last executing test programs:

17.722385301s ago: executing program 0 (id=308):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$PTP_EXTTS_REQUEST2(r0, 0x40103d0b, &(0x7f0000000380)={0x0, 0x9})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f47"])
r1 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000000813800"]) (async)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000000813800"])
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000001c0)={[0x5, 0x6, 0x0, 0x0, 0x10003, 0x0, 0x400200cc4, 0xffe, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6a, 0x8d], 0xffff1000, 0x2011c0}) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000001c0)={[0x5, 0x6, 0x0, 0x0, 0x10003, 0x0, 0x400200cc4, 0xffe, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6a, 0x8d], 0xffff1000, 0x2011c0})
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f00000019c0)='./binderfs2\x00', 0x1ff)
mount$binderfs(0x0, &(0x7f0000000000)='./binderfs\x00', &(0x7f0000001e00), 0x0, &(0x7f0000000100)={[{@stats}, {@stats}, {@max={'max', 0x3d, 0x4040000000000}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x33, 0x35, 0x30, 0x65, 0x30, 0x62, 0x30], 0x2d, [0x36, 0x0, 0x62, 0x39], 0x2d, [0x0, 0x33, 0x66, 0x37], 0x2d, [0x2c56b3d63ff662cb, 0x30, 0x32, 0x30], 0x2d, [0x31, 0x37, 0x38, 0x63, 0x32, 0x65, 0x34, 0x30]}}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@permit_directio}]}) (async)
mount$binderfs(0x0, &(0x7f0000000000)='./binderfs\x00', &(0x7f0000001e00), 0x0, &(0x7f0000000100)={[{@stats}, {@stats}, {@max={'max', 0x3d, 0x4040000000000}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x33, 0x35, 0x30, 0x65, 0x30, 0x62, 0x30], 0x2d, [0x36, 0x0, 0x62, 0x39], 0x2d, [0x0, 0x33, 0x66, 0x37], 0x2d, [0x2c56b3d63ff662cb, 0x30, 0x32, 0x30], 0x2d, [0x31, 0x37, 0x38, 0x63, 0x32, 0x65, 0x34, 0x30]}}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@permit_directio}]})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000002500)='./binderfs2/binder0\x00', 0x0, 0x0)

17.365809407s ago: executing program 0 (id=315):
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000240)=ANY=[])

17.310127508s ago: executing program 0 (id=318):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000600), 0xc2811, 0x0)
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r0, 0x80083313, &(0x7f0000000140)) (async)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='max']) (async)
mount$binderfs(&(0x7f0000000000), &(0x7f0000000080)='./binderfs\x00', &(0x7f0000000100), 0x90, &(0x7f0000000140)={[{@max={'max', 0x3d, 0xbb0}}, {@max={'max', 0x3d, 0x1}}, {@stats}, {@max={'max', 0x3d, 0x9}}, {@stats}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@obj_user={'obj_user', 0x3d, 'binder\x00'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]})

17.18426025s ago: executing program 0 (id=321):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, 0x0)
getpid()
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000380)={0x2, 0x34000, 0x1})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000000)={0x10201, 0x0, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000040)={0x0, 0x12000, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
prctl$PR_MCE_KILL(0x35, 0x0, 0x8)
prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x2)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats=globCl,stats=global,max=00000000000000000000003,max=0000000000000000000001:,silent,rootcontext='])

16.304191704s ago: executing program 0 (id=331):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x100000001)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f00000007c0)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00')
ioctl$ASHMEM_SET_NAME(r0, 0x40087707, &(0x7f0000000300)='\x00\x00\x00\v\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')

16.303717314s ago: executing program 0 (id=332):
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000080)={0x4, 0x0, [{0x8, 0x4, 0x0, 0x0, @msi={0xb2f321, 0xc, 0x7ff}}, {0x5, 0x1, 0x0, 0x0, @msi={0x80000000, 0x8, 0x5, 0x7}}, {0x9, 0x1, 0x0, 0x0, @sint={0x9, 0xb3}}, {0x6, 0x4, 0x1, 0x0, @sint={0x0, 0x1}}]})

1.291082659s ago: executing program 32 (id=332):
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000080)={0x4, 0x0, [{0x8, 0x4, 0x0, 0x0, @msi={0xb2f321, 0xc, 0x7ff}}, {0x5, 0x1, 0x0, 0x0, @msi={0x80000000, 0x8, 0x5, 0x7}}, {0x9, 0x1, 0x0, 0x0, @sint={0x9, 0xb3}}, {0x6, 0x4, 0x1, 0x0, @sint={0x0, 0x1}}]})

1.167302461s ago: executing program 3 (id=529):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'macsec0\x00', 0x400})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0xcd, 0x0, 0xfffffffffffffffe}]})
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000001440)={'\x00', 0x2})
ioctl$TUNSETOFFLOAD(r4, 0x400454c9, 0x9)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f00000000c0), 0x12)
ioctl$KVM_CAP_MSR_PLATFORM_INFO(r6, 0x4068aea3, &(0x7f0000000240))
ioctl$TUNSETLINK(r4, 0x400454cd, 0x306)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000020c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r8 = openat$cgroup_ro(r7, &(0x7f0000002100)='freezer.parent_freezing\x00', 0x0, 0x0)
read$FUSE(r8, &(0x7f0000007940)={0x2020}, 0x2020)
write$FUSE_POLL(0xffffffffffffffff, 0x0, 0x0)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f00000001c0)={[{@max={'max', 0x3d, 0x9}}, {@max={'max', 0x3d, 0x4ac6}}, {@stats}, {@max={'max', 0x3d, 0x8}}], [{@seclabel}]})

1.005704194s ago: executing program 2 (id=532):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x24082, 0x0) (async)
r2 = mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x1)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0xb0, 0x0, &(0x7f0000000340)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x18, 0xffffffffffffffff, &(0x7f0000000040)={0x30, 0x30, 0x30}}}, @release={0x40046306, 0x1}, @request_death={0x400c630e, 0x1}, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x60, 0x18, &(0x7f00000002c0)={@fda={0x66646185, 0x9, 0x2, 0x31}, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000140)=""/57, 0x39, 0x0, 0xe}}, &(0x7f0000000180)={0x0, 0x20, 0x38}}}, @register_looper, @free_buffer={0x40086303, r2}], 0xc9, 0x0, &(0x7f0000000400)="706a4bb04423ba5166a6060e5ed79d82bc4658ea6890fc5e7cc8573c31d05cb88dd63f45ff5afc99786d4fa65ac499c84bb15ac56e44eb3cf8a24e8894dc99f9422da31aaeece4cc6f54378f895fe23af974f2a95a427b5800c721ece2f9fcdd2c359f149c70b4395910fe25a89b9b4725803ac67ff3ab724cf9c08bd5b6e6276abc7bfbce5e2cec8f87e55255e802c41d2588eba2e56027ee2e5985bf9849c91d78d70563ef7b6b701320e9e74f2fd637735e83140ab4197dddf1954ed4b5dbf95d3b35e242bf2340"}) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) (async)
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f00000002c0)={0x0, 0x7, [@remote, @link_local, @broadcast, @remote, @link_local, @random="db6576d74337", @random="bb8021e9da14"]}) (async)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000480)=[@increfs], 0x0, 0x0, 0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, 0xffffffffffffffff, 0x0) (async)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000ec0)={'syz0\x00', {0x0, 0x0, 0x0, 0x9}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x1, 0x7, 0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x8, 0xb16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x1000, 0x0, 0xf, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0xaf6f, 0x0, 0xfffffffa, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0xe], [0x7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffc, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xe, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4], [0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc045, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x80, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2000, 0xffffffff, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x4, 0x0, 0x0, 0xfffffffd, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x5]}, 0x45c) (async)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000040)={0xc, 0x0, &(0x7f0000000000)=[@exit_looper, @release], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22000, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r5, 0xc008ae05, &(0x7f0000000080)) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f00000001c0)={@fda={0x66646185, 0xfffffffffffffffd, 0x2, 0x36}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @flat=@binder={0x73622a85, 0x1100, 0x1}}, &(0x7f0000000280)={0x0, 0x20, 0x48}}, 0x10}], 0x0, 0x0, 0x0})

871.387346ms ago: executing program 1 (id=533):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000340)={0x1c, 0x0, &(0x7f0000000080)=[@acquire={0x40046305, 0x3}, @acquire_done={0x40106309, 0x3}], 0x50, 0x0, &(0x7f00000002c0)="8a3e4b14485bef8901593175bfe04ac0baae7c5651ec6005649a06817a9203cff0f36f848684f4120d8c0faf025780d0819e642ae6cc84fec79002d8167fe3494aac7fd28e23c066793738f2fe6defcb"})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000340)={0x1c, 0x0, &(0x7f0000000080)=[@acquire={0x40046305, 0x3}, @acquire_done={0x40106309, 0x3}], 0x50, 0x0, &(0x7f00000002c0)="8a3e4b14485bef8901593175bfe04ac0baae7c5651ec6005649a06817a9203cff0f36f848684f4120d8c0faf025780d0819e642ae6cc84fec79002d8167fe3494aac7fd28e23c066793738f2fe6defcb"}) (async)

869.783566ms ago: executing program 1 (id=534):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000007a80), 0x101000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_MSR_PLATFORM_INFO(r2, 0x4068aea3, &(0x7f0000000000))
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
r3 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000000005010040"])
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000800)='/sys/power/image_size', 0x141a82, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r8, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000100000000000000000000e80000000000000000ff"])
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008c04"])
write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000000), 0xa)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x5b, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70b7a440b418709844294623"})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000340)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

866.568236ms ago: executing program 2 (id=535):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0xc, 0x0, &(0x7f00000002c0)=[@free_buffer={0x40086315}], 0x0, 0x0, 0x0})

835.192957ms ago: executing program 2 (id=536):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x80040, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'\x00', 0x1})
ioctl$TUNSETTXFILTER(r1, 0x400454d1, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSMAXCID(r2, 0x4004743c, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
read(r3, &(0x7f0000000480)=""/4096, 0x1000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x30, r4, 0x0)
write$ppp(r2, &(0x7f00000001c0)="106ee1309e56c3d3c654bc5ca83fc78700243272ad62142b8c7c8543f54e3448daccea5c3f5198a6df1a4d898034c2a0c763f7f8afc01d54744179cf6744e758462e638579dd5acfbc2e9edc14db51ec361bb7778254890ebd846054826752da421d7e14bf6048280f7682457a7ad0f6c3f85d8a43d9e7add790ab8481f92cfd311728b77acc807d0afc06b7d7155632fada99fdd16b321b2678d97a454a7af24b2e1da85a97822255aabff775c7e0c615d6f84f28bca12bea67984fef0a59da349b7ebff4c7b411105f558c378e", 0xce)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000000c0)={[0x6, 0xfffffffffffffffd, 0x2bf9, 0x1, 0x2, 0x0, 0x400, 0x5, 0x0, 0x6, 0x2, 0x0, 0x2, 0x6, 0x0, 0x4], 0x2000, 0x2c0242})
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000180)=ANY=[@ANYRESHEX=r4])
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
r10 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FICLONERANGE(r10, 0x4020940d, &(0x7f0000000040)={{r10}, 0xb, 0xfffffffffffffffc, 0xffffffffffffff63})
ioctl$KVM_SET_MSRS(r9, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x28b, 0x0, 0x1}]})
ioctl$FS_IOC_RESVSP(r6, 0x4030582a, &(0x7f0000000300)={0x113e, 0x0, 0x2000000, 0x10000})
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r5, 0xc018620c, &(0x7f0000000000)={0x1})

