last executing test programs:

1m25.221257951s ago: executing program 1 (id=42):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f00000001c0)=@other={0x8, 0x0})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000100)={0x0, &(0x7f0000000180)=[@uexit={0x0, 0x18, 0xb}, @code={0xa, 0x9c, {"205f93d20020b8f2e10180d2e20080d2e30080d2a40180d2020000d4007008d5007008d5007008d560b584d200a0b0f2410180d2a20180d2e30080d2640180d2020000d40050200e0004601e007008d580d58bd200a0b0f2a10180d2c20180d2230080d2a40180d2020000d4402689d200e0b8f2c10080d2a20080d2030180d2a40180d2020000d4"}}], 0xb4}, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$kvm(0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
write$eventfd(r5, &(0x7f00000001c0)=0x7ffffff, 0xe80)
close(r2)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xa5)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x0, 0xb, 0x400, 0xff}}, @uexit={0x0, 0x18, 0x7}, @eret={0xe6, 0x18, 0x7}, @msr={0x14, 0x20, {0x603000000013f090, 0x5}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff0, 0x10001, 0xb}}, @svc={0x122, 0x40, {0x6000000, [0xfffffffffffffffa, 0x180000000000, 0x60f1, 0x1ff, 0x6b44cee2]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x0, 0x0, 0x8, 0x1, 0x4}}, @svc={0x122, 0x40, {0x8, [0x5, 0x81d, 0xc8, 0x0, 0xffffffff]}}, @smc={0x1e, 0x40, {0x84000009, [0xfffffffffffffffb, 0x9, 0x3, 0x80, 0x7]}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x38}}, @eret={0xe6, 0x18, 0xfffffffffffffff7}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x1, 0xb, 0xfa34, 0x87d}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x3, 0xe, 0x80000001, 0x81, 0x2}}, @hvc={0x32, 0x40, {0x3000000, [0x80, 0x8000000000000001, 0x7, 0x3, 0x2]}}, @irq_setup={0x46, 0x18, {0x4, 0x184}}, @code={0xa, 0x6c, {"00c0631e000008d5201a81d200e0b8f2e10080d2e20180d2830080d2440080d2020000d4007008d5000008d540f68bd200e0b8f2610180d2020080d2430080d2040080d2020000d4000028d5008008d50000402d007008d5"}}, @eret={0xe6, 0x18, 0x9d9}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6680, 0x5}}, @msr={0x14, 0x20, {0x603000000013c011, 0xd93e}}, @hvc={0x32, 0x40, {0x84000002, [0x9, 0x4, 0x8, 0x0, 0x2]}}, @svc={0x122, 0x40, {0xc4000007, [0x5, 0xd, 0x0, 0x3, 0x200]}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x3, 0x9, 0x3, 0xfffffe01, 0x1}}], 0x3f4}, &(0x7f00000000c0)=[@featur2={0x1, 0xa5}], 0x1)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r6, 0x200001c, 0x10, r7, 0x0)

1m21.445072633s ago: executing program 0 (id=43):
mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, 0x930, 0x4, 0x4f833, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0xf3)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f00000002c0)=@arm64_core={0x603000000010002e, &(0x7f0000000340)=0x4})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000680)="38ce8347fc1e86008cfc72bb352c8659dcc9225b48cb5cb00c73b0b33018748e73f7f1f493e89c859e17625ad1b19ca88da9c227db3473a7fd4ce992bfc316bd22ccc646cd69c728", 0x0, 0x48)

1m16.706015448s ago: executing program 1 (id=44):
openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async)
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x8, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x800000000108, &(0x7f0000000340)=0x2}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x800000000108, &(0x7f0000000340)=0x2})
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x2000000, 0x80031, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x2000000, 0x80031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x7)
ioctl$KVM_SIGNAL_MSI(r8, 0x4020aea5, 0xfffffffffffffffe)
ioctl$KVM_CAP_DIRTY_LOG_RING(r4, 0x4068aea3, &(0x7f0000000140)={0xc0, 0x0, 0x1000})
ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x603000000010002a, &(0x7f00000000c0)=0xc})

