last executing test programs:

56.752211282s ago: executing program 1 (id=32):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000005, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x2000009, 0x4102932, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x8030aeb4, &(0x7f0000000140)=@attr_other={0x0, 0x8, 0x2, 0x0})
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0xc0000000000})
r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="14000000000000002000000000000000e9bf5694cc"], 0x20}, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) (async)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000005, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x2000009, 0x4102932, 0xffffffffffffffff, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x8030aeb4, &(0x7f0000000140)=@attr_other={0x0, 0x8, 0x2, 0x0}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0xc0000000000}) (async)
openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="14000000000000002000000000000000e9bf5694cc"], 0x20}, 0x0, 0x0) (async)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, 0x0) (async)
ioctl$KVM_RUN(r9, 0xae80, 0x0) (async)

53.233720091s ago: executing program 0 (id=33):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000000)="375ae04fceeb298d3b07d73b3e9aac00", 0x0, 0x18)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = eventfd2(0xfffffffb, 0x80800)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000002c0)={0x6, 0xeeef0000, 0x4, r4, 0x6})
r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="14000000000000002000000000000000e3dc"], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
r8 = mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0)
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x3800003, 0x11, r9, 0x0)
r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r11 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r10, 0xae04)
r12 = mmap$KVM_VCPU(&(0x7f0000d10000/0xa000)=nil, r11, 0x3000006, 0x28031, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x2, 0x4f832, 0xffffffffffffffff, 0x0)
r13 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000001400)=ANY=[@ANYRES8=0x0, @ANYRESDEC, @ANYRES64=r3, @ANYBLOB="9c8ad37006083fb39219fac17a00fce110189d950434fdd10e8448754431240153763e162d1d8ed4d0", @ANYRESDEC=r6, @ANYRES32=r3, @ANYBLOB="3d1f8be1a6b3bc15dfaa59a1c48c17b19eefb3d448d3134cc7a10f01592be44243d7e6512ff07abf30114a8704ddef392be4662d8cf1fd4751fbddca719bf637842520ce7e97b75604edc2d497e13a2079a57994ed5dc936abe3dad08e16b34668e2a413c35aedf1689b76dfdd5515e635", @ANYBLOB="5bc52c05f0a6fb058728979ca81637ad5211f1d22f934aee9ce0b5362814e505b0419d8c5e7b9491f3d6a32847a079a156fa650d034429f1c6f5ae7d49c9d7a93af58e20f5755fea8fd3c7debb9e90115cbae2fbc72d9d9fe974953838fba5efad411e274462e0278f494e539d1a8354bf853e2c2c90d368bdce8edb88f81903c1eb77836df97766364d81a86864ae1aee14a53352670dae7e47d634466a8f00da0a0f15b527dd4298782f854306fbf3d944fd702632fe0a7235c462927c17e2fe595fbff6b581e7d37bc719dd747578b020591769c872ce6b4c90935fa57720e10630cc488542bcd489c0b11b584ba1d41cc6f33cc359fc5714f20eb830b11cfa85257243317d0c9ee97ec421372f5a922c7e6a77354b66466f0c182ab57c7c43d94501f99ab194a42900ad9ef70e2ae533bbcca64f9f74a6331fae9e0acd7788ff16de5da0747ec73ffe9376b9aba34ac86a43383b256dedb89fd31cadc7408636799c37b89e65a306759311a3f60eebb8a3959a2176c1fad8d15530c3724331dc8937a401655f944a2ef7305de77039b168f826ec603702b6dddaa49e2f5d52a979fda9a71c9bc3440174482be97a0984f0c4ccdc08fd6c350302f54a0f3aa76b5df732a032fbeb834e61f896b014b40ddea7353be7a6e926f1062f0b91044c800e8135151a732719beceb3ea861ed39d1b1076a1270749eb3a5ea1cf2c9375e8698e954cc4b3283b5736e59f81e00c754555838eb981e98d23a9a88765bc4c9074cf655400bc023ca6903d4a83fb13fa2f49eebb6e4875de4a7a52188cfc88af6a66af81202d8b597a8790431e91d276f17e7ad48052d3dc2634a33ce6066977cd5ae93340ad95845447e9545a1a527708a83081a73a45583d9da7f7a8a750884502102eb269979d0119f6a964c93d97e98c7ccdf32b5443c877c007062266c7d25e6d86d6f00bc994997835b08b1735a5412b47460610597d3970ed1b97bb28ab3526ac049747bb88a01d789fcec0e59789880609efc9795ed65a119a72ff2b904ca1aca11ef36acf5a6ade267f19f1b460e943c398bbfe4e053842eb6028e2b2d13753e4bf7f78707d659cc306d772588fc0935636e9ec9ee9b2fd817f396b343c0b05758cfdb1a7001d1e0015dca5a7de98d8236b0992cf0635b56a650244c678cf307842d1358f66d39dba61194fa3a62a097d77417e6833b7425f1816f7e835b0f7e11e3b51a0476cd3977833e8e14490359a871ca19d7ffc65d09df498790142e1154b634605dc95b5228dda0b55eb51b0a3589db64b9f24c321edc85375472df14bba6b53d63f316bab51ead00a0b9993f3c4a8aa9cb146407636c290d1dcf9c9acea0d85ec8edd67fb064f5fbd45569d6dfe6f1810b8648fbcd1ab491c3c8bed659d3af7708f334181d4246823b73801e3a4d4d04474f99a3b782993ef5e0806de87ddbc73963122bdf4e519a77fad3f5151f5837b65c874d76a71346a8b30f38e41ba374e96806311358c18136977f3ab5eb3eeb7d60cae224c96ea27ddf3b24b4b85c76083f0bbd33d021e543d1af737c12e0b943135ff302f4a82dd38f2eebca5b398b44ed239226b8d5b4d6cc36979caac5ffb49cfd18fe308a7b8469991f19cc3c332daca8061e49823e267bdb12a8b2aaec158f422b1ab3c4471056d72de2eb2173edce34255f463bad2ef1cae431f9691887a7b177215c9b82af43eda408849fdf28605a15bc8aeca39015da003f2434a239486850e4b8f9461ce740807059b70310662c958f96895d5980a7e18b9e1026f31973a63e89cf7c7913d0ef1ef6e696abda9a92653adced41aa54f0cefe15af6e3834cb9791d914ecd2bb2d6980d7d2498de6743974f09bef29139e357ba180da8a81bd511611d64b41518119ec9824922b5322e3c3e4a4b1021b64b0749d3cc99c5db1cfb20b5ef8b91ffb7b73a9e89f9cdf80608a2a2129ecb4825a5925182674b54b95cd7c297587139f6767c535f1868cfe76c89b086501ebdfcfb2f93ca679034e564285e9cb29836f4fbc1ba1494f5ae83cafadfeb9c0eebe920