last executing test programs:

56.853065569s ago: executing program 1 (id=1754):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0xd, 0x4f832, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2041, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000200)={0x7, <r6=>0xffffffffffffffff})
ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x2, 0x0})
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x42)
r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x2, 0x2c}}, @hvc={0x32, 0x40, {0x10, [0xd, 0x8, 0x6, 0x7, 0x5]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1c00, 0x3ff, 0x2}}, @uexit={0x0, 0x18, 0x5d}, @eret={0xe6, 0x18, 0x9}], 0xb8}, &(0x7f0000000180)=[@featur2={0x1, 0x7}], 0x1)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000000)={0x5000, 0x2000, 0x1})
r8 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x0, 0x300000f, 0x110, r7, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000001c0)="5d0d8db30dbe55cbb27089233a12e0e3c3f5b8256a0d316fb5986ab2d8169d78cb64a8409c33db75a7fb6089e812ed140499389098ce5ff15860bf09abf1f34a12b0fc703a6296ff", 0x0, 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x20a080, 0x0)

47.238194378s ago: executing program 1 (id=1756):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000c7f000/0x4000)=nil, 0x0, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x240200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000080)={0x8, <r4=>0xffffffffffffffff})
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r6 = eventfd2(0x5, 0x800)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
r8 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000001c0)={0x0, &(0x7f0000000300)=[@its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x3, 0x9, 0x7f, 0x6, 0x3}}, @svc={0x122, 0x40, {0x86000000, [0x2, 0x7fffffffffffffff, 0x7f, 0x3, 0x10001]}}, @svc={0x122, 0x40, {0xc4000014, [0x2, 0xc49, 0xb7d2, 0x7fff, 0x7]}}, @eret={0xe6, 0x18, 0x1}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0x6, 0x8, 0x3, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x0, 0x9, 0xa2b, 0x0, 0x1}}, @uexit={0x0, 0x18, 0x2}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x100, 0x8000000000000000, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x48, 0xffff}}], 0x188}, &(0x7f0000000200)=[@featur1={0x1, 0x45}], 0x1)
r9 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x8010, r8, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
r10 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000100)={0x1fe, 0x3, 0x3000, 0x1000, &(0x7f0000000000/0x1000)=nil})
write$eventfd(r6, &(0x7f0000000040)=0xffff, 0x8)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x3000)=nil, r5, 0x3000003, 0x12, r4, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000040)={0x206, 0x1, 0x5000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)

41.229520505s ago: executing program 0 (id=1757):
r0 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5, 0x19})
ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f00000000c0)=@arm64_core={0x603000000010002e, &(0x7f00000001c0)=0xffffffffffffffff})
mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, r0, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0)

36.584756496s ago: executing program 1 (id=1758):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="7687a2a6ca111501000100000000000000000004000000010000f2ff000000ffff0000010000ac00000000000000000000000000001200"/64])

32.144947467s ago: executing program 0 (id=1759):
r0 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f000002e000/0x3000)=nil, r1, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x4)
ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5, 0xb})
ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f00000000c0)=@arm64_fp={0x6040000000100014, 0x0})
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0)
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac3bc4a22332fdaa8de0518df242008031d1dfd92f0000000001fff9ffdc9610fbff77521ce30d8f00", 0x0, 0xfcf7)

27.862366583s ago: executing program 1 (id=1760):
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) (async)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) (async)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000000c0)={0x4, <r4=>0xffffffffffffffff, 0x932d82b1a9412f16})
mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x40032, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000080)={0x1d6a4fa44379647a, <r5=>0xffffffffffffffff, 0x1})
ioctl$KVM_HAS_DEVICE_ATTR(r5, 0x4018aee3, &(0x7f00000000c0)=@attr_other={0x0, 0x0, 0x3, 0x0}) (async, rerun: 32)
ioctl$KVM_GET_ONE_REG(r1, 0xc018ae85, &(0x7f0000000100)=@arm64_sys={0x603000000013804c, 0x0}) (rerun: 32)

23.608858417s ago: executing program 0 (id=1761):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000e31000/0x2000)=nil, 0x930, 0x5, 0x2012, r3, 0x0)
mmap$KVM_VCPU(&(0x7f0000f31000/0x3000)=nil, 0x930, 0x100000a, 0x213011, r3, 0x0)
munmap(&(0x7f0000c00000/0x400000)=nil, 0x400000)
mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, 0x930, 0x4, 0x4f833, 0xffffffffffffffff, 0x0)
r4 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
r5 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000000, 0x110, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, <r8=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x894c, 0x0)
close(0x5)
r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r9, 0x4020ae46, &(0x7f0000000180)=ANY=[@ANYBLOB="0100000001000000000000fe7f0000000010"])

