last executing test programs:

1m13.053174981s ago: executing program 0 (id=277):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r1, &(0x7f00000002c0)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000540)=""/29, 0x1d, 0x3}}, 0x120)
write$UHID_DESTROY(r1, &(0x7f0000000440)={0xa}, 0xffffff95)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0100000000000000014d564b00000000af"])
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x10a, 0x0, 0x100000002}]})
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r5, 0x0)

1m11.907040858s ago: executing program 0 (id=284):
prctl$PR_GET_NO_NEW_PRIVS(0x27)
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x141342, 0x0)
mmap(&(0x7f0000797000/0x2000)=nil, 0x2000, 0x3000001, 0x22052, r0, 0x2000)

1m11.852180669s ago: executing program 0 (id=285):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETSW2(r1, 0x402c542c, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)={[{0x13, 'devices'}, {0x2d, 'devices'}, {0x2b, 'cpuacct'}, {0x0, 'net_prio'}]}, 0x25)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@fd={0x66642a85, 0x0, r2}, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/10, 0xa}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f0000000040)})

1m11.850803169s ago: executing program 0 (id=286):
r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) (async, rerun: 64)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000040)={<r1=>0x0, "1034f90300f2bff2ef91d76500c7ae6c"}) (rerun: 64)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000001040)={{r0}, 0x0, 0x10, @unused=[0x0, 0xf, 0x5, 0x8], @devid=r1}) (async)
ioctl$BTRFS_IOC_SNAP_DESTROY(r0, 0x5000940f, &(0x7f0000002040)={{r0}, "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"}) (async)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000003040)='./binderfs/custom1\x00', 0x2, 0x0)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000003080), 0x1, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f00000030c0)={0x8, {0x10, 0x0, 0x7, 0x664, 0x4}})
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r2, 0xf504, 0x0)
r4 = openat$cgroup_freezer_state(r0, &(0x7f0000003100), 0x2, 0x0)
ioctl$BTRFS_IOC_BALANCE_CTL(r0, 0x40049421, 0x1)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000003140)={<r5=>r3, 0xb, 0x0, 0x8}) (async)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000003180), 0x2, 0x0)
ioctl$BTRFS_IOC_GET_FEATURES(r4, 0x80189439, &(0x7f00000031c0)) (async)
close(r3) (async)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000003200)='./binderfs/custom0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000003340)={0x8, 0x0, &(0x7f0000003240)=[@decrefs={0x40046307, 0x3}], 0x96, 0x0, &(0x7f0000003280)="1b730e1c0ca31b6e58df4f1bd76d8c2cc7dd3c478046bd5c18f385604086c4d7e8fbfd0feffaa140f94f3a0fb248d0b166261b2753f89328280f4881f34a4fbff4508ce37f55db80bd13d223688b6e35f0e6b980844c65de1aa93cd52440c4966722676b1016924171a9138286e2a13ca7dbd471da39308fa38cc7fb63c8d41e5e1402c483b5bf27ba90e3ae82dd4ce4e8ccb8b6a1ab"}) (async)
ioctl$BTRFS_IOC_START_SYNC(r5, 0x80089418, &(0x7f0000003380)=<r8=>0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f0000003440)={{r2}, r8, 0xc, @inherit={0x70, &(0x7f00000033c0)={0x0, 0x5, 0xf, 0x0, {0x30, 0x9, 0x3, 0x2, 0x2}, [0x3, 0x100, 0x2, 0x41228dbe, 0x401]}}, @name="298e4a5e8953685987d2eecaeb8ac4967b8d0d6b941c6006cdf8189b5abc9d1a8c9ecee200cc7f331aaecbca0e87167e7744abe2422a1cb0eea00fe5ed8f15297b48a217e0b549681c327b4387088892061ac2cbe848782c0cc6e925276baf2af2371957b8998c6a176bd195aded83e07b6da23bdd7426d1c8855c3521b436cdda2f32c7390e833aff23ecef647fca5e2fb9935a997b55968d7216de403a8b24f143a2ab796a515f34acb63e7669e9e7f36082acf3b1d945807ce5f86878b52500eb40f582aef9cc154aa27ac1bf4b1788b7ac46ca45b1c26ded8e1ad08bb2da7a10273210f4a9803deabb77bdbf75a5dee1a43d382df65c430877882ef943e3b3fbbafc95c2008fde975103995d14555e0028bbc8e02a1a8df38c38a09e961e48886096cfb6e7fcc1a7ee42c12facac063103133f16ae395ff3a7ef99179eb4ac1acb4149431a0abe929176545586591f7ddfbe8aefd1560c38a0d423d724600092478aa8258ff872ca220218adcbf0b1b70e0152b5a97c65b8abcbe4e7fc36284b1e0962f99c7aca5cae85456a3529182aef2618c6f2038fdaa4a90236a333ea9dee844052fbd9e3f25131887c10af64b5da09cee1d66175c6ed27e789ec6fca949c2a87c722b47eb10c88842f7418edd40a9f0a85737d82d5725d0ba46ecdf5d49c941382fb536dec4a5c7b51515cd84a146c5b096db57e4fa8a2ccd587a3dbf830ed884320e4cf807cc91c3cc9b3b477b9dba8d0036d1f9dc69550ced707a7a2e64cea329c64db5884d3d89fbda803d630279e1c0a365f69c8ae36a3497f0fbfccf90a826b193523a6f5a5b0838a65bd030a7386edae16a744ae003dd1afe869db6812f3485928fb038b5fe76da0ee0efddca7092b5df18a657cbeb6c7588e809a0eced1e8c42a3083ba52fb66747ad32e61337ea98a1ad9419b155b93b171bb41cfdb612f0e350b1e2bb28bc9a94eac69d7ccb97f089fcc17799c38a703e77e0d92a25b4ceecc475b9a156a6a68dc6dd07a9ead99eb3adbe72e3cbafd4f481f9c44ad8dbf73a16ec4d6ddd6029d86882e3510681989c584cb8a96077543a07bf68dd7ac68a161348d1f0cb5bd7b045ea4239e6289a161b578e441d161c99ff46d3c89a19c19b8c21787559be55fbe53e9b1919cf409526a72555f8a7a38b82b08411b489d48211be1856eab492861b3fd052700dfaf22adabd5eee99336851fb998cc7315cb4567abde0c15922fb01125a3493d0dd64cb534a42af606b5294ea4cc928f06ec04e0cd26ab6b62ce899293d9257d0b48b7d11f1cd2f1af138f461578a44d89681cac5096f19bb5b22e5079ccbeacb73c47d6e04102d7ebc93b953712fc5cb1f1d2c2cf3026682858baf6805f484cd7b1a67812408212a092b4fb7632733a276347e8602c9871e315793745b40a9f914f4e4518c60c8009ec3b740c6f880b41fc7b17b55307a6b7daf97a84c46fad0ede684f5c74a9f9258710a1882ceac11707526d3dfd14b6ea4e9da99377c1fd1f1eef2a20232cc369db345be8fc348cef61f59cc6eea6b1e75282cc97634a89fd1b97cabdad5bf54f242091a1854947e5af2f9e76c811b79c48ae3ffa6168d0e035680bfcfbace41c3ad2975d10d5e5a1e92ed1890c43e89e0a8b5a7643e89dc56556cd8e04caf5ea728d568b9d5c9096416b5dc6c5cc557b15d0925088fe92fb9f10615b51d3c24b9d1c0ab98cbf0706e0374b6240296f77d9d83971de1b28b9a37c383e8ee6edc1b7d855044e31311002e12a33653be8871a66e25ca9b11dc5423d898375872b2355d0bb06211639aec75b6c71ca52d6295899a54cd8290714e1c99390528baea99f58060d2720bb9bdb25c3ea71de136102f4e01b26da84ac51e2399c79b71105326e3aed41058171c08cb300fdf92e61ef636390f9644d15b5e5c0275cf61cf587cd785a6e10b32a5f4f25eac96318705382c5b43fe8d2e84664a883b89973803b3c1b7b840305e999f7809351979244da8ebb48eeadc9eff353a126e997be205735949b928c85e6e7813853fcb0131d4b258a5bb29e3c3fb9ee1733b5ae608b01358a2b1dfb145e4107bb3f686666f2fbaf42ad03c9cddd53966bef8c362f25a0287c05046e2115be834a5feaf949bb4a496b2f29cb3c79c7d401460556ebfb16617b5a01f73b85e2ef8e1f75103cde51a64a87c5cece76f69d3bae73a13da065edd1b74934daf8e6a398c4b6bbb4076495d8655573f76c425438036c847ea615fd6b138f6102e7f43a436634eb9b277f69b4eef7e197d0bf05a47a0d7e031b9d6470d21904a64991cc9a142e03aef6ee02523dca1c1e9192aeac9993c288a080f50af29e01ffda3bb4a1a5976e84c21ee4d0933d822223d8c317a3bf15006d783677b87c7b9c2be5901990cd9b7e10a324cdf8e51b89a07db13ee6aef2ff373edcc610a4fa83eb6f5765df446c4ba83a4130eb94eddc49c74d04b7ec4c82a0c4920c5283e96ab60c2420783374d53ab1fb9ec0eea134876b8c114e29e0e3bb49a1d5098cba627ee5259ac7135ad200cca9b1035993f2db96434bdff2375bdafb5b5fd646cdd4aead41007bd8e31817789e5fb0d271ee7e751fe226aaa47c6be0b99a27968783f94e6c879d3f550b990cf85a14c5ad2745257dbeb8ee600ef1f83a70d50431905e2c2c776fcce3a85bb542b048fc20198712255cec9fddad4d4ff40f795d85b7f9b656981e78a7248b94611031cc23ae51bd75501b5da973b63059d21198bef3e2b08cc3159dee76f0d1dbc6701cc9915210a6b77687e99006de1b7f3b089846e8f0a39c0849c76353ba049006f977e2ca4f17da1d79b8ed86e556bdb5ef99d7754147e0564f7f905d2e80dbfb004dd85e0aae4b090ff1952d6f4596314c73871b09a3e00efe3cfd2ee1d4fd87a7c8fa1c6dfc58507674e6d33656d4ceff6df233e25183b3465829568a3d09629f14aa274519318db20708b93ff5a4641ef486ad01bf7ecd1ff460c7b54ce9c4f3d3014bcd50b38cf32a5122fa88525b0c00320934b39d33c92b3e609742c236a3d2a786fc68daea100a830d4986f9f97dd619ff2baae913a754e511e3285a65ed55f2fa4dee5a04a2f74d39880075a092cf0aa28b00dc8507f9d1f320e547caf32f8fb3e85507d193a109145441aee075c313221eaabae67a35e07e0930594957262ad9969d3d2fcbd267e348c5f62f08f9521e7ef1bc728cfd7a0c6bb6e9fa3711bdaf3858eb9f6b4fec0894a53857769c78bdee233e18a48e0238523c3d7c4cd61405cd47898f00fe743c0ba7e5a2812bb36973d2db9dbdc11d2014664269bbdbb6b981e60870ffc9f9eee996908d4b0acab74c659165018841bab4deb59206527cf23a130ea7ad03afa9688a56757e5651e6706817c6e7c52b1dcbac8caceffedbc94d80938f6b240639bcf6190803778155c8fce4b2ce2921fbaca936cc6b6c548e1f0dd194b724bfc5cb7d4ff1ed714e4167d58c995aae915a31e3153a4dba14301f49b9cae516eac92d90ba4cfb838ebcdf5fc4d3b43bfcbe56048aaa008e4a26487b975ac327832f7319aab7cf0f20e12f2fbbb5d7ef5dfc4559f6c352b64a0f93cf0d191c00b4ab653ec882b92bf46e3cfc6e898ee23fbde35b15552107ef8864a69ac5023595e054d178451593be05a96950d35663522e409baede1964f503804ef05455aa480376d11c31039350f701613c58ef8f27276fc49190db2468d466976fa15797b5b1ff4b0f02068e6e85961a220ce3ab31907e6612fe3d7972bee3c8b88d3bce9962749f7b8b19e132be1ad133dae8957b9076c659b81dae9fc76efa8996bad7e361f1510d54c1f11a564e9ddaf18817eb7512b44143c4eebc1c911a617fc4abd08ce2843e213b80c349e4bd7d82f52377810cefc65d1ea30a8a24ba4ad5de3849464550fe0881198d75d1318e3faea8396657cd7e970cc20a6ed08a345dad2429e6fcbbfa89925d58d6106f541412edf3d490ac08bbb149deddc343ce022a97f694ff923b8a19352a0e331e8c15fbe2b49e11ad1bd06c3f6c55a2e6991ba6be479bf337cbb6d76b8374f53dc07c52d0b7b4b960cc5343c0428950ed01a8a7dc98bbcda81c082d53e257f8a5b0143059cf07ee3dc75cd81b933bcd1fa9220b58e73d3863089429f1e2e691be66754f58efaec9b6093766d09ab3a4234133a3e28365260754a4c2e765eb2c005f8b1efc919740a6e413a73de4546a5c4488f438c15400682ac09916d52c85a9e14945f0c89b386e312e1f164911c9774ce8a6fc5d337825f8cad5a0f9d386086d19ffff34f6ef7b1c6975d6a8ac83a2c646646e6e04e4a7be6c095b0371435c248e0b3e7f5bc911f54743a68d781fc93a392bfdb720654af9043f3f05be3c8817833e27564d98893c3b18635b7289cb79503c7f1227b8bc65ebe08d209c855d9c700b04bb8df4eafa1e6c217b17430257dd7d067c1cf281e2867f372e7f86bf768f8ae7997b16e3fe3e101cdc46fd936ab249c63a23d96683ddef97203da51ef300865d8627d9e74122f91ff463348113bb20975b6680e5e70ccab7c89c15e17b30c2ca0af32ab8972fc92bbccb839ca2b622d4ae91e34fa8eaa115c37a6e8c69283326c83fba126667390bd5b8f53d371c17de523c3bb4fa4a0f52d464e2fd51357d228cd4fad1dd1578756768cd0f9e28f0e2612548fcd0dd5b8f2cf74a5e934e5d4fe380b925ea835ac578958ba5dbe839dccb61e0083331c707f071359c4b305da27ec3102ca817a749ca2978875ef5bb876d9b9d9792bd55a6d92ca4180b27f975e56af5375471adeafcf026b9bb499534eab848ee738d7bc5f88b8797176aca70db0dc9fa3c94cf5e14f2c254c1a027817c990d516e17743a2a106589a86695fd654cd1f536f01c5becc3233e3999becef87a5fa49d198d7c93e9a0f5fe658cd74c14c64c382acc0d411889168a230c5a86d79b46c1c482ab82b47033b0d210f2db9cceaaab81063550919918ae74801b6301a2c2a78f581bf167775bb38675078c1bf344eb601baa0679872330f5170187b3db4e76a0fddd6194692d9abd25827aa1cc2c10781b3fe396538ee687861ea4e3e8e3e6839a30f1fd3e6def21d9027704d0113653481118b9e98285f22cbad5f7e809f67eb8a11d5031e5a05df5f07e5d17b9000794fd535dcf6a5e6f95677aca11b3a35dcdb15b3f4d4b47c7881490b4ca3e36b633093d1755c1d0426781914058c2fe7bd4d51c517adad7ffc77ece14234a8d877bcfacb4dbded9e5e5a7251d0836e0167d3df77120c0ae459d7a5bed6459c20a3b0993d7ecf8d27b6b08f43e96a8d2b862fb8cc7d7ffa6150ba6d69cbb9a85d1e05ff17f48dbe6fa984a15b50351879b182772f6af8d1835d107433ce8e3e4a0af4c7f26e98a17d41ed16d0d00da50b518e3461b5b0354f3bf21f4b16c727d3fccb9a9e4300be3bd91d3135df07517b18ddeb95222bcb71aad4f5e5ef64f4a1f8f70e8e73b768a07ff2b3fb2b8ca5c45a51d75fab63bb80215b88ed0c9c61e6ef31f09ea60d00e91405616c659e8975c96c0f49dbb63b8bcbf78e833effc37fe224546e7e5283481a3547670bcfd6ffebd247b73b4a1f12de4e645a26d00daa6c59efe94d9d9cf9287351a6bacb508e22e55fc50cde705d25bcb111a545ca88e01792e1e2adc09447a8832a3dcd7e63ecf33941a6e"}) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r9 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000004440)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f0000004500)={{r9}, r8, 0x8, @inherit={0x68, &(0x7f0000004480)={0x0, 0x4, 0x81, 0x7, {0x32, 0x8, 0xff, 0xe, 0x5}, [0x9, 0x80, 0x4, 0x8]}}, @name="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"})
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 64)
r10 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000005500), 0x2, 0x0) (rerun: 64)
ioctl$VHOST_SET_MEM_TABLE(r10, 0x4008af03, &(0x7f0000005700)={0x2, 0x0, [{0x1000, 0xbc, &(0x7f0000005540)=""/188}, {0x7f6f4000, 0xc5, &(0x7f0000005600)=""/197}]})
write$cgroup_pid(r0, &(0x7f0000005780)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000004, 0x40010, r6, 0x23bbc000)
r11 = openat$cgroup_freezer_state(r0, &(0x7f00000057c0), 0x2, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r11, 0x80089418, &(0x7f0000005800))