769.585518ms ago: executing program 3 (id=537):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x100000001)
mmap(&(0x7f0000701000/0x4000)=nil, 0x4000, 0x200000a, 0x12, r3, 0x2546c000)
ioctl$ASHMEM_SET_NAME(r3, 0x40087708, &(0x7f0000000fc0)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7xqg\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf25\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\xd4W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3\xc2\t\x1f\x9b\x1a\xff\xbb\x88\xce7\x15\x90\xf2\xd0la\x9d\x82\xb4\xad\\\x8d\a\x99\x17\x85\x9a\x05\xb1\x00'/712)
ioctl$ASHMEM_PURGE_ALL_CACHES(r3, 0x770a, 0x0)
ioctl$ASHMEM_SET_NAME(r3, 0x40087708, &(0x7f0000000300)='\x00\x00\x00\v\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0xfffffffffffffffe, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0xd, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0xb, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x9, 0x96, 0xf0, 0xffffffff00000000, 0x4, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0xffffffff, 0x8, 0x6, 0x6, 0x3, 0x4, 0x20000000006, 0x81, 0x9, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x9, 0x4, 0xea, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x47bc, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0xb, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x7, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x8000981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x9, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x1]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2080, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x6, 0x0, 0x0, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x7, 0x0, 0x8], 0x91000})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x100a, 0x1})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x1})

623.47177ms ago: executing program 3 (id=538):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x28000, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe)
r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
mmap$binder(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x8000)
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000000)='\x00')
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r6, 0x300000b, 0x11, r4, 0x0)
ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f00000000c0)={0x4, 0x0, [{0x6, 0x4, 0x8000, 0xc7da, 0x9}, {0x40000000, 0x8, 0x4772, 0x8, 0x4}, {0x0, 0xa, 0x3ff, 0xc0000000, 0x5}, {0x80000000, 0x6, 0x3, 0x9, 0x3}]})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000000)=@arm64={0x4, 0x4, 0x6, '\x00', 0x1})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f0000000000)=0x1)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r9, 0x4138ae84, &(0x7f0000000100)={{0x10000, 0x100000, 0x8, 0x1, 0x0, 0x0, 0x0, 0x20}, {0x0, 0x2000, 0x3, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x5}, {0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3, 0x0, 0x4}, {0x10000, 0xffff1000, 0xf, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0xffff1000, 0xf, 0x2, 0xfe, 0x10, 0x6, 0x0, 0x1, 0x8, 0x4}, {0x0, 0x8000000, 0x0, 0x0, 0x0, 0xfd, 0xfc, 0x0, 0x0, 0x5}, {0xe000, 0x5000, 0xa, 0x0, 0x80, 0xf9, 0x0, 0x7, 0x3a, 0x2}, {0x0, 0x3000, 0x0, 0x2, 0x0, 0x54, 0x7, 0xfd, 0x0, 0x0, 0x0, 0x5}, {0x2000, 0x400}, {0x1000}, 0xddf8ffdb, 0x0, 0x1, 0x100, 0x8, 0x8000, 0x2000, [0xdd41, 0x0, 0x2]})
ioctl$KVM_TRANSLATE(r9, 0xc018ae85, &(0x7f0000001280)={0x0, 0xdddd0000, 0x2, 0x5, 0x50})
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

555.071451ms ago: executing program 4 (id=526):
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x611240, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x2) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x40000022, 0x0, 0xe1}]})
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0) (async)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x100)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r6, 0x54a3) (async)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r7, 0x0) (async)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000300)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000180)={@ptr={0x70742a85, 0x0, &(0x7f0000000bc0)=""/4096, 0x1000, 0x1, 0x1a}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x15}, @fda={0x66646185, 0x8, 0x0, 0x1b}}, &(0x7f00000004c0)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000140)={0x9, 0x4, 0x4, 0xc28, 0x4, "6796fcea8fb85092a9f4cdcfb8b77bf747dd87"}) (async)
ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000040)={0x7, 0x80, 0x9, 0x110, 0x1b, "96010000000000000000000000000000000008"}) (async)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801}) (async)
write$cgroup_devices(r8, &(0x7f00000002c0)=ANY=[@ANYBLOB="000000003584"], 0xffdd)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
write$FUSE_LSEEK(r9, 0x0, 0x0) (async)
read$rfkill(r9, &(0x7f0000000180), 0x8)
ioctl$BINDER_GET_EXTENDED_ERROR(r1, 0xc0046209, &(0x7f0000001340)) (async)
ioctl$int_out(r1, 0xfca2, &(0x7f0000000000))

451.295802ms ago: executing program 1 (id=539):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000940), 0x800, 0x0)
ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000000980)={0x5, 0x48, "c1f95bd5524f573c8d4e9d092aeff74a9069ebf850adf889be7b51c75802d49fb4509b0809c2fdfb3adf7f046c24a9ee4a4fa11d70b2add6b3999212415c17b3867ca60f63fa3957"}) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x28, 0x0, 0x0, 0x9}, {0x6, 0x0, 0x0, 0xffffffff}]})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000540)={0x4c, 0x0, &(0x7f0000000400)=[@reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, &(0x7f0000000500)}) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0}) (async)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001740)=""/192, 0x0})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f00000000c0)=0x1) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42a02, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r5, 0x4068aea3, &(0x7f0000000700)={0xcc, 0x0, 0x1}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1) (async)
write$UHID_INPUT(r2, &(0x7f0000000940)={0x8, {"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", 0xdd52d6c}}, 0x1006) (async)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$FICLONERANGE(r8, 0x4020940d, &(0x7f0000000080)={{r9}, 0x2, 0x1, 0x4})
write$cgroup_int(r2, &(0x7f0000000100)=0x3e7c, 0x12) (async)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0) (async)
r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r12, 0x4008ae90, &(0x7f0000000300)={0x6666969})

450.433052ms ago: executing program 4 (id=540):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000001, 0x10012, r2, 0x0) (async)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000000200)={0xe4, 0x4}) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x581, 0x0, 0x6}]})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0xffffffff, 0x7f, 0x6, 0x7ff, 0x8, 0x9, 0x60e, 0x2, 0x80, 0xfffffffffffffffc, 0x8, 0x5, 0x4, 0x40, 0x80000000, 0x6], 0x29000, 0x400})
r6 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x143202, 0x0)
ioctl$ASHMEM_SET_SIZE(r6, 0x40087703, 0xffffeffffffff7fb) (async)
mmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x13, r6, 0x4758f000)

417.089523ms ago: executing program 3 (id=541):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"])
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x82000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x200)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r3, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1})
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0)
ioctl$BLKSECTGET(r4, 0x1267, &(0x7f0000000140))
ioctl$KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000040))
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc018620c, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000004c0), 0x0, 0x0, 0x0})
write$cgroup_pid(r7, &(0x7f00000001c0), 0x12)
r9 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
openat$cgroup_freezer_state(r6, &(0x7f0000000200), 0x2, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r9, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$BLKRRPART(r0, 0x125f, 0x0)
r10 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x2)
ioctl$TIOCGISO7816(r10, 0x80285442, &(0x7f0000000000))
r11 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
close(r10)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
write$cgroup_devices(r11, &(0x7f00000002c0)=ANY=[@ANYBLOB="000000003584"], 0xffdd)
mount$binderfs(0x0, 0x0, 0x0, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats=globCl,stats=global,max=00000000000000000000003,max=0000000000000000000001:,silent,rootcontext'])
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)={0xf, 0x0, [{0x4b564d02, 0x0, 0x7f}]})
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000080), 0x600001, 0x0)

411.260833ms ago: executing program 2 (id=542):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r3, 0x3, 0x11, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x2, 0x3, 0x7f75a000, 0x2000, &(0x7f0000001000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prctl$PR_SET_MM(0x41555856, 0x20000000, &(0x7f0000ffd000/0x2000)=nil)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r4, 0x0)
r5 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r5, 0x0)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})

323.302025ms ago: executing program 1 (id=543):
r0 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYRESOCT=r2, @ANYRES8=r2])
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4602, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f0000000100)=ANY=[@ANYBLOB="030000000000dfff84000040"])
ioctl$KVM_CAP_HYPERV_SYNIC(r6, 0x4068aea3, &(0x7f0000000180))
r7 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r7, 0x0, 0x0)
ioctl$BLKRRPART(r3, 0x125f, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r8, 0x0)
mount$binderfs(&(0x7f0000000000), &(0x7f00000000c0)='./binderfs\x00', 0x0, 0x1002000, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xa100, 0x0)
ioctl$TCSETS2(r9, 0x402c542b, &(0x7f0000000040)={0xe810, 0x9609, 0x6, 0x7fff, 0x6, "059ec4432811835f13ca869de23aef05132058", 0xfffffff7, 0x2})

247.375426ms ago: executing program 4 (id=544):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0) (async)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f00000001c0)={@fda={0x66646185, 0xfffffffffffffffd, 0x2, 0x36}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @flat=@binder={0x73622a85, 0x1100, 0x1}}, &(0x7f0000000280)={0x0, 0x20, 0x48}}, 0x10}], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f00000001c0)={@fda={0x66646185, 0xfffffffffffffffd, 0x2, 0x36}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @flat=@binder={0x73622a85, 0x1100, 0x1}}, &(0x7f0000000280)={0x0, 0x20, 0x48}}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000400)={0xc, 0x0, &(0x7f0000000000)=[@register_looper, @acquire_done={0x40106309, 0x2}], 0xfffffffffffffff4, 0x0, 0x0})

246.764626ms ago: executing program 2 (id=545):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {0x0, 0x0, 0xb}, 0x0, [0x0, 0x3, 0x403, 0x100000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x10000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa9a4], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xfffffff8, 0x0, 0x0, 0x79, 0xfffffffd, 0x0, 0x0, 0x0, 0x2, 0x47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x20], [0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0xffffffff, 0x89, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xfffffffe, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x351e, 0x0, 0xfffffffd, 0x0, 0x0, 0x6492, 0x8], [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x200000, 0x0, 0x0, 0x10, 0x0, 0x0, 0x804, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfd32, 0x6, 0x0, 0x0, 0x0, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0x100000]}, 0x45c)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x9)
ioctl$UI_DEV_CREATE(r0, 0x5501)
read(r0, &(0x7f0000000600)=""/193, 0xc1)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000040)='cpuset.mem_hardwall\x00', 0x2, 0x0)
read$FUSE(r2, &(0x7f00000020c0)={0x2020}, 0x3a3)
write$uinput_user_dev(r0, &(0x7f0000000700)={'syz0\x00', {0x3a06, 0xfffe, 0x300, 0x8}, 0x8, [0x3, 0x9, 0xffffffad, 0x100, 0x8001, 0x0, 0x2, 0x4, 0x3, 0x8, 0x4, 0x8, 0x3, 0xffffff81, 0xfff, 0x2, 0xe, 0x4, 0x48c, 0x3, 0x2, 0x9, 0x4, 0x8, 0x64c4, 0x9, 0x7a8, 0x8001, 0x80000001, 0x2, 0x7, 0x8f, 0x6, 0x5, 0xffffffff, 0x7, 0x3, 0x2, 0xd, 0x5, 0x1, 0x80000000, 0x5, 0xfffffff7, 0x8, 0x0, 0x3, 0x0, 0x4, 0xe6b1, 0x5, 0x5, 0x3, 0x9, 0x8, 0xa3, 0xac, 0x0, 0xdd, 0x1, 0x8000, 0x6, 0x9, 0x1ff], [0xfff, 0x4, 0xff, 0x8, 0x0, 0x5, 0x6, 0x7, 0x7, 0x0, 0x7, 0xc646, 0x5, 0x8, 0x10, 0xc, 0x3, 0x7, 0x2, 0x8, 0x9, 0x8000, 0xa, 0x3ff, 0x2214d677, 0x2e83, 0x3, 0x6, 0x9, 0x0, 0x7, 0x0, 0x10001, 0x5, 0x8, 0x6, 0x7fff, 0x1, 0x2, 0xf, 0x9, 0x2376, 0x3, 0x34ec, 0x100, 0x30, 0x1, 0x9, 0x81, 0x0, 0x1ff, 0x6, 0x7, 0x1, 0x10001, 0x3, 0xed7b, 0x8001, 0xd153, 0xffffffff, 0x1, 0x10000, 0x2, 0x10000], [0x6, 0x3bce6e9e, 0xb5b0, 0x56, 0xe578, 0x5, 0xb, 0xe, 0x401, 0x8, 0xffff, 0x8, 0xa58, 0xfffffff9, 0xa41, 0x5, 0x4, 0x8, 0x9, 0x4, 0x0, 0x3c, 0x7fffffff, 0x5, 0x9, 0x398, 0x40, 0xaf, 0x7, 0x0, 0x7, 0x7fff, 0x80000001, 0xec, 0x0, 0x400, 0x749, 0x3, 0x6, 0x5, 0x6, 0x3, 0x9, 0x5, 0x8d, 0x1, 0xffff, 0xa5, 0x1, 0xde, 0x7f, 0x9, 0x8, 0x6, 0x6, 0x9, 0x6, 0xffff, 0x40, 0x3, 0x3, 0x7, 0x1, 0x1525defe], [0x3, 0x7, 0xa84, 0x6, 0x8, 0x26, 0x3, 0x40000000, 0x1, 0x3, 0x689d, 0xfff, 0x5, 0x40, 0x4, 0x4426, 0x800, 0x0, 0x79, 0x9, 0x3ff, 0x80, 0xc000000, 0x6, 0xfffffff4, 0x4, 0x6, 0x4, 0x1, 0x2d, 0x3, 0x8, 0xa, 0xffff0000, 0xec8, 0xfffffffa, 0xc, 0x2, 0xf2, 0x1000, 0x59, 0x0, 0x9a, 0x6, 0x6, 0x9, 0x8, 0x5, 0xc01, 0x9, 0x2, 0x400, 0x6, 0x2d, 0xf35, 0x25, 0x4, 0x5, 0x9, 0x3, 0x803, 0x40, 0x0, 0x1]}, 0x45c)
mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', &(0x7f0000000140), 0x4a81, &(0x7f0000000040)={[{}]})