1m16.360186401s ago: executing program 0 (id=45):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) (async)
r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x68}, 0x0, 0x0) (async)
r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r7, 0x1000003, 0x11, r2, 0x0) (async)
r8 = eventfd2(0x0, 0x0) (async)
r9 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce5, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce9, 0x8000}}], 0x60}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0xa, 0x4}}) (async, rerun: 32)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (rerun: 32)
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r12, 0x4018aee3, &(0x7f0000000100)=@attr_pmu_init) (async, rerun: 32)
ioctl$KVM_RUN(r12, 0xae80, 0x0) (async, rerun: 32)
close(r8)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x208f03, 0x1f01)
r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r16, 0x4010aeab, &(0x7f0000000100)=@arm64_bitmap={0x6030000000140001, &(0x7f0000000000)=0x7}) (async)
write$eventfd(r8, &(0x7f0000000180)=0x5, 0xfffffde3) (async)
mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)

50.644139113s ago: executing program 1 (id=46):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r3, 0x400454d9, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0xe)
openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) (async)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r11, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r8, 0x4004aec2, &(0x7f0000000000)=0x2)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x16831, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) (async)
r12 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_MP_STATE(r12, 0x4004ae99, 0x0)

49.903601824s ago: executing program 0 (id=47):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f00000000c0)=ANY=[@ANYRESDEC=r1], 0x18}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x4, <r5=>0xffffffffffffffff})
mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x13, r5, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x13)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x15)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r6, 0x4010ae68, 0x0)
ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0x200004, 0x3})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x1)
r13 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r12, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r13, 0x20, &(0x7f0000000180)="f30138dd033be3ac4a44a256bf00e2004b584bd92e00000f00000000000100010000020000000003f4ff000000235acbd98700000000000200", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r12, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x40305829, &(0x7f0000000040)=@attr_other={0x0, 0x6, 0x8000008, 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000)
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000)

40.553792605s ago: executing program 1 (id=48):
r0 = openat$kvm(0x0, &(0x7f00000001c0), 0x2083, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r1, 0x4068aea3, &(0x7f0000000240)={0xa8, 0x0, 0x3})
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000073000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000000)=[@mrs={0xbe, 0x18, {0x603000000013c2a4}}], 0x18}, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3e)
r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r5, 0x1, 0x100)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
syz_kvm_setup_cpu$arm64(r5, r7, &(0x7f00009a7000/0x400000)=nil, &(0x7f0000000300)=[{0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x0, 0x4, 0x44}}, @eret={0xe6, 0x18, 0xfff}, @uexit={0x0, 0x18, 0x7}, @svc={0x122, 0x40, {0x86000001, [0x240000000000, 0x2, 0x9, 0x40, 0x40]}}, @mrs={0xbe, 0x18, {0x603000000013c200}}, @smc={0x1e, 0x40, {0x400, [0x800000000000007, 0x4, 0x4, 0x6, 0x4]}}, @smc={0x1e, 0x40, {0x8, [0x7, 0xb, 0x0, 0x2, 0x3]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x300, 0x401, 0x1}}, @smc={0x1e, 0x40, {0x10800000d, [0x9a4, 0x0, 0xfff, 0xe400, 0x5]}}, @smc={0x1e, 0x40, {0x4008081, [0x5, 0x40, 0x3ff, 0xd9ef]}}, @mrs={0xbe, 0x18, {0x603000000013d801}}], 0x1f8}], 0x1, 0x0, &(0x7f0000000340)=[@featur2={0x1, 0x1}], 0x1)
r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x0, 0x200000000000001}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0x9}}], 0x50}, 0x0, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION(r16, 0xae03, 0xe4)
syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r12, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r9, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, <r17=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r17, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

36.4483366s ago: executing program 0 (id=49):
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) (async)
munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async)
munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) (async)
munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) (async)
munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) (async)
munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) (async)
munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) (async)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) (async)
munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000)
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) (async)
mmap$KVM_VCPU(&(0x7f0000841000/0x2000)=nil, 0x930, 0x2, 0x13, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r1, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000667000/0x2000)=nil, 0x2000) (async)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)