ad1a4af61e425b6bec4cef83e7fdcc7f7137d9f44e138fa5fdaafdbb29d9615d2ae67ceeecd63e4f6127cc7ce373ec67394826b949a913e856e480b37f1760a4bbe71055ca84b7214ddddd03895638830db841a09d438c4db8a602602531d3999a0b1ab0fe1fe0e8e47faacde451391974cde9d34a7f5309d8dbd7a46a99b046b11d3689289a38eee06c464ae0f6d71d4f2ba841e92aeffa7a85d49cb6f9bce56f0ef642bcf1aa57cf2ea85317ff3e28c3bc69fdbc83d00214c8349dcbe250ac3bb504526da562783d0c2d43915a8adfdce0e803ca5d8a4674eb2b0f4b1c98a965342a6bc78b1c7e56b08e79036a0882c39016ba236372e8827d9cb6a9d0f8220755eb499426dece4dd818de8acb919db961691d2f41aee9c739b8b3ec60c779de6c81a9c6def6984db5f1964c1b7525215cc1476f4dbad773438f8a2d0dff1615faa11bdbfb54502dc8e9ed255d4612bcfac4f3981f791bdc20cdf9b1cd75cf159533bdb80f585506e39b413b65ba1c978c91205159e88eb21d81086ee8447c6497626f5858cbe29e39a94bad719e4cb7e32499528094a084b60550c8f9afb820be5d407b4d128bf1411612aba7e82b4ed9cba0ece3445825a3494ea323ee1f83b9a0ed4a76fced936395604fa27b5d295f4ee2b9b03db281fcffbe7c74b245f8ea88901ea06eec63d89f41275cbb612cae56df9ef5c75bc8a2c1af304e7252558f2adc95405f939d72082db5608832c1914eb8429a2f80706076e327b07123ef3bc9b572e99d86ab5f9229ece3d644cd3e84ea78ad4a8048d30610544917a5b8ebc4517c54b1e3350ff628c02109c0d02a8e97c95fc64e301964f8d80f7ef32d07f0e336f48b6567cba3b4f67e4de607ee8981d148b55600039ec51a9cc3e403147b7df690a94ab67f99647b5b4f7dc58b50ab186c4122c71eec29630d165a33c838ef1e0aa2e17e62ba8ea7017dbd70625ffb83089bca32f3a23c437e418336698acac0cccb29d8d0702da0dc3d63ed6c8cea6c9d80d5c86a0800f900e82c7b60e8767cf29f1d1ec846dfb554920171a12b71ba0e9ae8713875563ae4422b6f23f113d0494c968a71f6d8af6e77350fbf8de65f6542745cd210d40f050cc3e8c5e3bb5ea5126d8d9ea3073eb1904e03d73e9312fc2f1271d76ede46858c3c78f7aa4b75952ba130d64c097b5dcbda35cfa5e8b4ee3c3460d2c59ff9b9431115bb7422bea72d142748f7efc469ac375597242024e5dd539f1f7e9015bef72c5389974f5fc8e0020cf19aeae190c2e441c45beacab0671c8e4609c7727a71657766a62ca76dbc6feab10c1287a920d255f8bcd10f97257e014c5b6b5c1cd19252a320180adc5ea1aece34dda1fe9ad80fc789dc24a85b7e4759d8df15e459a1fb4fdce54338801e0e72b5b572984ca00fa0f93bf7109224d423190fd8650db2c0cfe1a7bfcd9a8b29884a20fe230f91043bc3def615a17239d3bf99fc9e8dfbefafacd85d5c53d5d7f1325f768b63362336a89d6b9b5794698c5d207cf0f789388b685d3380e893eb1118963b02e7b9eacfd748413df0f443f2867c58edaf206a5fac3b281482daa669ff7bff82eb04a26374b6bced289e749d2c1ea0358c9b731e4c9609c26b89b232496b73eb03c46ad77310fda94829d61201ee33f8357bd00516d73e7c939d2c846ec9e87c3b428f06fe708c6dbcec884fa9e421059d4ed945dbf3c59afd8d4aa40152eaaa03d981dc25f160c0335ea44d944e7a64e29eed8a447f6ccdf211fde1be543a65621f2d4cfaf551855a473dfb9b18c388f38068488f18469af211868fb2c01055227e1520ca65b05a98cc7fcbc48e9e3fa646fa8f0683aac13e7942aa01607639017a677c991976de311b3fdff22c605eb7de960bac248f0bb9755cb06c13740ef1682a63fd236bce685acc6067537b7d2d56dcdce3a7918dd37a6639cb35ebcf23bee0f8460ca16b88deacb63d0f810c45d4ca861fd35bce5ab53d18a56ad030838f73b2b15e9339d5dd60201090f100277cbc1523e9a6294b7900231c7c4bffd36a4a76edcbc67bb0f36ff22368832c8d50fe0328bc18b982e335803f6e4ecd3df2e5fe66ffd8a3ed9cacc9341611e1d65762192c85b941c33f4f3e3775de3c49246348740f30d4ea805706a831cfabcbd986d378a2620ef445f94a0e22c2e45b4878251a9eaf6b18f35ee2fa0edde2e874223538d5410efb469bb4a9668c3918b60d836b2a2c064086d31a891744cfdbfcc94462dc51f6fc408df59564c5acffc77e9047a435222f8e9875bf447881c1b2370c0bbcf0055a92e2168065778b0f32929fbad9bd33ff0d4e26d2c7d378ca126d8cd0a469f4405fd0df16b39ae442690a72238b6eb363c4429b38215ac7b9bb1bdb0fe5de7ccdc0ee79b74b92d8b9124b935e6526971e8e6b86a0746afb1f3dc9f7b116df4956565d6f6d23ea6e3130b373bae5a94058f680619edfa3db68b01131956fc2442ca0cef634a80214a6402fd62a2a2e016a9951512d6b6e14b71a29791fb38bc3721605c6d091ad0aee5bdf844404101ffb7d94a32e2f286032348e5318df39acf863985f34e5b8e0bb695147269995746ca0932f0223cb6fd705405203d8f81f183d67916ec37ca6ef0848c439b461ac3e3a3c290e58edb82c67100ea88d3e2833b51d4a35d09a9a00d7d20271bb1688d2d95ea6a51fa51ed109c19823659bfcad41b74f864801d4f2328f07a646829a0f803fc30c761252c3d975b797b2962728bf74aeaead304c30e41f18ff7bb447d6992156cc32c9c02e95ef2e3bf0f3fa1185c737bb8b438dbaff36100452816728020d9a7fee2f3043fcb6d34616b404f6960f25cc6e10276adc62c39028a997228dc1df8726a82a90625652bfd0537a7a6bbc6ece796b417e02901744e52f3cb7e208282e53bd3a5aec5f08405cbe920230fdd4117dfc65521833f453f1822749a52ccd7646c78f371e837dcce0da58b4bcdecba4e16014933a4eb56133ade3a070440fc23d6f488075dcc1669cc256f137844a4bd03c4801a58d2aac58f9571c9297185912b2820f220c0bd7b3c912cf6d8d070d3158bed4df8d2dc34f6bdb82805c4067cb18dcd1bc76f1e4f83d7fda9c75d428d123111a4269bc5ccdd4c5b6c13433f3262ef2ff67f12bd5f0800edab8afa1bc43bdd8f2c135a908f823f30760ab9afe8f030e9f288c06b46d46c2c6f8e2234d19d372994d6ed95eb4c917c9383147472735cae386b772a86fa476571106782a19fe613ddcf6b4b8e6677208e6f15ce238748a7f48fa422e232e85931451764c18c2ef6a0e5f19edea9d178983929bb3b4586515634ac8641636afc7189c6175785a6dcf67f4ada7fbe145f1060e0b3713f5172fbdb46d69edf71ffaa53614a06f485da360fa21c676bbbed385dab37974306f7d8ff9a509e605f2bab4f1ccfd12f36eec606933a46c2836b2629d902bd8a030c315319005bb6f8419e912ca04e47207e51a80b0a546a47bb917c6842d158a4f792a51124a9af5087bd30c6a048ec02fc9d16a62e6eb7952e8385f55c161618fe1b459580fa3f5d134bfb032e2ff64f6402e2f334d3608564206bcee9a606c964b0e05068cf4dcf2d63de7dff4787465af039fb7ed5db67b0f7867d3abf3d92df72c0b32a4abe179f7cf1eade725c52e8ab658fe95af8a5688a0afd0647c4905eb21e1a530a1ef93ad98", @ANYRESDEC=r8], 0x19}, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000180)={0x8})
r16 = syz_kvm_add_vcpu$arm64(r15, 0x0, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r16, 0x4010aeab, 0x0)