1m11.665850401s ago: executing program 1 (id=291):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(r2, 0x4068aea3, &(0x7f0000000040)={0xda, 0x0, 0x8})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000100))
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})

1m11.544249993s ago: executing program 1 (id=293):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x100010, r0, 0xfffff000)

1m11.541797583s ago: executing program 1 (id=294):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x5b, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70b7a440b418709844294623"})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000140)={0x4, &(0x7f0000000080)=[{0x2, 0x1, 0xb4, 0x200}, {0xd, 0x1, 0xf, 0x5}, {0x3, 0x1, 0xff, 0x10001}, {0x6, 0x8, 0x8, 0x1}]})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000340)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1m11.470092435s ago: executing program 1 (id=295):
openat$rnullb(0xffffffffffffff9c, 0x0, 0x200, 0x0) (async)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000800)='/sys/power/image_size', 0x141a82, 0x0)
write$UHID_GET_REPORT_REPLY(r0, &(0x7f0000000000), 0xa) (async)
r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000033c0), 0x0, 0x0) (async)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1e1243, 0x0)
ioctl$BLKRRPART(r2, 0x125f, 0x0) (async)
read$FUSE(r1, 0x0, 0x0) (async)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0) (async)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000002a40), 0x200, 0x0) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$vga_arbiter(r5, &(0x7f0000000080)=@other={'lock', ' ', 'none'}, 0xa) (async)
ioctl$BLKROSET(r4, 0x125d, &(0x7f0000000540)=0x10001) (async)
ioctl$BLKRRPART(r3, 0x125f, 0x0)

1m11.388375826s ago: executing program 1 (id=297):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000240)={0x73622a85, 0x18a, 0x2})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x10) (async, rerun: 32)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179) (async, rerun: 32)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) (async)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_subtree(r4, 0x0, 0xfffffdef) (async)
ioctl$TIOCGSERIAL(r4, 0x541e, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/37}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000200)={0x10004, 0x2, 0xeeee8000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async)
r5 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) (async, rerun: 32)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffd}]}) (async, rerun: 32)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x9) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x9) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000040)=0x7f) (async)
close(r0) (async)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0}) (async)
r7 = mmap$binder(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x11, r6, 0x400000000)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x10, 0x0, &(0x7f0000000040)=[@enter_looper, @free_buffer={0x40086303, r7}], 0x0, 0x0, 0x0}) (async)
r8 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x400000, 0x0)
ioctl$VHOST_SET_VRING_BASE(r8, 0x4008af12, &(0x7f00000001c0)={0x0, 0x1}) (async)
ioctl$KDADDIO(r5, 0x4b34, 0x74c)

1m11.311495807s ago: executing program 1 (id=300):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000680)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000001140)=""/5, 0x5}}, 0x120)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r2, 0x8004e500, &(0x7f0000000180)=r1)
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, 0x0)

1m8.48011365s ago: executing program 0 (id=340):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000180)=0x1b)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder0\x00', 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000500)={0x44, 0x0, &(0x7f0000000400)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
write$UHID_SET_REPORT_REPLY(r4, &(0x7f0000001f40)={0xe, {0x3, 0x26, 0xff}}, 0xc)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x40010, r2, 0x3e774000)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0}) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000180)=0x1b) (async)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder0\x00', 0x2, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000280)=0x10) (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179) (async)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000500)={0x44, 0x0, &(0x7f0000000400)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) (async)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0) (async)
write$UHID_SET_REPORT_REPLY(r4, &(0x7f0000001f40)={0xe, {0x3, 0x26, 0xff}}, 0xc) (async)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x40010, r2, 0x3e774000) (async)

1m8.471054891s ago: executing program 0 (id=341):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) (async)
r1 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0xca800, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1}) (async, rerun: 32)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$selinux_context(r1, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d) (async)
r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x200040, 0x0) (async)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000400), 0x48) (async, rerun: 32)
write$cgroup_subtree(r6, &(0x7f0000000440)=ANY=[@ANYBLOB='-'], 0x7) (async, rerun: 32)
ioctl$BLKGETNRZONES(r5, 0x80041285, &(0x7f0000000080)=0xad50) (async)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000040)=0x2)

55.920685183s ago: executing program 32 (id=300):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000680)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000001140)=""/5, 0x5}}, 0x120)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r2, 0x8004e500, &(0x7f0000000180)=r1)
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, 0x0)

53.438644781s ago: executing program 33 (id=341):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) (async)
r1 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0xca800, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1}) (async, rerun: 32)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$selinux_context(r1, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d) (async)
r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x200040, 0x0) (async)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000400), 0x48) (async, rerun: 32)
write$cgroup_subtree(r6, &(0x7f0000000440)=ANY=[@ANYBLOB='-'], 0x7) (async, rerun: 32)
ioctl$BLKGETNRZONES(r5, 0x80041285, &(0x7f0000000080)=0xad50) (async)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000040)=0x2)

17.735256098s ago: executing program 3 (id=891):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x1ffffffffffc}) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000300)={0x73622a85, 0x1000, 0x1}) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0xc, 0x0, &(0x7f00000001c0)=[@dead_binder_done], 0x56, 0x0, &(0x7f0000000500)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d3094a690ab3b4473dfeb1b0d196137252587ab1790749b03391df48adf2dcbba03d2f3e0e647c2e70"})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\t']) (async)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x14280, 0x140)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
r4 = ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f0000000140)={0x7, 0xc5})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000380)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000280)={@fd={0x66642a85, 0x0, r4}, @fda={0x66646185, 0x1, 0x0, 0x3b}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000180)={0x0, 0x18, 0x38}}, 0x40}], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x8, 0x0, &(0x7f0000000340)=[@increfs], 0x0, 0x0, 0x0})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)

17.377570564s ago: executing program 3 (id=894):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @ioapic={0x80a0000, 0x5, 0x5, 0x6, 0x0, [{0x0, 0x0, 0x4, '\x00', 0xff}, {0xf9, 0x3, 0x7, '\x00', 0x9}, {0x4, 0x7, 0x5, '\x00', 0x9}, {0x6, 0xf9, 0x3, '\x00', 0x3}, {0x2, 0x3, 0x5, '\x00', 0xfa}, {0x7, 0x13, 0x1, '\x00', 0x3}, {0x5, 0x8, 0xee, '\x00', 0x2}, {0xa, 0x2, 0x1, '\x00', 0x5}, {0x6, 0x7, 0x1, '\x00', 0xe}, {0x5c, 0x4, 0x9, '\x00', 0xfa}, {0x6, 0xbc, 0xe, '\x00', 0x7}, {0xa1, 0xe, 0x5, '\x00', 0x80}, {0x5, 0x8, 0xd3, '\x00', 0x5}, {0x6, 0xf, 0x5, '\x00', 0x7}, {0x7a, 0x5, 0x3, '\x00', 0x23}, {0x81, 0x0, 0xb, '\x00', 0x9}, {0xcc, 0x1, 0x6, '\x00', 0x1}, {0x6, 0x2, 0x0, '\x00', 0x5}, {0x4, 0x19, 0x2, '\x00', 0x8}, {0x4, 0x80, 0x9, '\x00', 0x81}, {0x3, 0x8c, 0x4, '\x00', 0xb0}, {0x9, 0x0, 0x7, '\x00', 0x4}, {0x8, 0x9, 0xa9, '\x00', 0xe}, {0xf7, 0x10, 0x5, '\x00', 0x2}]}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_clone(0x1200200, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSFLAGS1(r4, 0x40047459, &(0x7f0000000100)=0x50044)
ioctl$PPPIOCSFLAGS1(r4, 0x40047459, &(0x7f0000000400)=0x4000)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f00000001c0)={0x70003, 0x0, [0x7, 0xb, 0x4, 0x2, 0x0, 0x6, 0x83000000002, 0x8001]})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCPKT(r5, 0x5420, &(0x7f00000000c0)=0x20)
ioctl$TCSETAF(r5, 0x5402, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "823af9032ae9da23"})
ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000000100))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
read(r0, &(0x7f0000000140)=""/53, 0xffffffffffffff9b)
read(r0, &(0x7f0000000040)=""/106, 0x6a)

16.753488123s ago: executing program 3 (id=899):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000005c0)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000640)=@attr_other={0x0, 0x1, 0x1, 0x0}) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000006, 0x22052, r0, 0x2000) (async, rerun: 32)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000800), 0x8000, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x4040ae79, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

15.809796068s ago: executing program 3 (id=904):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0) (async, rerun: 64)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000400)={0x14, 0x1, 0xfe}) (async)
ioctl$KVM_X86_SET_MCE(r4, 0x4040ae9e, &(0x7f00000001c0)={0x693400fc1fd5255b, 0x2000, 0x0, 0x5, 0x14}) (async)
mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0)