30.998423526s ago: executing program 0 (id=50):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
munmap(&(0x7f000000f000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x2, 0x4f832, 0xffffffffffffffff, 0x1000000)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x6030000000100024, &(0x7f0000000140)=0x7})
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
r10 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil)
write$eventfd(r9, &(0x7f00000001c0), 0xfdef)
syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000000)={0x0, &(0x7f0000000200)=[@eret={0xe6, 0x18, 0x7}, @svc={0x122, 0x40, {0x84000010, [0x8, 0x100000001, 0x8, 0x6, 0x4]}}, @hvc={0x32, 0x40, {0x1000000, [0x5, 0x5, 0xffffffe000000000, 0x5, 0x800]}}, @smc={0x1e, 0x40, {0xc5000021, [0x6, 0x3, 0x7, 0x5, 0x3]}}, @eret={0xe6, 0x18, 0xa}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x10040, 0x5}}, @eret={0xe6, 0x18}, @irq_setup={0x46, 0x18, {0x0, 0x38f}}, @hvc={0x32, 0x40, {0x8400000d, [0xe9, 0x6, 0xfffffffffffffffe, 0x3, 0x7]}}, @svc={0x122, 0x40, {0x8, [0x9, 0x5, 0x9, 0x8, 0x40000000]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x100, 0x7, 0x1}}, @svc={0x122, 0x40, {0x80000208, [0x10001, 0x8, 0x6, 0x3ff, 0x1000]}}, @code={0xa, 0xb4, {"0080200d004794d20020b8f2810080d2a20080d2e30080d2040080d2020000d4c0019bd200e0b0f2e10180d2a20080d2630180d2c40180d2020000d40040400c007008d560b39ad20000b8f2a10180d2220080d2430180d2240180d2020000d4007008d5408899d20080b0f2a10180d2220080d2a30080d2840180d2020000d4806e97d20020b8f2210080d2620080d2830180d2e40080d2020000d4000028d5"}}, @mrs={0xbe, 0x18, {0x603000000013deb1}}, @irq_setup={0x46, 0x18, {0x4, 0x3bf}}, @mrs={0xbe, 0x18, {0x603000000013df05}}, @svc={0x122, 0x40, {0x8000fffe, [0xb, 0xf, 0x800000, 0x4, 0xdeb0]}}, @svc={0x122, 0x40, {0x4, [0x4, 0x7, 0x7fffffff, 0x2, 0x39a]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x3, 0x10, 0xfffffff9, 0x10, 0x2}}, @eret={0xe6, 0x18, 0x8}, @svc={0x122, 0x40, {0xc400000c, [0x3, 0x31, 0x5, 0xcf, 0xd02]}}, @mrs={0xbe, 0x18, {0x603000000013c2a4}}, @mrs={0xbe, 0x18, {0x603000000013e66d}}, @hvc={0x32, 0x40, {0x8400080a, [0x7, 0x100000001, 0x8, 0x88f1, 0xfff]}}, @smc={0x1e, 0x40, {0x80, [0xff, 0x2, 0x2, 0x1, 0x6]}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x2d9}}, @msr={0x14, 0x20, {0x603000000013c208, 0x8}}, @smc={0x1e, 0x40, {0x8400000b, [0xde5, 0x6, 0x200, 0x8, 0x8000000000000001]}}], 0x574}, &(0x7f0000000100)=[@featur1={0x1, 0x52}], 0x1)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1})
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000001c0)=@arm64_sys={0x6030000000138064, &(0x7f00000000c0)=0x8000})