47.765473265s ago: executing program 1 (id=34):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000280)=ANY=[], 0x40}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
openat$kvm(0x0, &(0x7f0000000240), 0xce680, 0x0) (async)
openat$kvm(0x0, &(0x7f0000000240), 0xce680, 0x0)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000140)={0xb1, 0x0, 0x5})
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000b5c000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="8200000000000000280000000000000001000000000000000400000000000000020000000000000082000000000000002800000000000000"], 0x50}, 0x0, 0x0) (async)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="8200000000000000280000000000000001000000000000000400000000000000020000000000000082000000000000002800000000000000"], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r5, 0x1, 0x100) (async)
syz_kvm_vgic_v3_setup(r5, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000180)={0x8, <r8=>0xffffffffffffffff})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) (async)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000000)={0x5, 0x8}) (async)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000000)={0x5, 0x8})
syz_kvm_vgic_v3_setup(r10, 0x5, 0x40)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000100)=@attr_pmu_init) (async)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000100)=@attr_pmu_init)
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x7fff, 0x5, &(0x7f0000000040)=0x6})
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x0, 0x3, 0x11, r3, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x280c80, 0x0) (async)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x280c80, 0x0)
ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000280)={0xffffffffffffffff, 0x4})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb52456012ab8ba1286bf6cd8100cdc404000000006abf47d90000000000000000000000000000000000000000fff900000000000700", 0x0, 0x48)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)