15.621112331s ago: executing program 3 (id=906):
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000280)={0x30, 0x30, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f00000002c0)})
read$FUSE(r1, &(0x7f00000020c0)={0x2020}, 0x2020)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x9})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[@ANYBLOB=',\nN'], 0x6a)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000440)={0x8, 0x80000000, 0x337800, 0x3, 0x5, "bd2e8cb8944a23654b47a504513084908aeaae"})
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000080)={0x8})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000480)={0xd000, 0x113000, 0x1})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x50, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70"})
r8 = mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r6, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x2000, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000000)={0x98, 0x0, &(0x7f0000000600)=[@enter_looper, @enter_looper, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000040)={@fda={0x66646185, 0xa, 0x2, 0x1e}, @ptr={0x70742a85, 0x0, &(0x7f0000000280)=""/247, 0xf7, 0x5, 0x400000000000000}, @fd={0x66642a85, 0x0, r9}}, &(0x7f0000000140)={0x0, 0x20, 0x48}}}, @release={0x40046306, 0x3}, @dead_binder_done, @increfs_done={0x40106308, 0x3}, @enter_looper, @increfs_done={0x40106308, 0x3}, @free_buffer={0x40086303, r8}], 0x0, 0x0, 0x0})

15.515247182s ago: executing program 3 (id=907):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r0, 0x4008af23, &(0x7f0000000040)) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async, rerun: 32)
ioctl$BINDER_GET_FROZEN_INFO(r1, 0xc00c620f, 0x0) (rerun: 32)

2.816255057s ago: executing program 4 (id=1059):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7)
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x8000, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000003100), 0x0, 0x0)
ioctl$UI_SET_SNDBIT(r2, 0x406855c9, 0x4000000000003)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0)

2.805732057s ago: executing program 4 (id=1060):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000100), 0x1001)
ioctl$SIOCSIFHWADDR(r0, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x2, 0x80, 0xc2, 0xc}})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r1, 0xc00c6211, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
write$cgroup_subtree(r2, 0x0, 0xffe3)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

2.656230859s ago: executing program 2 (id=1062):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000200)=0x1)
close(0x3)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x0, 0x3})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$SIOCGIFHWADDR(r3, 0x8927, &(0x7f00000001c0)={'macvtap0\x00'})
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r4, 0x4068aea3, &(0x7f0000000140)={0x8f, 0x0, 0x2})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140), 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0)

2.518071061s ago: executing program 4 (id=1063):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0xa, 0x2})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_GET_PIT2(r2, 0x8070ae9f, &(0x7f00000001c0))
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x34, 0x0, &(0x7f0000000040)=[@request_death={0x400c630e, 0x3}, @clear_death={0x400c630f, 0x2}, @acquire_done], 0x0, 0x0, &(0x7f0000000180)})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x52, 0x0, &(0x7f00000002c0)="1920ff09471b1099c7961fdcc405843a41a786d3ed8ebe8e80e4b4144e1cf51c728b926c80eb2a8e4f6b2dab5b6ac95dd16066dc703442a9132a8dd210e45df98d795a638622681df1cb222612051f612948"})
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x2c6881, &(0x7f0000000000)=ANY=[@ANYBLOB="1222af0423"])

1.894295811s ago: executing program 2 (id=1074):
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) (async)
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000000)={@flat=@weak_binder={0x77622a85, 0x90e, 0x2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x31}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x202, 0x0)
r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x2)
read(r2, 0x0, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000001080)={{r2}, 0x0, 0x14, @inherit={0x50, &(0x7f0000000580)={0x1, 0x1, 0xffffffffffffbca6, 0x0, {0x23, 0x401, 0x3, 0x345d, 0x8cce}, [0xffffffff]}}, @subvolid=0x10000}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000001080)={{r2}, 0x0, 0x14, @inherit={0x50, &(0x7f0000000580)={0x1, 0x1, 0xffffffffffffbca6, 0x0, {0x23, 0x401, 0x3, 0x345d, 0x8cce}, [0xffffffff]}}, @subvolid=0x10000})
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000180)={<r3=>r1, 0x4, 0x8, 0x8000000000000001})
ioctl$KVM_CAP_STEAL_TIME(r3, 0x4068aea3, &(0x7f00000001c0))
mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x80)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000b40)={0x58, 0x0, &(0x7f0000000a80)=[@acquire_done={0x40106309, 0x2}, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x0, &(0x7f00000009c0)={@ptr={0x70742a85, 0x1, &(0x7f0000000400)=""/208, 0xd0, 0x2, 0x14}, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x38}}, 0x0}}], 0xa7, 0x0, &(0x7f0000000fc0)="80a289296205dcc5620700e76a07d991e84f31a147f91d2ce73dc0cb80c2e8c19e67135ade4f34119a7e420826efd0f177be2c15a630cd403e86e4a77b4a9478065aa00e0b913630d0a5ed92401880ed54d0fca037e2b4a71e1f80c814bd22ed55c9ee8cb33ef29c28c8a0b1973fd2abc43687b3907a58aafbaa625ccb36e9082cb66c5186669613684973dbd11fc37951f2e85993a0272ca9c06742ce7d08e55c6c1136675136"}) (async)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000b40)={0x58, 0x0, &(0x7f0000000a80)=[@acquire_done={0x40106309, 0x2}, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x0, &(0x7f00000009c0)={@ptr={0x70742a85, 0x1, &(0x7f0000000400)=""/208, 0xd0, 0x2, 0x14}, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x38}}, 0x0}}], 0xa7, 0x0, &(0x7f0000000fc0)="80a289296205dcc5620700e76a07d991e84f31a147f91d2ce73dc0cb80c2e8c19e67135ade4f34119a7e420826efd0f177be2c15a630cd403e86e4a77b4a9478065aa00e0b913630d0a5ed92401880ed54d0fca037e2b4a71e1f80c814bd22ed55c9ee8cb33ef29c28c8a0b1973fd2abc43687b3907a58aafbaa625ccb36e9082cb66c5186669613684973dbd11fc37951f2e85993a0272ca9c06742ce7d08e55c6c1136675136"})

1.720088754s ago: executing program 2 (id=1076):
openat$rnullb(0xffffffffffffff9c, 0x0, 0x200, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x141800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000004c0)={0x79, 0x0, 0x3})
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000540)=ANY=[@ANYBLOB="01000000000000000100000002000000000000000000007f00ec97630000f1ffffff"])
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x3})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000800)='/sys/power/image_size', 0x141a82, 0x0)
write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000000), 0xa)
r4 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000033c0), 0x0, 0x0)
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1e1243, 0x0)
ioctl$BLKRRPART(r5, 0x125f, 0x0)
read$FUSE(r4, 0x0, 0x0)
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
r7 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000002a40), 0x200, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$vga_arbiter(r8, &(0x7f0000000100)=@other={'lock', ' ', 'none'}, 0xa)
ioctl$BLKROSET(r7, 0x125d, &(0x7f0000000540)=0x10001)
ioctl$BLKRRPART(r6, 0x125f, 0x0)

1.474105898s ago: executing program 4 (id=1079):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000008, 0x13, r3, 0xb3d68000) (async)
mmap(&(0x7f0000196000/0x1000)=nil, 0x1000, 0x0, 0x840000000000a132, 0xffffffffffffffff, 0x0) (async)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x8000, 0x0) (async)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$PTP_CLOCK_GETCAPS(r5, 0x80503d01, &(0x7f00000001c0)) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r7, 0x4010ae67, &(0x7f0000000380)={0x1, 0x0, 0x1}) (async)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r7, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1}) (async)
ioctl$KVM_CAP_HYPERV_SYNIC(r8, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
syz_clone(0xae003400, 0x0, 0xffffff39, 0xfffffffffffffffd, 0x0, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x40010, r8, 0x0) (async)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000000)={@flat=@weak_handle={0x77682a85, 0x1}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x31}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000240)={0x58, 0x0, &(0x7f0000000a80)=[@acquire_done={0x40106309, 0x2}, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x0, &(0x7f00000009c0)={@ptr={0x70742a85, 0x1, &(0x7f0000000580)=""/216, 0xd8, 0x2, 0x14}, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x38}}, 0x0}}], 0xa7, 0x0, &(0x7f0000000fc0)="80a289296205dcc5620700e76a07d991e84f31a147f91d2ce73dc0cb80c2e8c19e67135ade4f34119a7e420826efd0f177be2c15a630cd403e86e4a77b4a9478065aa00e0b913630d0a5ed92401880ed54d0fca037e2b4a71e1f80c814bd22ed55c9ee8cb33ef29c28c8a0b1973fd2abc43687b3907a58aafbaa625ccb36e9082cb66c5186669613684973dbd11fc37951f2e85993a0272ca9c06742ce7d08e55c6c1136675136"})

1.30809725s ago: executing program 2 (id=1080):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140)=0x80)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x4d, 0x0, 0x1}, {}, {0x16}]})
mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, 0x0)

1.28171459s ago: executing program 4 (id=1081):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000180))
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000500)={'syz0\x00'}, 0x45c)
ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0)
ioctl$UI_GET_SYSNAME(r1, 0x8040552c, &(0x7f0000006480))
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0xe05, 0x0, &(0x7f0000000580)="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"})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x6)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000340)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1.062195734s ago: executing program 5 (id=1082):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom0\x00', 0x2, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10000, 0x0, 0x8000000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x7000, 0xdddd1000, 0x0, 0x0, 0x8, 0x8, 0x0, 0x2, 0x0, 0x6, 0x9, 0x10}, {0x8080000, 0x0, 0xc, 0x8, 0x0, 0x0, 0x0, 0xfe, 0x7, 0x7, 0x0, 0xff}, {0x3000, 0x5000, 0xb, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x100000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0xd, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80}, {0x8093000, 0x3000, 0x3, 0x6, 0x5, 0x0, 0x3}, {0x80a0000, 0xdddd0000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26}, {0x80a0000}, {0x2000}, 0xfdfcffdb, 0x0, 0x0, 0x28, 0xb, 0xf801, 0x0, [0x4, 0x0, 0x1]}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x15) (async)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000280)={0x1, 0x2, 0x7f, 0x0, 0x6, "3d11ad18fa0ce2c290d7631fd6f18c0e4f93d3"}) (async)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x8002, 0x10)
read$FUSE(r4, &(0x7f0000004480)={0x2020}, 0x2086) (async)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_IOC_FAIL(r5, 0x4c80, 0xffffffffffffffb6)
write$cgroup_pid(r4, &(0x7f0000002340), 0x12) (async)
r6 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r6, 0x5204)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r7, &(0x7f00000002c0)={0x2020}, 0x2020)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r8 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
r9 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_access(r9, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) (async)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)=ANY=[]) (async)
close(0x5) (async)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r10, 0x82307202, 0x0) (async)
close(0x4)
ioctl$BLKRRPART(r4, 0x125f, 0x0)

792.003248ms ago: executing program 5 (id=1083):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000280)='./binderfs2/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x50, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70"})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000001800)={0xd8, 0x0, &(0x7f0000001640)=[@dead_binder_done, @transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000440)={@ptr={0x70742a85, 0x1, &(0x7f0000000300)=""/50, 0x0, 0x1, 0x3b}, @fda={0x66646185, 0x0, 0x1, 0x2f}, @fd={0x66642a85, 0x0, r4}}, &(0x7f0000000400)={0x0, 0x18, 0x38}}, 0x400}, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000140)={@flat=@weak_handle={0x77682a85, 0x14, 0x2}, @ptr={0x70742a85, 0x0, &(0x7f0000001840)=""/160, 0xa0, 0x1, 0x40}, @ptr={0x70742a85, 0x1, &(0x7f0000000600)=""/4096, 0x1000, 0x2, 0x13}}, &(0x7f0000001600)={0x0, 0x18, 0xe1c40322718a78c5}}}, @exit_looper], 0x93, 0x0, &(0x7f0000001740)="affe2de88760d8545e1ad517270f00a1abb1d2131f6449dbf999381e3b0119a9a537aa1df7889a8de41829fc1e93a8f955a311d5676933c72e016f5636969e3c444466b861edc99a6b46e44fc44786e5fdf7fd5e95dc8fefa06e26ecc4bdc519885f443bfb150f135202d412b67f1b551c1ef8c73a3aa78b3a7f3822b8dc435661c5a29e4b74d48fc94d044eb26f095ea64253"})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000200)={0x1, 0x0, [{0xffff1000, 0x31, &(0x7f00000001c0)=""/49}]})
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000040)={0x8, 0x0, &(0x7f0000000340)=[@increfs], 0x0, 0x0, 0x0})

