919s ago: executing program 1 (id=423): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x7) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x4, 0xffffffffffffffff}) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r5 = syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) ioctl$KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000000200)=@attr_arm64={0x0, 0x1, 0x304, &(0x7f00000001c0)=0x7}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r7, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c61000/0x3000)=nil, 0x930, 0x100000f, 0x4019032, 0xffffffffffffffff, 0x0) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000140)=@attr_arm64={0x0, 0x1, 0x0, 0x0}) 56m30.152663339s ago: executing program 0 (id=424): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000080)="fb01db06033ce3c60100a29ea6ab8031d1dfd92f0000dc0320002c005a9610fbff67521c966f8f1f4408357070c2c7aadaebb20700000000040000000000000100", 0x0, 0x48) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000240)="8e4862fc1c22ba0733f504cf5821a5199c6cf3535da8bebb6caf8d670c357757efb3093996f21d487f6c3d7efec4f0c47c8683b3436886178d253cc552f249340feec09c2b2db387", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r5, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x408) 56m26.505307605s ago: executing program 1 (id=425): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, 0xfffffffffffffffe) (async) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000a5a000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, &(0x7f0000000180)=[@hvc={0x32, 0x40, {0xc4000003, [0x4, 0x7fffffffffffffff, 0x401, 0x0, 0xb]}}, @code={0xa, 0xcc, {"00fa87d20020b8f2010180d2a20180d2830080d2840080d2020000d4c0dd88d200a0b8f2010080d2c20180d2e30180d2440180d2020000d4007008d560829ad20000b0f2210180d2220180d2230180d2640180d2020000d4001c4093202d85d200e0b8f2810080d2220080d2c30080d2840080d2020000d4403d83d200c0b8f2810080d2220080d2c30180d2e40080d2020000d400009f0de09d93d200c0b8f2c10180d2e20180d2a30080d2440180d2020000d4000040f8"}}, @code={0xa, 0x9c, {"007008d5007008d520df89d20040b0f2610180d2c20180d2830080d2e40080d2020000d4000008d50054200e007008d5203b9ed20060b8f2810180d2a20080d2630180d2640180d2020000d480639cd200c0b0f2410080d2220080d2a30180d2240180d2020000d4007008d5c01c97d20020b8f2010180d2620180d2030180d2640080d2020000d4"}}, @code={0xa, 0x54, {"0060000e0000c029008008d5c0219fd200e0b0f2010180d2420180d2630180d2240180d2020000d4007008d50010005e0000e00d008008d5001ca00e007008d5"}}, @hvc={0x32, 0x40, {0x84000007, [0x917, 0x8, 0x6, 0x1, 0x3]}}, @eret={0xe6, 0x18, 0x5}, @hvc={0x32, 0x40, {0x80000000, [0x7fff, 0xa, 0x8b76, 0x0, 0xffffffffffffffff]}}], 0x294}, &(0x7f0000000100)=[@featur2={0x1, 0x8}], 0x1) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 32) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (rerun: 32) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000740)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, 0xfffffffffffffffe) (async) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000440)={0xffff1000, 0x40000, 0x7, 0x1}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) (async) r13 = eventfd2(0x8, 0x80800) (async) r14 = eventfd2(0x8, 0x80000) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f00000000c0)={0x4, 0x25000, 0x0, r14, 0x2}) (async) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f0000000140)={0x8000000000000002, 0x0, 0x2, r13, 0x2}) (async, rerun: 64) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x2, r13, 0x3}) (async, rerun: 64) syz_kvm_vgic_v3_setup(r10, 0x2, 0x0) 56m21.784075252s ago: executing program 0 (id=426): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x7, 0xffffffffffffffff}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6100, 0x4, 0xa}}], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = ioctl$KVM_CREATE_VM(r5, 0x894c, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xb701, 0x0) ioctl$KVM_CREATE_VCPU(r12, 0x8004b707, 0x2) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000640)=@attr_other={0x0, 0x1, 0xc, &(0x7f0000000600)=0x2}) 55m40.082219583s ago: executing program 32 (id=425): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, 0xfffffffffffffffe) (async) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000a5a000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, &(0x7f0000000180)=[@hvc={0x32, 0x40, {0xc4000003, [0x4, 0x7fffffffffffffff, 0x401, 0x0, 0xb]}}, @code={0xa, 0xcc, {"00fa87d20020b8f2010180d2a20180d2830080d2840080d2020000d4c0dd88d200a0b8f2010080d2c20180d2e30180d2440180d2020000d4007008d560829ad20000b0f2210180d2220180d2230180d2640180d2020000d4001c4093202d85d200e0b8f2810080d2220080d2c30080d2840080d2020000d4403d83d200c0b8f2810080d2220080d2c30180d2e40080d2020000d400009f0de09d93d200c0b8f2c10180d2e20180d2a30080d2440180d2020000d4000040f8"}}, @code={0xa, 0x9c, {"007008d5007008d520df89d20040b0f2610180d2c20180d2830080d2e40080d2020000d4000008d50054200e007008d5203b9ed20060b8f2810180d2a20080d2630180d2640180d2020000d480639cd200c0b0f2410080d2220080d2a30180d2240180d2020000d4007008d5c01c97d20020b8f2010180d2620180d2030180d2640080d2020000d4"}}, @code={0xa, 0x54, {"0060000e0000c029008008d5c0219fd200e0b0f2010180d2420180d2630180d2240180d2020000d4007008d50010005e0000e00d008008d5001ca00e007008d5"}}, @hvc={0x32, 0x40, {0x84000007, [0x917, 0x8, 0x6, 0x1, 0x3]}}, @eret={0xe6, 0x18, 0x5}, @hvc={0x32, 0x40, {0x80000000, [0x7fff, 0xa, 0x8b76, 0x0, 0xffffffffffffffff]}}], 0x294}, &(0x7f0000000100)=[@featur2={0x1, 0x8}], 0x1) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 32) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (rerun: 32) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000740)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, 0xfffffffffffffffe) (async) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000440)={0xffff1000, 0x40000, 0x7, 0x1}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) (async) r13 = eventfd2(0x8, 0x80800) (async) r14 = eventfd2(0x8, 0x80000) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f00000000c0)={0x4, 0x25000, 0x0, r14, 0x2}) (async) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f0000000140)={0x8000000000000002, 0x0, 0x2, r13, 0x2}) (async, rerun: 64) ioctl$KVM_IOEVENTFD(r12, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x2, r13, 0x3}) (async, rerun: 64) syz_kvm_vgic_v3_setup(r10, 0x2, 0x0) 55m32.641836867s ago: executing program 33 (id=426): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x7, 0xffffffffffffffff}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6100, 0x4, 0xa}}], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = ioctl$KVM_CREATE_VM(r5, 0x894c, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xb701, 0x0) ioctl$KVM_CREATE_VCPU(r12, 0x8004b707, 0x2) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000640)=@attr_other={0x0, 0x1, 0xc, &(0x7f0000000600)=0x2}) 1m35.676830486s ago: executing program 3 (id=911): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2a) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x1) 1m35.676364406s ago: executing program 2 (id=912): r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x4) ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000400)={0x101ff, 0x180, 0x380, &(0x7f0000000000)=[0x4, 0x2, 0x5389, 0x1000, 0x6000000000000, 0x6, 0x9, 0x5, 0x6, 0xd, 0x7, 0x5827, 0xffffffffffffffff, 0x0, 0x80000001, 0x2, 0x5, 0x6, 0xd6, 0x2, 0x42, 0x100000000, 0x0, 0x2, 0xd, 0x7, 0x4, 0x100000001, 0x3ff, 0x3, 0x5, 0x2724, 0x7, 0x0, 0xffffffff, 0x1, 0x2, 0x1ff, 0xa5, 0x0, 0x3, 0x48b21b7000000, 0x8000000000000000, 0xfffffffffffffdc4, 0x51f4a2d6, 0xee5, 0x9, 0x8, 0xd4, 0x7fffffffffffffff, 0x2, 0x8, 0x8, 0x6, 0x6, 0xb3ed, 0x5, 0x8001, 0xffff, 0x4, 0x5, 0x4, 0x3ff, 0x0, 0x291, 0x60, 0xff, 0x8, 0xf, 0x9, 0x5, 0x10001, 0x400, 0x800000000000000, 0xc, 0x3, 0x5, 0x5, 0x4, 0x5, 0xfad9, 0x6, 0x8, 0x7ff, 0x737, 0xffffffffffff0001, 0x8000000000000000, 0x4, 0x2, 0x0, 0x800, 0xfffffffffffffff8, 0x7fffffffffffffff, 0x4, 0xfffffffffffff5ef, 0x0, 0x8, 0x7, 0x6, 0x8, 0xbab7, 0x4, 0x70a11387, 0x5, 0xfffffffffffffffc, 0x1ff800000000000, 0x8, 0x2, 0x8a, 0x3000000000, 0x7, 0x7ff, 0x8, 0x2, 0x401, 0x4, 0x9, 0xfffffffffffffe01, 0x4, 0x4, 0xe, 0x0, 0x8, 0x1, 0x0, 0x8, 0x200, 0x5]}) syz_kvm_setup_cpu$arm64(r2, r1, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000980)=[{0x0, &(0x7f0000000440)=[@its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x1, 0x7, 0x1, 0x9}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf10, 0x91cc, 0x3}}, @irq_setup={0x46, 0x18, {0x3, 0x139}}, @msr={0x14, 0x20, {0x603000000013c684, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x211}}, @uexit={0x0, 0x18, 0x100}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x217}}, @uexit={0x0, 0x18, 0xf53}, @code={0xa, 0x54, {"007008d5007008d5a03c95d20040b8f2610080d2020080d2830080d2e40180d2020000d40084600d000c80b80070000e008008d5007008d5007008d5009c200e"}}, @code={0xa, 0x9c, {"80ca81d200c0b8f2610180d2820180d2630180d2a40180d2020000d4206380d20080b8f2810180d2820180d2230080d2240180d2020000d4000028d5007008d5007008d500a4c00d0020002f00ee98d20080b8f2e10180d2220080d2630180d2a40080d2020000d4201b86d20020b0f2c10080d2c20180d2030180d2e40080d2020000d4002c200e"}}, @mrs={0xbe, 0x18, {0x603000000013deff}}, @hvc={0x32, 0x40, {0x400, [0x5, 0x9, 0xce9, 0x40, 0x7fffffffffffffff]}}, @eret={0xe6, 0x18, 0xf}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x4, 0xd, 0x2e6, 0x1, 0x2}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x2fe}}, @mrs={0xbe, 0x18, {0x603000000013da15}}, @irq_setup={0x46, 0x18, {0x4, 0x7c}}, @mrs={0xbe, 0x18, {0x6030000000138032}}, @hvc={0x32, 