233.359546ms ago: executing program 3 (id=546):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0)
write$tcp_mem(r0, &(0x7f0000000580)={0x6, 0x20, 0x5, 0x20, 0x6}, 0x48) (async, rerun: 32)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0) (rerun: 32)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
write$UHID_SET_REPORT_REPLY(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="0e00974df4dee1993c9e40c9213ebe00009082635fc18ffad0"], 0xc) (async, rerun: 64)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x400c6314, {0x1, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

149.484787ms ago: executing program 1 (id=547):
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f00000019c0)='./binderfs2\x00', 0x1ff) (async)
mount$binderfs(0x0, &(0x7f0000001dc0)='./binderfs2\x00', &(0x7f0000001e00), 0x0, &(0x7f0000001e40)={[{@stats}]}) (async)
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000002500)='./binderfs2/binder0\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) (async, rerun: 32)
mmap(&(0x7f0000196000/0x1000)=nil, 0x1000, 0x0, 0x840000000000a132, 0xffffffffffffffff, 0x0) (rerun: 32)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000380)={0x1, 0x0, 0x1}) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async, rerun: 32)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) (async)
ioctl$TUNATTACHFILTER(r5, 0x401054d5, &(0x7f0000000480)={0x4, &(0x7f00000004c0)=[{0x2d, 0x0, 0x2}, {}, {0x0, 0x4}, {0x6}]}) (async)
r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) (async)
ioctl$KVM_CREATE_PIT2(r8, 0x4040ae77, &(0x7f0000000000)={0x10000})
close(r8) (async, rerun: 32)
r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (rerun: 32)
ioctl$KVM_SET_NESTED_STATE(r9, 0x4080aebf, &(0x7f0000004840)={{0x0, 0x0, 0x6d, {0x5000, 0x5000, 0x2}}, "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", "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"}) (async)
r10 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r10, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x300000c, 0x13, r10, 0x293f000)

149.082127ms ago: executing program 2 (id=548):
openat$rnullb(0xffffffffffffff9c, 0x0, 0x164e80, 0x0)
r0 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x2400, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r5, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x7cd})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000000021000040"])
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfe, 0x0, 0xff, 0x8, 0x10, 0x0, 0x5, 0x0, 0x0, 0x4, 0x0, 0x80, '\x00', 0x2, 0x5})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80400, 0x0)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f0000000140), 0x4840, &(0x7f0000000080)=ANY=[@ANYBLOB='max=0000000000012,\x00'])

132.100348ms ago: executing program 3 (id=549):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000001380), 0x101100, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TCSETSF(r3, 0x5457, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x7, "7a58bec239ed2d5a99bbc4bff0ebd318665a8a"})
ioctl$TCSETSW2(r3, 0x402c542c, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "7a47999e2f94c0662987295f821486acfc22c8"})
r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000640)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
syz_clone3(&(0x7f0000002a80)={0x0, 0x0, 0x0, 0x0, {0x24}, 0x0, 0x0, 0x0, &(0x7f0000002a40)=[r5, r5], 0x2}, 0x58)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f00000009c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000380), 0x12)
r8 = getpid()
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
read(r9, &(0x7f0000000080)=""/1, 0x1)
write$cgroup_pid(r9, &(0x7f00000000c0)=r8, 0x12)
r10 = syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r12 = openat$cgroup_procs(r11, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r12, &(0x7f0000000080)=r10, 0x12)
syz_clone3(&(0x7f0000000200)={0x40000000, &(0x7f0000000040), &(0x7f0000000100), &(0x7f0000000140), {0x37}, &(0x7f0000000180)=""/62, 0x3e, &(0x7f00000002c0)=""/218, &(0x7f00000001c0)=[r5, 0x0, r8, 0xffffffffffffffff, r10], 0x5, {r2}}, 0x58)
syz_clone3(&(0x7f00000013c0)={0x240040480, 0x0, 0x0, 0x0, {0x25}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)
mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0)

87.304128ms ago: executing program 4 (id=550):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000080)='cpuset.mem_exclusive\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000740)=0x10, 0x12)
close_range(r0, r0, 0x2)
mmap(&(0x7f0000215000/0x1000)=nil, 0x1000, 0x0, 0x6011, r1, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r4, 0x400c330d, 0x0)
ioctl$BTRFS_IOC_BALANCE_V2(r4, 0xc4009420, 0x0)
prctl$PR_SET_VMA(0x42, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305829, &(0x7f0000000240)={0x1100, 0x2, 0x80000008, 0x10003})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0x8080000, 0x3000, 0x1})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wake_lock', 0x202, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000040)=ANY=[], 0x9)
mmap$binder(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x1)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000580)={@ptr={0x70742a85, 0x0, &(0x7f00000001c0)=""/75, 0x4b, 0x0, 0x32}, @fda={0x66646185, 0x7, 0x0, 0x16}, @fda={0x66646185, 0x5, 0x0, 0x34}}, &(0x7f00000004c0)={0x0, 0x28, 0x48}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0xa})

30.696059ms ago: executing program 4 (id=551):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002d00), 0x2000)
ioctl$INCFS_IOC_PERMIT_FILL(0xffffffffffffffff, 0x40046721, &(0x7f0000000040)={r1})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x17dc02, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x800000000000001, 0x6, 0x100000, 0x7fffffffffffffff, 0x2004ca, 0x8000001, 0xfffffffffffffffe, 0x4000006, 0x10003, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0xa0443, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x1, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x80000000, 0x1, 0x4, 0x2, 0x3], 0xeeee8000}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x84}, {0x6}]}) (async)
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x2) (async)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r8 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_X86_SET_MCE(r7, 0x4040ae9e, &(0x7f0000000100)={0x4800000000000000, 0x8000000, 0x5, 0x9, 0x1c}) (async)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000140)={0x0, 0x1, 0x5000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0xb2, 0xfffe, 0x0, 0x4002004c4, 0x1000, 0xf512, 0x0, 0x0, 0xc, 0x3, 0x6, 0xfffffffffffffffe, 0x8d], 0xeeee8000, 0x2011c4}) (async)
ioctl$KVM_RUN(r10, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f00000001c0)=0x1)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/warn_count', 0x701880, 0x13e)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

