last executing test programs:

12.475048093s ago: executing program 0 (id=128):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x880841, 0x0)
write$FUSE_DIRENT(r0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
dup(0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, 0x0, 0x441, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = memfd_create(&(0x7f0000002bc0)='bridge_slave_0\x00', 0x0)
write$P9_RVERSION(r1, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002280), 0x2, 0x0)
syz_socket_connect_nvme_tcp()
openat$urandom(0xffffffffffffff9c, &(0x7f0000002240), 0x400, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = mq_open(&(0x7f0000001100)='trusted.overlay.redirect\x00', 0x40, 0x1, &(0x7f0000001140)={0x20000000000000, 0x6, 0x7ffe})
read$char_usb(r2, 0x0, 0x0)

12.246212429s ago: executing program 0 (id=130):
set_mempolicy(0x0, 0x0, 0x0)
set_mempolicy(0x4000, 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x0)
r0 = msgget$private(0x0, 0x0)
r1 = syz_socket_connect_nvme_tcp()
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f00000012c0))
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, 0x0)
unshare(0x0)
fchmod(0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)
shmctl$SHM_LOCK(0x0, 0xb)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)
shmctl$IPC_RMID(r0, 0x0)

11.966489961s ago: executing program 0 (id=131):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22}, 0x10)
listen(r0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$FITRIM(r1, 0x5452, &(0x7f0000000000))
ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000080)=0x4f59)
r2 = accept$inet(r0, 0x0, 0x0)
r3 = dup(r1)
getsockopt$inet_buf(r3, 0x0, 0x0, &(0x7f0000000180)=""/172, &(0x7f0000000240)=0xac)
r4 = socket$inet(0x2, 0x1, 0x0)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10)
openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0xe60768d3d26eca77, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000040)=0xfffffe01, 0x4)
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x77359400}, {0x77359400}}, &(0x7f0000000140))

11.127305087s ago: executing program 0 (id=133):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5451, 0x0)
close(0xffffffffffffffff)
setsockopt$packet_fanout(0xffffffffffffffff, 0x102, 0x7, 0x0, 0x0)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f00000002c0))
socket(0x1, 0x80003, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0x5450, 0x0)
write$P9_RWSTAT(r1, 0x0, 0x0)
mlockall(0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_clone(0x0, 0x0, 0xffffffffffffff66, 0x0, 0x0, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0)

7.477333691s ago: executing program 1 (id=137):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
close(0xffffffffffffffff)
socket$unix(0x1, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{}, {0x0, 0x3938700}}, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000340), 0xffffff46)
dup3(r2, r1, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
write$P9_RSTAT(r1, &(0x7f0000000080)={0x4b, 0x7d, 0x0, {0x0, 0x44, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3, '#! ', 0x3, '%}!', 0xa, '/dev/zero\x00', 0x1, '\x00'}}, 0x4b)
close(r1)
socket$inet_udp(0x2, 0x2, 0x0)

6.620030348s ago: executing program 1 (id=138):
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x541b, &(0x7f0000000180)={'wg1\x00'})
r0 = mq_open(&(0x7f0000000080)='wg1\x00', 0x40, 0x0, &(0x7f00000000c0)={0x0, 0x7, 0x40})
inotify_init1(0x0)
socketpair(0x1, 0x3, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8000, 0x0, 0x18)
syz_open_procfs(0x0, &(0x7f0000000140)='gid_map\x00')
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2041, 0x0)
write$P9_RREMOVE(r1, 0x0, 0x0)
timer_create(0x3, 0x0, 0x0)
clock_gettime(0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x5451, 0x0)

6.328279702s ago: executing program 1 (id=139):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='freezer.state\x00', 0x26e1, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x33fe0}}, 0x0)
r2 = io_uring_setup(0x104c, &(0x7f0000001440))
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)
close(r1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='cpuacct.stat\x00', 0x26e1, 0x0)
close(r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$nl_xfrm(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x33fe0}}, 0x0)
sendmsg$TIPC_NL_PEER_REMOVE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
close(r4)
close(r2)

6.049373203s ago: executing program 0 (id=140):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x27, 0x2, 0xffffffff)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000580)={{{@in6=@dev, @in6=@dev}}, {{@in=@dev}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8)
r1 = socket$key(0xf, 0x3, 0x2)
keyctl$describe(0x6, 0x0, 0x0, 0x0)
keyctl$restrict_keyring(0xa, 0x0, 0x0, &(0x7f0000000040)='dn:')
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020300030b0000000000000000000000010009000000000003000600000000000200000000"], 0x58}, 0x1, 0x7}, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
sendmsg(r2, &(0x7f00000000c0)={0x0, 0x952c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
setsockopt$sock_int(r2, 0x1, 0x0, &(0x7f0000000040), 0x4)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f04000000480100100000000004002b000a00010014a4ee1ee438d2fd000000000000007208", 0x39}], 0x1)