0x40, {0x40, [0x10001, 0x6, 0x4a2d]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x2, 0x10, 0x5, 0x401, 0x3}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x229}}, @svc={0x122, 0x40, {0x87000050, [0x8, 0x80000000, 0x3, 0x9, 0x14a]}}, @msr={0x14, 0x20, {0x603000000013def9, 0x57}}, @mrs={0xbe, 0x18, {0x603000000013c801}}, @hvc={0x32, 0x40, {0x8400000e, [0x2, 0xffffffffffff2444, 0x1, 0x800, 0x286e]}}, @smc={0x1e, 0x40, {0x86000001, [0x7, 0x40, 0x5, 0xd5d, 0x100000000]}}, @eret={0xe6, 0x18, 0x7fffffff}, @eret={0xe6, 0x18, 0x101}, @irq_setup={0x46, 0x18, {0x4, 0x7f}}, @smc={0x1e, 0x40, {0x8400000f, [0xc, 0x7ff, 0x8000000000000, 0x100000001, 0x40]}}], 0x508}], 0x1, 0x0, &(0x7f00000009c0)=[@featur1={0x1, 0xa}], 0x1) r3 = ioctl$KVM_GET_STATS_FD_vm(r2, 0xaece) syz_kvm_setup_cpu$arm64(r0, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000a40)=[{0x0, &(0x7f0000000a00)=[@memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x400, 0xbb, 0x1}}], 0x30}], 0x1, 0x0, &(0x7f0000000a80)=[@featur2={0x1, 0x40}], 0x1) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000ac0)={0x5, 0x4d6b}) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000b00)={r0, 0x7ff, 0x2, r0}) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000b40)={0x3}) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000bc0)=@arm64_extra={0x603000000013c03f, &(0x7f0000000b80)=0x7}) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000011c0)={0x0, &(0x7f0000000c00)=[@msr={0x14, 0x20, {0x6030000000138080}}, @mrs={0xbe, 0x18, {0x603000000013df46}}, @eret={0xe6, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013c4d0}}, @msr={0x14, 0x20, {0x603000000013e722, 0x4}}, @uexit={0x0, 0x18, 0x44f}, @hvc={0x32, 0x40, {0x1000, [0x7, 0x5, 0x9, 0x3, 0x69ed]}}, @eret={0xe6, 0x18, 0x20000000000000}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x144}}, @hvc={0x32, 0x40, {0xf, [0x7fa54d4, 0x10001, 0x2, 0x0, 0xffffffffffff93de]}}, @code={0xa, 0x3c, {"0060000c000008d5000040b30000c0780058201e00fc205e008008d50078202e0094000f000c205e"}}, @uexit={0x0, 0x18, 0x435b}, @msr={0x14, 0x20, {0x603000000013c600, 0x288b4123}}, @uexit={0x0, 0x18, 0x3}, @eret={0xe6, 0x18, 0xfb6}, @eret={0xe6, 0x18, 0x9}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1800, 0x86f8, 0x3}}, @irq_setup={0x46, 0x18, {0x3, 0x227}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x3b0}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x352}}, @msr={0x14, 0x20, {0x603000000013deb6}}, @hvc={0x32, 0x40, {0x2, [0xea4, 0x1, 0x3d8, 0xffff, 0xffff]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x1, 0x1, 0x1, 0x4, 0x4}}, @uexit={0x0, 0x18, 0xab}, @code={0xa, 0xb4, {"007008d50004407c207390d20060b8f2610180d2a20180d2830180d2840180d2020000d4c0d285d20020b0f2010080d2020180d2e30080d2a40080d2020000d420cd8ad200c0b0f2e10180d2820180d2030080d2a40080d2020000d40000271e000028d500a988d200a0b8f2010180d2220180d2430080d2840080d2020000d40050805fa0269fd20060b8f2a10080d2c20080d2030180d2a40180d2020000d4"}}, @hvc={0x32, 0x40, {0x10, [0x4, 0x7f, 0x1, 0x9, 0x1]}}, @irq_setup={0x46, 0x18, {0x2, 0x2c8}}, @msr={0x14, 0x20, {0x1c31, 0x9}}, @mrs={0xbe, 0x18, {0x603000000013deb4}}, @code={0xa, 0xb4, {"208e92d20080b0f2010080d2620180d2630080d2840180d2020000d4008c205e0080201f407e84d20000b8f2c10080d2a20080d2630080d2040080d2020000d40040005e00c0400d80738ed200c0b8f2610080d2820080d2830180d2e40180d2020000d440c985d20080b8f2c10180d2e20080d2e30180d2e40080d2020000d4007008d560aa9ad20020b8f2010080d2e20180d2030080d2240080d2020000d4"}}, @smc={0x1e, 0x40, {0x4, [0x1, 0x39, 0x100000001, 0x8000000000000000, 0x9eb]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8000, 0x6566, 0x8}}], 0x5bc}, &(0x7f0000001200), 0x1) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000001280)=@attr_arm64={0x0, 0x3, 0x3, &(0x7f0000001240)=0x5}) mmap$KVM_VCPU(&(0x7f0000c0f000/0x4000)=nil, 0x0, 0x3000000, 0x80010, r5, 0x0) r6 = mmap$KVM_VCPU(&(0x7f0000fe9000/0x2000)=nil, 0x0, 0x0, 0x10, r5, 0x0) munmap$KVM_VCPU(r6, 0x1) syz_kvm_setup_cpu$arm64(r2, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001440)=[{0x0, &(0x7f00000012c0)=[@eret={0xe6, 0x18, 0x5}, @smc={0x1e, 0x40, {0x84000005, [0x681, 0xe, 0xfff, 0x5, 0x1]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @smc={0x1e, 0x40, {0xc4000011, [0x10000, 0xffffffffffffffff, 0x10001, 0x716, 0x6]}}, @smc={0x1e, 0x40, {0x84000005, [0x3, 0x5, 0x7fffffffffffffff, 0x80000001, 0x800]}}, @svc={0x122, 0x40, {0xc400040c, [0x4, 0x6, 0xa3, 0x1, 0x9]}}, @svc={0x122, 0x40, {0x5e7dd33a3693e1c4, [0x227, 0xf, 0x1355, 0xd, 0x6]}}], 0x170}], 0x1, 0x0, &(0x7f0000001480)=[@featur1={0x1, 0xd}], 0x1) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r0, 0x4068aea3, &(0x7f00000014c0)={0xe4, 0x0, 0x4b}) ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000001540)=0x4) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000001700)={0x0, &(0x7f0000001580)=[@msr={0x14, 0x20, {0x6030000000138047, 0x40}}, @svc={0x122, 0x40, {0x8400000e, [0x1000, 0x6, 0x1, 0x4, 0x3]}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x13b}}, @code={0xa, 0x9c, {"008008d50000806ca02f96d20080b8f2210180d2020180d2830080d2640080d2020000d4007008d50000400d408c8ed200e0b0f2610080d2020080d2230080d2e40080d2020000d4007008d5007008d500bb87d20040b0f2e10080d2c20080d2630180d2040180d2020000d4406d9cd20020b8f2810080d2e20180d2830080d2840080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x4, 0x135}}, @smc={0x1e, 0x40, {0x84000012, [0x1000, 0x10000, 0x81, 0x4, 0x6]}}], 0x17c}, &(0x7f0000001740)=[@featur2], 0x1) ioctl$KVM_GET_SREGS(r7, 0x8000ae83, &(0x7f0000001780)) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f00000018c0)=0x2) ioctl$KVM_HAS_DEVICE_ATTR_vm(r3, 0x4018aee3, &(0x7f0000001940)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000001900)={0x317, 0xafe, 0x1}}) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000001980)="492ed667ef18e0c8035bff2c2c89565369457c72f4016cb482d32f42115585f9a45e59bfd87dad9ef3f38874482a19b79e053e9aa464a65d5b2538a8c5267af83c57aab994a0bd89", 0x0, 0x48) ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000001a40)=@riscv64_sbi_sta={0x803000000a000001, &(0x7f0000001a00)}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000001ac0)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f0000001a80)=0x5}) 1m30.721022477s ago: executing program 3 (id=913): syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xe}}], 0x28}, 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000000c0)=@arm64_sve_vls={0x606000000015ffff, &(0x7f0000000000)=0x1}) r3 = openat$kvm(0x0, &(0x7f0000000240), 0x80b42, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(r6, 0x8933, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0x8000000000000000}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) 1m28.413754446s ago: executing program 2 (id=914): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r6 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r7, 0x3, 0x11, r5, 0x0) mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r7, 0x3, 0x11, r6, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r10, 0x800454df, 0x110e22fffb) 1m17.73168566s ago: executing program 3 (id=915): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x1, 0x8, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x94, 0x8001}) r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000540)={0x0, &(0x7f0000000200)=[@mrs={0xbe, 0x18, {0x603000000013802f}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xd00, 0x400}}, @svc={0x122, 0x40, {0x1000, [0x6, 0x0, 0x65, 0xae35, 0x138]}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x119}}, @msr={0x14, 0x20, {0x603000000013df5e, 0x5}}, @hvc={0x32, 0x40, {0xc4000007, [0x80000001, 0x0, 0x3, 0x80000001, 0x50a]}}, @eret={0xe6, 0x18, 0x6}, @uexit={0x0, 0x18, 0x8}, @irq_setup={0x46, 0x18, {0x3, 0xdf}}, @mrs={0xbe, 0x18, {0x603000000013dce1}}, @uexit={0x0, 0x18, 0x6}, @code={0xa, 0x6c, {"007008d5e0b686d20080b0f2810080d2220080d2030080d2240080d2020000d40068e0380000421e007008d5604f9dd20080b0f2010180d2220180d2430180d2240180d2020000d40008202e00000011008008d5000040f8"}}, @irq_setup={0x46, 0x18, {0x1, 0x31f}}, @memwrite={0x6e, 0x30, @generic={0x0, 0xe61, 0xa6c, 0xa}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x14e}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x58, 0x2264e375, 0xc}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x4, 0xa, 0x80, 0x7, 0x1}}, @mrs={0xbe, 0x18, {0x603000000013df68}}, @code={0xa, 0x6c, {"007008d5000028d5c0778fd20060b0f2a10080d2420180d2c30180d2e40180d2020000d400e4002f7f2003d5007c8fd200e0b0f2210080d2220180d2030180d2040080d2020000d400005fd6000028d50010805f0078200e"}}], 0x340}, &(0x7f0000000580)=[@featur2], 0x1) ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f00000005c0)=0x1) write$eventfd(0xffffffffffffffff, &(0x7f00000001c0)=0x4, 0x8) ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000000)=@x86={0x7, 0xc, 0x6, 0x0, 0x7f, 0xb, 0xb, 0x8b, 0x4, 0x7, 0xd9, 0x2, 0x0, 0x7, 0x8, 0x0, 0x94, 0x10, 0xc, '\x00', 0x81, 0x80}) 1m16.158989561s ago: executing program 2 (id=916): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0x5421, 0xfffffffefffffffe) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) (async) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x101, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013dce4, 0x1}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (async, rerun: 32) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000000)={0x3, [0x0, 0x2, 0x6]}) 1m8.861242765s ago: executing program 3 (id=917): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000240)={0x8}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x5, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r2, 0x4018aee2, &(0x7f00000000c0)=@attr_other={0x0, 0x7, 0x90, &(0x7f0000000000)=0x6}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x3c9a85, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x80000000) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r10 = ioctl$KVM_CREATE_VM(r9, 0x894c, 0x0) close(r10) ioctl$KVM_CREATE_VCPU(r10, 0xb704, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x0) eventfd2(0x4, 0x1001) 1m6.638561411s ago: executing program 2 (id=918): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x2041, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r4, 0x3, 0x11, r3, 0x40000) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4a85400005a9610fbff67521cf66f8fd22627e7000000f700000000000000f200", 0x0, 0x48) 58.650306803s ago: executing program 3 (id=919): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000aef000/0x400000)=nil, &(0x7f0000000700)=[{0x0, &(0x7f0000000280)=[@svc={0x122, 0x40, {0xc4000004, [0x7fffffffffffffff, 0x2, 0x34b40000000000, 0x101, 0x2]}}, @hvc={0x32, 0x40, {0x1, [0x5, 0x3, 0x80, 0x7, 0x4]}}, @code={0xa, 0x9c, {"000008d5e0bd90d200e0b8f2010180d2620080d2a30180d2e40180d2020000d4000c40f8000008d5407397d200c0b0f2810080d2820080d2230080d2c40080d2020000d4004b86d20000b8f2c10180d2620180d2e30080d2240080d2020000d40088207e609e9fd200e0b8f2410080d2420180d2030080d2e40180d2020000d4000c000e000028d5"}}, @hvc={0x32, 0x40, {0x8400000b, [0xf41, 0xffffffff, 0x6, 0x9, 0x7]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x180, 0x7ff, 0x8}}, @code={0xa, 0x6c, {"80e281d200e0b0f2610180d2420080d2030080d2c40080d2020000d40060400c00000098008008d5008008d560cb99d20040b8f2610180d2620180d2430180d2a40180d2020000d40000600d0030202e000028d500a0202e"}}, @code={0xa, 0x84, {"0000259ee0f298d20080b8f2610080d2a20180d2a30180d2a40180d2020000d4008c000f80ca84d200a0b8f2a10080d2820080d2430180d2a40180d2020000d4000c407c0060202e20b699d20040b8f2a10180d2620080d2a30080d2c40180d2020000d40000206a008008d5008008d5"}}, @uexit={0x0, 0x18, 0x7}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x1b}}, @uexit={0x0, 0x18, 0x9}, @svc={0x122, 0x40, {0x84000006, [0xc, 0xfff, 0x5, 0x5, 0x219429df]}}, @smc={0x1e, 0x40, {0xc5000021, [0x100000000, 0x4, 0xbc, 0x6]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0xffe8, 0x9, 0x2}}, @code={0xa, 0x9c, {"007008d540b588d20040b8f2810080d2420180d2630180d2a40080d2020000d4a0a989d20060b8f2e10080d2420080d2430180d2040180d2020000d400084078600d9ed20000b8f2810180d2820180d2c30080d2640080d2020000d40044c01a00849f0de0b29dd200a0b0f2410180d2e20080d2030080d2640180d2020000d4001ce00e007008d5"}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0xa, 0x800, 0x0, 0x1}}], 0x448}], 0x1, 0x0, &(0x7f0000000740)=[@featur1={0x1, 0x90}], 0x1) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000240)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x2}) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r1, 0x4010aeb5, &(0x7f0000000000)={0x4, 0x9}) 58.411060252s ago: executing program 2 (id=920): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x36) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0x2, 0xffffffffffffffff, 0x1}) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000080)=@attr_riscv64=@attr_config={0x0, 0x1, 0x0, &(0x7f0000000040)=0x3}) r3 = eventfd2(0x27, 0x1) r4 = eventfd2(0x2298, 0x1) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f00000000c0)={r3, 0x7, 0x1, r4}) ioctl$KVM_PPC_ALLOCATE_HTAB(r0, 0xc004aea7, &(0x7f0000000100)=0x10000) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f0000000140)={r4, 0x4, 0x3, r4}) ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x7) ioctl$KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f00000001c0)=@attr_arm64={0x0, 0x2, 0x4, &(0x7f0000000180)=0x6}) r5 = ioctl$KVM_GET_STATS_FD_vm(r0, 0xaece) ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000000200)={0xdddd0000, 0x2000, 0x3, 0x1, 0x6}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000280)=@arm64_ccsidr={0x6020000000110009, &(0x7f0000000240)=0x18}) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r0, 0x4068aea3, &(0x7f00000002c0)) syz_kvm_setup_cpu$arm64(r0, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000980)=[{0x0, &(0x7f0000000340)=[@mrs={0xbe, 0x18, {0x603000000013deac}}, @mrs={0xbe, 0x18, {0x603000000013c665}}, @hvc={0x32, 0x40, {0x31000000, [0xacf, 0x54f, 0x0, 0x4194, 0x100]}}, @code={0xa, 0x84, {"0040005ee04c9dd20080b0f2210180d2820080d2230180d2e40180d2020000d4c0bd94d20000b0f2e10080d2020080d2c30080d2e40180d2020000d4007008d5e08d9dd200e0b8f2e10180d2e20080d2c30080d2c40180d2020000d40000209e00d4a02e000028d5007008d50068603c"}}, @hvc={0x32, 0x40, {0xc4000011, [0x6, 0x2, 0xffffffffffff0000, 0x9, 0x3]}}, @code={0xa, 0x6c, {"007008d5007008d5007008d5000080d2001ce02e206689d200a0b0f2010080d2620080d2a30180d2c40080d2020000d4000008d5402e80d200c0b0f2010080d2a20080d2a30080d2040080d2020000d40040200d000020cb"}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x0, 0xb, 0x100, 0x200, 0x3}}, @msr={0x14, 0x20, {0x603000000013c031, 0x96}}, @svc={0x122, 0x40, {0xc400000e, [0x9, 0x7, 0x4, 0xffffffff, 0x8]}}, @uexit={0x0, 0x18, 0x9}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x27}}, @smc={0x1e, 0x40, {0x84000009, [0x3ff, 0x3, 0x40, 0x8, 0xd36]}}, @code={0xa, 0xb4, {"005c207e40348bd20060b0f2a10180d2020180d2e30180d2040180d2020000d4801d82d200a0b0f2210080d2e20080d2630180d2040180d2020000d4007008d5201181d20020b8f2610180d2620180d2430080d2e40180d2020000d4000c007c40fc84d200e0b8f2a10080d2c20080d2c30080d2640080d2020000d480fe95d20080b0f2410180d2220180d2630180d2640080d2020000d4007008d500d0005f"}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x1, 0xf, 0x7, 0x50}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x4, 0x6, 0x9, 0x40, 0x2}}, @eret={0xe6, 0x18}, @hvc={0x32, 0x40, {0x84000013, [0x1, 0x3, 0x1, 0x2, 0x3]}}, @smc={0x1e, 0x40, {0xc4000011, [0x811, 0xd2, 0x2, 0x8000000000000001, 0x7]}}, @eret={0xe6, 0x18, 0x4}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x291}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8000, 0x180000, 0xc}}, @uexit={0x0, 0x18, 0x1}, @code={0xa, 0xb4, {"008040c80060006f0004803cc0519cd200a0b0f2810080d2e20080d2830080d2840180d2020000d4206a9ad200e0b0f2c10180d2e20080d2c30180d2640080d2020000d4007d9dd20020b8f2a10180d2220080d2230180d2c40180d2020000d4008008d5a0de88d200e0b8f2810180d2620080d2430080d2c40080d2020000d400d49fd20040b8f2210180d2020180d2630080d2c40080d2020000d400000018"}}, @eret={0xe6, 0x18, 0x1}, @mrs={0xbe, 0x18, {0x6030000000138055}}, @hvc={0x32, 0x40, {0x84000008, [0x5, 0x10000, 0xb, 0xffffffff, 0xfffffffffffffff5]}}, @irq_setup={0x46, 0x18, {0x2, 0x142}}, @uexit={0x0, 0x18, 0x45}, @eret={0xe6, 0x18, 0x4}], 0x638}], 0x1, 0x0, &(0x7f00000009c0)=[@featur2={0x1, 0x1}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vm(r0, 0x4018aee1, &(0x7f0000000a40)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000a00)={0x9, 0x0, 0x1}}) ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, &(0x7f0000000a80)={0x0, 0x400}) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000ac0)={0x2, 0x2, 0x4000, 0x2000, &(0x7f0000e57000/0x2000)=nil}) write$eventfd(r5, &(0x7f0000000b00)=0x3, 0x8) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000b80)=@attr_other={0x0, 0x4, 0x80, &(0x7f0000000b40)=0x2}) close(r0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x18) ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f0000000bc0)={0x7, 0x1}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000c00)={0x0, 0x40000}) mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, 0x0, 0x5, 0x2010, r1, 0x0) r7 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x7) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000c40)={0x9, 0xffffffffffffffff, 0x1}) ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000001080)={0x1, 0x1c0, 0x380, &(0x7f0000000c80)=[0x6, 0x4, 0x7fffffffffffffff, 0x4, 0x4, 0x4, 0x80, 0x3, 0x85c, 0xfffffffffffff000, 0x3661a3f9, 0x9, 0x8, 0x7, 0x1, 0xfffffffffffffffe, 0x5, 0x1, 0x3, 0x8, 0x6, 0x3, 0xb7c6, 0x181, 0x3, 0x2, 0x3, 0x9, 0x6ec, 0x6a4, 0x8000000000000001, 0x5, 0x6, 0xffff, 0x2, 0x8, 0x3, 0x4, 0x775, 0x3, 0x7f, 0x218b, 0x3cb, 0x4ea, 0x100, 0x8000000000000001, 0x7, 0x6, 0x9, 0xf, 0x3, 0x7, 0x0, 0xe, 0x1, 0x4, 0x7, 0x9, 0x10, 0x4, 0x40, 0x95c2e22, 0xada, 0x2, 0xa, 0x0, 0x200, 0x9, 0x2, 0x80000000, 0x8, 0x7, 0x5, 0x3, 0x0, 0x7fffffff, 0x4, 0x6, 0x5, 0x8000000000000001, 0x18, 0x9, 0xfffffffffffffffa, 0xfd9, 0x4, 0x5, 0x7, 0x2, 0x3, 0xf1, 0xffffffffffffffff, 0x5, 0x8000000000000000, 0xc19, 0xe, 0xc, 0x6, 0x6, 0x3, 0x1000, 0x100, 0x7, 0x8, 0x10001, 0x2, 0x2000000000, 0x2, 0x5, 0x7, 0x8, 0x9, 0x3, 0x0, 0x7fff, 0x6, 0x0, 0x10, 0x1, 0x0, 0xff, 0x6, 0x5, 0x3, 0x6, 0x100000000, 0x4, 0x3, 0x80000]}) syz_kvm_vgic_v3_setup(r7, 0x4, 0x100) 51.618418078s ago: executing program 2 (id=921): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x100) (async) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac0800000000000000454e37c4b85400005a9610fbff7a835673312b54ebb2aa76c829082496a7000000000200", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0) (async) r9 = eventfd2(0x0, 0x0) close(r9) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) (async) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f0000ec8000/0x1000)=nil, r10, 0x3000009, 0x11, r4, 0x0) write$eventfd(r9, &(0x7f0000000180)=0x5, 0xfffffde3) (async) r11 = mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xf934b8f0a4a12039) (async) r12 