18.771305511s ago: executing program 1 (id=1762):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x2002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x200080, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_assert_reg(r5, 0x603000000013dce0, 0x8000)
r6 = syz_kvm_vgic_v3_setup(r3, 0x3, 0x200)
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x3, 0x3, &(0x7f0000000280)=0xef7000000000000})
r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=ANY=[@ANYRES8=r2, @ANYRES32=r7, @ANYRESOCT=r0], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_GET_REG_LIST(r8, 0xc008aeb0, &(0x7f0000000000)={0x7, [0x7, 0xfffffffffffffff9, 0x0, 0x0, 0x2, 0x101, 0x8]})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f00000000c0)={0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="4600000000000000180000000000d494feffffff008200000000000000280000000000000001000000000000000100000000000000feffffffffffffffaa00000000000000280000000000000004000000000000000000000000000000000000000000000041be96471769678a4fac5d26b04fe376af1371e96298b4d7d94dcb0508673e861da87007a800a025456520ec0fc715af9a3f779bab6ee215e9394cfe92779c32681cd62908eb15e6f105eb0733020642b8b7f34f3a5a23a3ce7ffc8480115137405f62373c8ce5247eb266000000"], 0x68}, 0x0, 0x0)
r14 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r10, 0xae04)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r14, 0x3, 0x11, r13, 0x0)
mmap$KVM_VCPU(&(0x7f0000e7d000/0x3000)=nil, r14, 0x2, 0x10, r8, 0x0)
r15 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0)
r17 = ioctl$KVM_CREATE_VCPU(r16, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_INIT(r17, 0x4020aeae, &(0x7f0000000080)={0x5, 0x18})
ioctl$KVM_SET_ONE_REG(r17, 0x4010aeac, &(0x7f0000000100)=@arm64_extra={0x6030000000140000, &(0x7f00000001c0)=0x10002})

10.892267439s ago: executing program 0 (id=1763):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000c6e000/0x4000)=nil, 0x930, 0x0, 0x8010, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1})
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000100)=0x812})

5.041238681s ago: executing program 0 (id=1764):
r0 = openat$kvm(0x0, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="004149dd033be3ac2cc4a22332a77b23b08986814d7bd44c94a6ab801fd1dfd92f0000521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e700002c00", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2c080, 0x0)

3.310583539s ago: executing program 1 (id=1765):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x2901, 0x0) (async)
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x320}, &(0x7f0000000080)=[@featur2={0x1, 0x86}], 0x1)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000000000001", @ANYRESDEC]) (async)
r4 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r3, 0x4020ae46, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000000000001000000000010", @ANYRES64=r4])
ioctl$KVM_ARM_VCPU_INIT(r1, 0x4020aeae, &(0x7f0000000180)={0x3, 0x82}) (async)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0x3, 0x1000, 0x2}})
r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_vgic_v3_setup(r10, 0x4, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async)
ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async)
ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x3ff}) (async)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB], 0x60}, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000240)={0x3, 0x400}}) (async)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee1, 0x0)
r14 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r5, r14, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f00000001c0)=[@smc={0x1e, 0x40, {0x84000052, [0x4fe74cfc, 0x278, 0xfffffffffffffff8, 0x0, 0xa]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r14, 0xae80, 0x0)

0s ago: executing program 0 (id=1766):
r0 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000140)=@arm64={0xe1, 0x5, 0x0, '\x00', 0x7114})
ioctl$KVM_GET_ONE_REG(r2, 0xc018ae85, &(0x7f0000000100)=@arm64_sys={0x603000000013804c, 0x0})
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae03, 0xbb)
ioctl$KVM_ARM_SET_COUNTER_OFFSET(r4, 0x4010aeb5, &(0x7f00000000c0)={0x3800, 0x20f9})
ioctl$KVM_IOEVENTFD(r4, 0xc0189436, &(0x7f0000000080)={0x0, 0x4000, 0x1})
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000140)=@arm64={0xe1, 0x5, 0x0, '\x00', 0x7114}) (async)
ioctl$KVM_GET_ONE_REG(r2, 0xc018ae85, &(0x7f0000000100)=@arm64_sys={0x603000000013804c, 0x0}) (async)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae03, 0xbb) (async)
ioctl$KVM_ARM_SET_COUNTER_OFFSET(r4, 0x4010aeb5, &(0x7f00000000c0)={0x3800, 0x20f9}) (async)
ioctl$KVM_IOEVENTFD(r4, 0xc0189436, &(0x7f0000000080)={0x0, 0x4000, 0x1}) (async)

kernel console output (not intermixed with test programs):