791.554078ms ago: executing program 5 (id=1084):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0) (async, rerun: 32)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) (rerun: 32)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000100)={{0x7000, 0x5, 0x0, 0x0, 0x8, 0xb, 0x0, 0x2, 0x0, 0x6, 0x9, 0x10}, {0x1000, 0x4, 0xc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xff}, {0x3000, 0x5000, 0xc, 0x0, 0x7, 0x4, 0x5, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x10000, 0x2, 0x0, 0x0, 0x0, 0x0, 0xf7, 0xdd, 0x8, 0x0, 0x4}, {0x0, 0xdddd0000, 0x8, 0x6, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c, 0x7d}, {0x0, 0x1, 0xd, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80, 0x40}, {0x8080000, 0x0, 0x10, 0x6, 0x5, 0x0, 0xe8}, {0x0, 0xdddd0000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xc, 0x26, 0x3, 0x10}, {0x2000}, {0xeeef0000, 0xfffc}, 0xfdfcffdb, 0x0, 0x0, 0x28, 0x6, 0xf801, 0x0, [0x0, 0x0, 0x1]}) (async)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_freeze_timeout', 0x200, 0x20) (async, rerun: 64)
ioctl$BLKRRPART(r0, 0x125f, 0x0) (rerun: 64)

604.360761ms ago: executing program 5 (id=1085):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x256800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000))
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000800), 0x161200, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000040)=0x7fffffffffffffff)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000300)={0x2, 0x0, 0x0, &(0x7f0000000500)=""/78, 0x0, 0x1})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000001300)=""/92, 0x80a0000})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x0, 0x180, 0x5, 0x10, 0xf1, 0x0, 0x970, 0x8, 0xffffffffffffffff, 0xb, 0x0, 0x5, 0x0, 0xbdb], 0xfffe1001, 0x3d4e00})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000640)={[0x6, 0x3, 0x8000, 0x800000000005, 0x2, 0xffffffff00000001, 0x4, 0xb, 0x0, 0x7fffffffffffffff, 0x2, 0x9, 0x3, 0x1, 0x8000000000000000, 0x103], 0x0, 0x43a45})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$TCSETSW2(r6, 0x402c542c, &(0x7f0000000240)={0x8, 0xffff, 0x4, 0x4, 0x7, "665096c239bbdc773f5452bb8ac804b4ee6b5c", 0x1, 0x3})
r9 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000740), 0x440, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r9, 0x50009418, &(0x7f0000001680)={{r9}, 0x0, 0x4, @inherit={0x90, &(0x7f0000000440)={0x0, 0x9, 0x1, 0x95f6, {0xc, 0x7, 0x3, 0x7, 0xfffffffffffeffff}, [0x3, 0x6, 0xfff, 0x800, 0x8a1, 0xf, 0xffffffffffffffff, 0x0, 0x8000000000000000]}}, @devid})
ioctl$RTC_PIE_OFF(r9, 0x7006)
ioctl$KVM_SET_SREGS(r8, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd0000, 0x10, 0x0, 0x8, 0x2, 0x0, 0x4, 0x0, 0x8, 0x9, 0x10}, {0xcccff001, 0x0, 0xc, 0x0, 0x0, 0x0, 0x2, 0x1, 0x7, 0x4}, {0x2000, 0xdddd0000, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xffff1000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0xb, 0x0, 0x0, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x5000, 0x0, 0x0, 0x7, 0xc, 0x0, 0x2, 0x0, 0x4, 0x10, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x2, 0x0, 0x10}, {0x8080000, 0x3000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1a, 0x26, 0x0, 0xfd}, {0x80ac000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x1, 0x70, 0x0, 0xdd00, 0x5000, [0xfffffffffffffffc, 0x0, 0x1]})
ioctl$KVM_TRANSLATE(r8, 0xc018ae85, &(0x7f00000000c0)={0x0, 0x87000})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r10, 0x0)

502.812182ms ago: executing program 2 (id=1086):
openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
mount$binderfs(0x0, &(0x7f0000000000)='./binderfs2\x00', &(0x7f0000000140), 0x84800, &(0x7f0000000080)={[], [{@seclabel}]})

496.544563ms ago: executing program 34 (id=907):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r0, 0x4008af23, &(0x7f0000000040)) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async, rerun: 32)
ioctl$BINDER_GET_FROZEN_INFO(r1, 0xc00c620f, 0x0) (rerun: 32)

447.935313ms ago: executing program 2 (id=1088):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x40800, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x48a80, 0x0)
ioctl$BLKPG(r1, 0x1269, &(0x7f0000002180)={0x3, 0x0, 0x98, &(0x7f00000020c0)={0x100000001, 0xfffffffffffffff3, 0xe}})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_type(r2, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r3, &(0x7f0000000280), 0x9)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup(r4, &(0x7f0000000080)='syz0\x00', 0x1ff)
r5 = openat$cgroup(r4, &(0x7f0000000280)='syz0\x00', 0x200002, 0x0)
r6 = openat$cgroup_type(r5, &(0x7f0000000040), 0x2, 0x0)
write$cgroup_type(r6, &(0x7f00000000c0), 0x9)
ioctl$BLKRAGET(r0, 0x1263, &(0x7f0000000100))
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x13)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0xa, 0x2})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000200), 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x52, 0x0, &(0x7f00000002c0)="1920ff09471b1099c7961fdcc405843a41a786d3ed8ebe8e80e4b4144e1cf51c728b926c80eb2a8e4f6b2dab5b6ac95dd16066dc703442a9132a8dd210e45df98d795a638622681df1cb222612051f612948"})
ioctl$BLKRRPART(r0, 0x125f, 0x0)
r9 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$UI_END_FF_UPLOAD(r9, 0x406855c9, &(0x7f0000000480)={0x0, 0x0, {0x0, 0x0, 0x0, {}, {}, @cond}, {0x0, 0x0, 0x0, {}, {}, @ramp}})
ioctl$TIOCGSOFTCAR(r7, 0x5419, &(0x7f0000000000))
r10 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_clone3(&(0x7f0000000340)={0x105480, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
mmap(&(0x7f0000927000/0x3000)=nil, 0x3000, 0x3000001, 0x22052, r0, 0x2000)

440.917173ms ago: executing program 5 (id=1089):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000001040)={0x0, 0x2000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000011c0)={0x6000, 0x8000})
ioctl$KVM_GET_CLOCK(r2, 0x8030ae7c, &(0x7f0000000000))
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000003c0)={0x1, 0x0, [{0x28a, 0x0, 0x3}]})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r9, &(0x7f0000000040)=0x40000, 0x12)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats'])

381.885724ms ago: executing program 4 (id=1090):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0) (async)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000040)={0x3})
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) (async)
r1 = mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0xc, 0x0, &(0x7f0000000180)=[@free_buffer={0x40086303, r1}], 0xfffffffffffffeec, 0x0, &(0x7f0000000140)="f3"})
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RNDADDTOENTCNT(r2, 0x40045201, &(0x7f0000000080)=0xffffffff)
mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, 0x0)

0s ago: executing program 5 (id=1091):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x45, 0x0, 0x1, 0xfffffffc}, {}, {0x6}]})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, 0x0, 0x9)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6e746578743d73792274656d5f75dd47d0b90b893a03ffdf"])
ioctl$RTC_WKALM_SET(r1, 0x40187014, &(0x7f0000000000)={0x3, 0xfd, {0x1, 0x0, 0x0, 0x3, 0x6, 0x60, 0x1, 0x4, 0x1}})
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000000)={[], [{@seclabel}]})

kernel console output (not intermixed with test programs):