0s ago: executing program 1 (id=552):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
write$cgroup_int(r0, &(0x7f0000000200)=0x8000, 0x12)
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000280), 0x8800, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x482200, 0x0)
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', 0x0, 0x4800, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
mount$binderfs(&(0x7f0000000000), &(0x7f00000000c0)='./binderfs\x00', 0x0, 0x1002000, 0x0)
read(r1, &(0x7f00000004c0)=""/92, 0x1001)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.10.15' (ED25519) to the list of known hosts.
[   21.690845][   T36] audit: type=1400 audit(1750400576.220:64): avc:  denied  { mounton } for  pid=281 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   21.692298][  T281] cgroup: Unknown subsys name 'net'
[   21.713600][   T36] audit: type=1400 audit(1750400576.220:65): avc:  denied  { mount } for  pid=281 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   21.740989][   T36] audit: type=1400 audit(1750400576.250:66): avc:  denied  { unmount } for  pid=281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   21.741150][  T281] cgroup: Unknown subsys name 'devices'
[   21.907129][  T281] cgroup: Unknown subsys name 'hugetlb'
[   21.912762][  T281] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   22.056174][   T36] audit: type=1400 audit(1750400576.590:67): avc:  denied  { setattr } for  pid=281 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   22.079388][   T36] audit: type=1400 audit(1750400576.590:68): avc:  denied  { mounton } for  pid=281 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   22.092343][  T283] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   22.104395][   T36] audit: type=1400 audit(1750400576.590:69): avc:  denied  { mount } for  pid=281 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   22.134347][  T281] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   22.136077][   T36] audit: type=1400 audit(1750400576.640:70): avc:  denied  { relabelto } for  pid=283 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.170014][   T36] audit: type=1400 audit(1750400576.640:71): avc:  denied  { write } for  pid=283 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.195720][   T36] audit: type=1400 audit(1750400576.660:72): avc:  denied  { read } for  pid=281 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.221236][   T36] audit: type=1400 audit(1750400576.660:73): avc:  denied  { open } for  pid=281 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   23.034419][  T288] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.041555][  T288] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.048785][  T288] bridge_slave_0: entered allmulticast mode
[   23.055160][  T288] bridge_slave_0: entered promiscuous mode
[   23.067719][  T288] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.074904][  T288] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.082016][  T288] bridge_slave_1: entered allmulticast mode
[   23.088445][  T288] bridge_slave_1: entered promiscuous mode
[   23.118604][  T289] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.125679][  T289] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.132760][  T289] bridge_slave_0: entered allmulticast mode
[   23.139163][  T289] bridge_slave_0: entered promiscuous mode
[   23.151163][  T289] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.158305][  T289] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.165415][  T289] bridge_slave_1: entered allmulticast mode
[   23.171629][  T289] bridge_slave_1: entered promiscuous mode
[   23.177742][  T291] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.184825][  T291] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.191940][  T291] bridge_slave_0: entered allmulticast mode
[   23.198316][  T291] bridge_slave_0: entered promiscuous mode
[   23.213201][  T291] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.220303][  T291] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.227453][  T291] bridge_slave_1: entered allmulticast mode
[   23.233776][  T291] bridge_slave_1: entered promiscuous mode
[   23.272682][  T290] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.279852][  T290] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.287081][  T290] bridge_slave_0: entered allmulticast mode
[   23.293321][  T290] bridge_slave_0: entered promiscuous mode
[   23.312748][  T290] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.319917][  T290] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.327049][  T290] bridge_slave_1: entered allmulticast mode
[   23.333281][  T290] bridge_slave_1: entered promiscuous mode
[   23.466162][  T288] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.473228][  T288] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.480546][  T288] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.487676][  T288] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.501255][  T289] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.508330][  T289] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.515691][  T289] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.522725][  T289] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.546017][  T290] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.553164][  T290] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.560460][  T290] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.567504][  T290] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.581251][  T291] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.588325][  T291] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.595636][  T291] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.602743][  T291] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.644978][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.652411][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.659808][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.667442][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.674869][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.682201][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.689694][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.696931][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.713673][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.720737][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.729743][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.736818][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.757831][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.764908][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.772787][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.779845][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.788012][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.795083][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.810934][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.818015][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.835334][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.842416][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.850030][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.857118][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.882020][  T288] veth0_vlan: entered promiscuous mode
[   23.900537][  T290] veth0_vlan: entered promiscuous mode
[   23.915296][  T288] veth1_macvtap: entered promiscuous mode
[   23.931401][  T290] veth1_macvtap: entered promiscuous mode
[   23.949822][  T291] veth0_vlan: entered promiscuous mode
[   23.978681][  T291] veth1_macvtap: entered promiscuous mode
[   23.987009][  T289] veth0_vlan: entered promiscuous mode
[   24.002086][  T288] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   24.012476][  T289] veth1_macvtap: entered promiscuous mode
[   24.043920][  T308] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   24.099270][  T312] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   24.125228][  T318] binder: Unknown parameter 'processor	: 0
[   24.125228][  T318] vendor_id	: GenuineIntel
[   24.125228][  T318] cpu family	: 6
[   24.125228][  T318] model		: 79
[   24.125228][  T318] model name	: Intel(R) Xeon(R) CPU @ 2.20GHz
[   24.125228][  T318] stepping	: 0
[   24.125228][  T318] microcode	: 0xffffffff
[   24.125228][  T318] cpu MHz		: 2199.998
[   24.125228][  T318] cache size	: 56320 KB
[   24.125228][  T318] physical id	: 0
[   24.125228][  T318] siblings	: 2
[   24.125228][  T318] core id		: 0
[   24.125228][  T318] cpu cores	: 1
[   24.125228][  T318] apicid		: 0
[   24.125228][  T318] initial apicid	: 0
[   24.125228][  T318] fpu		: yes
[   24.125228][  T318] fpu_exception	: yes
[   24.125228][  T318] cpuid level	: 13
[   24.125228][  T318] wp		: yes
[   24.125228][  T318] flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc cpuid tsc_known_freq pni pclmulqdq vmx ssse3 fma cx16 sse4_1 sse4_2 x2apic movbe popcnt aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch pti ssbd ibrs ibpb stibp tpr_shadow flexpriority ept vpid ept_ad fsgsbase tsc_adjust bmi1 hle avx2 smep bmi2 erms invpcid rtm rdseed adx smap xsaveopt arat vnmi md_clear arch_capabilities
[   24.125228][  T318] vmx flags	: vnmi preemption_timer invvpid ept_x_only ept_ad flexpriority tsc_offset vtpr mtf vapic ept vpid unrestricted_guest vapi
[   24.156172][  T321] rust_binder: Failed to allocate buffer. len:4216, is_oneway:false
[   24.182661][  T326] rust_binder: inc_ref_done called when no active inc_refs
[   24.330993][  T335] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[   24.347705][  T335] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:5
[   24.523708][  T352] rust_binder: Error while translating object.
[   24.532729][  T352] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   24.539389][  T352] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:10
[   24.593325][  T356] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   24.602843][  T356] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:12
[   24.735822][  T371] input: syz0 as /devices/virtual/input/input6
[   24.999660][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x6
[   25.007514][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x7
[   25.015306][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.023049][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.033498][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.041333][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.049136][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.056905][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.065195][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.073416][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.081185][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.089382][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.097158][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.105079][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.112982][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.121112][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.129197][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.137307][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.145254][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.153011][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.161003][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.168894][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.176786][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.184625][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.192398][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.200206][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.208078][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.215881][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.223679][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.231528][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.239310][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.247119][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.255100][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.262926][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.270812][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.278589][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.286596][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.294389][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.302129][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.309941][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.319862][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.328036][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.335945][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.346945][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.354908][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.362660][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.370454][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.378543][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.386438][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.394250][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.402071][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.409983][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.417789][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.425970][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.433801][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.441642][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.449530][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.457486][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.467135][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.475101][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.482864][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.490830][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.498795][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.506815][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.514821][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.522752][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.530535][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.538329][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.546281][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.554074][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.561820][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.569703][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.577488][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.585933][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.593718][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.601481][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.609601][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.617534][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.625430][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.633295][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.641206][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.648994][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.656933][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.664993][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.672758][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.680529][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.688315][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.696209][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.704000][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.711791][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.719728][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.727573][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.735462][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.743204][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.751378][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.759529][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.767295][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.775230][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.782965][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.790721][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.798492][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.806258][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.814016][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.821745][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.829820][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.837627][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.845464][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.853212][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.860985][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.868747][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.876605][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.884377][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.892119][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.899938][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.907913][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.915724][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.923569][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x6
[   25.931334][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.939292][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.947318][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.955266][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.963028][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.971098][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.981601][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.990018][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   25.998732][  T416] __vm_enough_memory: pid: 416, comm: syz.2.35, bytes: 281474976845824 not enough memory for the allocation