11.48588621s ago: executing program 1 (id=51):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x189c41, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffd)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0)
ioctl$KVM_CHECK_EXTENSION(r5, 0x5421, 0x6)
r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
r8 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
r10 = syz_kvm_vgic_v3_setup(r6, 0x4, 0x220)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000040)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f0000000000)=0x1b})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
close(r10)
r11 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0xffff7ffffffffffb)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000000c0)=[{0x0, &(0x7f0000000000)=ANY=[@ANYRES64=r2], 0xfffffffffffffecb}], 0x1, 0x0, 0x0, 0x0)
r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r15, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r15, 0x4018aee1, &(0x7f00000001c0)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000140)={0xc, 0xfff9, 0x1}})
ioctl$KVM_HAS_DEVICE_ATTR_vm(r1, 0x4018aee3, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xfffffff8, 0x1, 0x1}})
r16 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r17 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff8000/0x4000)=nil, 0x0, 0x3000005, 0x41812, r17, 0x0)
ioctl$KVM_SET_SREGS(r12, 0x4000ae84, &(0x7f0000000200)={{0x2000, 0xf000, 0xa, 0x50, 0xb, 0x0, 0x8, 0x3, 0x82, 0x80, 0x4, 0x7}, {0x1000, 0x2000, 0xe, 0x0, 0x0, 0x8, 0x1, 0xc9, 0x4d, 0x9, 0x7f, 0x6}, {0x100000, 0x8080000, 0xc, 0x3, 0x81, 0x28, 0x9, 0x10, 0xbb, 0x5, 0x0, 0x1}, {0x1000, 0x2000, 0x16, 0x3, 0x5, 0xd5, 0x1, 0xf8, 0x0, 0x5, 0x1, 0x6}, {0xffff8000, 0xdddd0000, 0xf, 0x80, 0x96, 0xa, 0x5, 0x9, 0x7, 0xc, 0x7, 0x7}, {0xf000, 0x100000, 0xb, 0x5, 0xd, 0x5, 0x5, 0x0, 0x3, 0x4, 0x3, 0x9}, {0xdddd1000, 0xdddd1000, 0xa, 0x6, 0x1, 0x2, 0x7, 0x0, 0x7, 0x8c, 0xf7, 0x7}, {0x2000, 0x3000, 0xd, 0xa1, 0x2, 0x8, 0xf7, 0x8, 0x3, 0x0, 0x0, 0x4}, {0xd000, 0xba02}, {0x2, 0x8000}, 0x2, 0x0, 0xffff1000, 0x100304, 0xa, 0x1000, 0x4000, [0x0, 0x9, 0x7, 0x139f]})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
ioctl$KVM_RUN(r16, 0xae80, 0x0)

10.874861229s ago: executing program 0 (id=52):
r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x27)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x80003}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0xfffffffe, 0x0, 0x6, 0x0, 0x3}}], 0x50}, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r8 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef)
r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000100)="746abf250f7959c813e4adfb369b808022e69fe80cfadce4a1259e77bab54ac9749537b3d016bb7f745a6e22d2f9ff443f19467748a3fe02c239457600", 0x0, 0xfffffffffffffec5)
r10 = mmap$KVM_VCPU(&(0x7f0000f59000/0x2000)=nil, r7, 0x0, 0x12, r6, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fb707cd24b7eebb20700000000000000000000000100", 0x0, 0x48)
r11 = mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0)
r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0)
r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x2)
ioctl$KVM_SET_SREGS(r16, 0x4000ae84, 0xfffffffffffffffe)
r17 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r17, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur2={0x1, 0xf}], 0x1)
ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000001c0)="dd70dc003dda83a5500fc258cbf7df6c2f37e19ef4506d5226ce211b37ec382c0ba61a78fbe14fa34c452c3acb437650299abc07bbd05e96e3e02685c58b4a9c98f9f58483c050b7", 0x0, 0x48)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a11f1, 0x0)

0s ago: executing program 1 (id=53):
r0 = openat$kvm(0x0, &(0x7f0000000240), 0x4000, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r3, 0x3, 0xa0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x8, <r5=>0xffffffffffffffff})
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x2e)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000000)=@attr_other={0x0, 0x4, 0x9, &(0x7f0000000280)=0x7f3})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0})
r10 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_DEVICE_ATTR_vm(r10, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000140)={0x200, 0x6}})
ioctl$KVM_CAP_HALT_POLL(r10, 0x4068aea3, &(0x7f00000001c0)={0xb6, 0x0, 0x7fffffff})
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x302, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
r14 = eventfd2(0x8, 0x80800)
ioctl$KVM_IOEVENTFD(r13, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000, 0x0, r14})
ioctl$KVM_IOEVENTFD(r13, 0x4040ae79, &(0x7f0000000000)={0x6, 0x0, 0x0, r14, 0x4})
r15 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@code={0xa, 0x18, {"7f2003d5"}}], 0x18}, 0x0, 0x0)
ioctl$KVM_RUN(r15, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r10, 0xc008ae67, &(0x7f00000002c0)={0x1, 0x81})
r16 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xa)
syz_kvm_setup_syzos_vm$arm64(r16, &(0x7f0000c00000/0x400000)=nil)

kernel console output (not intermixed with test programs):