[  383.867137][ T3131] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.547694][ T3131] eql: remember to turn off Van-Jacobson compression on your slave devices
Warning: Permanently added '[localhost]:38261' (ED25519) to the list of known hosts.
[  600.844775][   T25] audit: type=1400 audit(600.000:60): avc:  denied  { name_bind } for  pid=3289 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  601.785114][   T25] audit: type=1400 audit(600.950:61): avc:  denied  { execute } for  pid=3290 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  601.813372][   T25] audit: type=1400 audit(600.970:62): avc:  denied  { execute_no_trans } for  pid=3290 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  622.988475][   T25] audit: type=1400 audit(622.150:63): avc:  denied  { mounton } for  pid=3290 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  623.021907][   T25] audit: type=1400 audit(622.180:64): avc:  denied  { mount } for  pid=3290 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  623.107586][ T3290] cgroup: Unknown subsys name 'net'
[  623.158382][   T25] audit: type=1400 audit(622.320:65): avc:  denied  { unmount } for  pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  623.547512][ T3290] cgroup: Unknown subsys name 'cpuset'
[  623.649064][ T3290] cgroup: Unknown subsys name 'rlimit'
[  624.565939][   T25] audit: type=1400 audit(623.730:66): avc:  denied  { setattr } for  pid=3290 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  624.585879][   T25] audit: type=1400 audit(623.740:67): avc:  denied  { mounton } for  pid=3290 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  624.614393][   T25] audit: type=1400 audit(623.770:68): avc:  denied  { mount } for  pid=3290 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  625.794469][ T3293] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  625.817552][   T25] audit: type=1400 audit(624.980:69): avc:  denied  { relabelto } for  pid=3293 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  625.844636][   T25] audit: type=1400 audit(625.000:70): avc:  denied  { write } for  pid=3293 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  626.048460][   T25] audit: type=1400 audit(625.210:71): avc:  denied  { read } for  pid=3290 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  626.076359][   T25] audit: type=1400 audit(625.240:72): avc:  denied  { open } for  pid=3290 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  626.115436][ T3290] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  674.075940][   T25] audit: type=1400 audit(673.240:73): avc:  denied  { execmem } for  pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  677.626618][   T25] audit: type=1400 audit(676.790:74): avc:  denied  { read } for  pid=3296 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  677.662250][   T25] audit: type=1400 audit(676.800:75): avc:  denied  { open } for  pid=3296 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  677.746839][   T25] audit: type=1400 audit(676.890:76): avc:  denied  { mounton } for  pid=3296 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  678.010041][   T25] audit: type=1400 audit(677.150:77): avc:  denied  { module_request } for  pid=3297 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  679.133657][   T25] audit: type=1400 audit(678.270:78): avc:  denied  { sys_module } for  pid=3297 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  707.909932][ T3297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  707.989332][ T3296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  708.082430][ T3297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  708.136756][ T3296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  720.976409][ T3297] hsr_slave_0: entered promiscuous mode
[  721.005704][ T3297] hsr_slave_1: entered promiscuous mode
[  722.078705][ T3296] hsr_slave_0: entered promiscuous mode
[  722.118194][ T3296] hsr_slave_1: entered promiscuous mode
[  722.152810][ T3296] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  722.174401][ T3296] Cannot create hsr debugfs directory
[  727.479178][   T25] audit: type=1400 audit(726.640:79): avc:  denied  { create } for  pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  727.532384][   T25] audit: type=1400 audit(726.690:80): avc:  denied  { write } for  pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  727.585224][   T25] audit: type=1400 audit(726.750:81): avc:  denied  { read } for  pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  727.718193][ T3297] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  728.055662][ T3297] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  728.424401][ T3297] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  728.738256][ T3297] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  730.133484][ T3296] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  730.317852][ T3296] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  730.483944][ T3296] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  730.636250][ T3296] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  743.328211][ T3297] 8021q: adding VLAN 0 to HW filter on device bond0
[  745.584903][ T3296] 8021q: adding VLAN 0 to HW filter on device bond0
[  801.684663][ T3297] veth0_vlan: entered promiscuous mode
[  802.214645][ T3297] veth1_vlan: entered promiscuous mode
[  804.139603][ T3296] veth0_vlan: entered promiscuous mode
[  804.345098][ T3297] veth0_macvtap: entered promiscuous mode
[  804.756230][ T3297] veth1_macvtap: entered promiscuous mode
[  804.935107][ T3296] veth1_vlan: entered promiscuous mode
[  806.797398][ T3297] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  806.808988][ T3297] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  806.822685][ T3297] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  806.863606][ T3297] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  807.667521][ T3296] veth0_macvtap: entered promiscuous mode
[  808.255612][ T3296] veth1_macvtap: entered promiscuous mode