[   26.010381][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.018388][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.026361][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.041806][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.051453][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.059713][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.068796][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.076914][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.084913][  T423] =======================================================
[   26.084913][  T423] WARNING: The mand mount option has been deprecated and
[   26.084913][  T423]          and is ignored by this kernel. Remove the mand
[   26.084913][  T423]          option from the mount to silence this warning.
[   26.084913][  T423] =======================================================
[   26.120811][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.121011][  T426] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:25
[   26.128630][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.145751][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.147983][  T423] SELinux: security_context_str_to_sid (syste_u�Gй�:��) failed with errno=-22
[   26.162350][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.171662][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.179882][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.188071][  T428] rust_binder: Error while translating object.
[   26.188114][  T428] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   26.189842][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.209742][  T428] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:28
[   26.214945][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.231813][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.240358][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.248135][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.256222][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.264017][  T313] hid-generic 0008:0007:FFFFFBFF.0001: unknown main item tag 0x0
[   26.272491][  T313] hid-generic 0008:0007:FFFFFBFF.0001: hidraw0: <UNKNOWN> HID v9.86 Device [syz1] on syz1
[   26.307402][  T432] rust_binder: Write failure EINVAL in pid:30
[   26.307494][  T432] rust_binder: Write failure EINVAL in pid:30
[   26.319862][  T435] rust_binder: Write failure EFAULT in pid:55
[   26.357285][  T444] SELinux:  Context � is not valid (left unmapped).
[   26.383398][  T429] fido_id[429]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   26.384200][  T342] Bluetooth: hci0: command 0x1003 tx timeout
[   26.396882][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   26.413695][  T444] rust_binder: Error while translating object.
[   26.413739][  T444] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   26.420015][  T444] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:60
[   26.444488][  T448] rust_binder: Write failure EFAULT in pid:62
[   26.468804][  T450] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[   26.475043][  T450] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:64
[   26.633505][  T466] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 4200, limit: 4216, size: 89)
[   26.642619][  T466] rust_binder: Error while translating object.
[   26.653673][  T466] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   26.662585][  T466] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:32
[   26.740967][   T36] kauditd_printk_skb: 71 callbacks suppressed
[   26.740987][   T36] audit: type=1400 audit(1750400581.270:145): avc:  denied  { append } for  pid=471 comm="syz.0.54" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   26.781251][  T474] rust_binder: Write failure EFAULT in pid:35
[   26.858282][  T481] rust_binder: Write failure EINVAL in pid:38
[   26.876510][  T484] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[   26.882662][  T484] rust_binder: Error while translating object.
[   26.895089][  T484] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   26.901330][  T484] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:41
[   26.925890][  T486] rust_binder: Write failure EINVAL in pid:43
[   27.018812][  T490] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:81
[   27.040451][   T36] audit: type=1400 audit(1750400581.570:146): avc:  denied  { block_suspend } for  pid=492 comm="syz.0.62" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   27.071074][  T493] rust_binder: Write failure EFAULT in pid:84
[   27.098880][  T497] rust_binder: Write failure EFAULT in pid:88
[   27.128964][   T31] hid-generic 0000:0000:0000.0002: unknown main item tag 0x4
[   27.152618][   T31] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[   27.161965][   T31] hid-generic 0000:0000:0000.0002: unknown main item tag 0x3
[   27.169326][   T36] audit: type=1326 audit(1750400581.690:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=507 comm="syz.1.68" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3091f8e929 code=0x0
[   27.170441][   T31] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   27.236602][  T512] fido_id[512]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   27.286318][  T515] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[   27.286353][  T515] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:45
[   27.331263][   T36] audit: type=1400 audit(1750400581.860:148): avc:  denied  { setcurrent } for  pid=518 comm="syz.2.71" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   27.395092][  T521] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   27.417419][  T524] binder: Bad value for 'stats'
[   27.498072][   T36] audit: type=1400 audit(1750400582.030:149): avc:  denied  { remount } for  pid=528 comm="syz.0.74" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   27.590701][  T540] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   27.590720][  T540] rust_binder: Error while translating object.
[   27.599505][  T540] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   27.605750][  T540] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:47
[   27.647948][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[   27.663873][   T12] Bluetooth: hci0: Frame reassembly failed (-90)
[   27.670234][  T545] Bluetooth: hci0: Frame reassembly failed (-84)
[   27.677182][  T546] Bluetooth: hci0: Frame reassembly failed (-84)
[   27.684426][  T545] Bluetooth: hci0: Frame reassembly failed (-84)
[   27.690840][  T546] Bluetooth: hci0: Frame reassembly failed (-84)
[   27.697362][  T545] Bluetooth: hci0: Frame reassembly failed (-84)
[   28.255350][   T36] audit: type=1400 audit(1750400582.790:150): avc:  denied  { ioctl } for  pid=567 comm="syz.0.88" path="/dev/rtc0" dev="devtmpfs" ino=195 ioctlcmd=0x7013 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   28.309990][  T572] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[   28.310026][  T572] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:21
[   28.406809][  T582] binder: Unknown parameter 'context'
[   28.406821][   T36] audit: type=1326 audit(1750400582.940:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=581 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05a498e929 code=0x7ffc0000
[   28.449771][   T36] audit: type=1326 audit(1750400582.940:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=581 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05a498e929 code=0x7ffc0000
[   28.479930][   T36] audit: type=1326 audit(1750400582.940:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=581 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f05a498e929 code=0x7ffc0000
[   28.505788][   T36] audit: type=1326 audit(1750400582.950:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=581 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05a498e929 code=0x7ffc0000
[   28.529157][  T592] rust_binder: Write failure EFAULT in pid:144
[   28.546893][  T597] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[   28.553161][  T597] rust_binder: Error while translating object.
[   28.562359][  T597] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   28.569740][  T599] rust_binder: Write failure EINVAL in pid:147
[   28.570655][  T597] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:27
[   28.712332][  T616] input: syz0 as /devices/virtual/input/input7
[   28.730233][   T31] hid-generic C98F:0003:0000.0003: unknown main item tag 0x0
[   28.733406][  T616] input: failed to attach handler leds to device input7, error: -6
[   28.738403][   T31] hid-generic C98F:0003:0000.0003: unknown main item tag 0x0
[   28.764395][   T31] hid-generic C98F:0003:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   28.789871][  T624] fido_id[624]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   28.832825][  T628] Bluetooth: hci1: Frame reassembly failed (-84)
[   28.846259][   T12] Bluetooth: hci1: Frame reassembly failed (-84)
[   28.896840][  T631] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[   28.896868][  T631] rust_binder: Failure in copy_transaction_data: BR_DEAD_REPLY
[   28.913037][  T631] rust_binder: Failure BR_DEAD_REPLY during reply - delivering BR_FAILED_REPLY to sender.
[   29.043646][  T637] input: syz1 as /devices/virtual/input/input9
[   29.072553][  T637] binder: Unknown parameter 'contex�Lsyste"_��'
[   29.189189][  T648] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:40
[   29.195807][  T648] rust_binder: Read failure Err(EFAULT) in pid:40
[   29.296749][  T658] random: crng reseeded on system resumption
[   29.584975][  T672] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:50
[   29.617248][  T679] binder: Bad value for 'defcontext'
[   29.663394][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   29.669584][  T629] Bluetooth: hci0: command 0x1003 tx timeout
[   29.872416][  T693] binder: Bad value for 'max'
[   29.886050][  T693] SELinux: security_context_str_to_sid (sytem_u�G���) failed with errno=-22
[   29.925811][  T687] rust_binder: Read failure Err(EFAULT) in pid:58
[   30.070536][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.085203][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.092975][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.100768][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.108707][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.116919][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.124994][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.132904][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.146572][  T702] rust_binder: Write failure EFAULT in pid:62
[   30.146601][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.160702][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.168818][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.176867][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.184750][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.192506][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.200265][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.208033][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.215799][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.223847][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.231597][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.239463][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.247221][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.254979][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.262718][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.270496][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.278266][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.286057][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.293892][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.301694][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.310213][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.317985][    T9] hid-generic 0001:0006:FFFFFFFC.0004: unknown main item tag 0x0
[   30.327408][    T9] hid-generic 0001:0006:FFFFFFFC.0004: hidraw0: <UNKNOWN> HID vffffff.ff Device [syz0] on syz0
[   30.358301][  T712] fido_id[712]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   30.472457][  T714] kernel profiling enabled (shift: 63)
[   30.478107][  T714] profiling shift: 63 too large
[   30.757573][  T722] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[   30.757602][  T722] rust_binder: Failure in copy_transaction_data: BR_DEAD_REPLY
[   30.765626][  T722] rust_binder: Failure BR_DEAD_REPLY during reply - delivering BR_FAILED_REPLY to sender.
[   30.814766][  T730] binder: Unknown parameter 'euid>00000000000000000000'
[   30.863418][   T53] Bluetooth: hci1: command 0x1003 tx timeout
[   30.863456][  T342] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   31.076218][  T749] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   31.106826][  T755] binder: Unknown parameter 'context'
[   31.258497][   T13] Bluetooth: hci0: Frame reassembly failed (-84)
[   31.265050][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[   31.305600][  T766] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[   31.305626][  T766] rust_binder: Error while translating object.
[   31.317886][  T766] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   31.324184][  T766] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:170
[   31.423007][  T777] can0: slcan on ptm1.
[   31.485476][  T775] can0 (unregistered): slcan off ptm1.
[   31.790085][  T816] can0: slcan on ptm1.
[   31.815315][  T816] can0 (unregistered): slcan off ptm1.
[   31.825957][  T816] SELinux: security_context_str_to_sid () failed with errno=-22
[   31.859290][  T830] rust_binder: Write failure EFAULT in pid:193
[   31.859363][  T830] rust_binder: Write failure EFAULT in pid:193
[   31.883672][   T36] kauditd_printk_skb: 40 callbacks suppressed
[   31.883689][   T36] audit: type=1326 audit(1750400586.420:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=832 comm="syz.0.169" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f05a498e929 code=0x0
[   31.932821][   T36] audit: type=1400 audit(1750400586.430:196): avc:  denied  { setcheckreqprot } for  pid=836 comm="syz.1.168" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   32.613491][  T881] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   32.613517][  T881] rust_binder: Error while translating object.
[   32.622397][  T881] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   32.628769][  T881] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:107
[   32.631355][  T883] SELinux: security_context_str_to_sid (sytem_u�Gй�:��) failed with errno=-22
[   32.699230][  T885] rust_binder: Write failure EINVAL in pid:87
[   32.771005][   T36] audit: type=1326 audit(1750400587.300:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=896 comm="syz.0.183" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f05a498e929 code=0x0
[   32.813112][   T36] audit: type=1400 audit(1750400587.340:198): avc:  denied  { load_policy } for  pid=898 comm="syz.1.184" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   32.814861][  T899] SELinux:  policydb version 1601106876 does not match my version range 15-33
[   32.842032][  T899] SELinux: failed to load policy
[   32.872316][  T906] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   32.891061][   T36] audit: type=1400 audit(1750400587.420:199): avc:  denied  { read } for  pid=896 comm="syz.0.183" name="loop-control" dev="devtmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   32.933396][   T36] audit: type=1400 audit(1750400587.420:200): avc:  denied  { open } for  pid=896 comm="syz.0.183" path="/dev/loop-control" dev="devtmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   33.010163][  T913] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:100
[   33.040233][  T915] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   33.049847][  T915] rust_binder: Write failure EFAULT in pid:116
[   33.116814][   T36] audit: type=1400 audit(1750400587.650:201): avc:  denied  { append } for  pid=918 comm="syz.1.191" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   33.148358][  T921] rust_binder: Write failure EINVAL in pid:118
[   33.170623][  T923] __vm_enough_memory: pid: 923, comm: syz.3.193, bytes: 281474976845824 not enough memory for the allocation
[   33.256534][   T36] audit: type=1400 audit(1750400587.790:202): avc:  denied  { create } for  pid=927 comm="syz.3.194" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1
[   33.275770][  T342] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   33.305719][  T931] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   33.367613][  T941] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:126
[   33.369428][  T942] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   33.384664][  T942] rust_binder: Error in use_page_slow: ESRCH
[   33.393451][  T942] rust_binder: use_range failure ESRCH
[   33.403470][  T942] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   33.411447][  T942] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   33.419599][  T942] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:107
[   33.481506][  T956] input: syz0 as /devices/virtual/input/input15
[   33.499001][  T956] input: failed to attach handler leds to device input15, error: -6
[   33.531385][  T958] binder: Bad value for 'stats'
[   33.727284][  T981] binder: Bad value for 'max'
[   33.769994][  T987] rust_binder: Write failure EINVAL in pid:162
[   33.978362][ T1006] binder: Unknown parameter 'coyBLV�"i5������ntext'
[   33.993161][ T1014] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:172
[   34.136574][ T1027] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   34.146577][ T1027] rust_binder: Write failure EINVAL in pid:130
