last executing test programs:

10.57618436s ago: executing program 1 (id=108):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_kvm_setup_syzos_vm(r0)
r2 = syz_kvm_add_vcpu(r1, &(0x7f0000000040)={0x0, &(0x7f0000000240)=[@msr={0x2, 0x20, {0x603000000013df11, 0x1}}], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9.846850541s ago: executing program 1 (id=110):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm(r1)
r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000ec0)={0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="03000000000000000000000000000000010000c4"], 0x40}, &(0x7f0000000f00)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x1, 0xb97})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0x3e})

8.138343511s ago: executing program 0 (id=111):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm(0xffffffffffffffff)

6.935678846s ago: executing program 1 (id=112):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xa8)
syz_kvm_setup_syzos_vm(r1)

5.898564737s ago: executing program 1 (id=113):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm(r1)
r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="05"], 0x18}, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x8000004, 0x7000})
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5.532261088s ago: executing program 0 (id=114):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm(r1)
r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f00000002c0)=@arm64_extra={0x6030000000140000, &(0x7f0000000240)=0x5})

4.630334745s ago: executing program 0 (id=115):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_kvm_setup_syzos_vm(r0)
r2 = syz_kvm_add_vcpu(r1, &(0x7f0000000040)={0x0, &(0x7f0000000240)=[@msr={0x2, 0x20, {0x603000000013df11, 0x1}}], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.007013543s ago: executing program 0 (id=116):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm(r1)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000340)={0x0, 0x6})

3.726140261s ago: executing program 1 (id=117):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm(r1)
r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000080)=[@featur1={0x1, 0x5}], 0x24)
r4 = syz_kvm_add_vcpu(r2, &(0x7f0000000100)={0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="04000000000000000000000000000000030000c4"], 0x40}, &(0x7f00000002c0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@arm64_extra={0x6030000000140000, &(0x7f0000000140)=0x2})

2.188392796s ago: executing program 0 (id=118):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000880), 0x40002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm(r1)
r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000ec0)={0x0, &(0x7f00000009c0)=[@smc={0x3, 0x40, {0xc4000001, [0x6, 0xffffffff, 0x80000001, 0x0, 0x3]}}], 0x40}, &(0x7f0000000f00)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x1, 0xb97})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

135.083096ms ago: executing program 0 (id=119):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm(r1)
r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=ANY=[], 0x2c}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x2ee0e4fa})

0s ago: executing program 1 (id=120):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000140)={0x5, 0x8}) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:46544' (ED25519) to the list of known hosts.
[  253.316769][   T30] audit: type=1400 audit(252.490:58): avc:  denied  { name_bind } for  pid=3266 comm="sshd" src=30002 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  254.481793][   T30] audit: type=1400 audit(253.650:59): avc:  denied  { execute } for  pid=3268 comm="sh" name="syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  254.490479][   T30] audit: type=1400 audit(253.660:60): avc:  denied  { execute_no_trans } for  pid=3268 comm="sh" path="/syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  266.181576][   T30] audit: type=1400 audit(265.350:61): avc:  denied  { mounton } for  pid=3268 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1736 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  266.221394][   T30] audit: type=1400 audit(265.380:62): avc:  denied  { mount } for  pid=3268 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  266.316633][ T3268] cgroup: Unknown subsys name 'net'
[  266.362480][   T30] audit: type=1400 audit(265.530:63): avc:  denied  { unmount } for  pid=3268 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  266.927281][ T3268] cgroup: Unknown subsys name 'cpuset'
[  267.018412][ T3268] cgroup: Unknown subsys name 'rlimit'
[  267.605360][   T30] audit: type=1400 audit(266.770:64): avc:  denied  { setattr } for  pid=3268 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  267.627807][   T30] audit: type=1400 audit(266.790:65): avc:  denied  { mounton } for  pid=3268 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  267.641063][   T30] audit: type=1400 audit(266.790:66): avc:  denied  { mount } for  pid=3268 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  268.897863][ T3270] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  268.910804][   T30] audit: type=1400 audit(268.080:67): avc:  denied  { relabelto } for  pid=3270 comm="mkswap" name="swap-file" dev="vda" ino=1739 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  268.945850][   T30] audit: type=1400 audit(268.100:68): avc:  denied  { write } for  pid=3270 comm="mkswap" path="/swap-file" dev="vda" ino=1739 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  269.169716][   T30] audit: type=1400 audit(268.340:69): avc:  denied  { read } for  pid=3268 comm="syz-executor" name="swap-file" dev="vda" ino=1739 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  269.189063][   T30] audit: type=1400 audit(268.350:70): avc:  denied  { open } for  pid=3268 comm="syz-executor" path="/swap-file" dev="vda" ino=1739 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  269.238373][ T3268] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  284.952485][   T30] audit: type=1400 audit(284.120:71): avc:  denied  { execmem } for  pid=3271 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  285.096862][   T30] audit: type=1400 audit(284.270:72): avc:  denied  { read } for  pid=3273 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  285.099723][   T30] audit: type=1400 audit(284.270:73): avc:  denied  { open } for  pid=3273 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  285.144422][   T30] audit: type=1400 audit(284.310:74): avc:  denied  { mounton } for  pid=3273 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  285.259729][   T30] audit: type=1400 audit(284.430:75): avc:  denied  { module_request } for  pid=3273 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  285.764750][   T30] audit: type=1400 audit(284.930:76): avc:  denied  { sys_module } for  pid=3273 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  300.710747][ T3273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  300.790447][ T3273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  301.640841][ T3274] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  301.769552][ T3274] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  307.041381][ T3273] hsr_slave_0: entered promiscuous mode