659,uid=0
[   39.720989][  T663] Memory cgroup out of memory: Killed process 659 (syz.2.105) total-vm:89888kB, anon-rss:2988kB, file-rss:62856kB, shmem-rss:0kB, UID:0 pgtables:200kB oom_score_adj:1000
[   39.800917][ T1068] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   39.800943][ T1068] rust_binder: Error while translating object.
[   39.819050][ T1068] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   39.825291][ T1068] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:238
[   39.851962][ T1070] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   39.889821][ T1070] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:210
[   39.960203][  T656] syz.2.105 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[   40.008956][  T656] CPU: 0 UID: 0 PID: 656 Comm: syz.2.105 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[   40.008989][  T656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   40.009000][  T656] Call Trace:
[   40.009006][  T656]  <TASK>
[   40.009013][  T656]  __dump_stack+0x21/0x30
[   40.009037][  T656]  dump_stack_lvl+0x10c/0x190
[   40.009055][  T656]  ? __cfi_dump_stack_lvl+0x10/0x10
[   40.009078][  T656]  ? ___ratelimit+0x3f7/0x5a0
[   40.009101][  T656]  dump_stack+0x19/0x20
[   40.009117][  T656]  dump_header+0xd7/0x490
[   40.009139][  T656]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[   40.009156][  T656]  oom_kill_process+0x4c0/0x7e0
[   40.009179][  T656]  ? sched_clock_cpu+0x75/0x400
[   40.009197][  T656]  out_of_memory+0x7ee/0xbd0
[   40.009218][  T656]  ? __cfi_out_of_memory+0x10/0x10
[   40.009239][  T656]  ? mutex_lock_killable+0x92/0x1c0
[   40.009254][  T656]  ? __cfi_mutex_lock_killable+0x10/0x10
[   40.009271][  T656]  mem_cgroup_out_of_memory+0x279/0x350
[   40.009291][  T656]  ? drain_obj_stock+0xed0/0xed0
[   40.009311][  T656]  ? memcg1_oom_prepare+0x2c6/0x3a0
[   40.009330][  T656]  try_charge_memcg+0x8f7/0xde0
[   40.009347][  T656]  ? __alloc_pages_noprof+0x30d/0x6c0
[   40.009363][  T656]  ? __cfi_try_charge_memcg+0x10/0x10
[   40.009378][  T656]  ? __folio_batch_add_and_move+0x2ab/0x370
[   40.009402][  T656]  ? __cfi_lru_add+0x10/0x10
[   40.009423][  T656]  ? __kasan_check_write+0x18/0x20
[   40.009440][  T656]  ? _raw_spin_lock+0x8c/0x120
[   40.009459][  T656]  __mem_cgroup_charge+0x8e/0x290
[   40.009477][  T656]  ? shmem_alloc_and_add_folio+0x3d1/0x1050
[   40.009499][  T656]  shmem_alloc_and_add_folio+0x86d/0x1050
[   40.009521][  T656]  ? put_swap_device+0x130/0x130
[   40.009542][  T656]  ? shmem_huge_global_enabled+0x2da/0x360
[   40.009564][  T656]  ? shmem_allowable_huge_orders+0x1f7/0x430
[   40.009583][  T656]  ? __kasan_check_write+0x18/0x20
[   40.009600][  T656]  ? _raw_spin_lock+0x8c/0x120
[   40.009619][  T656]  shmem_get_folio_gfp+0x5f0/0x1380
[   40.009641][  T656]  ? shmem_get_folio+0xc0/0xc0
[   40.009659][  T656]  ? follow_page_pte+0xa5c/0xb90
[   40.009675][  T656]  ? inode_to_bdi+0x6d/0x100
[   40.009691][  T656]  shmem_write_begin+0xf4/0x270
[   40.009714][  T656]  generic_perform_write+0x32d/0x960
[   40.009732][  T656]  ? __cfi_generic_perform_write+0x10/0x10
[   40.009749][  T656]  ? down_write+0xe9/0x2a0
[   40.009765][  T656]  ? file_update_time+0xa3/0x220
[   40.009781][  T656]  shmem_file_write_iter+0x105/0x130
[   40.009797][  T656]  ? __cfi_shmem_file_write_iter+0x10/0x10
[   40.009811][  T656]  __kernel_write_iter+0x392/0x830
[   40.009828][  T656]  ? __cfi_shmem_file_write_iter+0x10/0x10
[   40.009843][  T656]  ? __cfi___kernel_write_iter+0x10/0x10
[   40.009862][  T656]  ? get_dump_page+0x160/0x220
[   40.009886][  T656]  ? __asan_memset+0x39/0x50
[   40.009910][  T656]  ? iov_iter_bvec+0xc0/0x180
[   40.009933][  T656]  dump_user_range+0xb06/0xdf0
[   40.009953][  T656]  ? __cfi_dump_emit+0x10/0x10
[   40.009971][  T656]  ? __cfi_dump_user_range+0x10/0x10
[   40.009991][  T656]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[   40.010011][  T656]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[   40.010033][  T656]  elf_core_dump+0x2cd9/0x3810
[   40.010058][  T656]  ? __cfi_elf_core_dump+0x10/0x10
[   40.010085][  T656]  ? dump_interrupted+0xf0/0xf0
[   40.010102][  T656]  ? filp_open+0x182/0x1d0
[   40.010118][  T656]  ? 0xffffffffff600000
[   40.010132][  T656]  do_coredump+0x1bf7/0x2bd0
[   40.010153][  T656]  ? __cfi_do_coredump+0x10/0x10
[   40.010170][  T656]  ? asm_exc_page_fault+0x2b/0x30
[   40.010197][  T656]  ? __kasan_slab_free+0x6a/0x80
[   40.010219][  T656]  ? kmem_cache_free+0x1c1/0x4c0
[   40.010239][  T656]  get_signal+0x11fd/0x14f0
[   40.010259][  T656]  arch_do_signal_or_restart+0x96/0x720
[   40.010281][  T656]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[   40.010305][  T656]  irqentry_exit_to_user_mode+0x4e/0xb0
[   40.010324][  T656]  irqentry_exit+0x16/0x60
[   40.010340][  T656]  exc_page_fault+0x66/0xc0
[   40.010356][  T656]  asm_exc_page_fault+0x2b/0x30
[   40.010376][  T656] RIP: 0033:0x7f98b3f8e931
[   40.010390][  T656] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[   40.010405][  T656] RSP: 002b:fffffffffffffc70 EFLAGS: 00010217
[   40.010422][  T656] RAX: 0000000000000000 RBX: 00007f98b41b6080 RCX: 00007f98b3f8e929
[   40.010435][  T656] RDX: 0000000000000000 RSI: fffffffffffffc70 RDI: 0000000001022000
[   40.010448][  T656] RBP: 00007f98b4010b39 R08: 0000000000000000 R09: 0000000000000000
[   40.010460][  T656] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[   40.010471][  T656] R13: 0000000000000000 R14: 00007f98b41b6080 R15: 00007ffd5e4f5de8
[   40.010485][  T656]  </TASK>
[   40.010555][  T656] memory: usage 298668kB, limit 307200kB, failcnt 44026
[   40.477200][  T656] memory+swap: usage 412648kB, limit 9007199254740988kB, failcnt 0
[   40.492756][  T656] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[   40.500682][  T656] Memory cgroup stats for /syz2:
[   40.500811][  T656] cache 280621056
[   40.521993][  T656] rss 4026368
[   40.525391][  T656] rss_huge 0
[   40.528645][  T656] shmem 276426752
[   40.532586][  T656] mapped_file 4096
[   40.536382][  T656] dirty 4096
[   40.540149][  T656] writeback 0
[   40.543510][  T656] workingset_refault_anon 1127
[   40.548359][  T656] workingset_refault_file 1232
[   40.565707][  T656] swap 121159680
[   40.585448][  T656] swapcached 417792
[   40.590104][  T656] pgpgin 192984
[   40.593666][  T656] pgpgout 123393
[   40.597270][  T656] pgfault 20721
[   40.601029][  T656] pgmajfault 217
[   40.606236][  T656] inactive_anon 214548480
[   40.611014][  T656] active_anon 66301952
[   40.615316][  T656] inactive_file 0
[   40.623151][  T656] active_file 4194304
[   40.634160][  T656] unevictable 0
[   40.642381][  T656] hierarchical_memory_limit 314572800
[   40.647778][  T656] hierarchical_memsw_limit 9223372036854771712
[   40.655571][  T656] total_cache 280621056
[   40.661179][  T656] total_rss 4026368
[   40.665046][  T656] total_rss_huge 0
[   40.670945][  T656] total_shmem 276426752
[   40.682946][  T656] total_mapped_file 4096
[   40.688125][  T656] total_dirty 4096
[   40.692072][  T656] total_writeback 0
[   40.698134][  T656] total_workingset_refault_anon 1127
[   40.708870][  T656] total_workingset_refault_file 1232
[   40.714212][  T656] total_swap 121159680
[   40.718273][  T656] total_swapcached 417792
[   40.722794][  T656] total_pgpgin 192984
[   40.726840][  T656] total_pgpgout 123393
[   40.730975][  T656] total_pgfault 20721
[   40.734998][  T656] total_pgmajfault 217
[   40.739073][  T656] total_inactive_anon 214548480
[   40.744083][  T656] total_active_anon 66301952
[   40.748693][  T656] total_inactive_file 0
[   40.752903][  T656] total_active_file 4194304
[   40.757388][  T656] total_unevictable 0
[   40.761499][  T656] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.105,pid=657,uid=0
[   40.776246][  T656] Memory cgroup out of memory: OOM victim 657 (syz.2.105) is already exiting. Skip killing the task
[   40.953712][   T36] audit: type=1400 audit(1750345998.599:198): avc:  denied  { validate_trans } for  pid=1117 comm="syz.1.252" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   40.980267][ T1121] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   40.980293][ T1121] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   40.989602][ T1123] binder: Bad value for 'max'
[   41.007884][ T1121] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.007909][ T1121] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.014740][ T1121] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.148160][   T31] hid (null): invalid report_size 50207
[   41.157314][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.161031][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.164083][   T31] hid (null): global environment stack underflow
[   41.172096][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.174856][   T31] hid-generic FFFC:FFFFFFA1:0006.0002: invalid report_size 50207
[   41.182276][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.187108][   T31] hid-generic FFFC:FFFFFFA1:0006.0002: item 0 2 1 7 parsing failed
[   41.194592][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.220090][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.222922][   T31] hid-generic FFFC:FFFFFFA1:0006.0002: probe with driver hid-generic failed with error -22
[   41.229001][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.257244][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.263933][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.274057][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.283631][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.299162][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.307606][ T1145] binder: Unknown parameter 'dont_h¹GÒ'
[   41.320732][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.320755][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.331637][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.338530][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.345285][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.353937][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.361788][ T1142] syz.2.260 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[   41.378349][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.378373][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.385124][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.387295][ T1142] CPU: 1 UID: 0 PID: 1142 Comm: syz.2.260 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[   41.387325][ T1142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.387338][ T1142] Call Trace:
[   41.387344][ T1142]  <TASK>
[   41.387352][ T1142]  __dump_stack+0x21/0x30
[   41.387377][ T1142]  dump_stack_lvl+0x10c/0x190
[   41.387397][ T1142]  ? __cfi_dump_stack_lvl+0x10/0x10
[   41.387417][ T1142]  ? ___ratelimit+0x3f7/0x5a0
[   41.387441][ T1142]  dump_stack+0x19/0x20
[   41.387458][ T1142]  dump_header+0xd7/0x490
[   41.387480][ T1142]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[   41.387498][ T1142]  oom_kill_process+0x4c0/0x7e0
[   41.387521][ T1142]  ? sched_clock_cpu+0x75/0x400
[   41.387540][ T1142]  out_of_memory+0x7ee/0xbd0
[   41.387563][ T1142]  ? __cfi_out_of_memory+0x10/0x10
[   41.387587][ T1142]  ? mutex_lock_killable+0x92/0x1c0
[   41.387604][ T1142]  ? __cfi_mutex_lock_killable+0x10/0x10
[   41.387621][ T1142]  mem_cgroup_out_of_memory+0x279/0x350
[   41.387642][ T1142]  ? drain_obj_stock+0xed0/0xed0
[   41.387662][ T1142]  ? memcg1_oom_prepare+0x2c6/0x3a0
[   41.387682][ T1142]  try_charge_memcg+0x8f7/0xde0
[   41.387699][ T1142]  ? __alloc_pages_noprof+0x30d/0x6c0
[   41.387716][ T1142]  ? __cfi_try_charge_memcg+0x10/0x10
[   41.387734][ T1142]  __mem_cgroup_charge+0x8e/0x290
[   41.387753][ T1142]  folio_prealloc+0x67/0x240
[   41.387775][ T1142]  do_pte_missing+0x1603/0x3e50
[   41.387798][ T1142]  ? cgroup_rstat_updated+0x132/0x7f0
[   41.387818][ T1142]  ? pte_marker_clear+0x1b0/0x1b0
[   41.387840][ T1142]  ? __pte_offset_map+0x1b0/0x230
[   41.387858][ T1142]  ? pte_offset_map_rw_nolock+0xba/0x110
[   41.387876][ T1142]  handle_mm_fault+0x1166/0x1b90
[   41.387897][ T1142]  ? __kasan_check_write+0x18/0x20
[   41.387918][ T1142]  ? __cfi_handle_mm_fault+0x10/0x10
[   41.387938][ T1142]  ? follow_page_pte+0x4a3/0xb90
[   41.387961][ T1142]  ? gup_must_unshare+0x1e0/0x1e0
[   41.387977][ T1142]  ? vma_is_secretmem+0x11/0x50
[   41.387994][ T1142]  __get_user_pages+0x1169/0x22d0
[   41.388018][ T1142]  ? __cfi_mt_find+0x10/0x10
[   41.388039][ T1142]  ? populate_vma_page_range+0x230/0x230
[   41.388062][ T1142]  ? down_read+0x79/0xe0
[   41.388078][ T1142]  ? __cfi_down_read+0x10/0x10
[   41.388095][ T1142]  __mm_populate+0x2f9/0x440
[   41.388120][ T1142]  vm_mmap_pgoff+0x454/0x4e0
[   41.388139][ T1142]  ? __cfi_vm_mmap_pgoff+0x10/0x10
[   41.388158][ T1142]  ? xfd_validate_state+0x68/0x150
[   41.388177][ T1142]  ksys_mmap_pgoff+0xfb/0x1e0
[   41.388195][ T1142]  ? __kasan_check_write+0x18/0x20
[   41.388213][ T1142]  __x64_sys_mmap+0x121/0x140
[   41.388234][ T1142]  x64_sys_call+0x13bf/0x2ee0
[   41.388254][ T1142]  do_syscall_64+0x58/0xf0
[   41.388274][ T1142]  ? clear_bhb_loop+0x35/0x90
[   41.388295][ T1142]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   41.388317][ T1142] RIP: 0033:0x7f98b3f8e929
[   41.388331][ T1142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.388345][ T1142] RSP: 002b:00007f98b25f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   41.388365][ T1142] RAX: ffffffffffffffda RBX: 00007f98b41b5fa0 RCX: 00007f98b3f8e929
[   41.388378][ T1142] RDX: 0000000000000007 RSI: 0000000000600000 RDI: 0000200000000000
[   41.388390][ T1142] RBP: 00007f98b4010b39 R08: ffffffffffffffff R09: 0000000000000000
[   41.388402][ T1142] R10: 0000000000006832 R11: 0000000000000246 R12: 0000000000000000
[   41.388412][ T1142] R13: 0000000000000000 R14: 00007f98b41b5fa0 R15: 00007ffd5e4f5de8
[   41.388427][ T1142]  </TASK>
[   41.388481][ T1142] memory: usage 307200kB, limit 307200kB, failcnt 47183
[   41.391758][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.400599][ T1142] memory+swap: usage 432004kB, limit 9007199254740988kB, failcnt 0
[   41.419012][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.429067][ T1142] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[   41.434904][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.442778][ T1142] Memory cgroup stats for 
[   41.459049][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.461283][ T1142] /syz2
[   41.465952][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.470874][ T1142] :
[   41.475597][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.480903][ T1142] cache 308916224
[   41.485839][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.491800][ T1142] rss 5222400
[   41.501167][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.508040][ T1142] rss_huge 0
[   41.512183][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.524616][ T1142] shmem 308916224
[   41.528255][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.537469][ T1142] mapped_file 0
[   41.543881][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.548284][ T1142] dirty 0
[   41.552914][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.558704][ T1142] writeback 0
[   41.563488][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.568864][ T1142] workingset_refault_anon 1153
[   41.574060][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.580537][ T1142] workingset_refault_file 1232
[   41.595045][ T1154] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.598720][ T1142] swap 127541248
[   41.609777][ T1154] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:42
[   41.619501][ T1142] swapcached 454656
[   41.622550][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.631141][ T1142] pgpgin 217151
[   41.633667][ T1154] rust_binder: Failed to allocate buffer. len:160, is_oneway:false