[   34.451424][ T1043] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[   34.470210][ T1043] rust_binder: Read failure Err(EFAULT) in pid:131
[   34.473994][ T1049] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   34.660052][ T1067] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   34.683391][   T36] audit: type=1400 audit(1750400589.210:203): avc:  denied  { ioctl } for  pid=1058 comm="syz.3.235" path="/dev/snapshot" dev="devtmpfs" ino=21 ioctlcmd=0x3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   34.690591][ T1067] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[   34.735314][ T1067] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:144
[   34.745092][ T1072] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:137
[   34.745100][ T1071] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:137
[   34.847989][ T1080] rust_binder: Write failure EINVAL in pid:146
[   34.892089][ T1084] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:148
[   34.915881][ T1083] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   34.949793][ T1087] __vm_enough_memory: pid: 1087, comm: syz.1.244, bytes: 281474976845824 not enough memory for the allocation
[   35.006685][   T13] Bluetooth: hci0: Frame reassembly failed (-84)
[   35.007481][ T1088] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   35.024905][ T1088] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:189
[   35.166765][ T1099] rust_binder: Failed to allocate buffer. len:4294966472, is_oneway:false
[   35.183443][ T1099] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOSPC }
[   35.202359][ T1099] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOSPC } my_pid:151
[   35.266410][ T1105] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:156
[   35.376182][ T1115] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   35.488120][ T1122] rust_binder: Got transaction with invalid offset.
[   35.496581][ T1122] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   35.505587][ T1122] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:162
[   35.529126][ T1125] input: syz0 as /devices/virtual/input/input17
[   35.568898][ T1130] binder: Unknown parameter ''
[   35.638030][   T36] audit: type=1400 audit(1750400590.170:204): avc:  denied  { setattr } for  pid=1142 comm="syz.0.259" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   35.681402][ T1145] input: syz0 as /devices/virtual/input/input19
[   35.807306][ T1153] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   35.864314][ T1161] binder: Unknown parameter 's'
[   35.965720][ T1167] rust_binder: Write failure EFAULT in pid:178
[   36.038085][ T1177] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 4200, limit: 4216, size: 89)
[   36.047394][ T1177] rust_binder: Error while translating object.
[   36.058489][ T1177] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   36.064920][ T1177] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:180
[   36.218063][ T1191] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   36.227597][ T1190] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   36.238872][ T1192] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   36.256298][ T1190] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   36.396009][ T1194] rust_binder: Error while translating object.
[   36.402545][ T1194] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   36.408812][ T1194] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:182
[   37.002819][ T1229] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:195
[   37.023394][  T342] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   37.023430][   T53] Bluetooth: hci0: command 0x1003 tx timeout
[   37.138126][ T1232] deleting an unspecified loop device is not supported.
[   37.138143][   T36] kauditd_printk_skb: 3 callbacks suppressed
[   37.138157][   T36] audit: type=1400 audit(1750400591.670:208): avc:  denied  { ioctl } for  pid=1231 comm="syz.3.289" path="/dev/loop-control" dev="devtmpfs" ino=48 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   37.178420][ T1232] input: syz1 as /devices/virtual/input/input21
[   37.187952][ T1232] binder: Unknown parameter 'obj_user'
[   37.197931][ T1232] binder: Unknown parameter 'stavs'
[   37.385923][ T1245] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   37.386222][ T1245] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[   37.390331][   T36] audit: type=1326 audit(1750400591.920:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1244 comm="syz.2.292" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x0
[   37.392674][ T1245] rust_binder: Write failure EINVAL in pid:203
[   37.524774][   T36] audit: type=1400 audit(1750400592.060:210): avc:  denied  { map } for  pid=1251 comm="syz.2.295" path="/dev/full" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:null_device_t tclass=chr_file permissive=1
[   37.587621][ T1255] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   37.588038][ T1255] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   37.595679][ T1255] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   37.621487][   T36] audit: type=1400 audit(1750400592.150:211): avc:  denied  { setattr } for  pid=1258 comm="syz.2.298" path="/dev/binderfs/binder1" dev="binder" ino=37 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   37.624035][ T1259] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[   37.682943][ T1264] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 136, limit: 176, size: 104)
[   37.682971][ T1264] rust_binder: Error while translating object.
[   37.694212][ T1264] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   37.700420][ T1264] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:218
[   37.766250][ T1266] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[   37.784337][ T1266] rust_binder: Write failure EINVAL in pid:205
[   37.896164][ T1285] binder: Bad value for 'max'
[   37.907374][ T1286] binder: Bad value for 'max'
[   37.920495][ T1279] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[   37.920516][ T1279] rust_binder: Failure in copy_transaction_data: BR_DEAD_REPLY
[   37.928246][ T1279] rust_binder: Failure BR_DEAD_REPLY during reply - delivering BR_FAILED_REPLY to sender.
[   38.101457][ T1293] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[   38.188234][ T1297] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[   38.197480][ T1295] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[   38.197502][ T1295] rust_binder: Error while translating object.
[   38.215160][ T1295] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   38.221822][ T1295] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:225
[   38.232150][ T1301] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   38.299559][ T1315] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   38.304849][ T1317] random: crng reseeded on system resumption
[   38.361167][ T1325] binder: Bad value for 'max'
[   38.372716][ T1326] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   38.392732][ T1315] rust_binder: Error in use_page_slow: ESRCH
[   38.392757][ T1315] rust_binder: use_range failure ESRCH
[   38.409006][ T1315] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   38.414765][ T1315] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   38.423496][ T1318] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[   38.433130][ T1315] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:199
[   38.445571][ T1318] rust_binder: Error while translating object.
[   38.454792][ T1318] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   38.463132][ T1318] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:221
[   38.521541][   T13] Bluetooth: hci0: Frame reassembly failed (-84)
[   38.538428][   T13] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 0
[   38.557066][ T1337] binder: Unknown parameter ''
[   38.562206][ T1335] SELinux: security_context_str_to_sid () failed with errno=-22
[   38.605392][ T1334] rust_binder: Got transaction with invalid offset.
[   38.605450][ T1334] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   38.640933][ T1334] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:237
[   38.811325][ T1348] rust_binder: Write failure EFAULT in pid:209
[   39.283586][   T36] audit: type=1400 audit(1750400593.820:212): avc:  denied  { setattr } for  pid=289 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   39.313421][ T1360] rust_binder: Read failure Err(EFAULT) in pid:221
[   39.321137][   T13] Bluetooth: hci1: Frame reassembly failed (-84)
[   39.334930][  T629] Bluetooth: hci1: unexpected event 0x0b length: 0 < 11
[   39.342632][ T1364] rust_binder: Write failure EINVAL in pid:227
[   39.343787][ T1364] rust_binder: Read failure Err(EAGAIN) in pid:227
[   39.446934][ T1369] input: syz0 as /devices/virtual/input/input23
[   39.613211][ T1373] cgroup: fork rejected by pids controller in /syz1
[   39.758641][   T36] audit: type=1326 audit(1750400594.290:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1408 comm="syz.1.335" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3091f8e929 code=0x0
[   40.543410][  T629] Bluetooth: hci0: command 0x1003 tx timeout
[   40.543410][  T342] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   41.013304][ T1434] binder: Bad value for 'defcontext'
[   41.244613][ T1447] binder: Unknown parameter '�K%�J0�M�m��+�y�j���̖?�Y��D;]��{>Pz/͡0��&5`Z;���Z���ֽde�$�a�'
[   41.343433][  T342] Bluetooth: hci1: command 0x1003 tx timeout
[   41.343441][   T53] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   41.415090][ T1453] binder: Bad value for 'stats'
[   41.421947][ T1455] binder: Unknown parameter 'defcontext01777777777777777777777'
[   41.494679][   T36] audit: type=1400 audit(1750400596.030:214): avc:  denied  { execute } for  pid=1458 comm="syz.3.351" path="/dev/binderfs/binder-control" dev="binder" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   41.676002][ T1462] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.730035][ T1474] SELinux:  Context system_u: is not valid (left unmapped).
[   41.776486][ T1477] rust_binder: Write failure EINVAL in pid:265
[   41.776580][ T1477] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:265
[   41.785876][ T1481] random: crng reseeded on system resumption
[   41.875210][ T1484] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.875368][ T1484] rust_binder: Error in use_page_slow: ESRCH
[   41.882040][ T1484] rust_binder: use_range failure ESRCH
[   41.888437][ T1484] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   41.894012][ T1484] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   41.911697][ T1484] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:294
[   41.994025][   T36] audit: type=1400 audit(1750400596.530:215): avc:  denied  { execute } for  pid=1490 comm="syz.3.360" path="/82/cgroup.stat" dev="tmpfs" ino=438 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   42.005929][ T1491] rust_binder: Write failure EFAULT in pid:253
[   42.058269][ T1495] SELinux: security_context_str_to_sid (sytem_u�Gй) failed with errno=-22
[   42.077356][ T1495] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   42.175680][ T1499] serio: Serial port ttynull
[   42.323844][ T1502] rust_binder: Error while translating object.
[   42.323884][ T1502] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   42.330201][ T1502] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:261
[   42.680407][ T1519] rust_binder: inc_ref_done called when no active inc_refs
[   42.690613][ T1522] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   42.744721][ T1526] rust_binder: Write failure EINVAL in pid:277
[   42.765387][ T1528] input: syz1 as /devices/virtual/input/input24
[   42.800125][ T1528] binder: Unknown parameter '�ec�L��'
[   42.862150][ T1533] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[   42.924731][ T1536] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   42.940795][ T1536] rust_binder: Write failure EINVAL in pid:299
[   42.993481][ T1543] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   43.112469][  T305] Bluetooth: hci0: Frame reassembly failed (-90)
[   43.137737][  T305] Bluetooth: hci0: Frame reassembly failed (-84)
[   43.186189][ T1548] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   43.186238][ T1548] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:286
[   43.439055][ T1553] SELinux: security_context_str_to_sid () failed with errno=-22
[   43.833835][ T1559] __vm_enough_memory: pid: 1559, comm: syz.3.382, bytes: 281474976845824 not enough memory for the allocation
[   44.144066][ T1576] SELinux: security_context_str_to_sid () failed with errno=-22
[   44.173633][ T1578] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.184671][ T1581] SELinux: security_context_str_to_sid () failed with errno=-22
[   44.231498][ T1579] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 0
[   44.249061][ T1579] rust_binder: Write failure EINVAL in pid:311
[   44.289769][ T1583] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:310
[   44.330686][ T1583] rust_binder: Read failure Err(EFAULT) in pid:310
[   44.487581][ T1588] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:312
[   44.513624][ T1588] rust_binder: Write failure EINVAL in pid:312
[   44.561211][ T1592] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.573869][ T1592] rust_binder: Error in use_page_slow: ESRCH
[   44.590508][ T1592] rust_binder: use_range failure ESRCH
[   44.600392][ T1592] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   44.614903][ T1592] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   44.633165][ T1592] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:319
[   44.713571][ T1596] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.737670][ T1598] rust_binder: Error in use_page_slow: ESRCH
[   44.763418][ T1598] rust_binder: use_range failure ESRCH
[   44.775782][ T1598] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   44.792669][ T1598] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   44.797910][ T1602] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:317
[   44.800909][ T1598] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:321
[   44.834902][ T1602] rust_binder: Error while translating object.
[   44.844370][ T1602] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   44.850629][ T1602] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:317
[   44.971497][ T1604] binder: Unknown parameter 'Sq
�g�Å��v��b��ʐba����'�k�G�Oj#zh9]Vuŗ��b�+9�ۺ��@F��.y�����H���'
[   45.023906][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.035087][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.042659][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.050750][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.068562][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.077819][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.085414][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.092993][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.101714][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.110696][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.120097][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.127701][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.135861][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.143509][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.151167][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.160981][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.168612][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.183399][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   45.183418][  T342] Bluetooth: hci0: command 0x1003 tx timeout
[   45.195788][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.213435][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.221050][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.228924][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.236530][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.244091][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.253538][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.261140][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.268796][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.276538][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.284155][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.291564][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.306903][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.314602][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.322027][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.329734][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.337418][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.345023][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.352445][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.362823][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.370429][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.378006][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.389860][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.399510][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.408469][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.416449][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.431178][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.438926][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.446713][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.456315][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.461565][ T1632] binder: Unknown parameter 'dont_hash'
[   45.465760][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.476843][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.486351][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.493935][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.501349][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.509125][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.524525][ T1634] rust_binder: Write failure EFAULT in pid:292