[  809.566093][   T25] audit: type=1400 audit(808.730:82): avc:  denied  { mount } for  pid=3297 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  809.708264][   T25] audit: type=1400 audit(808.870:83): avc:  denied  { mounton } for  pid=3297 comm="syz-executor" path="/syzkaller.zSzpUq/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  809.924242][   T25] audit: type=1400 audit(809.050:84): avc:  denied  { mount } for  pid=3297 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  810.259842][   T25] audit: type=1400 audit(809.350:85): avc:  denied  { mounton } for  pid=3297 comm="syz-executor" path="/syzkaller.zSzpUq/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  810.482630][   T25] audit: type=1400 audit(809.630:86): avc:  denied  { mounton } for  pid=3297 comm="syz-executor" path="/syzkaller.zSzpUq/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  810.676173][ T3296] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  810.691584][ T3296] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  810.708026][ T3296] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  810.717622][ T3296] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  811.155220][   T25] audit: type=1400 audit(810.320:87): avc:  denied  { unmount } for  pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  811.306696][   T25] audit: type=1400 audit(810.460:88): avc:  denied  { mounton } for  pid=3297 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  811.438340][   T25] audit: type=1400 audit(810.580:89): avc:  denied  { mount } for  pid=3297 comm="syz-executor" name="/" dev="gadgetfs" ino=3281 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  811.749228][   T25] audit: type=1400 audit(810.910:90): avc:  denied  { mount } for  pid=3297 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  811.831633][   T25] audit: type=1400 audit(810.950:91): avc:  denied  { mounton } for  pid=3297 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  813.276924][ T3297] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  817.844288][   T25] kauditd_printk_skb: 4 callbacks suppressed
[  817.868669][   T25] audit: type=1400 audit(817.000:96): avc:  denied  { read } for  pid=3449 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  817.893688][   T25] audit: type=1400 audit(817.030:97): avc:  denied  { open } for  pid=3449 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  818.753307][   T25] audit: type=1400 audit(817.870:98): avc:  denied  { ioctl } for  pid=3449 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  833.985830][ T3459] kvm [3459]: Failed to find VMA for hva 0x20d8d000
[  850.942526][   T25] audit: type=1400 audit(850.090:99): avc:  denied  { write } for  pid=3470 comm="syz.1.6" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  869.713683][   T25] audit: type=1400 audit(868.860:100): avc:  denied  { append } for  pid=3484 comm="syz.1.10" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  870.877586][   T25] audit: type=1400 audit(869.990:101): avc:  denied  { execute } for  pid=3484 comm="syz.1.10" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4089 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[ 1266.946181][ T3746] irq bypass consumer (token 000000009a81dc42) registration fails: -16
[ 1345.607122][   T25] audit: type=1400 audit(1344.770:102): avc:  denied  { setattr } for  pid=3798 comm="syz.0.104" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1562.042167][   T25] audit: type=1400 audit(1561.180:103): avc:  denied  { ioctl } for  pid=3948 comm="syz.1.147" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0x5839 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 1640.936171][ T4012] kvm [4012]: Failed to find VMA for hva 0x21016000
[ 1755.343479][ T4081] kvm [4081]: Failed to find VMA for hva 0x20d8d000
[ 1792.953736][ T4101] KVM: debugfs: duplicate directory 4101-4
[ 1880.093880][   T25] audit: type=1400 audit(1879.250:104): avc:  denied  { map } for  pid=4153 comm="syz.1.209" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1937.253808][ T4188] kvm [4188]: Failed to find VMA for hva 0x20c01000
[ 1969.806893][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001d3]
[ 1969.806893][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1969.837457][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1969.837457][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1969.887896][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1969.887896][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1969.964883][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1969.964883][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1969.995576][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1969.995576][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1970.063513][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1970.063513][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1970.116943][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1970.116943][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1970.217172][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1970.217172][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1970.343759][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1970.343759][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1970.426517][ T4210] kvm [4208]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 1970.426517][ T4210]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 1997.576552][ T4223] kvm [4223]: Failed to find VMA for hva 0x20000000
[ 2012.217162][ T4230] kvm [4229]: Unsupported guest access at: eeef0000
[ 2012.217162][ T4230]  { Op0( 2), Op1( 7), CRn(15), CRm(13), Op2( 1), func_write },
[ 2022.384970][ T4232] debugfs: File 'vgic-its-state@8080000' in directory '4232-5' already present!
[ 2177.727408][ T4335] kvm [4335]: Failed to find VMA for hva 0x208a1000
[ 2222.175877][ T4360] kvm [4360]: Failed to find VMA for hva 0x20c01000
[ 2222.505296][ T4360] kvm [4360]: Failed to find VMA for hva 0x20c01000