[  307.118194][ T3273] hsr_slave_1: entered promiscuous mode
[  307.782569][ T3274] hsr_slave_0: entered promiscuous mode
[  307.849450][ T3274] hsr_slave_1: entered promiscuous mode
[  307.926349][ T3274] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  307.928726][ T3274] Cannot create hsr debugfs directory
[  311.241229][   T30] audit: type=1400 audit(310.410:77): avc:  denied  { create } for  pid=3273 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  311.265286][   T30] audit: type=1400 audit(310.430:78): avc:  denied  { write } for  pid=3273 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  311.315847][   T30] audit: type=1400 audit(310.450:79): avc:  denied  { read } for  pid=3273 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  311.546675][ T3273] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  311.810924][ T3273] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  311.980209][ T3273] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  312.090556][ T3273] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  312.885902][ T3274] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  313.067086][ T3274] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  313.126354][ T3274] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  313.188153][ T3274] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  319.172632][ T3274] 8021q: adding VLAN 0 to HW filter on device bond0
[  319.584595][ T3273] 8021q: adding VLAN 0 to HW filter on device bond0
[  335.557721][ T3274] veth0_vlan: entered promiscuous mode
[  335.577040][ T3273] veth0_vlan: entered promiscuous mode
[  335.727007][ T3273] veth1_vlan: entered promiscuous mode
[  335.750584][ T3274] veth1_vlan: entered promiscuous mode
[  336.271192][ T3274] veth0_macvtap: entered promiscuous mode
[  336.486944][ T3274] veth1_macvtap: entered promiscuous mode
[  336.570215][ T3273] veth0_macvtap: entered promiscuous mode
[  336.800104][ T3273] veth1_macvtap: entered promiscuous mode
[  337.605511][ T3274] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  337.606835][ T3274] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  337.607348][ T3274] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  337.607842][ T3274] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  337.701269][ T3273] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  337.702416][ T3273] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  337.705466][ T3273] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  337.706378][ T3273] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  338.719927][   T30] audit: type=1400 audit(337.890:80): avc:  denied  { mount } for  pid=3274 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  338.774323][   T30] audit: type=1400 audit(337.940:81): avc:  denied  { mounton } for  pid=3274 comm="syz-executor" path="/syzkaller.Hi99F1/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  338.826479][   T30] audit: type=1400 audit(337.980:82): avc:  denied  { mount } for  pid=3274 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  338.947122][   T30] audit: type=1400 audit(338.120:83): avc:  denied  { mounton } for  pid=3274 comm="syz-executor" path="/syzkaller.Hi99F1/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  338.981118][   T30] audit: type=1400 audit(338.150:84): avc:  denied  { mounton } for  pid=3274 comm="syz-executor" path="/syzkaller.Hi99F1/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=2877 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  339.082037][   T30] audit: type=1400 audit(338.250:85): avc:  denied  { unmount } for  pid=3274 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  339.117345][   T30] audit: type=1400 audit(338.290:86): avc:  denied  { mounton } for  pid=3273 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=1512 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  339.179404][   T30] audit: type=1400 audit(338.350:87): avc:  denied  { mount } for  pid=3274 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  339.190435][   T30] audit: type=1400 audit(338.360:88): avc:  denied  { mounton } for  pid=3274 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  339.206248][   T30] audit: type=1400 audit(338.370:89): avc:  denied  { mount } for  pid=3273 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  339.671687][ T3274] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  389.256465][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  389.256690][   T30] audit: type=1400 audit(388.420:98): avc:  denied  { ioctl } for  pid=3510 comm="syz.1.46" path="net:[4026532631]" dev="nsfs" ino=4026532631 ioctlcmd=0xae46 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  444.861730][   T30] audit: type=1400 audit(443.890:99): avc:  denied  { append } for  pid=3624 comm="syz.1.97" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  465.059380][ T3674] ------------[ cut here ]------------
[  465.062558][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.073182][ T3674] Modules linked in:
[  465.076079][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.080773][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.084120][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.087414][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.089572][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.091300][ T3674] sp : ffff8000a15875e0
[  465.093162][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.097176][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  465.100522][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  465.103980][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  465.107379][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.110603][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.113547][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.116487][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.119003][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  465.121244][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.123897][ T3674] Call trace:
[  465.125007][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.125801][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.126522][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.127209][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.127775][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.128511][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.129085][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.129674][ T3674]  invoke_syscall+0x6c/0x258
[  465.130219][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.130793][ T3674]  do_el0_svc+0x40/0x58
[  465.131374][ T3674]  el0_svc+0x50/0x180
[  465.132001][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.132596][ T3674]  el0t_64_sync+0x198/0x19c
[  465.133753][ T3674] irq event stamp: 2262
[  465.134551][ T3674] hardirqs last  enabled at (2261): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  465.135322][ T3674] hardirqs last disabled at (2262): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.136093][ T3674] softirqs last  enabled at (2256): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  465.136966][ T3674] softirqs last disabled at (2237): [<ffff800080010758>] __do_softirq+0x14/0x20
[  465.137952][ T3674] ---[ end trace 0000000000000000 ]---
[  465.147093][ T3674] ------------[ cut here ]------------
[  465.147924][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.149042][ T3674] Modules linked in:
[  465.150308][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.151147][ T3674] Tainted: [W]=WARN
[  465.151653][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.152168][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.152766][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.153549][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.154346][ T3674] sp : ffff8000a15875e0
[  465.154843][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.155828][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  465.156911][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  465.157832][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  465.158750][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.159668][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.160633][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.161716][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.162735][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  465.163797][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.164774][ T3674] Call trace:
[  465.165248][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.165850][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.166418][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.166978][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.167522][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.168117][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.168664][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.169260][ T3674]  invoke_syscall+0x6c/0x258
[  465.169813][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.170413][ T3674]  do_el0_svc+0x40/0x58
[  465.170929][ T3674]  el0_svc+0x50/0x180
[  465.171496][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.172059][ T3674]  el0t_64_sync+0x198/0x19c
[  465.172585][ T3674] irq event stamp: 2356
[  465.173322][ T3674] hardirqs last  enabled at (2355): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  465.174057][ T3674] hardirqs last disabled at (2356): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.174811][ T3674] softirqs last  enabled at (2354): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  465.175509][ T3674] softirqs last disabled at (2265): [<ffff800080010758>] __do_softirq+0x14/0x20
[  465.176373][ T3674] ---[ end trace 0000000000000000 ]---
[  465.229163][ T3674] ------------[ cut here ]------------
[  465.230090][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.230933][ T3674] Modules linked in:
[  465.231602][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.232482][ T3674] Tainted: [W]=WARN
[  465.233146][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.233805][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.234663][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.235308][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.235983][ T3674] sp : ffff8000a15875e0
[  465.236549][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.237545][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  465.238654][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  465.240761][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  465.242110][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.243383][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.245258][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.246720][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.247975][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  465.249204][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.250322][ T3674] Call trace:
[  465.250885][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.251902][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.253136][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.254314][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.254905][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.255468][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.256118][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.256720][ T3674]  invoke_syscall+0x6c/0x258
[  465.257310][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.257885][ T3674]  do_el0_svc+0x40/0x58
[  465.258430][ T3674]  el0_svc+0x50/0x180
[  465.258971][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.259512][ T3674]  el0t_64_sync+0x198/0x19c
[  465.260646][ T3674] irq event stamp: 2412
[  465.262529][ T3674] hardirqs last  enabled at (2411): [<ffff8000809712ec>] kasan_quarantine_put+0x1c8/0x228
[  465.265000][ T3674] hardirqs last disabled at (2412): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.265574][ T3674] softirqs last  enabled at (2398): [<ffff80008001b800>] fpsimd_restore_current_state+0x44/0xe4
[  465.266407][ T3674] softirqs last disabled at (2396): [<ffff80008001b7d0>] fpsimd_restore_current_state+0x14/0xe4
[  465.266960][ T3674] ---[ end trace 0000000000000000 ]---
[  465.271437][ T3674] ------------[ cut here ]------------
[  465.272426][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.273931][ T3674] Modules linked in:
[  465.274740][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.275637][ T3674] Tainted: [W]=WARN
[  465.276191][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.276727][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.277352][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.277923][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.278507][ T3674] sp : ffff8000a15875e0
[  465.279049][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.280038][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  465.280973][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  465.281931][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  465.282732][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.283397][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.283820][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.284653][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.285339][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  465.286183][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.287094][ T3674] Call trace:
[  465.287535][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.288132][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.288632][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.289111][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.289609][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.290105][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.290615][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.291121][ T3674]  invoke_syscall+0x6c/0x258
[  465.291654][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.292218][ T3674]  do_el0_svc+0x40/0x58
[  465.292765][ T3674]  el0_svc+0x50/0x180
[  465.293432][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.294138][ T3674]  el0t_64_sync+0x198/0x19c
[  465.294842][ T3674] irq event stamp: 2446
[  465.295352][ T3674] hardirqs last  enabled at (2445): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  465.296228][ T3674] hardirqs last disabled at (2446): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.296973][ T3674] softirqs last  enabled at (2444): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  465.297780][ T3674] softirqs last disabled at (2415): [<ffff800080010758>] __do_softirq+0x14/0x20
[  465.298187][ T3674] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  465.418331][ T3674] ------------[ cut here ]------------
[  465.420789][ T3674] WARNING: CPU: 0 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.424265][ T3674] Modules linked in:
[  465.425741][ T3674] CPU: 0 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.428096][ T3674] Tainted: [W]=WARN
[  465.429721][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.431464][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.432128][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.432756][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.433670][ T3674] sp : ffff8000a15875e0
[  465.434355][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.435483][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  465.437224][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  465.439321][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  465.441804][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.445188][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.447994][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.450203][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.452491][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  465.455656][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.457949][ T3674] Call trace:
[  465.458893][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.460401][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.461805][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.462578][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.463382][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.464134][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.465843][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.467660][ T3674]  invoke_syscall+0x6c/0x258
[  465.469110][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.471087][ T3674]  do_el0_svc+0x40/0x58
[  465.472670][ T3674]  el0_svc+0x50/0x180
[  465.475362][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.477070][ T3674]  el0t_64_sync+0x198/0x19c
[  465.481675][ T3674] irq event stamp: 2510
[  465.485538][ T3674] hardirqs last  enabled at (2509): [<ffff8000809712ec>] kasan_quarantine_put+0x1c8/0x228
[  465.486344][ T3674] hardirqs last disabled at (2510): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.486948][ T3674] softirqs last  enabled at (2496): [<ffff80008001b800>] fpsimd_restore_current_state+0x44/0xe4
[  465.487597][ T3674] softirqs last disabled at (2494): [<ffff80008001b7d0>] fpsimd_restore_current_state+0x14/0xe4
[  465.488283][ T3674] ---[ end trace 0000000000000000 ]---
[  465.498386][ T3674] ------------[ cut here ]------------
[  465.499122][ T3674] WARNING: CPU: 0 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.499788][ T3674] Modules linked in:
[  465.500417][ T3674] CPU: 0 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.501092][ T3674] Tainted: [W]=WARN
[  465.501513][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.501965][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.502504][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.503048][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.504836][ T3674] sp : ffff8000a15875e0
[  465.505463][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.506382][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  465.507302][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  465.508236][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  465.509099][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.509961][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.510823][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.511689][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.512620][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  465.513642][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.515799][ T3674] Call trace:
[  465.516330][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.518035][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.518686][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.519673][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.520265][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.520812][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.521354][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.521893][ T3674]  invoke_syscall+0x6c/0x258