40.845474833s ago: executing program 0 (id=35):
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000dd3000/0x4000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000180)="fb4149dde071ccd23bc4a22332f9aa8d8df242f9ec095281000000000000008f0000000800000000000000f4ff000000000000000000000000000000dfffffffffffffff00", 0x0, 0x86)

37.262606771s ago: executing program 1 (id=36):
r0 = openat$kvm(0x0, &(0x7f0000000240), 0x119080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1fe, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0xd000})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000100)="76b92cfb974286223934adac74647aa1221e4d8e6da62d5f533e7f6120be5a845d77658c900fa608d72c085a1f4e5203df5e7728260b7ab52207803a85d90cae85d02398e92fc7bc", 0x0, 0x78)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000340)={0x5})
eventfd2(0x156f, 0x801)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

32.980060703s ago: executing program 0 (id=37):
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=ANY=[], 0x60}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000001000000000000000806"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000200), 0x22c00, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000100)={0x4, <r10=>0xffffffffffffffff})
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x1, 0x2, &(0x7f0000000000)=0x9})
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, <r11=>0xffffffffffffffff, 0x1})
write$eventfd(r11, &(0x7f00000001c0)=0xffffff7f, 0xe80)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000040)={0x6, 0x101}})
r12 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000180)={0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="14000000000000002000000000000000f1c4130000003060008000000000000014000000000000002000000000000000f2c4130000003060008000000000000014000000000000002000000000000000e0dc130000003060c7"], 0x140}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init)
ioctl$KVM_RUN(r12, 0xae80, 0x0)