[ 2512.125550][ T4549] debugfs: File 'vgic-its-state@0' in directory '4549-4' already present!
[ 2613.267311][ T4628] irq bypass consumer (token 0000000003e6fcbb) registration fails: -16
[ 2744.094894][ T4714] KVM: debugfs: duplicate directory 4714-5
[ 2926.653031][ T4838] kvm [4838]: Failed to find VMA for hva 0x20c01000
[ 2947.733572][ T4850] kvm [4850]: Failed to find VMA for hva 0x20d8d000
[ 3154.135060][ T4991] kvm [4990]: Unsupported guest access at: eeef0000
[ 3154.135060][ T4991]  { Op0( 2), Op1( 7), CRn(15), CRm(13), Op2( 1), func_write },
[ 3366.922425][ T5133] irq bypass consumer (token 00000000255556b4) registration fails: -16
[ 3399.177693][ T5157] kvm [5157]: Failed to find VMA for hva 0x20c01000
[ 3561.143114][ T5267] kvm [5267]: Failed to find VMA for hva 0x2036f000
[ 3592.046955][ T5288] kvm [5288]: Failed to find VMA for hva 0x20c01000
[ 3719.242444][   T25] audit: type=1400 audit(3718.390:105): avc:  denied  { execute } for  pid=5384 comm="syz.1.582" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 3925.590061][ T5525] print_sys_reg_msg: 344 callbacks suppressed
[ 3925.654619][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001d3]
[ 3925.654619][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.686537][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.686537][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.718353][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.718353][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.785738][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.785738][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.855676][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.855676][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.895184][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.895184][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.917314][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.917314][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3925.947924][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3925.947924][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3926.018378][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3926.018378][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3926.034890][ T5525] kvm [5524]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 3926.034890][ T5525]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 3929.653092][ T5530] kvm [5530]: Failed to find VMA for hva 0x20d3d000
[ 3979.359179][ T5559] KVM: debugfs: duplicate directory 5559-5
[ 4047.983616][ T5604] kvm [5603]: Unsupported guest access at: eeef0000
[ 4047.983616][ T5604]  { Op0( 2), Op1( 7), CRn(15), CRm(13), Op2( 1), func_write },
[ 4088.656870][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001d3]
[ 4088.656870][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4088.699975][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4088.699975][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4088.775950][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4088.775950][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4088.814451][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4088.814451][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4088.864793][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4088.864793][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4088.933208][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4088.933208][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4088.989220][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4088.989220][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4089.056262][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4089.056262][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4089.099138][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4089.099138][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4089.163880][ T5630] kvm [5629]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 4089.163880][ T5630]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 4337.096864][ T5792] kvm [5791]: Unsupported guest access at: eeef0000
[ 4337.096864][ T5792]  { Op0( 2), Op1( 4), CRn(11), CRm(15), Op2( 4), func_write },
[ 4457.289831][ T5865] kvm [5865]: Failed to find VMA for hva 0x21016000
[ 4705.400227][ T6033] kvm [6033]: Failed to find VMA for hva 0x20d8d000
[ 4887.387007][ T6142] kvm [6142]: Failed to find VMA for hva 0x20c01000
[ 5002.504199][   T25] audit: type=1400 audit(5001.640:106): avc:  denied  { map } for  pid=6220 comm="syz.0.834" path="pipe:[2428]" dev="pipefs" ino=2428 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[ 5073.984588][ T6268] kvm [6268]: Failed to find VMA for hva 0x20c01000
[ 5211.269309][ T6367] print_sys_reg_msg: 262 callbacks suppressed
[ 5211.316394][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001d3]
[ 5211.316394][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.354346][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.354346][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.424800][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.424800][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.448265][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.448265][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.503602][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.503602][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.525373][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.525373][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.576671][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.576671][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.606319][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.606319][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.659924][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.659924][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5211.734599][ T6367] kvm [6366]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 5211.734599][ T6367]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 5392.052442][ T6496] kvm [6496]: Failed to find VMA for hva 0x20d8d000