[  465.522484][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.523122][ T3674]  do_el0_svc+0x40/0x58
[  465.523755][ T3674]  el0_svc+0x50/0x180
[  465.524301][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.525660][ T3674]  el0t_64_sync+0x198/0x19c
[  465.526557][ T3674] irq event stamp: 2620
[  465.527982][ T3674] hardirqs last  enabled at (2619): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  465.530685][ T3674] hardirqs last disabled at (2620): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.532107][ T3674] softirqs last  enabled at (2618): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  465.535088][ T3674] softirqs last disabled at (2513): [<ffff800080010758>] __do_softirq+0x14/0x20
[  465.536708][ T3674] ---[ end trace 0000000000000000 ]---
[  465.689951][ T3674] ------------[ cut here ]------------
[  465.690782][ T3674] WARNING: CPU: 0 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.691786][ T3674] Modules linked in:
[  465.692468][ T3674] CPU: 0 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.694541][ T3674] Tainted: [W]=WARN
[  465.695095][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.695826][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.696538][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.698156][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.698656][ T3674] sp : ffff8000a15875e0
[  465.699052][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.702654][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  465.703549][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  465.704331][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  465.705480][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.706505][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.707296][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.708009][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.708647][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  465.709268][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.709894][ T3674] Call trace:
[  465.710482][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.711069][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.711557][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.712022][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.712454][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.712952][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.713475][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.713944][ T3674]  invoke_syscall+0x6c/0x258
[  465.714534][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.715059][ T3674]  do_el0_svc+0x40/0x58
[  465.715489][ T3674]  el0_svc+0x50/0x180
[  465.715984][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.716533][ T3674]  el0t_64_sync+0x198/0x19c
[  465.716961][ T3674] irq event stamp: 2710
[  465.717351][ T3674] hardirqs last  enabled at (2709): [<ffff8000809712ec>] kasan_quarantine_put+0x1c8/0x228
[  465.717923][ T3674] hardirqs last disabled at (2710): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.718455][ T3674] softirqs last  enabled at (2696): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  465.718981][ T3674] softirqs last disabled at (2679): [<ffff800080010758>] __do_softirq+0x14/0x20
[  465.719516][ T3674] ---[ end trace 0000000000000000 ]---
[  465.721714][ T3674] ------------[ cut here ]------------
[  465.722211][ T3674] WARNING: CPU: 0 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  465.722756][ T3674] Modules linked in:
[  465.723309][ T3674] CPU: 0 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  465.724277][ T3674] Tainted: [W]=WARN
[  465.724952][ T3674] Hardware name: linux,dummy-virt (DT)
[  465.725493][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  465.726092][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  465.726658][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  465.727182][ T3674] sp : ffff8000a15875e0
[  465.727609][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  465.728599][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  465.729517][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  465.742099][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  465.744183][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  465.745112][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  465.745985][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  465.746868][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  465.747718][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  465.748607][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  465.749064][ T3674] Call trace:
[  465.749283][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  465.749596][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  465.749871][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  465.750146][ T3674]  kvm_reset_vcpu+0x314/0x758
[  465.756363][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  465.757037][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  465.757592][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  465.758222][ T3674]  invoke_syscall+0x6c/0x258
[  465.759295][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  465.759990][ T3674]  do_el0_svc+0x40/0x58
[  465.760530][ T3674]  el0_svc+0x50/0x180
[  465.761051][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  465.761592][ T3674]  el0t_64_sync+0x198/0x19c
[  465.762123][ T3674] irq event stamp: 2726
[  465.762598][ T3674] hardirqs last  enabled at (2725): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  465.763492][ T3674] hardirqs last disabled at (2726): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  465.764714][ T3674] softirqs last  enabled at (2724): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  465.765809][ T3674] softirqs last disabled at (2713): [<ffff800080010758>] __do_softirq+0x14/0x20
[  465.766550][ T3674] ---[ end trace 0000000000000000 ]---
[  466.062450][ T3674] ------------[ cut here ]------------
[  466.063347][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  466.064168][ T3674] Modules linked in:
[  466.064985][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  466.066903][ T3674] Tainted: [W]=WARN
[  466.067741][ T3674] Hardware name: linux,dummy-virt (DT)
[  466.068455][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  466.069058][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  466.069626][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  466.070195][ T3674] sp : ffff8000a15875e0