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) close(0xffffffffffffffff) ioctl$KVM_SET_REGS(r12, 0x4360ae82, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x200001, 0x0) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x2e) 50.681201235s ago: executing program 3 (id=922): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r2 = openat$kvm(0x0, &(0x7f0000000100), 0x100800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) eventfd2(0xfffffffa, 0x80001) (async) r4 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000140)={0x80, 0x50000, 0x0, r4}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a92616}) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000180)={0x10000, 0x4000}) syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async) r5 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r9, 0x4018aee3, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x4, 0x0}) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r11, 0x1, 0x40) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x6, 0xad, '\x00', 0x76}) (async) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x6, 0xad, '\x00', 0x76}) ioctl$KVM_SET_MP_STATE(r13, 0x4004ae99, &(0x7f00000000c0)=0xa) ioctl$KVM_RUN(r13, 0xae80, 0x0) (async) ioctl$KVM_RUN(r13, 0xae80, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r14, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="320000000000000040000000000000000c0000c400000000070000000000000009000000000000000800"], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) (async) ioctl$KVM_RUN(r14, 0xae80, 0x0) 5.302184789s ago: executing program 34 (id=921): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x100) (async) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac0800000000000000454e37c4b85400005a9610fbff7a835673312b54ebb2aa76c829082496a7000000000200", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0) (async) r9 = eventfd2(0x0, 0x0) close(r9) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) (async) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f0000ec8000/0x1000)=nil, r10, 0x3000009, 0x11, r4, 0x0) write$eventfd(r9, &(0x7f0000000180)=0x5, 0xfffffde3) (async) r11 = mmap$KVM_VCPU(&(0x7f0000dd4000/0x3000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xf934b8f0a4a12039) (async) r12 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) close(0xffffffffffffffff) ioctl$KVM_SET_REGS(r12, 0x4360ae82, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x200001, 0x0) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x2e) 0s ago: executing program 35 (id=922): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r2 = openat$kvm(0x0, &(0x7f0000000100), 0x100800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) eventfd2(0xfffffffa, 0x80001) (async) r4 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000140)={0x80, 0x50000, 0x0, r4}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a92616}) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000180)={0x10000, 0x4000}) syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async) r5 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r9, 0x4018aee3, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x4, 0x0}) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r11, 0x1, 0x40) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x6, 0xad, '\x00', 0x76}) (async) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x6, 0xad, '\x00', 0x76}) ioctl$KVM_SET_MP_STATE(r13, 0x4004ae99, &(0x7f00000000c0)=0xa) ioctl$KVM_RUN(r13, 0xae80, 0x0) (async) ioctl$KVM_RUN(r13, 0xae80, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r14, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="320000000000000040000000000000000c0000c400000000070000000000000009000000000000000800"], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) (async) ioctl$KVM_RUN(r14, 0xae80, 0x0) kernel console output (not intermixed with test programs): [ 367.994952][ T24] audit: type=1400 audit(367.170:76): avc: denied { write } for pid=3264 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 380.144282][ T24] audit: type=1400 audit(379.320:77): avc: denied { write } for pid=3272 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 385.625355][ T24] audit: type=1400 audit(384.800:78): avc: denied { write } for pid=3275 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 389.166080][ T3206] 8021q: adding VLAN 0 to HW filter on device bond0 [ 398.890876][ T24] audit: type=1400 audit(398.060:79): avc: denied { write } for pid=3280 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 402.895898][ T24] audit: type=1400 audit(402.070:80): avc: denied { write } for pid=3283 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 405.289627][ T3206] eql: remember to turn off Van-Jacobson compression on your slave devices [ 413.002928][ T24] audit: type=1400 audit(412.180:81): avc: denied { write } for pid=3288 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 416.754282][ T24] audit: type=1400 audit(415.920:82): avc: denied { write } for pid=3291 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 422.217378][ T24] audit: type=1400 audit(421.400:83): avc: denied { write } for pid=3293 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 425.979499][ T24] audit: type=1400 audit(425.160:84): avc: denied { write } for pid=3296 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 437.006132][ T24] audit: type=1400 audit(436.160:85): avc: denied { write } for pid=3301 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 440.734805][ T24] audit: type=1400 audit(439.910:86): avc: denied { write } for pid=3304 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 446.634989][ T24] audit: type=1400 audit(445.820:87): avc: denied { write } for pid=3306 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 451.675137][ T24] audit: type=1400 audit(450.850:88): avc: denied { write } for pid=3309 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 467.033206][ T24] audit: type=1400 audit(466.210:89): avc: denied { write } for pid=3316 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 470.743726][ T24] audit: type=1400 audit(469.920:90): avc: denied { write } for pid=3319 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 476.034095][ T24] audit: type=1400 audit(475.210:91): avc: denied { write } for pid=3321 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 479.673294][ T24] audit: type=1400 audit(478.850:92): avc: denied { write } for pid=3324 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 490.976660][ T24] audit: type=1400 audit(490.150:93): avc: denied { write } for pid=3329 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 494.773170][ T24] audit: type=1400 audit(493.950:94): avc: denied { write } for pid=3332 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 508.964269][ T24] audit: type=1400 audit(508.120:95): avc: denied { write } for pid=3338 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 513.866404][ T24] audit: type=1400 audit(513.050:96): avc: denied { write } for pid=3341 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 539.178374][ T24] audit: type=1400 audit(538.360:97): avc: denied { write } for pid=3351 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 543.005205][ T24] audit: type=1400 audit(542.160:98): avc: denied { write } for pid=3354 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 548.872915][ T24] audit: type=1400 audit(548.050:99): avc: denied { write } for pid=3357 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 552.733287][ T24] audit: type=1400 audit(551.890:100): avc: denied { write } for pid=3360 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:6474' (ED25519) to the list of known hosts. [ 587.760274][ T24] audit: type=1400 audit(586.940:101): avc: denied { name_bind } for pid=3365 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 588.606663][ T24] audit: type=1400 audit(587.780:102): avc: denied { execute } for pid=3366 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 588.629041][ T24] audit: type=1400 audit(587.800:103): avc: denied { execute_no_trans } for pid=3366 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 612.915153][ T24] audit: type=1400 audit(612.090:104): avc: denied { mounton } for pid=3366 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 612.949813][ T24] audit: type=1400 audit(612.130:105): avc: denied { mount } for pid=3366 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 613.034980][ T3366] cgroup: Unknown subsys name 'net' [ 613.090455][ T24] audit: type=1400 audit(612.270:106): avc: denied { unmount } for pid=3366 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 613.529418][ T3366] cgroup: Unknown subsys name 'cpuset' [ 613.638819][ T3366] cgroup: Unknown subsys name 'rlimit' [ 614.504414][ T24] audit: type=1400 audit(613.680:107): avc: denied { setattr } for pid=3366 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 614.520823][ T24] audit: type=1400 audit(613.700:108): avc: denied { mounton } for pid=3366 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 614.547202][ T24] audit: type=1400 audit(613.720:109): avc: denied { mount } for pid=3366 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 615.531477][ T3369] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 615.551258][ T24] audit: type=1400 audit(614.730:110): avc: denied { relabelto } for pid=3369 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 615.570962][ T24] audit: type=1400 audit(614.750:111): avc: denied { write } for pid=3369 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 615.749877][ T24] audit: type=1400 audit(614.930:112): avc: denied { read } for pid=3366 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 615.770350][ T24] audit: type=1400 audit(614.950:113): avc: denied { open } for pid=3366 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 615.818743][ T3366] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 674.736033][ T24] audit: type=1400 audit(673.920:114): avc: denied { execmem } for pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 678.393904][ T24] audit: type=1400 audit(677.570:115): avc: denied { read } for pid=3372 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 678.420559][ T24] audit: type=1400 audit(677.600:116): avc: denied { open } for pid=3373 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 678.486135][ T24] audit: type=1400 audit(677.660:117): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 678.719445][ T24] audit: type=1400 audit(677.900:118): avc: denied { module_request } for pid=3373 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 678.749142][ T24] audit: type=1400 audit(677.930:119): avc: denied { module_request } for pid=3372 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 679.705433][ T24] audit: type=1400 audit(678.880:120): avc: denied { sys_module } for pid=3372 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 704.334668][ T3373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 704.509755][ T3373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 705.585264][ T3372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 705.715984][ T3372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 716.250693][ T3373] hsr_slave_0: entered promiscuous mode [ 716.309365][ T3373] hsr_slave_1: entered promiscuous mode [ 717.681514][ T3372] hsr_slave_0: entered promiscuous mode [ 717.736785][ T3372] hsr_slave_1: entered promiscuous mode [ 717.778831][ T3372] debugfs: 'hsr0' already exists in 'hsr' [ 717.795198][ T3372] Cannot create hsr debugfs directory [ 722.891218][ T24] audit: type=1400 audit(722.070:121): avc: denied { create } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 722.956137][ T24] audit: type=1400 audit(722.090:122): avc: denied { write } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 722.994873][ T24] audit: type=1400 audit(722.150:123): avc: denied { read } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.160104][ T3373] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 723.507418][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 723.626077][ T3373] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 723.795086][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 723.884691][ T3373] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 724.044832][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 724.214060][ T3373] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 724.279687][ T3373] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 725.794408][ T3372] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 725.988150][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 726.100286][ T3372] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 726.264498][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 726.355828][ T3372] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 726.523881][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 726.616684][ T3372] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 726.746973][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 737.218202][ T3373] 8021q: adding VLAN 0 to HW filter on device bond0 [ 740.137061][ T3372] 8021q: adding VLAN 0 to HW filter on device bond0 [ 790.225096][ T3373] veth0_vlan: entered promiscuous mode [ 790.739574][ T3373] veth1_vlan: entered promiscuous mode [ 792.666758][ T3373] veth0_macvtap: entered promiscuous mode [ 793.187177][ T3373] veth1_macvtap: entered promiscuous mode [ 793.289533][ T3372] veth0_vlan: entered promiscuous mode [ 794.068332][ T3372] veth1_vlan: entered promiscuous mode [ 795.424564][ T3466] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.430170][ T3466] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.460751][ T3466] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.493448][ T3466] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 797.175456][ T3372] veth0_macvtap: entered promiscuous mode [ 797.790504][ T3372] veth1_macvtap: entered promiscuous mode [ 798.049978][ T24] audit: type=1400 audit(797.230:124): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 798.340483][ T24] audit: type=1400 audit(797.510:125): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/syzkaller.cuM8lL/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 798.556934][ T24] audit: type=1400 audit(797.730:126): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 799.010454][ T24] audit: type=1400 audit(798.190:127): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/syzkaller.cuM8lL/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 799.126395][ T24] audit: type=1400 audit(798.300:128): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/syzkaller.cuM8lL/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3746 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 799.689080][ T24] audit: type=1400 audit(798.790:129): avc: denied { unmount } for pid=3373 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 800.005524][ T24] audit: type=1400 audit(799.190:130): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 800.078869][ T24] audit: type=1400 audit(799.260:131): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="gadgetfs" ino=3756 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 800.275527][ T2169] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.279557][ T2169] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.324086][ T2169] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.328699][ T2169] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.631085][ T24] audit: type=1400 audit(799.810:132): avc: denied { mount } for pid=3373 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 800.756738][ T24] audit: type=1400 audit(799.940:133): avc: denied { mounton } for pid=3373 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 802.260768][ T3373] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 803.344093][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 803.347617][ T24] audit: type=1400 audit(802.510:135): avc: denied { read write } for pid=3373 comm="syz-executor" name="loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 803.426680][ T24] audit: type=1400 audit(802.560:136): avc: denied { open } for pid=3373 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 803.466524][ T24] audit: type=1400 audit(802.630:137): avc: denied { ioctl } for pid=3373 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 812.687104][ T24] audit: type=1400 audit(811.810:138): avc: denied { write } for pid=3525 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 812.714251][ T24] audit: type=1400 audit(811.880:139): avc: denied { open } for pid=3525 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 813.298935][ T24] audit: type=1400 audit(812.480:140): avc: denied { ioctl } for pid=3525 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 815.953340][ T24] audit: type=1400 audit(815.120:141): avc: denied { read } for pid=3527 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 829.169635][ T24] audit: type=1400 audit(828.350:142): avc: denied { execute } for pid=3537 comm="syz.1.4" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3962 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 868.563971][ T3564] kvm [3564]: Failed to find VMA for hva 0x20d8d000 [ 895.176075][ T24] audit: type=1400 audit(894.290:143): avc: denied { create } for pid=3580 comm="syz.1.18" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 910.728325][ T24] audit: type=1400 audit(909.910:144): avc: denied { append } for pid=3589 comm="syz.0.21" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 911.348105][ T24] audit: type=1400 audit(910.530:145): avc: denied { map } for pid=3589 comm="syz.0.21" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4877 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 911.415328][ T24] audit: type=1400 audit(910.550:146): avc: denied { read } for pid=3589 comm="syz.0.21" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4877 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 950.127439][ T24] audit: type=1400 audit(949.290:147): avc: denied { write } for pid=3613 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 958.588059][ T24] audit: type=1400 audit(957.770:148): avc: denied { write } for pid=3619 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 981.564060][ T24] audit: type=1400 audit(980.730:149): avc: denied { ioctl } for pid=3631 comm="syz.0.33" path="net:[4026532627]" dev="nsfs" ino=4026532627 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 986.664061][ T24] audit: type=1400 audit(985.800:150): avc: denied { execute } for pid=3634 comm="syz.1.34" path=2F31352F10FBFF67525673312B0104 dev="tmpfs" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 1138.400823][ T24] audit: type=1400 audit(1137.580:151): avc: denied { setattr } for pid=3735 comm="syz.1.65" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1369.812854][ T24] audit: type=1400 audit(1368.970:152): avc: denied { map } for pid=3880 comm="syz.0.109" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1465.475805][ T24] audit: type=1400 audit(1464.600:153): avc: denied { write } for pid=3939 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1472.907612][ T24] audit: type=1400 audit(1472.080:154): avc: denied { write } for pid=3946 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1551.223669][ T24] audit: type=1400 audit(1550.340:155): avc: denied { write } for pid=3998 comm="syz.1.147" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=11747 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1556.344618][ T24] audit: type=1400 audit(1555.520:156): avc: denied { execute } for pid=3999 comm="syz.0.148" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1992.704989][ T24] audit: type=1400 audit(1991.870:157): avc: denied { write } for pid=4268 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1999.910901][ T24] audit: type=1400 audit(1999.090:158): avc: denied { write } for pid=4279 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2319.866313][ T24] audit: type=1400 audit(2319.010:159): avc: denied { write } for pid=4470 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2329.783878][ T24] audit: type=1400 audit(2328.950:160): avc: denied { write } for pid=4482 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2369.195710][ T4504] kvm [4504]: Failed to find VMA for hva 0x20e1d000 [ 2588.188221][ T4639] kvm [4639]: Failed to find VMA for hva 0x21016000 [ 2689.456500][ T24] audit: type=1400 audit(2688.610:161): avc: denied { write } for pid=4702 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2698.918388][ T24] audit: type=1400 audit(2698.100:162): avc: denied { write } for pid=4714 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2771.941537][ T4759] kvm [4758]: Unsupported guest access at: eeef0000 [ 2771.941537][ T4759] { Op0( 2), Op1( 3), CRn(15), CRm( 5), Op2( 5), func_write }, [ 2918.905919][ T4847] kvm [4847]: Failed to find VMA for hva 0x20c0c000 [ 2994.828071][ T24] audit: type=1400 audit(2994.000:163): avc: denied { write } for pid=4875 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3000.412989][ T24] audit: type=1400 audit(2999.580:164): avc: denied { write } for pid=4879 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3014.850044][ T2169] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3017.385092][ T2169] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3018.430005][ T2169] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3019.429374][ T2169] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3030.860524][ T2169] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3031.005950][ T2169] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3031.097439][ T2169] bond0 (unregistering): Released all slaves [ 3032.244010][ T2169] hsr_slave_0: left promiscuous mode [ 3032.322641][ T2169] hsr_slave_1: left promiscuous mode [ 3032.807042][ T2169] veth1_macvtap: left promiscuous mode [ 3032.817206][ T2169] veth0_macvtap: left promiscuous mode [ 3032.845849][ T2169] veth1_vlan: left promiscuous mode [ 3032.854599][ T2169] veth0_vlan: left promiscuous mode [ 3053.517125][ T2169] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3054.664741][ T2169] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3056.083916][ T2169] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3057.724225][ T24] audit: type=1400 audit(3056.890:165): avc: denied { write } for pid=4910 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3058.159483][ T2169] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3064.047515][ T24] audit: type=1400 audit(3063.230:166): avc: denied { write } for pid=4916 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3071.685942][ T2169] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3071.748996][ T2169] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3071.801147][ T2169] bond0 (unregistering): Released all slaves [ 3072.459496][ T3206] 8021q: adding VLAN 0 to HW filter on device eth1 [ 3072.709553][ T2169] hsr_slave_0: left promiscuous mode [ 3072.779640][ T2169] hsr_slave_1: left promiscuous mode [ 3072.973634][ T2169] veth1_macvtap: left promiscuous mode [ 3072.983035][ T2169] veth0_macvtap: left promiscuous mode [ 3072.987166][ T2169] veth1_vlan: left promiscuous mode [ 3072.995496][ T2169] veth0_vlan: left promiscuous mode [ 3093.016210][ T24] audit: type=1400 audit(3092.170:167): avc: denied { write } for pid=4937 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3097.134489][ T24] audit: type=1400 audit(3096.270:168): avc: denied { write } for pid=4948 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3098.459126][ T4883] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3098.653275][ T4883] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3100.084473][ T3206] 8021q: adding VLAN 0 to HW filter on device eth2 [ 3104.379686][ T4888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3104.569945][ T4888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3108.954583][ T24] audit: type=1400 audit(3108.120:169): avc: denied { write } for pid=4959 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3115.064265][ T24] audit: type=1400 audit(3114.230:170): avc: denied { write } for pid=4968 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3118.909073][ T3206] 8021q: adding VLAN 0 to HW filter on device eth3 [ 3120.818880][ T4883] hsr_slave_0: entered promiscuous mode [ 3120.877374][ T4883] hsr_slave_1: entered promiscuous mode [ 3127.349522][ T4888] hsr_slave_0: entered promiscuous mode [ 3127.400521][ T4888] hsr_slave_1: entered promiscuous mode [ 3127.435008][ T4888] debugfs: 'hsr0' already exists in 'hsr' [ 3127.443032][ T4888] Cannot create hsr debugfs directory [ 3128.503932][ T24] audit: type=1400 audit(3127.680:171): avc: denied { write } for pid=4980 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3132.654720][ T24] audit: type=1400 audit(3131.810:172): avc: denied { write } for pid=4985 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3135.444185][ T3206] 8021q: adding VLAN 0 to HW filter on device eth4 [ 3136.436116][ T4883] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 3136.578635][ T4883] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3136.763190][ T4883] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 3137.016131][ T4883] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3137.125404][ T4883] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 3137.335289][ T4883] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3137.476353][ T4883] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 3137.756196][ T4883] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3141.494071][ T4888] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 3141.746519][ T4888] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3141.816819][ T4888] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 3142.074285][ T4888] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3142.165847][ T4888] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 3142.360645][ T4888] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3142.537835][ T4888] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 3142.811220][ T4888] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3149.325002][ T24] audit: type=1400 audit(3148.490:173): avc: denied { write } for pid=5006 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3155.143276][ T24] audit: type=1400 audit(3154.310:174): avc: denied { write } for pid=5016 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3159.154668][ T4883] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3159.825039][ T3206] 8021q: adding VLAN 0 to HW filter on device eth5 [ 3164.304540][ T4888] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3174.735403][ T24] audit: type=1400 audit(3173.910:175): avc: denied { write } for pid=5028 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3183.718820][ T24] audit: type=1400 audit(3182.870:176): avc: denied { write } for pid=5037 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3190.399409][ T3206] 8021q: adding VLAN 0 to HW filter on device eth6 [ 3203.833378][ T24] audit: type=1400 audit(3203.010:177): avc: denied { write } for pid=5052 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3210.123382][ T24] audit: type=1400 audit(3209.290:178): avc: denied { write } for pid=5062 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3214.685440][ T3206] 8021q: adding VLAN 0 to HW filter on device eth7 [ 3227.033102][ T24] audit: type=1400 audit(3226.200:179): avc: denied { write } for pid=5077 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3235.472959][ T24] audit: type=1400 audit(3234.630:180): avc: denied { write } for pid=5086 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3241.119416][ T3206] 8021q: adding VLAN 0 to HW filter on device eth8 [ 3251.364514][ T4883] veth0_vlan: entered promiscuous mode [ 3252.348782][ T4883] veth1_vlan: entered promiscuous mode [ 3255.575959][ T4883] veth0_macvtap: entered promiscuous mode [ 3256.156253][ T4883] veth1_macvtap: entered promiscuous mode [ 3258.229943][ T4888] veth0_vlan: entered promiscuous mode [ 3259.688283][ T4888] veth1_vlan: entered promiscuous mode [ 3261.016175][ T5036] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3261.163463][ T5036] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3261.167692][ T5036] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3261.179609][ T5036] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3265.197525][ T4888] veth0_macvtap: entered promiscuous mode [ 3265.804463][ T4888] veth1_macvtap: entered promiscuous mode [ 