30.615446713s ago: executing program 1 (id=38):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x28a43, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r3, 0x0, 0x23ac5f9b426ec4b2, 0xffffffffffffffff, 0x0)
r4 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x18c}, &(0x7f0000000080)=[@featur1={0x1, 0x58}], 0x1)
mmap$KVM_VCPU(&(0x7f0000fff000/0x1000)=nil, r3, 0x2000002, 0x10, r4, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000001c0)=ANY=[@ANYBLOB="0002"])

22.232551799s ago: executing program 1 (id=39):
r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
r1 = mmap$KVM_VCPU(&(0x7f0000ea9000/0x4000)=nil, 0x930, 0x3000003, 0x12, 0xffffffffffffffff, 0x0)
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r6 = syz_kvm_vgic_v3_setup(r5, 0x3, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x6, 0x382bc663, &(0x7f0000000280)=0xfffffffffffffff8})
ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000080)={0x5})
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000180)=@arm64_core={0x6030000000100046, &(0x7f0000000100)=0xc74d})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac38c4a22332fd49d25e138df24200000000a6ab801e000001ffffffff966b6dd22627e70000000000000006000000df00", 0x0, 0x48)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
r9 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x10000, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, <r12=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x400454dc, 0x0)
r13 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
write$eventfd(0xffffffffffffffff, &(0x7f0000000000), 0x8)
r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_INIT(r14, 0x4020aeae, &(0x7f0000000080)={0x2, 0xe5})

19.372637502s ago: executing program 0 (id=40):
r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0x10000, 0x10f000})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000280), 0x630280, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_kvm_vgic_v3_setup(r5, 0x1, 0x40)
r6 = eventfd2(0x0, 0x0)
r7 = eventfd2(0x0, 0x1)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f00000002c0)={r6, 0x1, 0x2, r7})
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f00000000c0)={r6, 0x1, 0x2, r7})
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f00000000c0)={0x6f8, 0x0, 0x1, r6, 0x20})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1fe, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffbfe)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x6000, 0x107000})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="76b92cfb97422a99b188adac74647aa1221e4d8e6da62d5f533e7f6120be5a845d77658c900fa608d72c085a1f4e5203df5e7728260b7ab522076295a9cbeeae01832398e92fc7bc", 0x0, 0x48)
ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000340)={0x5})
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r1, 0x4068aea3, &(0x7f0000000100)={0xa8, 0x0, 0x7})
ioctl$KVM_RUN(r8, 0xae80, 0x0)

11.021988908s ago: executing program 0 (id=41):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="82000000000000002800000000000000010000000000000002000000000002000000000000000000aa00000000000000280000000000000009"], 0x50}, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x534}, 0x0, 0x0)
r3 = openat$kvm(0x0, &(0x7f00000000c0), 0x909483, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
r9 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r8, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r8, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x92040, 0x0)

662.44853ms ago: executing program 1 (id=42):
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x6, 0x8032, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb52456012ab8ba1286bf6cd8100cdc404000000006abf47d90000000000000000000000000000000000000000fff900000000000700", 0x0, 0x48) (async)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb52456012ab8ba1286bf6cd8100cdc404000000006abf47d90000000000000000000000000000000000000000fff900000000000700", 0x0, 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
write$eventfd(r5, &(0x7f00000001c0), 0xff3c)
mmap$KVM_VCPU(&(0x7f0000dd3000/0x4000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) (async)
r6 = mmap$KVM_VCPU(&(0x7f0000dd3000/0x4000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) (async)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async)
r7 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="14000000000000002000000000000000e0dc1300000030979d"], 0xe0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (async)
r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="14000000000000002000000000000000e0dc1300000030979d"], 0xe0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x9, 0x4, '\x00', 0x1}) (async)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x9, 0x4, '\x00', 0x1})
ioctl$KVM_CREATE_VM(r7, 0x401c5820, 0x20000000)

0s ago: executing program 0 (id=43):
r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x909483, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, &(0x7f0000000180)=ANY=[], 0x30}, 0x0, 0x0)
r5 = syz_kvm_vgic_v3_setup(r2, 0xfffffbffffffffff, 0x240)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_vgic_v3_setup(r7, 0x2, 0x3c0)
syz_kvm_vgic_v3_setup(r7, 0x2, 0x140)
ioctl$KVM_HAS_DEVICE_ATTR(r5, 0x4018aee3, &(0x7f0000000100)=@attr_arm64={0x0, 0x5, 0x4, 0x0})
syz_kvm_vgic_v3_setup(r7, 0x3, 0x80)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil)
syz_kvm_setup_cpu$arm64(r8, 0xffffffffffffffff, &(0x7f0000001000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
r9 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
close(0x4)

kernel console output (not intermixed with test programs):