[  466.070642][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  466.073127][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  466.074185][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  466.075545][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  466.077651][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  466.079296][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  466.081387][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  466.082350][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  466.083463][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  466.084553][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  466.085464][ T3674] Call trace:
[  466.085941][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  466.086610][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  466.087228][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  466.087806][ T3674]  kvm_reset_vcpu+0x314/0x758
[  466.088394][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  466.088950][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  466.089510][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  466.090068][ T3674]  invoke_syscall+0x6c/0x258
[  466.090599][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  466.091179][ T3674]  do_el0_svc+0x40/0x58
[  466.091765][ T3674]  el0_svc+0x50/0x180
[  466.092339][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  466.092904][ T3674]  el0t_64_sync+0x198/0x19c
[  466.093624][ T3674] irq event stamp: 2898
[  466.094108][ T3674] hardirqs last  enabled at (2897): [<ffff8000809712ec>] kasan_quarantine_put+0x1c8/0x228
[  466.094877][ T3674] hardirqs last disabled at (2898): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  466.095468][ T3674] softirqs last  enabled at (2884): [<ffff80008001b800>] fpsimd_restore_current_state+0x44/0xe4
[  466.096566][ T3674] softirqs last disabled at (2882): [<ffff80008001b7d0>] fpsimd_restore_current_state+0x14/0xe4
[  466.099009][ T3674] ---[ end trace 0000000000000000 ]---
[  466.105228][ T3674] ------------[ cut here ]------------
[  466.105916][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  466.106721][ T3674] Modules linked in:
[  466.107354][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  466.108219][ T3674] Tainted: [W]=WARN
[  466.108666][ T3674] Hardware name: linux,dummy-virt (DT)
[  466.109179][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  466.109775][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  466.110306][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  466.112255][ T3674] sp : ffff8000a15875e0
[  466.113396][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  466.114676][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  466.115337][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  466.115991][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  466.116632][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  466.117216][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  466.117885][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  466.118561][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  466.119157][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  466.119771][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  466.120445][ T3674] Call trace:
[  466.120809][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  466.121220][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  466.121637][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  466.122064][ T3674]  kvm_reset_vcpu+0x314/0x758
[  466.122447][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  466.122879][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  466.123474][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  466.124010][ T3674]  invoke_syscall+0x6c/0x258
[  466.124729][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  466.125236][ T3674]  do_el0_svc+0x40/0x58
[  466.125659][ T3674]  el0_svc+0x50/0x180
[  466.126063][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  466.126469][ T3674]  el0t_64_sync+0x198/0x19c
[  466.126878][ T3674] irq event stamp: 3042
[  466.127284][ T3674] hardirqs last  enabled at (3041): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  466.127799][ T3674] hardirqs last disabled at (3042): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  466.128345][ T3674] softirqs last  enabled at (3040): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  466.128840][ T3674] softirqs last disabled at (2901): [<ffff800080010758>] __do_softirq+0x14/0x20
[  466.129357][ T3674] ---[ end trace 0000000000000000 ]---
[  466.328031][ T3674] ------------[ cut here ]------------
[  466.328883][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  466.329736][ T3674] Modules linked in:
[  466.330394][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  466.331191][ T3674] Tainted: [W]=WARN
[  466.331658][ T3674] Hardware name: linux,dummy-virt (DT)
[  466.332206][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  466.332783][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  466.333555][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  466.334168][ T3674] sp : ffff8000a15875e0
[  466.334774][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  466.335803][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  466.336835][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  466.337847][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  466.338890][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  466.340041][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  466.340992][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  466.342008][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  466.343082][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  466.344277][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  466.345305][ T3674] Call trace:
[  466.345825][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  466.346482][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  466.347095][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  466.347757][ T3674]  kvm_reset_vcpu+0x314/0x758
[  466.348423][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  466.349039][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  466.349601][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  466.350247][ T3674]  invoke_syscall+0x6c/0x258
[  466.350800][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  466.351408][ T3674]  do_el0_svc+0x40/0x58
[  466.351982][ T3674]  el0_svc+0x50/0x180