[ 5421.556106][ T6513] kvm [6513]: Failed to find VMA for hva 0x20c01000
[ 5443.272283][ T6532] KVM: debugfs: duplicate directory 6532-9
[ 5488.523052][ T6555] kvm [6555]: Failed to find VMA for hva 0x20d8d000
[ 5719.409373][ T6711] kvm [6711]: Failed to find VMA for hva 0x20e8a000
[ 5740.249769][ T6723] kvm [6723]: Failed to find VMA for hva 0x20d8d000
[ 5963.805991][ T6863] kvm [6863]: Failed to find VMA for hva 0x20d8d000
[ 5996.990099][ T6887] kvm [6887]: Failed to find VMA for hva 0x20d8d000
[ 6141.480208][ T6988] kvm [6988]: Failed to find VMA for hva 0x21016000
[ 6217.021791][ T7044] irq bypass consumer (token 00000000bfd9f227) registration fails: -16
[ 6284.889922][ T7092] kvm [7092]: Failed to find VMA for hva 0x20bff000
[ 6285.086188][ T7092] kvm [7092]: Failed to find VMA for hva 0x20bff000
[ 6829.856956][ T7471] kvm [7471]: Failed to find VMA for hva 0x20c01000
[ 6830.086896][ T7471] kvm [7471]: Failed to find VMA for hva 0x20c01000
[ 6855.603008][ T7368] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6857.347347][ T7368] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6859.005625][ T7368] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6860.563477][ T7368] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6879.905585][ T7368] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6880.322332][ T7368] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6880.505009][ T7368] bond0 (unregistering): Released all slaves
[ 6882.815758][ T7368] hsr_slave_0: left promiscuous mode
[ 6882.933307][ T7368] hsr_slave_1: left promiscuous mode
[ 6883.493353][ T7368] veth1_macvtap: left promiscuous mode
[ 6883.498266][ T7368] veth0_macvtap: left promiscuous mode
[ 6883.515841][ T7368] veth1_vlan: left promiscuous mode
[ 6883.566320][ T7368] veth0_vlan: left promiscuous mode
[ 6918.675607][ T7518] print_sys_reg_msg: 200 callbacks suppressed
[ 6918.713787][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001d3]
[ 6918.713787][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6918.743871][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6918.743871][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6918.777576][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6918.777576][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6918.829906][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6918.829906][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6918.962847][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6918.962847][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6919.016495][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6919.016495][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6919.045384][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6919.045384][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6919.100012][ T7518] kvm [7517]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 6919.100012][ T7518]  { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read },
[ 6957.005810][ T7482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6957.430143][ T7482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6989.824026][ T7482] hsr_slave_0: entered promiscuous mode
[ 6989.912768][ T7482] hsr_slave_1: entered promiscuous mode
[ 6990.016773][ T7482] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 6990.023162][ T7482] Cannot create hsr debugfs directory
[ 7010.880049][ T7482] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 7011.247003][ T7482] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 7011.905894][ T7482] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 7012.186773][ T7482] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 7040.843532][ T7482] 8021q: adding VLAN 0 to HW filter on device bond0
[ 7132.249404][ T7482] veth0_vlan: entered promiscuous mode
[ 7133.139266][ T7482] veth1_vlan: entered promiscuous mode
[ 7136.399425][ T7482] veth0_macvtap: entered promiscuous mode
[ 7136.916440][ T7482] veth1_macvtap: entered promiscuous mode
[ 7140.196011][ T7482] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 7140.233065][ T7482] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 7140.245191][ T7482] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 7140.268529][ T7482] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 7169.746120][ T6292] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7171.008135][ T6292] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7172.016569][ T6292] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7173.059488][ T6292] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7191.133169][ T6292] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 7191.613324][ T6292] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 7191.833542][ T6292] bond0 (unregistering): Released all slaves
[ 7193.710064][ T6292] hsr_slave_0: left promiscuous mode
[ 7193.935668][ T6292] hsr_slave_1: left promiscuous mode
[ 7194.703138][ T6292] veth1_macvtap: left promiscuous mode
[ 7194.706503][ T6292] veth0_macvtap: left promiscuous mode
[ 7194.736214][ T6292] veth1_vlan: left promiscuous mode
[ 7194.757776][ T6292] veth0_vlan: left promiscuous mode
[ 7275.259265][ T7708] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 7275.878141][ T7708] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 7304.569365][ T7708] hsr_slave_0: entered promiscuous mode
[ 7304.666276][ T7708] hsr_slave_1: entered promiscuous mode
[ 7329.913526][ T7708] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 7330.343526][ T7708] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 7330.749867][ T7708] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 7331.206651][ T7708] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 7358.817800][ T7708] 8021q: adding VLAN 0 to HW filter on device bond0
[ 7454.323506][ T7708] veth0_vlan: entered promiscuous mode
[ 7455.163651][ T7708] veth1_vlan: entered promiscuous mode