[  387.013645][ T3132] 8021q: adding VLAN 0 to HW filter on device bond0
[  438.417627][ T3132] eql: remember to turn off Van-Jacobson compression on your slave devices
Warning: Permanently added '[localhost]:36044' (ED25519) to the list of known hosts.
[  604.228023][   T25] audit: type=1400 audit(603.330:60): avc:  denied  { name_bind } for  pid=3290 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  605.173777][   T25] audit: type=1400 audit(604.280:61): avc:  denied  { execute } for  pid=3291 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  605.202029][   T25] audit: type=1400 audit(604.300:62): avc:  denied  { execute_no_trans } for  pid=3291 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  626.308552][   T25] audit: type=1400 audit(625.410:63): avc:  denied  { mounton } for  pid=3291 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  626.346064][   T25] audit: type=1400 audit(625.440:64): avc:  denied  { mount } for  pid=3291 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  626.435284][ T3291] cgroup: Unknown subsys name 'net'
[  626.485326][   T25] audit: type=1400 audit(625.590:65): avc:  denied  { unmount } for  pid=3291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  626.891494][ T3291] cgroup: Unknown subsys name 'cpuset'
[  626.996416][ T3291] cgroup: Unknown subsys name 'rlimit'
[  628.284077][   T25] audit: type=1400 audit(627.390:66): avc:  denied  { setattr } for  pid=3291 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  628.321320][   T25] audit: type=1400 audit(627.400:67): avc:  denied  { mounton } for  pid=3291 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  628.322981][   T25] audit: type=1400 audit(627.420:68): avc:  denied  { mount } for  pid=3291 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  629.526831][ T3294] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  629.547149][   T25] audit: type=1400 audit(628.650:69): avc:  denied  { relabelto } for  pid=3294 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  629.574921][   T25] audit: type=1400 audit(628.680:70): avc:  denied  { write } for  pid=3294 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  629.755837][   T25] audit: type=1400 audit(628.860:71): avc:  denied  { read } for  pid=3291 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  629.775573][   T25] audit: type=1400 audit(628.870:72): avc:  denied  { open } for  pid=3291 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  629.816718][ T3291] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  678.384138][   T25] audit: type=1400 audit(677.490:73): avc:  denied  { execmem } for  pid=3295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  681.973243][   T25] audit: type=1400 audit(681.060:74): avc:  denied  { read } for  pid=3297 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  681.987642][   T25] audit: type=1400 audit(681.090:75): avc:  denied  { open } for  pid=3297 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  682.064342][   T25] audit: type=1400 audit(681.150:76): avc:  denied  { mounton } for  pid=3297 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  682.318500][   T25] audit: type=1400 audit(681.400:77): avc:  denied  { module_request } for  pid=3298 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  683.467288][   T25] audit: type=1400 audit(682.570:78): avc:  denied  { sys_module } for  pid=3298 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  712.084153][ T3298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  712.194909][ T3298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  713.031687][ T3297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  713.574806][ T3297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  725.790943][ T3298] hsr_slave_0: entered promiscuous mode
[  725.820327][ T3298] hsr_slave_1: entered promiscuous mode
[  726.726027][ T3297] hsr_slave_0: entered promiscuous mode
[  726.756763][ T3297] hsr_slave_1: entered promiscuous mode
[  726.793113][ T3297] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  726.797832][ T3297] Cannot create hsr debugfs directory
[  732.332875][   T25] audit: type=1400 audit(731.430:79): avc:  denied  { create } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  732.367812][   T25] audit: type=1400 audit(731.470:80): avc:  denied  { write } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  732.422123][   T25] audit: type=1400 audit(731.520:81): avc:  denied  { read } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  732.558841][ T3298] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  732.873127][ T3298] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  733.236668][ T3298] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  733.568557][ T3298] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  735.059014][ T3297] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  735.219259][ T3297] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  735.403439][ T3297] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  735.586001][ T3297] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  748.377615][ T3298] 8021q: adding VLAN 0 to HW filter on device bond0
[  750.687066][ T3297] 8021q: adding VLAN 0 to HW filter on device bond0
[  811.647741][ T3298] veth0_vlan: entered promiscuous mode
[  812.164616][ T3298] veth1_vlan: entered promiscuous mode
[  813.932890][ T3297] veth0_vlan: entered promiscuous mode
[  814.634264][ T3298] veth0_macvtap: entered promiscuous mode
[  814.763767][ T3297] veth1_vlan: entered promiscuous mode
[  815.047440][ T3298] veth1_macvtap: entered promiscuous mode
[  817.338168][ T3298] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  817.376386][ T3298] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  817.392890][ T3298] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  817.414967][ T3298] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  817.586328][ T3297] veth0_macvtap: entered promiscuous mode
[  818.252877][ T3297] veth1_macvtap: entered promiscuous mode