[  466.352547][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  466.353322][ T3674]  el0t_64_sync+0x198/0x19c
[  466.353896][ T3674] irq event stamp: 3204
[  466.354508][ T3674] hardirqs last  enabled at (3203): [<ffff8000809712ec>] kasan_quarantine_put+0x1c8/0x228
[  466.355299][ T3674] hardirqs last disabled at (3204): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  466.356062][ T3674] softirqs last  enabled at (3190): [<ffff80008001b800>] fpsimd_restore_current_state+0x44/0xe4
[  466.356828][ T3674] softirqs last disabled at (3188): [<ffff80008001b7d0>] fpsimd_restore_current_state+0x14/0xe4
[  466.357566][ T3674] ---[ end trace 0000000000000000 ]---
[  466.360656][ T3674] ------------[ cut here ]------------
[  466.361315][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  466.362060][ T3674] Modules linked in:
[  466.362648][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  466.364018][ T3674] Tainted: [W]=WARN
[  466.364618][ T3674] Hardware name: linux,dummy-virt (DT)
[  466.365174][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  466.365982][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  466.366525][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  466.367043][ T3674] sp : ffff8000a15875e0
[  466.367534][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  466.368509][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  466.369409][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  466.370330][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  466.371250][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  466.372168][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  466.373278][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  466.374343][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  466.375363][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  466.376364][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  466.377290][ T3674] Call trace:
[  466.377744][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  466.378526][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  466.379275][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  466.379863][ T3674]  kvm_reset_vcpu+0x314/0x758
[  466.382085][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  466.384585][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  466.385495][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  466.386255][ T3674]  invoke_syscall+0x6c/0x258
[  466.386931][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  466.387735][ T3674]  do_el0_svc+0x40/0x58
[  466.388964][ T3674]  el0_svc+0x50/0x180
[  466.389700][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  466.390411][ T3674]  el0t_64_sync+0x198/0x19c
[  466.391110][ T3674] irq event stamp: 3248
[  466.391816][ T3674] hardirqs last  enabled at (3247): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  466.393139][ T3674] hardirqs last disabled at (3248): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  466.394149][ T3674] softirqs last  enabled at (3246): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  466.394883][ T3674] softirqs last disabled at (3207): [<ffff800080010758>] __do_softirq+0x14/0x20
[  466.395585][ T3674] ---[ end trace 0000000000000000 ]---
[  466.536283][ T3674] ------------[ cut here ]------------
[  466.537042][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  466.537778][ T3674] Modules linked in:
[  466.538351][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  466.539042][ T3674] Tainted: [W]=WARN
[  466.539464][ T3674] Hardware name: linux,dummy-virt (DT)
[  466.539926][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  466.540567][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  466.541088][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  466.541585][ T3674] sp : ffff8000a15875e0
[  466.542006][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  466.542869][ T3674] x26: 1fffe00003ae59ec x25: 0000000000000001 x24: 1fffe00003ae59f8
[  466.543915][ T3674] x23: ffff00001d72cfc1 x22: ffff00001e01c000 x21: ffff00001d72bb60
[  466.544977][ T3674] x20: 0000000000000000 x19: ffff00001d72cf60 x18: 00000000d1cea431
[  466.545861][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  466.546757][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  466.547635][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  466.550072][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  466.551035][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cf60 x3 : 1fffe00003c039ad
[  466.551922][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  466.552884][ T3674] Call trace:
[  466.553578][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  466.554287][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  466.554812][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  466.555327][ T3674]  kvm_reset_vcpu+0x314/0x758
[  466.555820][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  466.556425][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  466.556928][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  466.557479][ T3674]  invoke_syscall+0x6c/0x258
[  466.558958][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  466.559921][ T3674]  do_el0_svc+0x40/0x58
[  466.561098][ T3674]  el0_svc+0x50/0x180
[  466.561602][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  466.562070][ T3674]  el0t_64_sync+0x198/0x19c
[  466.562592][ T3674] irq event stamp: 3294
[  466.563167][ T3674] hardirqs last  enabled at (3293): [<ffff8000809712ec>] kasan_quarantine_put+0x1c8/0x228
[  466.564086][ T3674] hardirqs last disabled at (3294): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  466.564796][ T3674] softirqs last  enabled at (3280): [<ffff80008001b800>] fpsimd_restore_current_state+0x44/0xe4
[  466.565540][ T3674] softirqs last disabled at (3278): [<ffff80008001b7d0>] fpsimd_restore_current_state+0x14/0xe4
[  466.566218][ T3674] ---[ end trace 0000000000000000 ]---
[  466.571112][ T3674] ------------[ cut here ]------------
[  466.571773][ T3674] WARNING: CPU: 1 PID: 3674 at arch/arm64/kvm/arch_timer.c:459 kvm_timer_update_irq+0x40c/0x548
[  466.572536][ T3674] Modules linked in:
[  466.573225][ T3674] CPU: 1 UID: 0 PID: 3674 Comm: syz.1.120 Tainted: G        W          6.12.0-syzkaller-07749-g28eb75e178d3 #0
[  466.574370][ T3674] Tainted: [W]=WARN
[  466.574991][ T3674] Hardware name: linux,dummy-virt (DT)
[  466.575750][ T3674] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  466.578036][ T3674] pc : kvm_timer_update_irq+0x40c/0x548
[  466.579674][ T3674] lr : kvm_timer_update_irq+0x24c/0x548