3.635892517s ago: executing program 1 (id=141):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x0, 0x14, &(0x7f0000000400)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x70}}, @ringbuf_output]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10)
r3 = dup(r0)
write$FUSE_BMAP(r3, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
chdir(&(0x7f0000000040)='./file0\x00')
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="050000000000000073113500000000008510000002000000850000000500000095000000000000009500a50500000000223ef56b4d849fa8dc88ee0eddfc8bce7c95b909dbf66860c2d9efb8e90a8bca7dd88bfffdebfcb6f4d5b6db41981f0646f3a7dc93e2a02d76cc24bd216a1389be44e9fc6f0c29d9f465cab63bf5672975899b4781682569180641a5830521452c423280907b4ae7bed9e1e47990de384244861b2f55a798f821bd614991ee1455e7c6bd47781ff6aeba35bfa41d61f995068d514fdfa12d162cc585daf11408ee38fa013b8fef2666470b1d7cd3975d3dd2382b71cd6caed435d2"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000100)=@generic={&(0x7f00000000c0)='./file0\x00', r4}, 0x18)

3.127452075s ago: executing program 1 (id=142):
r0 = semget$private(0x0, 0x2, 0x0)
r1 = semget$private(0x0, 0x3, 0x0)
semctl$GETZCNT(r1, 0x2, 0xf, 0x0)
r2 = semget$private(0x0, 0x0, 0x0)
semctl$GETNCNT(0x0, 0x0, 0xe, 0x0)
semctl$SETALL(r0, 0x0, 0x11, 0x0)
semtimedop(0x0, 0x0, 0x0, &(0x7f0000000380)={0x0, 0x3938700})
semctl$GETPID(r0, 0x0, 0xb, &(0x7f00000003c0)=""/219)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000500))
semctl$GETPID(r2, 0x0, 0xb, 0xfffffffffffffffe)
semctl$SEM_STAT(r1, 0x1, 0x12, &(0x7f00000008c0)=""/169)
mq_open(&(0x7f0000000b80)=',\x00', 0x40, 0x5c, &(0x7f0000000bc0)={0x0, 0x9, 0x8})
memfd_create(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))

2.767228676s ago: executing program 1 (id=143):
memfd_create(&(0x7f0000000040)='}\xa4-}{\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x0, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
r0 = eventfd2(0x0, 0x0)
dup3(0xffffffffffffffff, r0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs, 0x6e)
openat$cgroup_type(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = dup(r1)
ioctl$BTRFS_IOC_GET_FEATURES(r2, 0x8902, &(0x7f0000000040))