[  373.051148][ T3155] 8021q: adding VLAN 0 to HW filter on device bond0
[  418.382545][ T3155] eql: remember to turn off Van-Jacobson compression on your slave devices
Warning: Permanently added '[localhost]:44377' (ED25519) to the list of known hosts.
[  584.210348][   T25] audit: type=1400 audit(583.440:61): avc:  denied  { name_bind } for  pid=3312 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  585.123441][   T25] audit: type=1400 audit(584.360:62): avc:  denied  { execute } for  pid=3313 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  585.152538][   T25] audit: type=1400 audit(584.380:63): avc:  denied  { execute_no_trans } for  pid=3313 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  604.979258][   T25] audit: type=1400 audit(604.210:64): avc:  denied  { mounton } for  pid=3313 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  605.011135][   T25] audit: type=1400 audit(604.250:65): avc:  denied  { mount } for  pid=3313 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  605.100744][ T3313] cgroup: Unknown subsys name 'net'
[  605.148485][   T25] audit: type=1400 audit(604.380:66): avc:  denied  { unmount } for  pid=3313 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  605.517076][ T3313] cgroup: Unknown subsys name 'cpuset'
[  605.618851][ T3313] cgroup: Unknown subsys name 'rlimit'
[  606.512892][   T25] audit: type=1400 audit(605.750:67): avc:  denied  { setattr } for  pid=3313 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  606.531624][   T25] audit: type=1400 audit(605.770:68): avc:  denied  { mounton } for  pid=3313 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  606.562183][   T25] audit: type=1400 audit(605.790:69): avc:  denied  { mount } for  pid=3313 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  607.809557][ T3316] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  607.843689][   T25] audit: type=1400 audit(607.080:70): avc:  denied  { relabelto } for  pid=3316 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  607.880681][   T25] audit: type=1400 audit(607.100:71): avc:  denied  { write } for  pid=3316 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  608.060257][   T25] audit: type=1400 audit(607.300:72): avc:  denied  { read } for  pid=3313 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  608.078883][   T25] audit: type=1400 audit(607.310:73): avc:  denied  { open } for  pid=3313 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  608.122635][ T3313] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  657.924286][   T25] audit: type=1400 audit(657.160:74): avc:  denied  { execmem } for  pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  662.507187][   T25] audit: type=1400 audit(661.740:75): avc:  denied  { read } for  pid=3320 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  662.530485][   T25] audit: type=1400 audit(661.760:76): avc:  denied  { open } for  pid=3319 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  662.593956][   T25] audit: type=1400 audit(661.830:77): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  662.877810][   T25] audit: type=1400 audit(662.090:79): avc:  denied  { module_request } for  pid=3320 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  662.892464][   T25] audit: type=1400 audit(662.080:78): avc:  denied  { module_request } for  pid=3319 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  663.933730][   T25] audit: type=1400 audit(663.170:80): avc:  denied  { sys_module } for  pid=3320 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  687.363971][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  687.591982][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  688.318450][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  688.447586][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  702.813075][ T3320] hsr_slave_0: entered promiscuous mode
[  702.862393][ T3320] hsr_slave_1: entered promiscuous mode
[  704.897938][ T3319] hsr_slave_0: entered promiscuous mode
[  704.940619][ T3319] hsr_slave_1: entered promiscuous mode
[  704.979409][ T3319] debugfs: 'hsr0' already exists in 'hsr'
[  704.986736][ T3319] Cannot create hsr debugfs directory
[  712.778752][   T25] audit: type=1400 audit(712.010:81): avc:  denied  { create } for  pid=3320 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  712.846566][   T25] audit: type=1400 audit(712.070:82): avc:  denied  { write } for  pid=3320 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  712.929383][   T25] audit: type=1400 audit(712.170:83): avc:  denied  { read } for  pid=3320 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  713.083446][ T3320] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  713.663314][ T3320] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  714.043664][ T3320] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  714.671948][ T3320] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  717.413403][ T3319] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  717.674772][ T3319] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  717.884322][ T3319] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  718.100420][ T3319] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  731.074561][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0