[  821.171265][   T25] audit: type=1400 audit(820.260:82): avc:  denied  { mount } for  pid=3298 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  821.431581][   T25] audit: type=1400 audit(820.530:83): avc:  denied  { mounton } for  pid=3298 comm="syz-executor" path="/syzkaller.mDCuNl/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  821.764246][   T25] audit: type=1400 audit(820.860:84): avc:  denied  { mount } for  pid=3298 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  821.942585][ T3297] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  821.946715][ T3297] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  821.973285][ T3297] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  821.983723][ T3297] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  822.231559][   T25] audit: type=1400 audit(821.330:85): avc:  denied  { mounton } for  pid=3298 comm="syz-executor" path="/syzkaller.mDCuNl/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  822.432365][   T25] audit: type=1400 audit(821.530:86): avc:  denied  { mounton } for  pid=3298 comm="syz-executor" path="/syzkaller.mDCuNl/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3277 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  823.551575][   T25] audit: type=1400 audit(822.630:87): avc:  denied  { unmount } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  824.051145][   T25] audit: type=1400 audit(823.130:88): avc:  denied  { mounton } for  pid=3298 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  824.179089][   T25] audit: type=1400 audit(823.280:89): avc:  denied  { mount } for  pid=3298 comm="syz-executor" name="/" dev="gadgetfs" ino=3288 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  824.721331][   T25] audit: type=1400 audit(823.810:90): avc:  denied  { mount } for  pid=3298 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  824.881340][   T25] audit: type=1400 audit(823.970:91): avc:  denied  { mounton } for  pid=3298 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  826.563679][ T3298] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  828.476092][   T25] kauditd_printk_skb: 1 callbacks suppressed
[  828.500839][   T25] audit: type=1400 audit(827.580:93): avc:  denied  { read write } for  pid=3298 comm="syz-executor" name="loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  828.540676][   T25] audit: type=1400 audit(827.630:94): avc:  denied  { open } for  pid=3298 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  828.622500][   T25] audit: type=1400 audit(827.710:95): avc:  denied  { ioctl } for  pid=3298 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  832.245579][   T25] audit: type=1400 audit(831.350:96): avc:  denied  { read write } for  pid=3456 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  832.303061][   T25] audit: type=1400 audit(831.380:97): avc:  denied  { open } for  pid=3456 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  833.447240][   T25] audit: type=1400 audit(832.540:98): avc:  denied  { ioctl } for  pid=3455 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  834.816094][   T25] audit: type=1400 audit(833.910:99): avc:  denied  { append } for  pid=3456 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  895.706821][   T25] audit: type=1400 audit(894.810:100): avc:  denied  { ioctl } for  pid=3496 comm="syz.1.13" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0xb703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  926.353034][   T25] audit: type=1400 audit(925.440:101): avc:  denied  { execute } for  pid=3515 comm="syz.0.19" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4452 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  987.953777][ T3560] kvm [3560]: Failed to find VMA for hva 0x20c00000
[  993.873649][ T3564] kvm [3564]: Failed to find VMA for hva 0x20d8d000
[ 1033.367773][ T3589] KVM: debugfs: duplicate directory 3589-8
[ 1045.265624][ T3596] ------------[ cut here ]------------
[ 1045.266904][ T3596] WARNING: CPU: 0 PID: 3596 at arch/arm64/kvm/inject_fault.c:63 pend_sync_exception+0x198/0x5ac
[ 1045.270770][ T3596] Modules linked in:
[ 1045.273553][ T3596] CPU: 0 UID: 0 PID: 3596 Comm: syz.1.42 Not tainted 6.16.0-rc3-syzkaller-g15724a984643 #0 PREEMPT 
[ 1045.275415][ T3596] Hardware name: linux,dummy-virt (DT)
[ 1045.276801][ T3596] pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
[ 1045.278190][ T3596] pc : pend_sync_exception+0x198/0x5ac
[ 1045.279273][ T3596] lr : pend_sync_exception+0x198/0x5ac
[ 1045.280392][ T3596] sp : ffff8000a3f578c0
[ 1045.281291][ T3596] x29: ffff8000a3f578c0 x28: 0000000000000002 x27: 02f0000017bf82a8
[ 1045.283305][ T3596] x26: 0000000000000002 x25: 0000000000000000 x24: 0000000000000000
[ 1045.285053][ T3596] x23: 0000000000000000 x22: 0000000000000002 x21: 02f0000017bf8e81
[ 1045.286778][ T3596] x20: 0000000000000007 x19: efff800000000000 x18: 0000000000000000
[ 1045.288482][ T3596] x17: 000000000000009f x16: ffff800080011d9c x15: 0000000020000000
[ 1045.290218][ T3596] x14: ffffffffffffffff x13: 0000000000000028 x12: 00000000000000aa
[ 1045.291960][ T3596] x11: aaf000001d53ede4 x10: 0000000000ff0100 x9 : 0000000000000000
[ 1045.293821][ T3596] x8 : aaf000001d53d880 x7 : ffff800080b08704 x6 : ffff8000a3f57a88
[ 1045.295502][ T3596] x5 : ffff8000a3f57a88 x4 : 0000000000000001 x3 : ffff8000801a2e80
[ 1045.297233][ T3596] x2 : 0000000000000000 x1 : 0000000000000002 x0 : 0000000000000000
[ 1045.299207][ T3596] Call trace:
[ 1045.300335][ T3596]  pend_sync_exception+0x198/0x5ac (P)
[ 1045.301773][ T3596]  __kvm_inject_sea+0x268/0x96c
[ 1045.303006][ T3596]  kvm_inject_sea+0x98/0x72c
[ 1045.304095][ T3596]  __kvm_arm_vcpu_set_events+0x134/0x238
[ 1045.305239][ T3596]  kvm_arch_vcpu_ioctl+0xed8/0x16b0
[ 1045.306310][ T3596]  kvm_vcpu_ioctl+0x5c4/0xc2c
[ 1045.307411][ T3596]  __arm64_sys_ioctl+0x18c/0x244
[ 1045.308485][ T3596]  invoke_syscall+0x90/0x2b4
[ 1045.309596][ T3596]  el0_svc_common+0x180/0x2f4
[ 1045.310668][ T3596]  do_el0_svc+0x58/0x74
[ 1045.311645][ T3596]  el0_svc+0x58/0x160
[ 1045.312660][ T3596]  el0t_64_sync_handler+0x78/0x108
[ 1045.313719][ T3596]  el0t_64_sync+0x198/0x19c
[ 1045.314996][ T3596] irq event stamp: 642
[ 1045.315851][ T3596] hardirqs last  enabled at (641): [<ffff80008653cb88>] _raw_read_unlock_irqrestore+0x44/0xbc
[ 1045.317375][ T3596] hardirqs last disabled at (642): [<ffff800086517e08>] el1_dbg+0x24/0x80
[ 1045.318710][ T3596] softirqs last  enabled at (624): [<ffff8000800c988c>] local_bh_enable+0x10/0x34
[ 1045.320083][ T3596] softirqs last disabled at (622): [<ffff8000800c9858>] local_bh_disable+0x10/0x34
[ 1045.321665][ T3596] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1060.653087][   T31] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1061.572589][   T31] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1062.516738][   T31] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1063.713038][   T31] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0