[   45.527503][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.542963][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.550510][ T1636] __vm_enough_memory: pid: 1636, comm: syz.3.406, bytes: 281474976845824 not enough memory for the allocation
[   45.551805][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.569800][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.577567][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.585047][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.592486][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.594433][ T1636] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[   45.599926][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.599956][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.608091][   T36] audit: type=1400 audit(1750400600.120:216): avc:  granted  { setsecparam } for  pid=1635 comm="syz.3.406" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   45.615317][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.649090][   T36] audit: type=1400 audit(1750400600.120:217): avc:  granted  { setsecparam } for  pid=1635 comm="syz.3.406" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   45.668332][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.682178][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.691663][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.699848][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.712707][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.720175][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.727672][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.743420][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.753587][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.761019][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.768596][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.776834][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.784625][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.803424][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.810863][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.831885][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.839515][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.846955][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.865044][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.872497][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.880769][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.888398][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.904278][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.911822][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.924327][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.931877][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.939405][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.967408][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.975208][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.982809][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   45.990439][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.000867][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.012376][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.016587][ T1645] binder: Unknown parameter '�'
[   46.020136][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.032710][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.040334][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.044631][ T1645] input: syz1 as /devices/virtual/input/input25
[   46.048100][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.063680][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.071419][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.079043][   T36] audit: type=1400 audit(1750400600.600:218): avc:  denied  { map } for  pid=1644 comm="syz.3.410" path="/dev/ttyS3" dev="devtmpfs" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[   46.102557][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.110374][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.118039][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.125738][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.133265][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.140977][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.148627][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.156250][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.163927][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.171349][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.179005][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.186630][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.194275][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.201693][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.216544][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.226804][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.236521][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.251398][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.257729][   T36] audit: type=1400 audit(1750400600.780:219): avc:  denied  { map } for  pid=1649 comm="syz.3.412" path="/proc/sys/net/ipv4/tcp_congestion_control" dev="proc" ino=26759 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[   46.284686][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.284796][ T1650] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:349
[   46.292301][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.314592][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.322130][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.329785][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.337460][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.345063][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.352555][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.360324][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.368168][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.375752][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.390819][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.398589][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.406424][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.430170][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.453508][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.473435][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.490541][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.499151][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.509128][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.517574][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.525258][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.532820][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.541743][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.549407][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.557032][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.568005][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.575678][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.583641][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.591312][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.594929][ T1654] binder: Unknown parameter 'nXI'
[   46.598979][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.611542][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.619229][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.626959][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.638646][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.646583][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.654359][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.661867][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.669582][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.677310][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.684961][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.692799][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.710484][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.719437][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.727248][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.735082][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.752253][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.761717][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.777570][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.785312][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.792756][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.800513][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.808254][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.821120][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.829113][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.836805][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.847070][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.855843][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.863442][ T1666] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:361
[   46.863477][ T1666] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[   46.884091][ T1666] rust_binder: Read failure Err(EFAULT) in pid:361
[   46.892294][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.907267][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.914873][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.922325][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.929985][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.937588][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.946107][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.953764][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.961189][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.968884][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   46.976408][ T1670] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:302
[   46.977069][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.004621][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.012247][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.019738][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.027682][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.035399][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.043129][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.053498][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.061098][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.068709][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.076183][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.083665][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.091255][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.098740][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.106309][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.115578][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.123141][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.130654][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.138178][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.145692][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.153101][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.160567][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.168011][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.175502][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.182918][    T9] hid-generic 01FF:0004:0400.0005: unknown main item tag 0x0
[   47.193501][    T9] hid-generic 01FF:0004:0400.0005: hidraw0: <UNKNOWN> HID v0.05 Device [syz0] on syz1
[   47.232504][   T36] audit: type=1326 audit(1750400601.760:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1674 comm="syz.1.420" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3091f8e929 code=0x0
[   47.287410][   T36] audit: type=1400 audit(1750400601.820:221): avc:  denied  { execmem } for  pid=1674 comm="syz.1.420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   47.301897][ T1677] fido_id[1677]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   47.606345][ T1686] rust_binder: Write failure EINVAL in pid:338
[   47.737055][ T1693] SELinux: security_context_str_to_sid (syste_u�Gй�:��) failed with errno=-22
[   47.805310][ T1697] binder: Binderfs stats mode cannot be changed during a remount
[   47.904179][ T1700] rust_binder: Write failure EINVAL in pid:311
[   47.961262][ T1702] rust_binder: Failed copying remainder into alloc: EFAULT
[   47.967632][ T1702] rust_binder: Failure in apply_sg: BR_FAILED_REPLY { source: EFAULT }
[   47.977882][ T1702] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[   47.989705][ T1702] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:367
[   48.032554][ T1704] rust_binder: Write failure EINVAL in pid:313
[   48.042625][ T1706] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   48.056781][ T1706] rust_binder: Read failure Err(EAGAIN) in pid:369
[   48.057391][ T1704] rust_binder: Error while translating object.
[   48.063979][ T1704] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   48.070362][ T1704] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:313
[   48.283553][   T36] audit: type=1326 audit(1750400602.820:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1711 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   48.343389][   T36] audit: type=1326 audit(1750400602.820:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1711 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   48.382951][ T1712] binder: Unknown parameter 'context'
[   48.388515][   T36] audit: type=1326 audit(1750400602.850:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1711 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   48.413826][   T36] audit: type=1326 audit(1750400602.850:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1711 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   48.576093][ T1715] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1222729745 (39127351840 ns) > initial count (25964891200 ns). Using initial count to start timer.
[   48.745936][ T1730] kvm: user requested TSC rate below hardware speed
[   48.814667][ T1734] rust_binder: Error while translating object.
[   48.814718][ T1734] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   48.821052][ T1734] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:330
[   49.002774][ T1743] binder: Unknown parameter 'defcontext01777777777777777777777'
[   49.953742][ T1813] rust_binder: Error while translating object.
[   49.953773][ T1813] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   49.960180][ T1813] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:359
[   50.022364][ T1815] rust_binder: Error while translating object.
[   50.031697][ T1815] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[   50.037994][ T1815] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:361
[   50.107186][ T1819] rust_binder: Write failure EFAULT in pid:363
[   50.373887][ T1831] rust_binder: Error while translating object.
[   50.373919][ T1831] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   50.380197][ T1831] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:415
[   50.542046][ T1835] binder: Unknown parameter 'context'
[   50.575426][ T1838] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[   50.644509][  T306] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   50.683292][  T306] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   50.797251][ T1844] __vm_enough_memory: pid: 1844, comm: syz.1.472, bytes: 281474976845824 not enough memory for the allocation
[   50.809953][ T1848] kvm: emulating exchange as write
[   50.993084][ T1854] binder: Unknown parameter 'non'
[   51.128022][ T1856] rust_binder: Error while translating object.
[   51.128062][ T1856] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   51.136777][ T1856] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:429
[   51.215333][   T36] kauditd_printk_skb: 39 callbacks suppressed
[   51.215354][   T36] audit: type=1400 audit(1750400605.740:265): avc:  denied  { checkpoint_restore } for  pid=1861 comm="syz.3.479" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   51.321617][ T1872] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   51.322034][ T1872] rust_binder: Write failure EINVAL in pid:388
[   51.343995][ T1871] rust_binder: Write failure EINVAL in pid:367
[   51.431835][ T1877] rust_binder: Write failure EFAULT in pid:438
[   51.742380][ T1889] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   51.763151][ T1889] rust_binder: Write failure EINVAL in pid:375
[   51.816588][ T1898] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   51.826052][ T1896] rust_binder: Write failure EINVAL in pid:446
[   51.884393][ T1900] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[   51.913051][ T1901] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:377
[   51.982734][   T36] audit: type=1400 audit(1750400606.510:266): avc:  denied  { remount } for  pid=1903 comm="syz.3.494" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   52.013600][  T313] hid-generic C98F:0003:0000.0007: unknown main item tag 0x0
[   52.021230][  T313] hid-generic C98F:0003:0000.0007: unknown main item tag 0x0
[   52.029148][ T1904] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:448
[   52.029693][  T313] hid-generic C98F:0003:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   52.081591][ T1905] fido_id[1905]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   52.149892][ T1912] binder: Unknown parameter 'sڡ�'
[   52.176367][   T46] Bluetooth: hci0: Frame reassembly failed (-84)
[   52.421677][   T36] audit: type=1326 audit(1750400606.950:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1919 comm="syz.3.499" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa68bd8e929 code=0x0