[  733.174303][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0
[  787.343544][ T3320] veth0_vlan: entered promiscuous mode
[  787.869072][ T3320] veth1_vlan: entered promiscuous mode
[  789.639451][ T3320] veth0_macvtap: entered promiscuous mode
[  789.988943][ T3320] veth1_macvtap: entered promiscuous mode
[  790.400303][ T3319] veth0_vlan: entered promiscuous mode
[  791.212837][ T3319] veth1_vlan: entered promiscuous mode
[  792.250209][   T42] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  792.269141][   T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  792.307582][ T3417] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  792.312900][ T3417] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  794.297594][ T3319] veth0_macvtap: entered promiscuous mode
[  794.631306][   T25] audit: type=1400 audit(793.870:84): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  794.807978][ T3319] veth1_macvtap: entered promiscuous mode
[  794.853967][   T25] audit: type=1400 audit(794.090:85): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/syzkaller.lkFGgc/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  794.997382][   T25] audit: type=1400 audit(794.230:86): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  795.237664][   T25] audit: type=1400 audit(794.470:87): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/syzkaller.lkFGgc/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  795.330214][   T25] audit: type=1400 audit(794.570:88): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/syzkaller.lkFGgc/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3755 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  795.873340][   T25] audit: type=1400 audit(795.110:89): avc:  denied  { unmount } for  pid=3320 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  796.210461][   T25] audit: type=1400 audit(795.450:90): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1544 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  796.377162][   T25] audit: type=1400 audit(795.610:91): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="gadgetfs" ino=3764 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  796.642719][   T51] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  796.657603][   T51] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  796.667804][   T51] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  796.677928][   T51] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  796.724481][   T25] audit: type=1400 audit(795.960:92): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  796.808747][   T25] audit: type=1400 audit(796.040:93): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  798.608173][ T3320] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  808.197282][   T25] kauditd_printk_skb: 4 callbacks suppressed
[  808.202885][   T25] audit: type=1400 audit(807.430:98): avc:  denied  { read write } for  pid=3476 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  808.219827][   T25] audit: type=1400 audit(807.450:99): avc:  denied  { open } for  pid=3476 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  808.572297][   T25] audit: type=1400 audit(807.810:100): avc:  denied  { ioctl } for  pid=3476 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  816.712431][   T25] audit: type=1400 audit(815.950:101): avc:  denied  { setattr } for  pid=3484 comm="syz.0.3" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  825.122282][   T25] audit: type=1400 audit(824.360:102): avc:  denied  { execute } for  pid=3487 comm="syz.1.4" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4014 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  842.566465][   T25] audit: type=1400 audit(841.800:103): avc:  denied  { append } for  pid=3501 comm="syz.1.8" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  965.544257][ T3563] kvm [3563]: Failed to find VMA for hva 0x21016000
[ 1128.894660][ T3654] ==================================================================
[ 1128.895301][ T3654] BUG: KASAN: invalid-access in __kvm_pgtable_walk+0x8e4/0xa68
[ 1128.897047][ T3654] Read of size 8 at addr 50f000001e7ad000 by task syz.1.53/3654
[ 1128.897271][ T3654] Pointer tag: [50], memory tag: [fe]
[ 1128.897382][ T3654] 
[ 1128.898348][ T3654] CPU: 0 UID: 0 PID: 3654 Comm: syz.1.53 Not tainted syzkaller #0 PREEMPT 
[ 1128.898876][ T3654] Hardware name: linux,dummy-virt (DT)
[ 1128.899324][ T3654] Call trace:
[ 1128.899710][ T3654]  show_stack+0x2c/0x3c (C)
[ 1128.900311][ T3654]  __dump_stack+0x30/0x40
[ 1128.900562][ T3654]  dump_stack_lvl+0xd8/0x12c
[ 1128.900753][ T3654]  print_address_description+0xac/0x288
[ 1128.901037][ T3654]  print_report+0x84/0xa0
[ 1128.901277][ T3654]  kasan_report+0xb0/0x110
[ 1128.901479][ T3654]  kasan_tag_mismatch+0x28/0x3c
[ 1128.901696][ T3654]  __hwasan_tag_mismatch+0x30/0x60
[ 1128.902006][ T3654]  __kvm_pgtable_walk+0x8e4/0xa68
[ 1128.902272][ T3654]  kvm_pgtable_walk+0x294/0x468
[ 1128.902517][ T3654]  kvm_pgtable_stage2_destroy_range+0x60/0xb4
[ 1128.902801][ T3654]  kvm_free_stage2_pgd+0x198/0x28c
[ 1128.903075][ T3654]  kvm_uninit_stage2_mmu+0x20/0x38
[ 1128.903328][ T3654]  kvm_arch_flush_shadow_all+0x1a8/0x1e0
[ 1128.903627][ T3654]  kvm_mmu_notifier_release+0x48/0xa8