[   41.637848][ T1142] pgpgout 140351
[   41.644065][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.649455][ T1142] pgfault 21906
[   41.663778][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.666828][ T1142] pgmajfault 231
[   41.682256][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.693977][ T1142] inactive_anon 131928064
[   41.707226][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707244][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707256][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707266][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707277][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707288][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707299][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.707311][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.715918][ T1142] active_anon 181510144
[   41.730891][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.731556][ T1142] inactive_file 0
[   41.739360][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.742947][ T1142] active_file 0
[   41.749321][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.755934][ T1142] unevictable 1134592
[   41.763661][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.770351][ T1142] hierarchical_memory_limit 314572800
[   41.777017][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.784542][ T1142] hierarchical_memsw_limit 9223372036854771712
[   41.798705][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.805835][ T1160] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.806155][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.816206][ T1142] total_cache 308916224
[   41.824199][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.825883][ T1142] total_rss 5222400
[   41.832371][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.835473][ T1142] total_rss_huge 0
[   41.841990][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.845591][ T1142] total_shmem 308916224
[   41.852056][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.855493][ T1142] total_mapped_file 0
[   41.874545][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.881472][ T1142] total_dirty 0
[   41.900712][ T1161] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   41.915942][ T1142] total_writeback 0
[   41.919815][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.926225][ T1142] total_workingset_refault_anon 1153
[   41.929671][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.937519][ T1142] total_workingset_refault_file 1232
[   41.943186][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.948302][ T1142] total_swap 127541248
[   41.951286][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.957460][ T1142] total_swapcached 454656
[   41.970289][ T1139] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   41.971802][ T1142] total_pgpgin 217151
[   42.125122][ T1175] binder: Bad value for 'max'
[   42.132952][ T1142] total_pgpgout 140351
[   42.153429][ T1178] rust_binder: Error while translating object.
[   42.153629][ T1142] total_pgfault 21906
[   42.166212][ T1178] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[   42.168721][ T1142] total_pgmajfault 231
[   42.177036][ T1178] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:243
[   42.180839][ T1142] total_inactive_anon 131928064
[   42.229404][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.232691][ T1142] total_active_anon 181510144
[   42.239980][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.249798][ T1142] total_inactive_file 0
[   42.268982][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.270228][ T1142] total_active_file 0
[   42.291048][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.293740][ T1142] total_unevictable 1134592
[   42.309951][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.318024][ T1142] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.105,pid=663,uid=0
[   42.339442][ T1142] Memory cgroup out of memory: Killed process 663 (syz.2.105) total-vm:89888kB, anon-rss:3756kB, file-rss:62088kB, shmem-rss:0kB, UID:0 pgtables:200kB oom_score_adj:1000
[   42.356545][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.367910][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.371977][  T658] syz.2.105 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[   42.392086][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.400280][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.401091][ T1193] binder: Unknown parameter ''
[   42.407721][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.419979][  T658] CPU: 0 UID: 0 PID: 658 Comm: syz.2.105 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[   42.420007][  T658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   42.420018][  T658] Call Trace:
[   42.420024][  T658]  <TASK>
[   42.420032][  T658]  __dump_stack+0x21/0x30
[   42.420057][  T658]  dump_stack_lvl+0x10c/0x190
[   42.420076][  T658]  ? __cfi_dump_stack_lvl+0x10/0x10
[   42.420094][  T658]  ? ___ratelimit+0x3f7/0x5a0
[   42.420118][  T658]  dump_stack+0x19/0x20
[   42.420135][  T658]  dump_header+0xd7/0x490
[   42.420157][  T658]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[   42.420175][  T658]  oom_kill_process+0x4c0/0x7e0
[   42.420198][  T658]  ? sched_clock_cpu+0x75/0x400
[   42.420217][  T658]  out_of_memory+0x7ee/0xbd0
[   42.420239][  T658]  ? __cfi_out_of_memory+0x10/0x10
[   42.420261][  T658]  ? mutex_lock_killable+0x104/0x1c0
[   42.420277][  T658]  ? __cfi_mutex_lock_killable+0x10/0x10
[   42.420295][  T658]  mem_cgroup_out_of_memory+0x279/0x350
[   42.420315][  T658]  ? drain_obj_stock+0xed0/0xed0
[   42.420336][  T658]  ? memcg1_oom_prepare+0x2c6/0x3a0
[   42.420357][  T658]  try_charge_memcg+0x8f7/0xde0
[   42.420374][  T658]  ? __alloc_pages_noprof+0x30d/0x6c0
[   42.420391][  T658]  ? __cfi_try_charge_memcg+0x10/0x10
[   42.420407][  T658]  ? __folio_batch_add_and_move+0x2ab/0x370
[   42.420431][  T658]  ? __cfi_lru_add+0x10/0x10
[   42.420453][  T658]  ? __kasan_check_write+0x18/0x20
[   42.420471][  T658]  ? _raw_spin_lock+0x8c/0x120
[   42.420490][  T658]  __mem_cgroup_charge+0x8e/0x290
[   42.420508][  T658]  ? shmem_alloc_and_add_folio+0x3d1/0x1050
[   42.420531][  T658]  shmem_alloc_and_add_folio+0x86d/0x1050
[   42.420555][  T658]  ? put_swap_device+0x130/0x130
[   42.420578][  T658]  ? shmem_huge_global_enabled+0x2da/0x360
[   42.420600][  T658]  ? shmem_allowable_huge_orders+0x1f7/0x430
[   42.420621][  T658]  ? __kasan_check_write+0x18/0x20
[   42.420639][  T658]  ? _raw_spin_lock+0x8c/0x120
[   42.420658][  T658]  shmem_get_folio_gfp+0x5f0/0x1380
[   42.420681][  T658]  ? shmem_get_folio+0xc0/0xc0
[   42.420707][  T658]  ? inode_maybe_inc_iversion+0x17d/0x1e0
[   42.420726][  T658]  ? __cfi_inode_maybe_inc_iversion+0x10/0x10
[   42.420743][  T658]  ? inode_to_bdi+0x6d/0x100
[   42.420760][  T658]  shmem_write_begin+0xf4/0x270
[   42.420783][  T658]  generic_perform_write+0x32d/0x960
[   42.420803][  T658]  ? __cfi_generic_perform_write+0x10/0x10
[   42.420821][  T658]  ? down_write+0xe9/0x2a0
[   42.420837][  T658]  ? mnt_get_write_access_file+0x1af/0x3b0
[   42.420861][  T658]  ? mnt_put_write_access_file+0xc2/0x100
[   42.420878][  T658]  ? file_update_time+0x1ef/0x220
[   42.420895][  T658]  shmem_file_write_iter+0x105/0x130
[   42.420912][  T658]  ? __cfi_shmem_file_write_iter+0x10/0x10
[   42.420928][  T658]  __kernel_write_iter+0x392/0x830
[   42.420947][  T658]  ? __cfi_shmem_file_write_iter+0x10/0x10
[   42.420964][  T658]  ? __cfi___kernel_write_iter+0x10/0x10
[   42.420983][  T658]  ? get_dump_page+0x160/0x220
[   42.421006][  T658]  ? __asan_memset+0x39/0x50
[   42.421023][  T658]  ? iov_iter_bvec+0xc0/0x180
[   42.421045][  T658]  dump_user_range+0xb06/0xdf0
[   42.421066][  T658]  ? __cfi_dump_emit+0x10/0x10
[   42.421084][  T658]  ? __cfi_dump_user_range+0x10/0x10
[   42.421103][  T658]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[   42.421123][  T658]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[   42.421145][  T658]  elf_core_dump+0x2cd9/0x3810
[   42.421169][  T658]  ? __cfi_elf_core_dump+0x10/0x10
[   42.421196][  T658]  ? dump_interrupted+0xf0/0xf0
[   42.421214][  T658]  ? filp_open+0x182/0x1d0
[   42.421230][  T658]  ? 0xffffffffff600000
[   42.421244][  T658]  do_coredump+0x1bf7/0x2bd0
[   42.421265][  T658]  ? __cfi_do_coredump+0x10/0x10
[   42.421282][  T658]  ? asm_exc_page_fault+0x2b/0x30
[   42.421309][  T658]  ? __kasan_slab_free+0x6a/0x80
[   42.421330][  T658]  ? kmem_cache_free+0x1c1/0x4c0
[   42.421350][  T658]  get_signal+0x11fd/0x14f0
[   42.421370][  T658]  arch_do_signal_or_restart+0x96/0x720
[   42.421391][  T658]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[   42.421415][  T658]  irqentry_exit_to_user_mode+0x4e/0xb0
[   42.421434][  T658]  irqentry_exit+0x16/0x60
[   42.421450][  T658]  exc_page_fault+0x66/0xc0
[   42.421466][  T658]  asm_exc_page_fault+0x2b/0x30
[   42.421486][  T658] RIP: 0033:0x7f98b3f8e931
[   42.421500][  T658] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[   42.421515][  T658] RSP: 002b:fffffffffffffc70 EFLAGS: 00010217
[   42.421532][  T658] RAX: 0000000000000000 RBX: 00007f98b41b6080 RCX: 00007f98b3f8e929
[   42.421545][  T658] RDX: 0000000000000000 RSI: fffffffffffffc70 RDI: 0000000001022000
[   42.421558][  T658] RBP: 00007f98b4010b39 R08: 0000000000000000 R09: 0000000000000000
[   42.421570][  T658] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[   42.421581][  T658] R13: 0000000000000000 R14: 00007f98b41b6080 R15: 00007ffd5e4f5de8
[   42.421596][  T658]  </TASK>
[   42.421603][  T658] memory: usage 305252kB, limit 307200kB, failcnt 47273
[   42.699627][ T1197] random: crng reseeded on system resumption
[   42.909941][  T658] memory+swap: usage 375972kB, limit 9007199254740988kB, failcnt 0
[   42.910607][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.925286][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.925568][  T658] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[   42.932713][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.941532][  T658] Memory cgroup stats for /syz2:
[   42.946949][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.947715][  T658] cache 246800384
[   42.952075][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.959725][  T658] rss 10137600
[   42.963328][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.970646][  T658] rss_huge 0
[   42.973705][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.981175][  T658] shmem 246800384
[   42.984267][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   42.992015][  T658] mapped_file 0
[   42.995304][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.002909][  T658] dirty 0
[   43.007718][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.024038][  T658] writeback 0
[   43.027382][  T658] workingset_refault_anon 1153
[   43.027597][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.034077][  T658] workingset_refault_file 1232
[   43.039793][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.044646][  T658] swap 127668224
[   43.053624][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.055516][  T658] swapcached 327680
[   43.063132][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.073970][  T658] pgpgin 218417
[   43.073982][  T658] pgpgout 155613
[   43.073988][  T658] pgfault 23181
[   43.073993][  T658] pgmajfault 231
[   43.073998][  T658] inactive_anon 0
[   43.074003][  T658] active_anon 250949632
[   43.074009][  T658] inactive_file 0
[   43.074015][  T658] active_file 0
[   43.074019][  T658] unevictable 6291456
[   43.074025][  T658] hierarchical_memory_limit 314572800
[   43.074030][  T658] hierarchical_memsw_limit 9223372036854771712
[   43.074036][  T658] total_cache 246800384
[   43.074041][  T658] total_rss 10137600
[   43.074046][  T658] total_rss_huge 0
[   43.074052][  T658] total_shmem 246800384
[   43.074058][  T658] total_mapped_file 0
[   43.074064][  T658] total_dirty 0
[   43.074068][  T658] total_writeback 0
[   43.074074][  T658] total_workingset_refault_anon 1153
[   43.074081][  T658] total_workingset_refault_file 1232
[   43.074088][  T658] total_swap 127668224
[   43.074093][  T658] total_swapcached 327680
[   43.074098][  T658] total_pgpgin 218417
[   43.074104][  T658] total_pgpgout 155613
[   43.074110][  T658] total_pgfault 23181
[   43.074117][  T658] total_pgmajfault 231
[   43.074121][  T658] total_inactive_anon 0
[   43.074127][  T658] total_active_anon 250949632
[   43.074132][  T658] total_inactive_file 0
[   43.074137][  T658] total_active_file 0
[   43.074143][  T658] total_unevictable 6291456
[   43.074150][  T658] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2
[   43.201658][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.219987][  T658] ,task_memcg=/syz2,task=syz.2.105,pid=652,uid=0
[   43.221046][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.226375][  T658] Memory cgroup out of memory: Killed process 652 (syz.2.105) total-vm:89888kB, anon-rss:1708kB, file-rss:64136kB, shmem-rss:0kB, UID:0 pgtables:200kB oom_score_adj:1000
[   43.238994][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.261768][   T36] audit: type=1400 audit(1750346000.919:199): avc:  denied  { read } for  pid=1204 comm="syz.3.283" name="loop-control" dev="devtmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   43.286894][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.298971][  T965] hid-generic 0003:0000:0000.0003: unknown main item tag 0x0
[   43.302056][   T36] audit: type=1400 audit(1750346000.919:200): avc:  denied  { open } for  pid=1204 comm="syz.3.283" path="/dev/loop-control" dev="devtmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   43.319280][  T965] hid-generic 0003:0000:0000.0003: hidraw0: USB HID v0.00 Device [syz1] on syz0
[   43.374063][ T1211] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   43.401252][ T1212] fido_id[1212]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   43.433411][  T965] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[   43.475187][ T1220] fido_id[1220]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   43.615560][ T1233] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   43.719258][ T1238] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   43.912971][ T1260] binder: Unknown parameter ' Ž'
[   43.940274][   T36] audit: type=1400 audit(1750346001.599:201): avc:  denied  { setattr } for  pid=288 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   43.977761][   T36] audit: type=1400 audit(1750346001.629:202): avc:  denied  { mounton } for  pid=1261 comm="syz.3.301" path="/proc/sys" dev="proc" ino=4026531856 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_t tclass=dir permissive=1
[   44.051169][ T1269] binder: Bad value for 'defcontext'
[   44.089303][ T1271] rust_binder: Write failure EFAULT in pid:86
[   44.089416][ T1271] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.113486][ T1271] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   44.201543][ T1277] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.201804][ T1277] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   44.271264][ T1282] input: syz0 as /devices/virtual/input/input17
[   44.289525][ T1282] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.289545][ T1283] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.296280][ T1283] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   44.303002][ T1282] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   44.429987][ T1286] SELinux:  policydb magic number 0x7665642f does not match expected magic number 0xf97cff8c
[   44.478529][ T1286] SELinux: failed to load policy
[   44.488052][ T1285] rust_binder: Write failure EINVAL in pid:172
[   44.488742][ T1285] binder: Unknown parameter 'ÿÿ18446744073709551615'
[   44.677350][ T1302] rust_binder: Error while translating object.