0s ago: executing program 0 (id=144):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0)
r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x2, 0x100)
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r6 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0)
r7 = mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r5, 0x3, 0x11, r4, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_kvm_assert_syzos_uexit$arm64(r7, 0xffffffffffffffff)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_assert_syzos_uexit$arm64(r6, 0xfffffffffffffffe)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:48322' (ED25519) to the list of known hosts.
syzkaller login: [  126.426825][ T3313] cgroup: Unknown subsys name 'net'
[  126.693052][ T3313] cgroup: Unknown subsys name 'cpuset'
[  126.730845][ T3313] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  127.482293][ T3313] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  145.930715][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.961750][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.340514][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.384915][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.862907][ T3320] hsr_slave_0: entered promiscuous mode
[  147.876612][ T3320] hsr_slave_1: entered promiscuous mode
[  148.606953][ T3319] hsr_slave_0: entered promiscuous mode
[  148.615732][ T3319] hsr_slave_1: entered promiscuous mode
[  148.625308][ T3319] debugfs: 'hsr0' already exists in 'hsr'
[  148.630935][ T3319] Cannot create hsr debugfs directory
[  149.829784][ T3320] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  149.884232][ T3320] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  149.924394][ T3320] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  149.961073][ T3320] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  150.401491][ T3319] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  150.452318][ T3319] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  150.499413][ T3319] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  150.546386][ T3319] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  151.644313][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0
[  152.259509][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0
[  157.098474][ T3320] veth0_vlan: entered promiscuous mode
[  157.184365][ T3320] veth1_vlan: entered promiscuous mode
[  157.402808][ T3320] veth0_macvtap: entered promiscuous mode
[  157.452887][ T3320] veth1_macvtap: entered promiscuous mode
[  157.839814][ T1898] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  157.840898][ T1898] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  157.841246][ T1898] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  157.841570][ T1898] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  158.023588][ T3319] veth0_vlan: entered promiscuous mode
[  158.177134][ T3319] veth1_vlan: entered promiscuous mode
[  158.509821][ T3319] veth0_macvtap: entered promiscuous mode
[  158.555534][ T3319] veth1_macvtap: entered promiscuous mode
[  158.764363][ T3320] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  158.825832][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  158.826758][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  158.827148][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  158.828937][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.161497][ T3532] 8021q: VLANs not supported on vcan0
[  194.674136][ T3567] process 'syz.1.34' launched './file1' with NULL argv: empty string added
[  202.792139][ T3598] Zero length message leads to an empty skb
[  208.489335][ T3604] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0
[  270.565383][ T3820] serio: Serial port pts0
[  293.972211][ T3893] netlink: 9 bytes leftover after parsing attributes in process `syz.0.140'.
[  298.555839][ T3893] gretap0: entered promiscuous mode
[  299.112886][ T3901] ------------[ cut here ]------------
[  299.115977][ T3901] WARNING: CPU: 0 PID: 3901 at arch/arm64/kvm/sys_regs.c:2353 kvm_set_vm_id_reg+0x60/0xf4
[  299.123663][ T3901] Modules linked in:
[  299.127529][ T3901] CPU: 0 UID: 0 PID: 3901 Comm: syz.0.144 Not tainted syzkaller #0 PREEMPT 
[  299.129009][ T3901] Hardware name: linux,dummy-virt (DT)
[  299.129913][ T3901] pstate: a1402009 (NzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
[  299.130875][ T3901] pc : kvm_set_vm_id_reg+0x60/0xf4
[  299.131587][ T3901] lr : kvm_finalize_sys_regs+0x88/0x244
[  299.132298][ T3901] sp : ffff80008a263ab0
[  299.132849][ T3901] x29: ffff80008a263ab0 x28: f5f0000008b6ddc0 x27: 0000000000000000
[  299.134220][ T3901] x26: 0000000000000000 x25: f3f000000a840000 x24: 0000000000000000
[  299.135150][ T3901] x23: f3f000000a840048 x22: 0000000000000000 x21: f6ff80008a307bd0
[  299.136099][ T3901] x20: f6ff80008a307000 x19: f3f000000a840000 x18: 00000000ffffffff
[  299.137102][ T3901] x17: 0000000000000000 x16: 0000000000000000 x15: ffff80008a263a90
[  299.138325][ T3901] x14: ffff80008a263d98 x13: ffff80008a263d5a x12: 0000000000000000
[  299.139387][ T3901] x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000031
[  299.140484][ T3901] x8 : ffff80008a263da8 x7 : f1f0000004c9221c x6 : 0000000000000030
[  299.141567][ T3901] x5 : f5f0000008b6ddc0 x4 : 0000000000000001 x3 : f6ff80008a307d18
[  299.142586][ T3901] x2 : 1101001020110222 x1 : 0000000000000000 x0 : f6ff80008a307000
[  299.143877][ T3901] Call trace:
[  299.144540][ T3901]  kvm_set_vm_id_reg+0x60/0xf4 (P)
[  299.145396][ T3901]  kvm_finalize_sys_regs+0x88/0x244
[  299.146097][ T3901]  kvm_arch_vcpu_run_pid_change+0x8c/0x36c
[  299.146829][ T3901]  kvm_vcpu_ioctl+0x7f8/0x878
[  299.147702][ T3901]  __arm64_sys_ioctl+0xac/0x104
[  299.148360][ T3901]  invoke_syscall+0x48/0x110
[  299.149272][ T3901]  el0_svc_common.constprop.0+0x40/0xe0
[  299.150025][ T3901]  do_el0_svc+0x1c/0x28
[  299.150640][ T3901]  el0_svc+0x34/0x10c
[  299.151282][ T3901]  el0t_64_sync_handler+0xa0/0xe4
[  299.151948][ T3901]  el0t_64_sync+0x1a4/0x1a8
[  299.152946][ T3901] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  300.320062][ T1861] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.506748][ T1861] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.791673][ T1861] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.929299][ T1861] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.169141][ T1861] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  302.238546][ T1861] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  302.311138][ T1861] bond0 (unregistering): Released all slaves
[  302.509735][ T1861] hsr_slave_0: left promiscuous mode
[  302.516161][ T1861] hsr_slave_1: left promiscuous mode
[  302.566046][ T1861] veth1_macvtap: left promiscuous mode
[  302.566966][ T1861] veth0_macvtap: left promiscuous mode
[  302.572870][ T1861] veth1_vlan: left promiscuous mode
[  302.574125][ T1861] veth0_vlan: left promiscuous mode
[  304.502754][ T1861] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.594893][ T1861] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.844339][ T1861] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.001382][ T1861] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.495682][ T1861] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  306.557016][ T1861] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  306.600241][ T1861] bond0 (unregistering): Released all slaves
[  306.841171][ T1861] hsr_slave_0: left promiscuous mode
[  306.852021][ T1861] hsr_slave_1: left promiscuous mode
[  306.893595][ T1861] veth1_macvtap: left promiscuous mode
[  306.896442][ T1861] veth0_macvtap: left promiscuous mode
[  306.900940][ T1861] veth1_vlan: left promiscuous mode
[  306.903440][ T1861] veth0_vlan: left promiscuous mode