[ 1128.903921][ T3654]  mmu_notifier_unregister+0x128/0x42c
[ 1128.904172][ T3654]  kvm_put_kvm+0x6a0/0xfa8
[ 1128.904358][ T3654]  kvm_vm_release+0x58/0x78
[ 1128.904587][ T3654]  __fput+0x4ac/0x980
[ 1128.904781][ T3654]  ____fput+0x20/0x58
[ 1128.904970][ T3654]  task_work_run+0x1bc/0x254
[ 1128.905169][ T3654]  do_notify_resume+0x1bc/0x270
[ 1128.905393][ T3654]  el0_svc+0xb8/0x164
[ 1128.905609][ T3654]  el0t_64_sync_handler+0x84/0x12c
[ 1128.905848][ T3654]  el0t_64_sync+0x198/0x19c
[ 1128.906331][ T3654] 
[ 1128.906492][ T3654] The buggy address belongs to the physical page:
[ 1128.907598][ T3654] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5e7ad
[ 1128.907983][ T3654] flags: 0x1ffebc000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0xaf)
[ 1128.909110][ T3654] raw: 01ffebc000000000 ffffc1ffc079b648 ffffc1ffc0795f48 0000000000000000
[ 1128.909340][ T3654] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 1128.909535][ T3654] page dumped because: kasan: bad access detected
[ 1128.909658][ T3654] 
[ 1128.909746][ T3654] Memory state around the buggy address:
[ 1128.910111][ T3654]  fff000001e7ace00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1128.910295][ T3654]  fff000001e7acf00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1128.910465][ T3654] >fff000001e7ad000: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1128.910594][ T3654]                    ^
[ 1128.910838][ T3654]  fff000001e7ad100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1128.911021][ T3654]  fff000001e7ad200: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1128.911213][ T3654] ==================================================================
[ 1129.248851][ T3654] Disabling lock debugging due to kernel taint
[ 1129.269201][ T3654] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5e7ad
[ 1129.276981][ T3654] flags: 0x1ffebc000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0xaf)
[ 1129.303529][ T3654] raw: 01ffebc000000000 ffffc1ffc079b648 fff0000072d7e420 0000000000000000
[ 1129.321588][ T3654] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 1129.324633][ T3654] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[ 1129.342085][ T3654] ------------[ cut here ]------------
[ 1129.342316][ T3654] kernel BUG at ./include/linux/mm.h:1036!
[ 1129.343195][ T3654] Internal error: Oops - BUG: 00000000f2000800 [#1]  SMP
[ 1129.348019][ T3654] Modules linked in:
[ 1129.351710][ T3654] CPU: 0 UID: 0 PID: 3654 Comm: syz.1.53 Tainted: G    B               syzkaller #0 PREEMPT 
[ 1129.353203][ T3654] Tainted: [B]=BAD_PAGE
[ 1129.353937][ T3654] Hardware name: linux,dummy-virt (DT)
[ 1129.355017][ T3654] pstate: 61402009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
[ 1129.356389][ T3654] pc : kvm_s2_put_page+0x374/0x3a0
[ 1129.357399][ T3654] lr : kvm_s2_put_page+0x374/0x3a0
[ 1129.358362][ T3654] sp : ffff8000a8b47830
[ 1129.359129][ T3654] x29: ffff8000a8b47830 x28: 50f000001e7ad000 x27: 50f000001e7ad000
[ 1129.360727][ T3654] x26: 00000000000000ff x25: ffff800087396000 x24: ffffc1ffc0000000
[ 1129.362078][ T3654] x23: ffffc1ffc079eb48 x22: 0000000000000000 x21: ffffc1ffc079eb74
[ 1129.363427][ T3654] x20: 0000000000000000 x19: ffffc1ffc079eb40 x18: 0000000084d70fe1
[ 1129.364798][ T3654] x17: 0000000003ff69bc x16: 0000000084d6f551 x15: 00000000a03b445f
[ 1129.366112][ T3654] x14: 0000000040000000 x13: fff000001e599d88 x12: 0000000000000001
[ 1129.367469][ T3654] x11: 0000000000000000 x10: 0000000000ff0100 x9 : c027a69a4bb6db00
[ 1129.368787][ T3654] x8 : c027a69a4bb6db00 x7 : 0000000000000000 x6 : ffff80008039fbc8
[ 1129.370099][ T3654] x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000010
[ 1129.371412][ T3654] x2 : 0000000000000002 x1 : 0000000100000000 x0 : 000000000000003e
[ 1129.372807][ T3654] Call trace:
[ 1129.373460][ T3654]  kvm_s2_put_page+0x374/0x3a0 (P)
[ 1129.374463][ T3654]  stage2_free_walker+0xdc/0x264
[ 1129.375380][ T3654]  __kvm_pgtable_walk+0x7d8/0xa68
[ 1129.376352][ T3654]  kvm_pgtable_walk+0x294/0x468
[ 1129.377287][ T3654]  kvm_pgtable_stage2_destroy_range+0x60/0xb4
[ 1129.378265][ T3654]  kvm_free_stage2_pgd+0x198/0x28c
[ 1129.379166][ T3654]  kvm_uninit_stage2_mmu+0x20/0x38
[ 1129.380100][ T3654]  kvm_arch_flush_shadow_all+0x1a8/0x1e0
[ 1129.381127][ T3654]  kvm_mmu_notifier_release+0x48/0xa8
[ 1129.382108][ T3654]  mmu_notifier_unregister+0x128/0x42c
[ 1129.383051][ T3654]  kvm_put_kvm+0x6a0/0xfa8
[ 1129.383934][ T3654]  kvm_vm_release+0x58/0x78
[ 1129.384676][ T3654]  __fput+0x4ac/0x980
[ 1129.385455][ T3654]  ____fput+0x20/0x58
[ 1129.386196][ T3654]  task_work_run+0x1bc/0x254
[ 1129.387005][ T3654]  do_notify_resume+0x1bc/0x270
[ 1129.387885][ T3654]  el0_svc+0xb8/0x164
[ 1129.388713][ T3654]  el0t_64_sync_handler+0x84/0x12c
[ 1129.389652][ T3654]  el0t_64_sync+0x198/0x19c
[ 1129.390999][ T3654] Code: 900377c1 910e9421 aa1303e0 97f9c9f2 (d4210000) 
[ 1129.392588][ T3654] ---[ end trace 0000000000000000 ]---
[ 1129.394169][ T3654] Kernel panic - not syncing: Oops - BUG: Fatal exception
[ 1129.396197][ T3654] Kernel Offset: disabled
[ 1129.396969][ T3654] CPU features: 0x000000,0001a300,5f7c67c1,057ffe1f
[ 1129.398072][ T3654] Memory Limit: none
[ 1129.399759][ T3654] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:01:12  Registers:
info registers vcpu 0