[   44.677395][ T1302] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   44.723866][ T1302] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:185
[   44.749171][ T1304] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   44.784882][ T1304] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   44.971889][   T36] audit: type=1400 audit(1750346002.629:203): avc:  denied  { setattr } for  pid=288 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   44.987239][ T1313] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   45.029052][   T36] audit: type=1400 audit(1750346002.639:204): avc:  denied  { ioctl } for  pid=1310 comm="syz.3.319" path="/dev/binderfs/binder0" dev="binder" ino=42 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   45.049757][ T1313] rust_binder: Failed to allocate buffer. len:160, is_oneway:false
[   45.081135][   T36] audit: type=1400 audit(1750346002.709:205): avc:  denied  { map } for  pid=1310 comm="syz.3.319" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   45.151266][   T36] audit: type=1400 audit(1750346002.709:206): avc:  denied  { read } for  pid=1310 comm="syz.3.319" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   45.195333][   T36] audit: type=1400 audit(1750346002.709:207): avc:  denied  { call } for  pid=1310 comm="syz.3.319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   45.204797][ T1320] input: syz0 as /devices/virtual/input/input18
[   45.224272][   T36] audit: type=1400 audit(1750346002.789:208): avc:  denied  { read write } for  pid=890 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   45.459589][ T1324] binder: Unknown parameter 'stˆæo­ØŠûeclabel'
[   45.465969][ T1325] binder: Unknown parameter 'stˆæo­ØŠûeclabel'
[   45.657070][ T1333] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   45.658487][ T1333] rust_binder: Failed to allocate buffer. len:4256, is_oneway:false
[   45.981041][ T1341] kvm: Disabled LAPIC found during irq injection
[   46.025134][ T1341] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:204
[   46.071090][ T1353] random: crng reseeded on system resumption
[   46.472200][ T1365] kvm: kvm [1364]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000004)
[   46.482419][ T1365] serio: Serial port ttynull
[   46.658019][ T1377] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   46.658319][ T1377] rust_binder: Failed to allocate buffer. len:168, is_oneway:false
[   46.669258][ T1373] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   46.670009][ T1374] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   46.760014][ T1381] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   46.761344][ T1382] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   47.057646][  T304] Bluetooth: hci0: Frame reassembly failed (-84)
[   48.389811][  T567] hid (null): unknown global tag 0xe
[   48.395185][  T567] hid (null): unknown global tag 0x52
[   48.410793][  T567] hid-generic 0008:0000:FFFFFBFF.0005: unknown main item tag 0x0
[   48.418574][  T567] hid-generic 0008:0000:FFFFFBFF.0005: unknown main item tag 0x0
[   48.448993][  T567] hid-generic 0008:0000:FFFFFBFF.0005: unknown main item tag 0x0
[   48.456771][  T567] hid-generic 0008:0000:FFFFFBFF.0005: unknown main item tag 0x7
[   48.478980][  T567] hid-generic 0008:0000:FFFFFBFF.0005: collection stack underflow
[   48.486840][  T567] hid-generic 0008:0000:FFFFFBFF.0005: item 0 1 0 12 parsing failed
[   48.509208][  T567] hid-generic 0008:0000:FFFFFBFF.0005: probe with driver hid-generic failed with error -22
[   49.003306][   T36] kauditd_printk_skb: 36 callbacks suppressed
[   49.003323][   T36] audit: type=1400 audit(1750346006.659:245): avc:  denied  { read } for  pid=1424 comm="syz.2.355" name="ptp0" dev="devtmpfs" ino=196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   49.058986][  T408] Bluetooth: hci0: command 0x1003 tx timeout
[   49.065020][   T52] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   49.071866][   T36] audit: type=1400 audit(1750346006.659:246): avc:  denied  { open } for  pid=1424 comm="syz.2.355" path="/dev/ptp0" dev="devtmpfs" ino=196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   49.095240][   T36] audit: type=1400 audit(1750346006.659:247): avc:  denied  { map } for  pid=1424 comm="syz.2.355" path="/dev/ptp0" dev="devtmpfs" ino=196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   49.155977][ T1433] input: syz1 as /devices/virtual/input/input19
[   49.164577][   T36] audit: type=1400 audit(1750346006.809:248): avc:  denied  { write } for  pid=1432 comm="syz.3.358" name="uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   49.594064][ T1438] rust_binder: Read failure Err(EAGAIN) in pid:159
[   49.594261][   T36] audit: type=1400 audit(1750346007.249:249): avc:  denied  { write } for  pid=1437 comm="syz.3.360" name="binder0" dev="binder" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   49.801637][   T36] audit: type=1400 audit(1750346007.459:250): avc:  denied  { append } for  pid=1442 comm="syz.2.362" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   49.825042][ T1445] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   49.965836][   T36] audit: type=1400 audit(1750346007.609:251): avc:  denied  { setattr } for  pid=1450 comm="syz.3.366" path="/dev/binderfs/binder0" dev="binder" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   50.008840][   T36] audit: type=1400 audit(1750346007.659:252): avc:  denied  { map } for  pid=1450 comm="syz.3.366" path="/dev/full" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:null_device_t tclass=chr_file permissive=1
[   50.132546][ T1453] input: syz0 as /devices/virtual/input/input20
[   50.160294][ T1456] binder: Unknown parameter ''
[   50.231683][ T1461] input: syz1 as /devices/virtual/input/input21
[   50.348823][   T36] audit: type=1400 audit(1750346007.999:253): avc:  denied  { read write } for  pid=1463 comm="syz.2.370" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   50.379522][ T1464] input: syz0 as /devices/virtual/input/input22
[   50.395966][   T36] audit: type=1400 audit(1750346007.999:254): avc:  denied  { open } for  pid=1463 comm="syz.2.370" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   50.580534][ T1467] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   50.639142][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.683020][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.703911][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.712408][ T1473] rust_binder: Failed to allocate buffer. len:65568, is_oneway:false
[   50.719036][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.749351][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.770551][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.784071][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.798993][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.814408][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.831138][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.849611][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.862469][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.889032][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.906652][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.919018][   T10] hid-generic 009C:0008:0003.0006: unknown main item tag 0x0
[   50.954097][   T10] hid-generic 009C:0008:0003.0006: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[   50.992907][ T1483] fido_id[1483]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   51.150625][ T1488] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   51.150958][ T1488] rust_binder: Error in use_page_slow: ESRCH
[   51.178992][ T1488] rust_binder: use_range failure ESRCH
[   51.185025][ T1488] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[   51.199077][ T1488] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   51.246960][ T1488] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:268
[   51.469220][ T1497] random: crng reseeded on system resumption
[   51.549902][ T1497] binder: Unknown parameter ' ose0'
[   51.613958][ T1499] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[   51.833941][ T1507] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   52.069825][ T1521] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   52.265688][ T1528] binder: Bad value for 'stats'
[   52.402505][ T1532] rust_binder: Write failure EINVAL in pid:212
[   52.558287][ T1548] binder: Unknown parameter 'max00000000000000000000„ìþ¡‡vÊ^Ý01'
[   52.619649][ T1550] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   52.681116][ T1551] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   52.749116][ T1554] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:300
[   52.755781][ T1553] binder: Unknown parameter 'sEclabel'
[   52.834719][  T304] Bluetooth: hci0: Frame reassembly failed (-84)
[   52.841385][ T1556] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 2
[   52.874886][ T1556] __vm_enough_memory: pid: 1556, comm: syz.3.401, bytes: 281474976845824 not enough memory for the allocation
[   52.901232][ T1556] binder: Unknown parameter 'dopÂýGø¿ë8�Àålí~-3ash'
[   53.940321][ T1573] binfmt_misc: register: failed to install interpreter file ./cgroup
[   54.143259][   T36] kauditd_printk_skb: 18 callbacks suppressed
[   54.143274][   T36] audit: type=1400 audit(1750346011.799:273): avc:  denied  { write } for  pid=1581 comm="syz.2.408" name="pfkey" dev="proc" ino=4026532638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   54.179901][   T53] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   54.209101][   T53] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   54.898968][ T1587] Bluetooth: hci0: command 0x1003 tx timeout
[   54.899003][   T52] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   55.019840][ T1595] rust_binder: Write failure EINVAL in pid:228
[   55.284966][ T1602] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:237
[   55.298963][ T1602] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[   55.318280][ T1602] rust_binder: Read failure Err(EFAULT) in pid:237
[   55.511739][ T1605] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   55.638083][ T1611] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[   56.499129][  T408] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   56.505293][   T52] Bluetooth: hci1: command 0x1003 tx timeout
[   56.602437][   T36] audit: type=1326 audit(1750346014.259:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1624 comm="" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f98b3f8e929 code=0x0
[   56.676135][ T1626] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:337
[   56.945358][   T36] audit: type=1400 audit(1750346014.599:275): avc:  denied  { execute } for  pid=1634 comm="syz.3.422" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   57.490223][   T36] audit: type=1400 audit(1750346015.149:276): avc:  denied  { map } for  pid=1642 comm="syz.2.425" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   57.532618][ T1645] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:275
[   57.888954][   T36] audit: type=1400 audit(1750346015.539:277): avc:  denied  { mounton } for  pid=1661 comm="syz.3.431" path=2F39322F08 dev="tmpfs" ino=492 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   57.988995][ T1666] input: syz1 as /devices/virtual/input/input27
[   58.269369][ T1674] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   58.269403][ T1674] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:358
[   58.343792][ T1678] rust_binder: inc_ref_done called when no active inc_refs
[   58.370817][ T1678] rust_binder: Write failure EINVAL in pid:360
[   58.559801][   T36] audit: type=1400 audit(1750346016.219:278): avc:  denied  { execute } for  pid=1685 comm="syz.2.440" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   58.809920][ T1700] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[   58.939595][   T36] audit: type=1400 audit(1750346016.599:279): avc:  denied  { execute } for  pid=1697 comm="syz.3.444" path="/98/cgroup.controllers" dev="tmpfs" ino=523 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   59.378111][ T1708] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   59.378138][ T1708] rust_binder: Error while translating object.
[   59.399213][ T1708] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   59.415194][ T1708] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:302
[   59.468995][   T36] audit: type=1400 audit(1750346017.119:280): avc:  denied  { mounton } for  pid=1711 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   60.253633][ T1711] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.260832][ T1711] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.267963][ T1711] bridge_slave_0: entered allmulticast mode
[   60.274346][ T1711] bridge_slave_0: entered promiscuous mode
[   60.285234][   T13] bridge_slave_1: left allmulticast mode
[   60.291122][   T13] bridge_slave_1: left promiscuous mode
[   60.296748][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.329081][   T13] bridge_slave_0: left allmulticast mode
[   60.335150][   T13] bridge_slave_0: left promiscuous mode
[   60.341053][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.442534][ T1747] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   60.603405][ T1711] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.616425][ T1711] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.627964][ T1711] bridge_slave_1: entered allmulticast mode
[   60.643565][ T1711] bridge_slave_1: entered promiscuous mode
[   60.889595][   T13] veth1_macvtap: left promiscuous mode
[   60.895157][   T13] veth0_vlan: left promiscuous mode
[   61.478414][   T36] audit: type=1400 audit(1750346019.129:281): avc:  denied  { ioctl } for  pid=1769 comm="syz.2.463" path="/dev/fuse" dev="devtmpfs" ino=23 ioctlcmd=0xe502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   61.503414][   T36] audit: type=1400 audit(1750346019.169:282): avc:  denied  { read } for  pid=1769 comm="syz.2.463" name="snapshot" dev="devtmpfs" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   61.649792][ T1783] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[   61.649813][ T1783] rust_binder: Error while translating object.
[   61.683613][ T1783] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   61.690184][ T1783] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:411
[   61.701275][   T36] audit: type=1400 audit(1750346019.359:283): avc:  denied  { write } for  pid=1782 comm="syz.2.467" name="ptp0" dev="devtmpfs" ino=196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   61.768981][   T36] audit: type=1400 audit(1750346019.359:284): avc:  denied  { ioctl } for  pid=1782 comm="syz.2.467" path="/dev/ptp0" dev="devtmpfs" ino=196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   61.821654][   T36] audit: type=1400 audit(1750346019.409:285): avc:  denied  { mounton } for  pid=1784 comm="syz.3.468" path="/proc/sys" dev="proc" ino=4026531856 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_t tclass=dir permissive=1
[   62.681249][   T36] audit: type=1400 audit(1750346020.339:286): avc:  denied  { create } for  pid=1711 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.709119][ T1808] binder: Unknown parameter '?xøý7©Ã
'
[   62.710010][   T36] audit: type=1400 audit(1750346020.339:287): avc:  denied  { write } for  pid=1711 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.718540][ T1807] binder: Unknown parameter '?xøý7©Ã
'
[   62.735492][   T36] audit: type=1400 audit(1750346020.339:288): avc:  denied  { read } for  pid=1711 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.836611][ T1815] rust_binder: Error while translating object.
[   62.836635][ T1815] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[   62.843114][ T1815] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:345
[   63.038029][ T1825] binder: Unknown parameter 'R›ó””å¸vž²Ã²ÅpHênj'