VM DIAGNOSIS:
05:09:38  Registers:
info registers vcpu 0

CPU#0
 PC=ffff8000804516b8 X00=0000000000000000 X01=ffff8000872b1fa2
X02=ffff8000804580e0 X03=0000000000000000 X04=ffff8000a3f57000
X05=0000000000000020 X06=0000000000000000 X07=ffff80008652e834
X08=00000000000003c0 X09=0000000000000000 X10=00000000000000aa
X11=0000000000000144 X12=0000000000000044 X13=0000000000000002
X14=00000000000000c8 X15=ffff800087f39a30 X16=0000000000000000
X17=000000000000009f X18=0000000000000000 X19=0000000000000000
X20=0000000000000000 X21=ffff80008652e834 X22=ffff8000877e66a8
X23=0000000000000000 X24=0000000000000001 X25=0000000000000000
X26=ffff800087666580 X27=00000000000003c0 X28=0000000000000000
X29=ffff8000a3f571c0 X30=ffff800080451698  SP=ffff8000a3f57170
PSTATE=604023c9 -ZC- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000
P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000
FFR=0000
Z00=0000000000000000:0000000000000000 Z01=0000ffffe5021350:9acbbd2be1278200
Z02=0000ffffe5021330:ffffff80ffffffd8 Z03=0000ffffe50213e0:0000ffffe50213e0
Z04=0000ffffe50213e0:0000ffffa4b36d08 Z05=0000ffffe50213b0:0000ffffe50213e0
Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0
Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000
Z16=0000ffffe5021600:0000ffffe5021600 Z17=ffffff80ffffffd0:0000ffffe50215d0
Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000