CPU#0
 PC=ffff800082159154 X00=0000000000000003 X01=0000000000000002
X02=0000000000000001 X03=ffff800082159050 X04=0000000000000001
X05=0000000000000001 X06=0000000000000000 X07=ffff800081f1ef70
X08=b6f000000d9b9d80 X09=0000000000000000 X10=0000000000ff0100
X11=00000000000000fe X12=0000000000000002 X13=0000000000000002
X14=0000000000000000 X15=0000000088a28ced X16=000000006d3e3ddf
X17=0000000000000000 X18=000000006d67396f X19=efff800000000000
X20=09f000000dcb4880 X21=46ff80008c4bb018 X22=0000000000000002
X23=09f000000dcb497c X24=0000000000000009 X25=09f000000dcb4ac8
X26=09f000000dcb48c8 X27=0000000000000009 X28=0000000000000009
X29=ffff80008c4f7b40 X30=ffff800082159154  SP=ffff80008c4f7b30
PSTATE=814020c9 N--- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000
P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000
FFR=0000
Z00=0000000000003937:3337373138323131 Z01=ffffffffffff0000:0000000000000000
Z02=0000000000000000:ffffff0000000000 Z03=ffffffffffff00ff:0000ff000000ff00
Z04=0000000000000000:ffffff0f00f000f0 Z05=00c0003000030000:00c0003000030000
Z06=0000000000000073:0000aaaab92713c0 Z07=0000000000000074:0000aaaab926e600
Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000
Z16=0000ffffff6dd0e0:0000ffffff6dd0e0 Z17=ffffff80ffffffd8:0000ffffff6dd0b0
Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000