[  466.581723][ T3674] sp : ffff8000a15875e0
[  466.582884][ T3674] x29: ffff8000a15875e0 x28: ffff00001d72c938 x27: ffff00001e01c000
[  466.585400][ T3674] x26: 1fffe00003ae59f9 x25: 0000000000000001 x24: 1fffe00003ae5a05
[  466.588244][ T3674] x23: ffff00001d72d029 x22: ffff00001e01c001 x21: ffff00001d72bb60
[  466.590778][ T3674] x20: 0000000000000001 x19: ffff00001d72cfc8 x18: 00000000d1cea431
[  466.593733][ T3674] x17: 0000000000000000 x16: 0000000000000000 x15: 1fffe00002aa4514
[  466.596806][ T3674] x14: 1ffff000110ce515 x13: 0000000000000006 x12: ffff600003c039f6
[  466.598780][ T3674] x11: 1fffe00003c039f5 x10: ffff600003c039f5 x9 : dfff800000000000
[  466.601232][ T3674] x8 : ffff00001e01cfaf x7 : 0000000000001400 x6 : 0000000041b58ab3
[  466.603478][ T3674] x5 : ffff7000142b0ed6 x4 : ffff00001d72cfc8 x3 : 1fffe00003c039ad
[  466.606294][ T3674] x2 : 0000000000000000 x1 : 0000000000000007 x0 : 00000000fffffff0
[  466.608767][ T3674] Call trace:
[  466.609656][ T3674]  kvm_timer_update_irq+0x40c/0x548 (P)
[  466.611283][ T3674]  kvm_timer_update_irq+0x24c/0x548 (L)
[  466.613691][ T3674]  kvm_timer_vcpu_reset+0x18c/0x618
[  466.616017][ T3674]  kvm_reset_vcpu+0x314/0x758
[  466.617415][ T3674]  kvm_arch_vcpu_ioctl+0x998/0x1870
[  466.618894][ T3674]  kvm_vcpu_ioctl+0x970/0x14a8
[  466.619782][ T3674]  __arm64_sys_ioctl+0x12c/0x18c
[  466.621456][ T3674]  invoke_syscall+0x6c/0x258
[  466.622150][ T3674]  el0_svc_common.constprop.0+0xac/0x230
[  466.622862][ T3674]  do_el0_svc+0x40/0x58
[  466.623762][ T3674]  el0_svc+0x50/0x180
[  466.624546][ T3674]  el0t_64_sync_handler+0x10c/0x138
[  466.625220][ T3674]  el0t_64_sync+0x198/0x19c
[  466.625978][ T3674] irq event stamp: 3384
[  466.626617][ T3674] hardirqs last  enabled at (3383): [<ffff80008525de50>] exit_to_kernel_mode+0x38/0x118
[  466.627537][ T3674] hardirqs last disabled at (3384): [<ffff80008525e028>] el1_dbg+0x24/0x9c
[  466.628421][ T3674] softirqs last  enabled at (3382): [<ffff8000801a776c>] handle_softirqs+0x87c/0xd44
[  466.629369][ T3674] softirqs last disabled at (3297): [<ffff800080010758>] __do_softirq+0x14/0x20
[  466.630234][ T3674] ---[ end trace 0000000000000000 ]---
[  468.868557][  T141] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.260284][  T141] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.489892][  T141] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.767656][  T141] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.614631][   T30] audit: type=1400 audit(469.780:100): avc:  denied  { read } for  pid=3123 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  474.760883][  T141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  474.879801][  T141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  475.044747][  T141] bond0 (unregistering): Released all slaves
[  475.711854][  T141] hsr_slave_0: left promiscuous mode
[  475.786028][  T141] hsr_slave_1: left promiscuous mode
[  475.969231][  T141] veth1_macvtap: left promiscuous mode
[  475.972468][  T141] veth0_macvtap: left promiscuous mode
[  475.976301][  T141] veth1_vlan: left promiscuous mode
[  475.979529][  T141] veth0_vlan: left promiscuous mode
[  487.186041][  T141] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  487.622538][  T141] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  487.890112][  T141] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.105048][  T141] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.792384][  T141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  492.894451][  T141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  492.989427][  T141] bond0 (unregistering): Released all slaves
[  493.326604][  T141] hsr_slave_0: left promiscuous mode
[  493.399437][  T141] hsr_slave_1: left promiscuous mode
[  493.688303][  T141] veth1_macvtap: left promiscuous mode
[  493.690182][  T141] veth0_macvtap: left promiscuous mode
[  493.692457][  T141] veth1_vlan: left promiscuous mode
[  493.717215][  T141] veth0_vlan: left promiscuous mode

VM DIAGNOSIS:
01:52:07  Registers:
info registers vcpu 0

CPU#0
 PC=ffff80008526b49c X00=0000000000000014 X01=0000000000000000
X02=0000000000000003 X03=1fffe00001e49250 X04=0000000000000001
X05=ffff700014220d94 X06=dfff800000000000 X07=00000000f1f1f1f1
X08=0000000000000000 X09=0000000069a31732 X10=e0967c363c1518f7
X11=ffff800086cdfc34 X12=0000000000000000 X13=ffff0000178d28c0
X14=1ffff000110ce4fe X15=1fffe00002f1a514 X16=0000000000000000
X17=0000000000000000 X18=000000009a317326 X19=ffff0000178d1e40
X20=ffff000069f88e00 X21=ffff800086ce06e8 X22=ffff8000852f54c8
X23=ffff8000a1106fc0 X24=1ffff00014220dec X25=0000000000000001
X26=ffff00000f248000 X27=ffff00007fc20e40 X28=0000000000000000
X29=ffff8000a1106e90 X30=ffff80008526b49c  SP=ffff8000a1106e90
PSTATE=400000c5 -Z-- EL1h     FPCR=00000000 FPSR=00000000
Q00=2f2f2f2f2f2f2f2f:2f2f2f2f2f2f2f2f Q01=00706d742e303a37:622f617461642f76
Q02=c000000000000000:0003000000003000 Q03=0000000000000000:00ff00000000ff00
Q04=3003300330033003:3003300330033003 Q05=c000000003000030:c000000003000030
Q06=c00c000000000000:c00c000000000000 Q07=0000aaaab7ff0790:000002da00000000
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000000000002000:0000000000000000 Q17=000000000000000b:0000000000000000
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000
info registers vcpu 1

CPU#1
 PC=ffff800085263174 X00=ffff000069f97448 X01=0000000000000003
X02=0000000000000000 X03=1fffe0000d3f2e89 X04=00000000af19c5c0
X05=1fffe00002aa4535 X06=ffff000015522988 X07=0000000000000150
X08=1fffe00002aa4517 X09=00000000cf564c89 X10=2c8bb942452d27d9
X11=ffff800086cdfc34 X12=0000000000000000 X13=ffff0000155228c0
X14=1ffff000110ce501 X15=1fffe00002aa4514 X16=0000000000000000
X17=6d766b203935343a X18=00000000f564c89c X19=ffff800086c84448
X20=1ffff000142b0d7e X21=ffff80008530bcc0 X22=ffff800086c84448
X23=ffff7fffe3313000 X24=0000000000000001 X25=ffff8000874c3d18
X26=0000000000000000 X27=ffff8000818bfa8c X28=00000000000003c0
X29=ffff8000a1586b80 X30=ffff8000803019cc  SP=ffff8000a1586b60
PSTATE=600003c5 -ZC- EL1h     FPCR=00000000 FPSR=00000000
Q00=0500000000000000:0500000000000000 Q01=0000000500000000:0000000000000000
Q02=0000000000000005:0000000000000000 Q03=00d000a800000000:0000000000000000
Q04=0000000000000000:0000000000000002 Q05=0000000000000005:0000000000000002
Q06=6edc4d3a2914b135:d8e9c869e2695c88 Q07=b20fae707afde253:388e9c6c4fa85ca0
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000ffffd4058140:0000ffffd4058140 Q17=ffffff80ffffffd0:0000ffffd4058110
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000