VM DIAGNOSIS:
22:40:00  Registers:
info registers vcpu 0

CPU#0
 PC=ffff800081b34784 X00=ffff80008247cf98 X01=ffff80008247cf90
X02=ffffffffffffffff X03=0054504d45455250 X04=0000000000000000
X05=8000000000000000 X06=ff534f4c4444514f X07=7f7f7f7f7f7f7f7f
X08=0101010101010101 X09=000000000002ffe8 X10=0000000000000001
X11=0000000000000001 X12=ffff800082a5fa00 X13=ffff80008a2635b8
X14=00000000ffffffea X15=ffff80008a263200 X16=0000000000000000
X17=0000000000000000 X18=00000000ffffffff X19=ffff800082c0c000
X20=ffff80008a2636c0 X21=ffff80008247cf98 X22=ffff80008268a890
X23=0000000000000002 X24=0000000000000000 X25=0000000000000f3d
X26=0000000000000000 X27=ffff80008268a890 X28=ffff800082c50510
X29=ffff80008a263680 X30=ffff800081b51afc  SP=ffff80008a263680
PSTATE=a24023c9 N-C- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000000000000000 P01=0000000000000000 P02=0000000000000000
P03=0000000000000000 P04=0000000000000000 P05=0000000000000000
P06=0000000000000000 P07=0000000000000000 P08=0000000000000000
P09=0000000000000000 P10=0000000000000000 P11=0000000000000000
P12=0000000000000000 P13=0000000000000000 P14=0000000000000000
P15=0000000000000000 FFR=0000000000000000
Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffffff00000007
Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000274000:0000000000000000
Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:d503201fd503201f:d503201fd503201f
Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:d503201fd503201f:d503201fd503201f
Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:d503201fd503201f:d503201fd503201f
Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:d503201fd503201f:d503201fd503201f
Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff8c376468:0000ffff8c376460
Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff8c376478:0000ffff8c376470
Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffc8562310:0000ffffc8562310
Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffc85622e0
Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
info registers vcpu 1

CPU#1
 PC=ffff800081b62d6c X00=ffff800081b62d68 X01=ffff8000814445f8
X02=0000000000000000 X03=fff000007f8e8b00 X04=fff000007f8e90a8
X05=ffff800088f9bdc8 X06=ffff800088f9bdc8 X07=0000000000000000
X08=ffff800088f9bdb0 X09=0000000000000000 X10=0000000000000000
X11=0000000000000000 X12=0000000000000000 X13=0000000000000000
X14=0000000000000000 X15=0000fffff2762698 X16=0000000000000000
X17=0000000000000000 X18=0000000000000000 X19=ffff800082c95d00
X20=00000045622f2400 X21=000000000000e480 X22=0000000000989680
X23=fff000007f8e8b00 X24=0000000000000001 X25=ffff800082a90dc0
X26=0000000000000000 X27=ffff80008295cb00 X28=0000000000000000
X29=ffff800088f9bc30 X30=ffff800081444610  SP=ffff800088f9bc30
PSTATE=614020c9 -ZC- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000000000000000 P01=0000000000000000 P02=0000000000000000
P03=0000000000000000 P04=0000000000000000 P05=0000000000000000
P06=0000000000000000 P07=0000000000000000 P08=0000000000000000
P09=0000000000000000 P10=0000000000000000 P11=0000000000000000
P12=0000000000000000 P13=0000000000000000 P14=0000000000000000
P15=0000000000000000 FFR=0000000000000000
Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0100000000000000:0100000000000000
Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000100000000:0000000000000000
Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000001:0000000000000000
Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00d000a800000000:0000000000000000
Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000002
Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000001:0000000000000002
Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88
Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0
Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000fffff27626b0:0000fffff27626b0
Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000fffff2762680
Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000