[   52.532402][   T36] audit: type=1400 audit(1750400607.060:268): avc:  denied  { map } for  pid=1919 comm="syz.3.499" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   52.788081][ T1936] binder: Unknown parameter 'processor	: 0
[   52.788081][ T1936] vendor_id	: GenuineIntel
[   52.788081][ T1936] cpu family	: 6
[   52.788081][ T1936] model		: 79
[   52.788081][ T1936] model name	: Intel(R) Xeon(R) CPU @ 2.20GHz
[   52.788081][ T1936] stepping	: 0
[   52.788081][ T1936] microcode	: 0xffffffff
[   52.788081][ T1936] cpu MHz		: 2199.998
[   52.788081][ T1936] cache size	: 56320 KB
[   52.788081][ T1936] physical id	: 0
[   52.788081][ T1936] siblings	: 2
[   52.788081][ T1936] core id		: 0
[   52.788081][ T1936] cpu cores	: 1
[   52.788081][ T1936] apicid		: 0
[   52.788081][ T1936] initial apicid	: 0
[   52.788081][ T1936] fpu		: yes
[   52.788081][ T1936] fpu_exception	: yes
[   52.788081][ T1936] cpuid level	: 13
[   52.788081][ T1936] wp		: yes
[   52.788081][ T1936] flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc cpuid tsc_known_freq pni pclmulqdq vmx ssse3 fma cx16 sse4_1 sse4_2 x2apic movbe popcnt aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch pti ssbd ibrs ibpb stibp tpr_shadow flexpriority ept vpid ept_ad fsgsbase tsc_adjust bmi1 hle avx2 smep bmi2 erms invpcid rtm rdseed adx smap xsaveopt arat vnmi md_clear arch_capabilities
[   52.788081][ T1936] vmx flags	: vnmi preemption_timer invvpid ept_x_only ept_ad flexpriority tsc_offset vtpr mtf vapic ept vpid unrestricted_guest vapi
[   52.906679][   T36] audit: type=1326 audit(1750400607.440:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1937 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   53.062894][   T36] audit: type=1326 audit(1750400607.440:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1937 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   53.104354][   T36] audit: type=1326 audit(1750400607.440:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1937 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   53.146629][   T36] audit: type=1326 audit(1750400607.440:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1937 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   53.171418][   T36] audit: type=1326 audit(1750400607.440:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1937 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   53.195904][   T36] audit: type=1326 audit(1750400607.440:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1937 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b2d8e929 code=0x7ffc0000
[   53.653672][ T1967] rust_binder: Write failure EFAULT in pid:466
[   53.727936][ T1972] SELinux: security_context_str_to_sid (syste_u�Gй�:��) failed with errno=-22
[   53.893757][ T1978] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:418
[   53.893964][ T1976] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY
[   53.904705][ T1976] rust_binder: Error in use_page_slow: EBUSY
[   53.916085][ T1979] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   53.916111][ T1976] rust_binder: use_range failure EBUSY
[   53.922106][ T1979] SELinux: failed to load policy
[   53.930126][ T1976] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[   53.940231][ T1976] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY }
[   53.948093][ T1976] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender.
[   53.957735][ T1976] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:418
[   53.989443][ T1976] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   53.998040][ T1982] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:475
[   54.009613][ T1981] rust_binder: Error while translating object.
[   54.018981][ T1981] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   54.025447][ T1981] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:475
[   54.059385][ T1985] input: syz0 as /devices/virtual/input/input30
[   54.137641][ T1989] binder: Unknown parameter '�ax'
[   54.223468][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   54.229729][  T342] Bluetooth: hci0: command 0x1003 tx timeout
[   54.426732][   T13] bridge_slave_1: left allmulticast mode
[   54.440848][   T13] bridge_slave_1: left promiscuous mode
[   54.454230][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.462019][   T13] bridge_slave_0: left allmulticast mode
[   54.469643][   T13] bridge_slave_0: left promiscuous mode
[   54.475548][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.573598][ T2013] tap0: tun_chr_ioctl cmd 1074025677
[   54.579048][ T2013] tap0: linktype set to 774
[   54.625150][ T2008] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.632234][ T2008] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.639588][ T2008] bridge_slave_0: entered allmulticast mode
[   54.646188][ T2008] bridge_slave_0: entered promiscuous mode
[   54.657694][ T2008] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.665042][ T2008] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.672170][ T2008] bridge_slave_1: entered allmulticast mode
[   54.678560][ T2008] bridge_slave_1: entered promiscuous mode
[   54.685536][   T13] veth1_macvtap: left promiscuous mode
[   54.691103][   T13] veth0_vlan: left promiscuous mode
[   54.714537][ T2023] rust_binder: Read failure Err(EAGAIN) in pid:417
[   54.714679][ T2023] rust_binder: Read failure Err(EAGAIN) in pid:417
[   54.758630][ T2027] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000000 not found
[   54.773745][ T2027] rust_binder: Write failure EINVAL in pid:437
[   54.806644][ T2029] syz.2.536 (2029) used obsolete PPPIOCDETACH ioctl
[   54.808567][ T2032] rust_binder: got new transaction with bad transaction stack
[   54.838466][ T2032] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:419
[   54.881851][ T2008] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.898238][ T2008] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.905569][ T2008] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.912608][ T2008] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.935239][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.942759][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.954826][  T305] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.961877][  T305] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.977764][  T305] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.984848][  T305] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.021384][ T2008] veth0_vlan: entered promiscuous mode
[   55.036859][ T2008] veth1_macvtap: entered promiscuous mode
[   55.228107][ T2056] rust_binder: Error in use_page_slow: ESRCH
[   55.228126][ T2056] rust_binder: use_range failure ESRCH
[   55.234247][ T2056] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   55.239725][ T2056] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   55.247678][ T2056] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:442
[   55.344585][ T2064] input: syz0 as /devices/virtual/input/input31
[   55.350033][ T2061] rust_binder: Error in use_page_slow: ESRCH
[   55.355816][ T2063] rust_binder: Error in use_page_slow: ESRCH
[   55.359647][ T2061] rust_binder: use_range failure ESRCH
[   55.363072][ T2063] rust_binder: use_range failure ESRCH
[   55.385522][ T2061] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[   55.390822][ T2063] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[   55.394995][ T2061] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   55.401776][ T2063] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   55.409448][ T2061] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:11
[   55.421153][ T2063] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:11
[   55.428502][ T2068] rust_binder: Write failure EFAULT in pid:11
[   55.506388][ T2080] random: crng reseeded on system resumption
[   55.617528][   T10] ==================================================================
[   55.625753][   T10] BUG: KASAN: null-ptr-deref in down_write+0x83/0x2a0
[   55.632555][   T10] Write of size 8 at addr 0000000000000098 by task kworker/0:1/10
[   55.640475][   T10] 
[   55.642827][   T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[   55.642860][   T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   55.642875][   T10] Workqueue: events _RNvXs6_NtCs43vyB533jt3_6kernel9workqueueINtNtNtB7_4sync3arc3ArcNtNtCshgDM7dBCdno_11rust_binder7process7ProcessEINtB5_15WorkItemPointerKy0_E3runB13_
[   55.642940][   T10] Call Trace:
[   55.642949][   T10]  <TASK>
[   55.642957][   T10]  __dump_stack+0x21/0x30
[   55.642985][   T10]  dump_stack_lvl+0x10c/0x190
[   55.643009][   T10]  ? __cfi_dump_stack_lvl+0x10/0x10
[   55.643036][   T10]  print_report+0x3d/0x70
[   55.643055][   T10]  kasan_report+0x163/0x1a0
[   55.643085][   T10]  ? down_write+0x83/0x2a0
[   55.643108][   T10]  ? down_write+0x83/0x2a0
[   55.643131][   T10]  kasan_check_range+0x299/0x2a0
[   55.643161][   T10]  __kasan_check_write+0x18/0x20
[   55.643184][   T10]  down_write+0x83/0x2a0
[   55.643203][   T10]  ? __cfi_down_write+0x10/0x10
[   55.643224][   T10]  ? _raw_spin_lock+0x8c/0x120
[   55.643250][   T10]  ? __cfi__raw_spin_lock+0x10/0x10
[   55.643277][   T10]  ? mutex_unlock+0x8b/0x240
[   55.643297][   T10]  ? __cfi_mutex_unlock+0x10/0x10
[   55.643317][   T10]  rust_binderfs_remove_file+0x6c/0x110
[   55.643337][   T10]  _RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x9d4/0x2860
[   55.643375][   T10]  ? unwind_next_frame+0x3c2/0x750
[   55.643396][   T10]  ? __cfi__RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x10/0x10
[   55.643437][   T10]  ? __kernel_text_address+0x11/0x40
[   55.643459][   T10]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[   55.643485][   T10]  ? arch_stack_walk+0x139/0x170
[   55.643513][   T10]  ? ret_from_fork_asm+0x1a/0x30
[   55.643541][   T10]  ? stack_depot_save_flags+0x38/0x800
[   55.643567][   T10]  ? kasan_save_track+0x4f/0x80
[   55.643593][   T10]  ? kasan_save_track+0x3e/0x80
[   55.643619][   T10]  ? kasan_save_free_info+0x4a/0x60
[   55.643641][   T10]  ? __kasan_slab_free+0x5f/0x80
[   55.643669][   T10]  ? kfree+0x156/0x400
[   55.643690][   T10]  ? vfree+0x4c6/0x580
[   55.643710][   T10]  ? delayed_vfree_work+0x59/0x80
[   55.643732][   T10]  ? process_scheduled_works+0x7d2/0x1020
[   55.643760][   T10]  ? worker_thread+0xc58/0x1250
[   55.643787][   T10]  ? kthread+0x1d0/0x370
[   55.643816][   T10]  ? ret_from_fork+0x64/0xa0
[   55.643840][   T10]  ? calibrate_delay_converge+0x2e0/0x2e0
[   55.643877][   T10]  ? __kasan_slab_free+0x6a/0x80
[   55.643904][   T10]  ? kfree+0x156/0x400
[   55.643926][   T10]  ? vfree+0x4c6/0x580
[   55.643946][   T10]  ? vfree+0x4c6/0x580
[   55.643966][   T10]  ? __kasan_check_write+0x18/0x20
[   55.643989][   T10]  ? pwq_dec_nr_in_flight+0x6c7/0xc60
[   55.644016][   T10]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[   55.644043][   T10]  ? kick_pool+0xb9/0x550
[   55.644073][   T10]  process_scheduled_works+0x7d2/0x1020
[   55.644106][   T10]  worker_thread+0xc58/0x1250
[   55.644136][   T10]  ? schedule+0xc6/0x240
[   55.644166][   T10]  kthread+0x2c7/0x370
[   55.644196][   T10]  ? __cfi_worker_thread+0x10/0x10
[   55.644224][   T10]  ? __cfi_kthread+0x10/0x10
[   55.644253][   T10]  ret_from_fork+0x64/0xa0
[   55.644277][   T10]  ? __cfi_kthread+0x10/0x10
[   55.644307][   T10]  ret_from_fork_asm+0x1a/0x30
[   55.644343][   T10]  </TASK>
[   55.644352][   T10] ==================================================================
[   55.974114][   T10] Disabling lock debugging due to kernel taint
[   55.980316][   T10] BUG: kernel NULL pointer dereference, address: 0000000000000098
[   55.988136][   T10] #PF: supervisor write access in kernel mode
[   55.994224][   T10] #PF: error_code(0x0002) - not-present page
[   56.000229][   T10] PGD 0 P4D 0 
[   56.003629][   T10] Oops: Oops: 0002 [#1] PREEMPT SMP KASAN PTI
[   56.009720][   T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Tainted: G    B              6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[   56.024602][   T10] Tainted: [B]=BAD_PAGE
[   56.028764][   T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.038835][   T10] Workqueue: events _RNvXs6_NtCs43vyB533jt3_6kernel9workqueueINtNtNtB7_4sync3arc3ArcNtNtCshgDM7dBCdno_11rust_binder7process7ProcessEINtB5_15WorkItemPointerKy0_E3runB13_
[   56.055641][   T10] RIP: 0010:down_write+0x9a/0x2a0
[   56.060707][   T10] Code: 48 c7 44 24 20 00 00 00 00 be 08 00 00 00 e8 2d 34 55 fc 4c 89 f7 be 08 00 00 00 e8 20 34 55 fc 48 8b 44 24 20 b9 01 00 00 00 <f0> 48 0f b1 0b 0f 85 a0 00 00 00 48 c7 c0 c0 b9 20 87 48 c1 e8 03
[   56.080339][   T10] RSP: 0018:ffffc900000a7500 EFLAGS: 00010256
[   56.086443][   T10] RAX: 0000000000000000 RBX: 0000000000000098 RCX: 0000000000000001
[   56.094528][   T10] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc900000a7520
[   56.102523][   T10] RBP: ffffc900000a7598 R08: ffffc900000a7527 R09: 1ffff92000014ea4
[   56.110522][   T10] R10: dffffc0000000000 R11: fffff52000014ea5 R12: dffffc0000000000
[   56.118518][   T10] R13: 1ffff92000014ea0 R14: ffffc900000a7520 R15: 0000000000000000
[   56.126596][   T10] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   56.135545][   T10] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.142154][   T10] CR2: 0000000000000098 CR3: 0000000120f0c000 CR4: 00000000003526b0
[   56.150154][   T10] DR0: 0000000000000007 DR1: 000000000000009b DR2: 00040000ffffffff
[   56.158240][   T10] DR3: 0000000000000009 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   56.166275][   T10] Call Trace:
[   56.169664][   T10]  <TASK>
[   56.172632][   T10]  ? __cfi_down_write+0x10/0x10
[   56.177511][   T10]  ? _raw_spin_lock+0x8c/0x120
[   56.182304][   T10]  ? __cfi__raw_spin_lock+0x10/0x10
[   56.187540][   T10]  ? mutex_unlock+0x8b/0x240
[   56.192171][   T10]  ? __cfi_mutex_unlock+0x10/0x10
[   56.197228][   T10]  rust_binderfs_remove_file+0x6c/0x110
[   56.202797][   T10]  _RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x9d4/0x2860
[   56.215589][   T10]  ? unwind_next_frame+0x3c2/0x750
[   56.220728][   T10]  ? __cfi__RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x10/0x10
[   56.233958][   T10]  ? __kernel_text_address+0x11/0x40
[   56.239275][   T10]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[   56.245465][   T10]  ? arch_stack_walk+0x139/0x170
[   56.250435][   T10]  ? ret_from_fork_asm+0x1a/0x30
[   56.255404][   T10]  ? stack_depot_save_flags+0x38/0x800
[   56.260890][   T10]  ? kasan_save_track+0x4f/0x80
[   56.265766][   T10]  ? kasan_save_track+0x3e/0x80
[   56.270644][   T10]  ? kasan_save_free_info+0x4a/0x60
[   56.275864][   T10]  ? __kasan_slab_free+0x5f/0x80
[   56.280918][   T10]  ? kfree+0x156/0x400
[   56.285016][   T10]  ? vfree+0x4c6/0x580
[   56.289105][   T10]  ? delayed_vfree_work+0x59/0x80
[   56.294153][   T10]  ? process_scheduled_works+0x7d2/0x1020
[   56.299910][   T10]  ? worker_thread+0xc58/0x1250
[   56.304795][   T10]  ? kthread+0x1d0/0x370
[   56.309070][   T10]  ? ret_from_fork+0x64/0xa0
[   56.313696][   T10]  ? calibrate_delay_converge+0x2e0/0x2e0
[   56.319458][   T10]  ? __kasan_slab_free+0x6a/0x80
[   56.324425][   T10]  ? kfree+0x156/0x400
[   56.328525][   T10]  ? vfree+0x4c6/0x580
[   56.332622][   T10]  ? vfree+0x4c6/0x580
[   56.336716][   T10]  ? __kasan_check_write+0x18/0x20
[   56.341852][   T10]  ? pwq_dec_nr_in_flight+0x6c7/0xc60
[   56.347265][   T10]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[   56.352839][   T10]  ? kick_pool+0xb9/0x550
[   56.357201][   T10]  process_scheduled_works+0x7d2/0x1020
[   56.362773][   T10]  worker_thread+0xc58/0x1250
[   56.367487][   T10]  ? schedule+0xc6/0x240
[   56.371843][   T10]  kthread+0x2c7/0x370
[   56.375943][   T10]  ? __cfi_worker_thread+0x10/0x10
[   56.379254][   T36] kauditd_printk_skb: 27 callbacks suppressed
[   56.379273][   T36] audit: type=1400 audit(1750400610.910:302): avc:  denied  { mounton } for  pid=2090 comm="syz.1.552" path="/131/memory.events" dev="tmpfs" ino=690 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   56.381081][   T10]  ? __cfi_kthread+0x10/0x10
[   56.381115][   T10]  ret_from_fork+0x64/0xa0
[   56.419228][   T10]  ? __cfi_kthread+0x10/0x10
[   56.423834][   T10]  ret_from_fork_asm+0x1a/0x30
[   56.428607][   T10]  </TASK>
[   56.431628][   T10] Modules linked in:
[   56.435531][   T10] CR2: 0000000000000098
[   56.439708][   T10] ---[ end trace 0000000000000000 ]---
[   56.445161][   T10] RIP: 0010:down_write+0x9a/0x2a0
[   56.450197][   T10] Code: 48 c7 44 24 20 00 00 00 00 be 08 00 00 00 e8 2d 34 55 fc 4c 89 f7 be 08 00 00 00 e8 20 34 55 fc 48 8b 44 24 20 b9 01 00 00 00 <f0> 48 0f b1 0b 0f 85 a0 00 00 00 48 c7 c0 c0 b9 20 87 48 c1 e8 03
[   56.469799][   T10] RSP: 0018:ffffc900000a7500 EFLAGS: 00010256
[   56.475864][   T10] RAX: 0000000000000000 RBX: 0000000000000098 RCX: 0000000000000001
[   56.483835][   T10] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc900000a7520
[   56.491806][   T10] RBP: ffffc900000a7598 R08: ffffc900000a7527 R09: 1ffff92000014ea4
[   56.499777][   T10] R10: dffffc0000000000 R11: fffff52000014ea5 R12: dffffc0000000000
[   56.507746][   T10] R13: 1ffff92000014ea0 R14: ffffc900000a7520 R15: 0000000000000000
[   56.515718][   T10] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   56.524652][   T10] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.531238][   T10] CR2: 0000000000000098 CR3: 0000000120f0c000 CR4: 00000000003526b0
[   56.539303][   T10] DR0: 0000000000000007 DR1: 000000000000009b DR2: 00040000ffffffff
[   56.547277][   T10] DR3: 0000000000000009 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   56.555249][   T10] Kernel panic - not syncing: Fatal exception
[   56.561664][   T10] Kernel Offset: disabled
[   56.565985][   T10] Rebooting in 86400 seconds..