3267.083977][ T24] audit: type=1400 audit(3266.260:181): avc: denied { unmount } for pid=4883 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 3269.377179][ T4494] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3269.380264][ T4494] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3269.443353][ T4494] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3269.451406][ T4494] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3286.529333][ T24] audit: type=1400 audit(3285.630:182): avc: denied { write } for pid=5116 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3297.646483][ T24] audit: type=1400 audit(3296.830:183): avc: denied { write } for pid=5127 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3324.407988][ T24] audit: type=1400 audit(3323.590:184): avc: denied { write } for pid=5145 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3334.553122][ T24] audit: type=1400 audit(3333.720:185): avc: denied { write } for pid=5156 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3360.381005][ T24] audit: type=1400 audit(3359.530:186): avc: denied { write } for pid=5172 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3371.935492][ T24] audit: type=1400 audit(3371.070:187): avc: denied { write } for pid=5181 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3391.506720][ T24] audit: type=1400 audit(3390.690:188): avc: denied { write } for pid=5193 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3400.939691][ T24] audit: type=1400 audit(3400.120:189): avc: denied { write } for pid=5201 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3418.385148][ T24] audit: type=1400 audit(3417.560:190): avc: denied { write } for pid=5209 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3428.626709][ T24] audit: type=1400 audit(3427.790:191): avc: denied { write } for pid=5216 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3466.243781][ T24] audit: type=1400 audit(3465.400:192): avc: denied { write } for pid=5245 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3476.964347][ T24] audit: type=1400 audit(3476.140:193): avc: denied { write } for pid=5254 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3502.596601][ T24] audit: type=1400 audit(3501.680:194): avc: denied { write } for pid=5267 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3512.303852][ T24] audit: type=1400 audit(3511.460:195): avc: denied { write } for pid=5278 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3527.926182][ T24] audit: type=1400 audit(3527.100:196): avc: denied { write } for pid=5288 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3539.504506][ T24] audit: type=1400 audit(3538.680:197): avc: denied { write } for pid=5295 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3580.533033][ T24] audit: type=1400 audit(3579.710:198): avc: denied { write } for pid=5318 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3589.576226][ T24] audit: type=1400 audit(3588.720:199): avc: denied { write } for pid=5325 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3647.667100][ T5355] kvm [5355]: Failed to find VMA for hva 0x2053c000 [ 3803.197609][ T5435] kvm [5435]: Failed to find VMA for hva 0x20dbf000 [ 3890.608097][ T5486] debugfs: 'vgic-its-state@8080000' already exists in '5486-7' [ 4001.596203][ T24] audit: type=1400 audit(4000.660:200): avc: denied { ioctl } for pid=5550 comm="syz.2.537" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=34364 ioctlcmd=0xae49 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 4054.019160][ T24] audit: type=1400 audit(4053.200:201): avc: denied { write } for pid=5574 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4063.131261][ T24] audit: type=1400 audit(4062.310:202): avc: denied { write } for pid=5583 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4101.705432][ T24] audit: type=1400 audit(4100.830:203): avc: denied { map } for pid=5606 comm="syz.2.553" path="pipe:[26705]" dev="pipefs" ino=26705 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 4471.547579][ T5798] kvm [5798]: Failed to find VMA for hva 0x2053c000 [ 4611.710295][ T24] audit: type=1400 audit(4610.880:204): avc: denied { write } for pid=5878 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4623.313087][ T24] audit: type=1400 audit(4622.470:205): avc: denied { write } for pid=5890 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4735.618642][ T5957] kvm [5957]: Failed to find VMA for hva 0x20c01000 [ 4886.746299][ T6048] FAULT_INJECTION: forcing a failure. [ 4886.746299][ T6048] name failslab, interval 1, probability 0, space 0, times 1 [ 4886.798915][ T6048] CPU: 0 UID: 0 PID: 6048 Comm: syz.3.686 Not tainted syzkaller #0 PREEMPT [ 4886.799588][ T6048] Hardware name: linux,dummy-virt (DT) [ 4886.800067][ T6048] Call trace: [ 4886.800474][ T6048] show_stack+0x2c/0x3c (C) [ 4886.802563][ T6048] __dump_stack+0x30/0x40 [ 4886.802976][ T6048] dump_stack_lvl+0xd8/0x12c [ 4886.803321][ T6048] dump_stack+0x1c/0x28 [ 4886.803621][ T6048] should_fail_ex+0x56c/0x6d8 [ 4886.803842][ T6048] should_failslab+0xb8/0xec [ 4886.804144][ T6048] kmem_cache_alloc_noprof+0x90/0x4c4 [ 4886.804423][ T6048] do_getname+0x50/0x288 [ 4886.804652][ T6048] getname_flags+0x2c/0x3c [ 4886.804889][ T6048] do_sys_openat2+0x74/0x17c [ 4886.805213][ T6048] __arm64_sys_openat+0x14c/0x1b0 [ 4886.805512][ T6048] invoke_syscall+0x94/0x1ec [ 4886.805815][ T6048] el0_svc_common+0x120/0x2f4 [ 4886.806147][ T6048] do_el0_svc+0x58/0x74 [ 4886.806437][ T6048] el0_svc+0x60/0x238 [ 4886.806710][ T6048] el0t_64_sync_handler+0x84/0x12c [ 4886.806999][ T6048] el0t_64_sync+0x198/0x19c [ 4917.127878][ T6070] FAULT_INJECTION: forcing a failure. [ 4917.127878][ T6070] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 4917.149017][ T6070] CPU: 0 UID: 0 PID: 6070 Comm: syz.2.692 Not tainted syzkaller #0 PREEMPT [ 4917.149410][ T6070] Hardware name: linux,dummy-virt (DT) [ 4917.149517][ T6070] Call trace: [ 4917.149601][ T6070] show_stack+0x2c/0x3c (C) [ 4917.150020][ T6070] __dump_stack+0x30/0x40 [ 4917.150362][ T6070] dump_stack_lvl+0xd8/0x12c [ 4917.150671][ T6070] dump_stack+0x1c/0x28 [ 4917.151002][ T6070] should_fail_ex+0x56c/0x6d8 [ 4917.151244][ T6070] should_fail+0x14/0x24 [ 4917.151457][ T6070] should_fail_usercopy+0x20/0x30 [ 4917.151688][ T6070] strncpy_from_user+0x50/0x3d0 [ 4917.151983][ T6070] do_getname+0x90/0x288 [ 4917.152247][ T6070] getname_flags+0x2c/0x3c [ 4917.152479][ T6070] do_sys_openat2+0x74/0x17c [ 4917.152772][ T6070] __arm64_sys_openat+0x14c/0x1b0 [ 4917.153116][ T6070] invoke_syscall+0x94/0x1ec [ 4917.153423][ T6070] el0_svc_common+0x120/0x2f4 [ 4917.153718][ T6070] do_el0_svc+0x58/0x74 [ 4917.154046][ T6070] el0_svc+0x60/0x238 [ 4917.154309][ T6070] el0t_64_sync_handler+0x84/0x12c [ 4917.154566][ T6070] el0t_64_sync+0x198/0x19c [ 5047.903214][ T24] audit: type=1400 audit(5047.050:206): avc: denied { write } for pid=6145 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5059.304386][ T24] audit: type=1400 audit(5058.480:207): avc: denied { write } for pid=6157 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5202.019297][ T6245] kvm [6245]: Failed to find VMA for hva 0x20dea000 [ 5262.113683][ T24] audit: type=1400 audit(5261.280:208): avc: denied { write } for pid=6282 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5271.163838][ T24] audit: type=1400 audit(5270.260:209): avc: denied { write } for pid=6293 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5654.415534][ T24] audit: type=1400 audit(5653.580:210): avc: denied { write } for pid=6497 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5665.203684][ T24] audit: type=1400 audit(5664.370:211): avc: denied { write } for pid=6507 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6028.007351][ T6718] kvm [6718]: Failed to find VMA for hva 0x20dd9000 [ 6187.903092][ T24] audit: type=1400 audit(6187.080:212): avc: denied { write } for pid=6800 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6198.948070][ T24] audit: type=1400 audit(6198.020:213): avc: denied { write } for pid=6811 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6225.918992][ T6830] FAULT_INJECTION: forcing a failure. [ 6225.918992][ T6830] name failslab, interval 1, probability 0, space 0, times 0 [ 6225.943689][ T6830] CPU: 0 UID: 0 PID: 6830 Comm: syz.2.909 Not tainted syzkaller #0 PREEMPT [ 6225.944113][ T6830] Hardware name: linux,dummy-virt (DT) [ 6225.944249][ T6830] Call trace: [ 6225.944336][ T6830] show_stack+0x2c/0x3c (C) [ 6225.944724][ T6830] __dump_stack+0x30/0x40 [ 6225.945068][ T6830] dump_stack_lvl+0xd8/0x12c [ 6225.945379][ T6830] dump_stack+0x1c/0x28 [ 6225.945676][ T6830] should_fail_ex+0x56c/0x6d8 [ 6225.945903][ T6830] should_failslab+0xb8/0xec [ 6225.946213][ T6830] __kmalloc_noprof+0xe8/0x598 [ 6225.946458][ T6830] tomoyo_realpath_from_path+0xdc/0x640 [ 6225.946715][ T6830] tomoyo_path_number_perm+0x13c/0x33c [ 6225.947060][ T6830] tomoyo_file_ioctl+0x2c/0x3c [ 6225.947320][ T6830] security_file_ioctl+0xe0/0x2cc [ 6225.947577][ T6830] __arm64_sys_ioctl+0xd0/0x244 [ 6225.947875][ T6830] invoke_syscall+0x94/0x1ec [ 6225.948224][ T6830] el0_svc_common+0x120/0x2f4 [ 6225.948541][ T6830] do_el0_svc+0x58/0x74 [ 6225.948827][ T6830] el0_svc+0x60/0x238 [ 6225.949110][ T6830] el0t_64_sync_handler+0x84/0x12c [ 6225.949375][ T6830] el0t_64_sync+0x198/0x19c [ 6226.068808][ T6830] ERROR: Out of memory at tomoyo_realpath_from_path. [ 6343.839871][ T6846] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6345.264260][ T6846] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6346.716494][ T6846] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6347.974140][ T6846] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6368.186400][ T6846] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6368.487239][ T6846] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6368.705710][ T6846] bond0 (unregistering): Released all slaves [ 6372.425831][ T6846] hsr_slave_0: left promiscuous mode [ 6372.875202][ T6846] hsr_slave_1: left promiscuous mode [ 6373.775733][ T6846] veth1_macvtap: left promiscuous mode [ 6373.783013][ T6846] veth0_macvtap: left promiscuous mode [ 6373.794145][ T6846] veth1_vlan: left promiscuous mode [ 6373.806692][ T6846] veth0_vlan: left promiscuous mode [ 6412.055185][ T24] audit: type=1400 audit(6411.220:214): avc: denied { write } for pid=6904 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6417.516200][ T24] audit: type=1400 audit(6416.690:215): avc: denied { write } for pid=6909 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6422.930043][ T3206] 8021q: adding VLAN 0 to HW filter on device eth9 [ 6442.372825][ T24] audit: type=1400 audit(6441.520:216): avc: denied { write } for pid=6921 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6448.905506][ T24] audit: type=1400 audit(6448.060:217): avc: denied { write } for pid=6928 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6453.769031][ T3206] 8021q: adding VLAN 0 to HW filter on device eth10 [ 6469.140757][ T6882] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6469.446439][ T6878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6469.687432][ T6882] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6469.861428][ T6878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6472.283114][ T24] audit: type=1400 audit(6471.460:218): avc: denied { write } for pid=6947 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6480.334532][ T24] audit: type=1400 audit(6479.490:219): avc: denied { write } for pid=6953 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6486.709117][ T3206] 8021q: adding VLAN 0 to HW filter on device eth11 [ 6508.459853][ T6882] hsr_slave_0: entered promiscuous mode [ 6508.567798][ T6882] hsr_slave_1: entered promiscuous mode [ 6509.062990][ T24] audit: type=1400 audit(6508.240:220): avc: denied { write } for pid=6971 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6512.269084][ T6878] hsr_slave_0: entered promiscuous mode [ 6512.421457][ T6878] hsr_slave_1: entered promiscuous mode [ 6512.469164][ T6878] debugfs: 'hsr0' already exists in 'hsr' [ 6512.493126][ T6878] Cannot create hsr debugfs directory [ 6516.273807][ T24] audit: type=1400 audit(6515.380:221): avc: denied { write } for pid=6975 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6521.159523][ T3206] 8021q: adding VLAN 0 to HW filter on device eth12 [ 6535.100778][ T6882] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 6535.901304][ T6882] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 6536.215379][ T6882] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 6536.957309][ T6882] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 6537.239353][ T6882] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 6537.859611][ T6882] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 6537.970873][ T6882] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 6538.438725][ T6882] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 6547.086242][ T6878] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 6547.690944][ T6878] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 6547.881353][ T6878] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 6548.594896][ T6878] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 6548.766618][ T6878] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 6549.340519][ T6878] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 6549.470170][ T6878] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 6549.986351][ T6878] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 6558.845750][ T24] audit: type=1400 audit(6558.000:222): avc: denied { write } for pid=6996 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6570.462982][ T24] audit: type=1400 audit(6569.510:223): avc: denied { write } for pid=7013 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6579.568494][ T6882] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6588.551358][ T6878] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6602.594277][ T24] audit: type=1400 audit(6601.760:224): avc: denied { write } for pid=7028 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6615.558708][ T24] audit: type=1400 audit(6614.650:225): avc: denied { write } for pid=7038 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6637.743429][ T24] audit: type=1400 audit(6636.920:226): avc: denied { write } for pid=7047 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6647.884241][ T24] audit: type=1400 audit(6647.040:227): avc: denied { write } for pid=7056 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6668.783289][ T24] audit: type=1400 audit(6667.890:228): avc: denied { write } for pid=7067 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6680.457174][ T24] audit: type=1400 audit(6679.580:229): avc: denied { write } for pid=7077 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6697.383696][ T24] audit: type=1400 audit(6696.560:230): avc: denied { write } for pid=7084 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6707.185172][ T24] audit: type=1400 audit(6706.320:231): avc: denied { write } for pid=7095 comm="rm" name="hook-state" dev="tmpfs" ino=118 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6736.023832][ T26] INFO: task syz.2.921:6866 blocked for more than 430 seconds. [ 6736.113998][ T26] Not tainted syzkaller #0 [ 6736.137475][ T26] Blocked by coredump. [ 6736.137945][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 6736.138452][ T26] task:syz.2.921 state:D stack:0 pid:6866 tgid:6866 ppid:4883 task_flags:0x40004c flags:0x00000018 [ 6736.139598][ T26] Call trace: [ 6736.139970][ T26] __switch_to+0x5e0/0xb70 (T) [ 6736.140569][ T26] __schedule+0x2554/0x3828 [ 6736.141018][ T26] schedule+0xac/0x278 [ 6736.141425][ T26] schedule_timeout+0x68/0x1ec [ 6736.237786][ T26] do_wait_for_common+0x270/0x428 [ 6736.263085][ T26] wait_for_completion+0x44/0x5c [ 6736.263932][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 6736.264551][ T26] synchronize_srcu+0x668/0x8dc [ 6736.265088][ T26] mmu_notifier_unregister+0x320/0x428 [ 6736.265577][ T26] kvm_put_kvm+0x69c/0xbbc [ 6736.265992][ T26] kvm_vm_release+0x58/0x78 [ 6736.266455][ T26] __fput+0x4ac/0x978 [ 6736.266875][ T26] ____fput+0x20/0x30 [ 6736.267829][ T26] task_work_run+0x1b8/0x250 [ 6736.268377][ T26] do_exit+0x890/0x23d8 [ 6736.268856][ T26] do_group_exit+0x288/0x2ac [ 6736.269369][ T26] __arm64_sys_exit_group+0x40/0x48 [ 6736.269837][ T26] invoke_syscall+0x94/0x1ec [ 6736.270366][ T26] el0_svc_common+0x120/0x2f4 [ 6736.270839][ T26] do_el0_svc+0x58/0x74 [ 6736.271356][ T26] el0_svc+0x60/0x238 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 6736.423989][ T26] el0t_64_sync_handler+0x84/0x12c [ 6736.424684][ T26] el0t_64_sync+0x198/0x19c [ 6736.426284][ T26] [ 6736.426284][ T26] Showing all locks held in the system: [ 6736.426808][ T26] 1 lock held by khungtaskd/26: [ 6736.427234][ T26] #0: ffff800087db4518 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 6736.429707][ T26] 3 locks held by kworker/u4:5/49: [ 6736.430211][ T26] 2 locks held by getty/3235: [ 6736.430556][ T26] #0: 85f00000127a60a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 6736.536724][ T26] #1: 85ff80008cb4b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x314/0x1214 [ 6736.538509][ T26] 2 locks held by syz-executor/3366: [ 6736.538848][ T26] 3 locks held by kworker/u4:8/4905: [ 6736.539229][ T26] 2 locks held by kworker/u4:3/6231: [ 6736.539525][ T26] #0: 4ef000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 6736.541493][ T26] #1: ffff80008f2b7cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 6736.636897][ T26] 3 locks held by kworker/u4:6/6389: [ 6736.637278][ T26] 2 locks held by syz.3.922/6868: [ 6736.637581][ T26] 2 locks held by kworker/u4:10/6895: [ 6736.637860][ T26] #0: 4ef000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 6736.639658][ T26] #1: ffff80008e937cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 6736.641308][ T26] 3 locks held by kworker/u4:11/7007: [ 6736.784738][ T26] 1 lock held by modprobe/7112: [ 6736.804114][ T26] 1 lock held by modprobe/7113: [ 6736.809426][ T26] [ 6736.809841][ T26] ============================================= [ 6736.809841][ T26] [ 6736.810829][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 6736.816285][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 6736.817307][ T26] Hardware name: linux,dummy-virt (DT) [ 6736.818043][ T26] Call trace: [ 6736.818673][ T26] show_stack+0x2c/0x3c (C) [ 6736.819635][ T26] __dump_stack+0x30/0x40 [ 6736.820620][ T26] dump_stack_lvl+0x30/0x12c [ 6736.821560][ T26] dump_stack+0x1c/0x28 [ 6736.822430][ T26] vpanic+0x4cc/0x844 [ 6736.823198][ T26] vpanic+0x0/0x844 [ 6736.823860][ T26] hung_task_panic+0x0/0x2c [ 6736.824770][ T26] kthread+0x4d4/0x51c [ 6736.825634][ T26] ret_from_fork+0x10/0x20 [ 6736.827388][ T26] Kernel Offset: disabled [ 6736.828149][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 6736.829241][ T26] Memory Limit: none [ 6736.831390][ T26] Rebooting in 86400 seconds..