[ 7457.770079][ T7708] veth0_macvtap: entered promiscuous mode
[ 7458.154447][ T7708] veth1_macvtap: entered promiscuous mode
[ 7460.917561][ T7708] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 7460.945826][ T7708] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 7460.965295][ T7708] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 7460.982813][ T7708] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 7734.285406][ T8113] kvm [8113]: Failed to find VMA for hva 0x21016000
[ 7811.425783][ T8168] kvm [8168]: Failed to find VMA for hva 0x21016000
[ 7841.755125][ T8181] kvm [8181]: Failed to find VMA for hva 0x208a1000
[ 7875.934944][ T8199] kvm [8199]: Failed to find VMA for hva 0x21016000
[ 7924.277610][ T8237] kvm [8237]: Failed to find VMA for hva 0x20c00000
[ 8044.376012][ T8323] kvm [8323]: Failed to find VMA for hva 0x21016000
[ 8377.782274][ T8535] kvm [8535]: Failed to find VMA for hva 0x20d8d000
[ 8636.220317][ T8713] kvm [8713]: Failed to find VMA for hva 0x20c01000
[ 8996.902718][ T8950] kvm [8950]: Failed to find VMA for hva 0x20d8d000
[ 9290.947662][ T9158] KVM: debugfs: duplicate directory 9158-7
[ 9358.053023][ T9197] kvm [9197]: Failed to find VMA for hva 0x20d8d000
[ 9365.533107][ T9203] kvm [9203]: Failed to find VMA for hva 0x20c01000
[ 9821.046720][ T9500] kvm [9500]: Failed to find VMA for hva 0x21016000
[ 9934.993834][ T9568] kvm [9568]: Failed to find VMA for hva 0x20c01000
[ 9959.074855][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001d3]
[ 9959.074855][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.085475][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.085475][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.126698][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.126698][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.186022][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.186022][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.223196][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.223196][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.243654][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.243654][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.263362][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.263362][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.307745][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.307745][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.329391][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.329391][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9959.358011][ T9593] kvm [9592]: Unsupported guest CP15 access at: 00000100 [000001db]
[ 9959.358011][ T9593]  { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read },
[ 9998.462829][ T9623] KVM: debugfs: duplicate directory 9623-5
[10018.690728][ T9642] ------------[ cut here ]------------
[10018.691650][ T9642] WARNING: CPU: 0 PID: 9642 at arch/arm64/kvm/inject_fault.c:71 pend_serror_exception+0x19c/0x5ac
[10018.695126][ T9642] Modules linked in:
[10018.697667][ T9642] CPU: 0 UID: 0 PID: 9642 Comm: syz.0.1766 Not tainted 6.16.0-rc3-syzkaller-g15724a984643 #0 PREEMPT 
[10018.699399][ T9642] Hardware name: linux,dummy-virt (DT)
[10018.700814][ T9642] pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
[10018.701978][ T9642] pc : pend_serror_exception+0x19c/0x5ac
[10018.703101][ T9642] lr : pend_serror_exception+0x19c/0x5ac
[10018.704067][ T9642] sp : ffff8000a0f77930
[10018.704941][ T9642] x29: ffff8000a0f77930 x28: b3f0000018041da8 x27: 0000000000000001
[10018.706802][ T9642] x26: 0000000000000000 x25: 0000000000000001 x24: 00000000000000b3
[10018.708452][ T9642] x23: b3f0000018042028 x22: 00000000000000b3 x21: b3f0000018042c01
[10018.709943][ T9642] x20: 0000000000000007 x19: efff800000000000 x18: 0000000000000000
[10018.711467][ T9642] x17: 0000000000000056 x16: ffff800080011d9c x15: 0000000020000140
[10018.713037][ T9642] x14: ffffffffffffffff x13: 0000000000000028 x12: 000000000000009b
[10018.714636][ T9642] x11: 9bf000001db8b2e4 x10: 0000000000ff0100 x9 : 0000000000000000
[10018.716287][ T9642] x8 : 9bf000001db89d80 x7 : ffff800080b08704 x6 : ffff8000a0f77a88
[10018.718036][ T9642] x5 : ffff8000a0f77a88 x4 : 0000000000000001 x3 : ffff8000801a2e80
[10018.719551][ T9642] x2 : 0000000000000000 x1 : 0000000000000002 x0 : 0000000000000000
[10018.721247][ T9642] Call trace:
[10018.722305][ T9642]  pend_serror_exception+0x19c/0x5ac (P)
[10018.723683][ T9642]  kvm_inject_serror_esr+0x274/0xe40
[10018.724697][ T9642]  __kvm_arm_vcpu_set_events+0x1d4/0x238
[10018.725818][ T9642]  kvm_arch_vcpu_ioctl+0xed8/0x16b0
[10018.726737][ T9642]  kvm_vcpu_ioctl+0x5c4/0xc2c
[10018.727740][ T9642]  __arm64_sys_ioctl+0x18c/0x244
[10018.728633][ T9642]  invoke_syscall+0x90/0x2b4
[10018.729622][ T9642]  el0_svc_common+0x180/0x2f4
[10018.730579][ T9642]  do_el0_svc+0x58/0x74
[10018.731616][ T9642]  el0_svc+0x58/0x160
[10018.732488][ T9642]  el0t_64_sync_handler+0x78/0x108
[10018.733420][ T9642]  el0t_64_sync+0x198/0x19c
[10018.734573][ T9642] irq event stamp: 62
[10018.735345][ T9642] hardirqs last  enabled at (61): [<ffff80008651a00c>] exit_to_kernel_mode+0xc0/0xf0
[10018.736781][ T9642] hardirqs last disabled at (62): [<ffff800086517e08>] el1_dbg+0x24/0x80
[10018.737980][ T9642] softirqs last  enabled at (38): [<ffff8000800c988c>] local_bh_enable+0x10/0x34
[10018.739177][ T9642] softirqs last disabled at (36): [<ffff8000800c9858>] local_bh_disable+0x10/0x34
[10018.740735][ T9642] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[10037.119275][ T9516] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[10038.006106][ T9516] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[10038.597360][ T9516] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[10039.326545][ T9516] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[10048.486921][ T9516] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[10048.644237][ T9516] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface

VM DIAGNOSIS:
12:39:42  Registers:
info registers vcpu 0

CPU#0
 PC=ffff800080452fc8 X00=0000000000000001 X01=9bf000001db8a8b0
X02=ffff8000804580e0 X03=0000000000000000 X04=ffff8000a0f76f80
X05=0000000000000020 X06=0000000000000000 X07=ffff80008047dbdc
X08=ffff800087da3788 X09=ffff8000889fad80 X10=000000000000002c
X11=0000000000000144 X12=000000000000000c X13=000000000000002d
X14=00000000000000c8 X15=0000000000008004 X16=ffff800080011d9c
X17=0000000000000056 X18=0000000000000000 X19=9bf000001db89d80
X20=9bf000001db8a8d8 X21=9bf000001db8a8d8 X22=334edf079d9fcc5f
X23=ffff800088141e68 X24=0000000000000005 X25=ffff8000876c0000
X26=00000000000003cd X27=9bf000001db8a8b0 X28=ffff8000889d6110
X29=ffff8000a0f77090 X30=ffff800080452d38  SP=ffff8000a0f76fc0
PSTATE=604023c9 -ZC- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000
P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000
FFR=0000
Z00=0600000000000000:0600000000000000 Z01=0000000600000000:0000000000000000
Z02=0000000000000006:0000000000000000 Z03=00d000a800000000:0000000000000000
Z04=0000000000000000:0000000000000002 Z05=0000000000000006:0000000000000002
Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0
Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000
Z16=0000fffff81d6390:0000fffff81d6390 Z17=ffffff80ffffffd0:0000fffff81d6360
Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000