[   63.296738][   T36] audit: type=1400 audit(1750346020.949:289): avc:  denied  { write } for  pid=1836 comm="syz.2.485" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   63.439541][ T1799] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.446698][ T1799] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.453825][ T1799] bridge_slave_0: entered allmulticast mode
[   63.460098][ T1799] bridge_slave_0: entered promiscuous mode
[   63.466336][   T13] bridge_slave_1: left allmulticast mode
[   63.472036][   T13] bridge_slave_1: left promiscuous mode
[   63.477621][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.509168][   T13] bridge_slave_0: left allmulticast mode
[   63.514837][   T13] bridge_slave_0: left promiscuous mode
[   63.520536][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.889454][ T1799] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.896552][ T1799] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.903688][ T1799] bridge_slave_1: entered allmulticast mode
[   63.909887][ T1799] bridge_slave_1: entered promiscuous mode
[   64.169256][   T13] veth1_macvtap: left promiscuous mode
[   64.174794][   T13] veth0_vlan: left promiscuous mode
[   64.480294][  T304] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.487407][  T304] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.496442][  T305] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.503509][  T305] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.571576][   T36] kauditd_printk_skb: 2 callbacks suppressed
[   64.571592][   T36] audit: type=1400 audit(1750346022.229:292): avc:  granted  { setsecparam } for  pid=1849 comm="syz.3.488" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   64.849717][ T1857] kvm: user requested TSC rate below hardware speed
[   65.117390][ T1862] input: syz0 as /devices/virtual/input/input31
[   65.124850][   T36] audit: type=1400 audit(1750346022.789:293): avc:  granted  { setsecparam } for  pid=1861 comm="syz.3.491" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   65.225205][ T1865] binder: Bad value for 'stats'
[   65.937250][ T1711] veth0_vlan: entered promiscuous mode
[   65.960893][ T1711] veth1_macvtap: entered promiscuous mode
[   65.968428][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.975510][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.985188][  T304] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.992255][  T304] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.151120][   T36] audit: type=1400 audit(1750346023.809:294): avc:  denied  { mounton } for  pid=1711 comm="syz-executor" path="/root/syzkaller.1SAnJK/syz-tmp" dev="sda1" ino=2046 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   66.175923][   T36] audit: type=1400 audit(1750346023.809:295): avc:  denied  { mount } for  pid=1711 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   66.198677][   T36] audit: type=1400 audit(1750346023.809:296): avc:  denied  { mount } for  pid=1711 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   66.220716][   T36] audit: type=1400 audit(1750346023.809:297): avc:  denied  { mounton } for  pid=1711 comm="syz-executor" path="/root/syzkaller.1SAnJK/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   66.247580][   T36] audit: type=1400 audit(1750346023.809:298): avc:  denied  { mounton } for  pid=1711 comm="syz-executor" path="/root/syzkaller.1SAnJK/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=32866 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   66.275132][   T36] audit: type=1400 audit(1750346023.809:299): avc:  denied  { unmount } for  pid=1711 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   66.294913][   T36] audit: type=1400 audit(1750346023.909:300): avc:  denied  { mounton } for  pid=1711 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=434 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   66.317968][   T36] audit: type=1400 audit(1750346023.909:301): avc:  denied  { mounton } for  pid=1711 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   66.424025][ T1799] veth0_vlan: entered promiscuous mode
[   66.434757][ T1799] veth1_macvtap: entered promiscuous mode
[   66.633298][ T1894] input: syz1 as /devices/virtual/input/input33
[   66.728369][ T1896] binder: Bad value for 'stats'
[   66.906716][ T1907] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   66.914387][ T1907] SELinux: failed to load policy
[   67.031101][ T1912] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[   67.317855][ T1933] input: syz0 as /devices/virtual/input/input34
[   68.265453][ T1987] input: syz1 as /devices/virtual/input/input36
[   68.324284][ T1988] SELinux: security_context_str_to_sid () failed with errno=-22
[   68.499587][ T1993] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 0
[   68.507038][ T1993] rust_binder: Write failure EINVAL in pid:23
[   68.770252][ T2011] rust_binder: Write failure EINVAL in pid:32
[   68.891037][ T2016] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   68.897164][ T2016] rust_binder: Error while translating object.
[   68.905949][ T2016] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   68.912178][ T2016] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:35
[   68.980714][ T2020] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   69.042044][ T2021] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:19
[   69.166449][ T2025] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   69.615697][ T2059] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   69.615844][ T2059] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:519
[   69.624287][ T2060] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   69.779861][ T2072] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:528
[   69.821859][   T36] kauditd_printk_skb: 9 callbacks suppressed
[   69.821875][   T36] audit: type=1400 audit(1750346027.479:311): avc:  denied  { read } for  pid=2073 comm="syz.3.556" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   69.929859][ T2079] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[   70.585215][   T36] audit: type=1400 audit(1750346028.239:312): avc:  denied  { ioctl } for  pid=2105 comm="syz.5.566" path="uts:[4026532401]" dev="nsfs" ino=4026532401 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   70.970518][ T2130] syz.4.570 (2130) used obsolete PPPIOCDETACH ioctl
[   71.056473][ T2143] binder: Bad value for 'stats'
[   71.377483][ T2157] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   71.828508][ T2175] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   71.846017][ T2177] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   71.878598][ T2183] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   71.936849][ T2184] rust_binder: Failed to allocate buffer. len:4294966472, is_oneway:false
[   71.943452][ T2184] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOSPC }
[   71.952184][ T2184] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOSPC } my_pid:59
[   72.001622][ T2184] input: syz1 as /devices/virtual/input/input38
[   72.017979][ T2184] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:59
[   72.021081][ T2184] input: syz0 as /devices/virtual/input/input39
[   72.169515][ T2195] kvm: user requested TSC rate below hardware speed
[   72.274576][   T36] audit: type=1400 audit(1750346029.929:313): avc:  denied  { append } for  pid=2196 comm="syz.5.593" name="ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   72.399592][ T2205] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   72.529117][ T1331] Bluetooth: hci0: Frame reassembly failed (-84)
[   72.542183][ T1331] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 0
[   72.875226][ T2227] rust_binder: Write failure EINVAL in pid:445
[   72.885857][ T2226] SELinux: failed to load policy
[   72.897382][ T2226] SELinux:  policydb version 948906289 does not match my version range 15-33
[   72.906897][ T2226] SELinux: failed to load policy
[   73.030464][ T2242] rust_binder: Write failure EINVAL in pid:568
[   73.079771][   T36] audit: type=1400 audit(1750346030.739:314): avc:  denied  { attach_queue } for  pid=2243 comm="syz.3.607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   73.159666][ T2249] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   73.433942][ T2260] input: syz1 as /devices/virtual/input/input40
[   73.480453][ T2260] SELinux: security_context_str_to_sid () failed with errno=-22
[   73.518774][   T36] audit: type=1400 audit(1750346031.169:315): avc:  granted  { setsecparam } for  pid=2264 comm="syz.3.613" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   73.538621][   T36] audit: type=1400 audit(1750346031.169:316): avc:  denied  { map } for  pid=2264 comm="syz.3.613" path="/dev/fuse" dev="devtmpfs" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   73.623399][   T36] audit: type=1326 audit(1750346031.279:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2266 comm="syz.2.614" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f98b3f8e929 code=0x0
[   73.672786][ T2259] binder: Unknown parameter '01777777777777777777777'
[   73.834414][   T36] audit: type=1400 audit(1750346031.489:318): avc:  denied  { ioctl } for  pid=2271 comm="syz.3.615" path="/dev/uhid" dev="devtmpfs" ino=199 ioctlcmd=0x1500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   73.964255][ T2277] binder: Bad value for 'max'
[   74.304539][ T2286] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   74.304567][ T2286] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:466
[   74.561862][ T2293] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   74.578990][   T52] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   74.710056][ T2298] rust_binder: Write failure EINVAL in pid:589
[   74.829924][ T2302] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   74.836232][ T2302] rust_binder: Error while translating object.
[   74.845154][ T2302] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   74.851560][ T2302] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:591
[   75.056692][   T36] audit: type=1400 audit(1750346032.709:319): avc:  denied  { append } for  pid=2315 comm="syz.4.627" name="pfkey" dev="proc" ino=4026532982 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   75.089550][ T2316] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   75.092171][   T36] audit: type=1400 audit(1750346032.749:320): avc:  denied  { associate } for  pid=2315 comm="syz.4.627" name="pfkey" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   75.092752][ T2316] rust_binder: Error in use_page_slow: ESRCH
[   75.119458][ T2316] rust_binder: use_range failure ESRCH
[   75.125443][ T2316] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[   75.130970][ T2316] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   75.139401][ T2316] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:73
[   75.261027][ T2319] binder: Unknown parameter 'ÿÿÿÿ'
[   75.266563][ T2322] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[   75.281605][ T2323] binder: Unknown parameter ''
[   75.303816][ T2326] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   75.304328][   T36] audit: type=1400 audit(1750346032.959:321): avc:  denied  { execute } for  pid=2325 comm="syz.4.631" path="/dev/binderfs/binder0" dev="binder" ino=32 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   75.343691][ T2333] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   75.343871][ T2333] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   75.448825][ T2341] binder: Bad value for 'max'
[   75.462559][ T2341] binder: Unknown parameter 'ƒµ�ñ.à'
[   75.568241][ T2348] random: crng reseeded on system resumption
[   75.619375][ T2352] SELinux: syz.5.639 (2352) set checkreqprot to 1. This is no longer supported.
[   75.619783][   T36] audit: type=1400 audit(1750346033.279:322): avc:  denied  { setcheckreqprot } for  pid=2351 comm="syz.5.639" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   75.670468][ T2356] binder: Bad value for 'stats'
[   75.885890][ T2378] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:142
[   76.005741][ T2381] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[   76.493803][ T2413] PM: Enabling pm_trace changes system date and time during resume.
[   76.493803][ T2413] PM: Correct system time has to be restored manually after resume.
[   76.494358][ T2412] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[   76.527572][ T2412] input: syz1 as /devices/virtual/input/input43
[   76.557612][ T2421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   76.557639][ T2421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   76.608895][   T36] audit: type=1400 audit(1750346034.259:323): avc:  denied  { setattr } for  pid=2406 comm="syz.4.657" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   76.747017][ T2444] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   76.764929][ T2449] rust_binder: Write failure EINVAL in pid:121
[   76.870315][ T2452] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[   76.903604][ T2459] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   77.120294][ T2459] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[   77.650525][ T2491] rust_binder: Write failure EINVAL in pid:639
[   77.732713][ T2501] input: syz1 as /devices/virtual/input/input44
[   77.783247][ T2506] SELinux: failed to load policy
[   77.810856][ T2511] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   77.810919][ T2509] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[   78.180666][   T36] audit: type=1326 audit(1750346035.839:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2533 comm="syz.3.695" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x0
[   78.251339][ T2537] SELinux: failed to load policy
[   78.256656][ T2537] binder: Bad value for 'stats'
[   78.676077][ T2545] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:183
[   78.685323][   T36] audit: type=1400 audit(1750346036.339:325): avc:  denied  { compute_member } for  pid=2544 comm="syz.5.699" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   78.817216][ T1331] Bluetooth: hci0: Frame reassembly failed (-84)
[   78.823682][ T2547] Bluetooth: hci0: Frame reassembly failed (-84)
[   78.902766][ T2551] random: crng reseeded on system resumption
[   78.927598][ T2551] cgroup: fork rejected by pids controller in /syz2
[   79.225530][ T2567] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:199
[   79.238564][ T2571] input: syz0 as /devices/virtual/input/input46
[   80.027169][ T2589] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY
[   80.027193][ T2589] rust_binder: Error in use_page_slow: EBUSY
[   80.037632][ T2589] rust_binder: use_range failure EBUSY
[   80.043728][ T2589] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[   80.049248][ T2589] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY }
[   80.056881][ T2589] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender.
[   80.066225][ T2589] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:213
[   80.163312][   T36] audit: type=1400 audit(1750346037.819:326): avc:  denied  { execute } for  pid=2591 comm="syz.5.713" path="/selinux/policy" dev="selinuxfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=file permissive=1
[   80.499253][ T2603] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   80.775207][   T36] audit: type=1400 audit(1750346038.429:327): avc:  denied  { map } for  pid=2613 comm="syz.5.720" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   80.819219][   T52] Bluetooth: hci0: command 0x1003 tx timeout
[   80.819508][  T408] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   80.840572][ T2616] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   81.055143][ T2630] kvm: kvm [2629]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x4000000000000001
[   81.128304][ T2632] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:535
[   81.339217][ T2647] rust_binder: Write failure EINVAL in pid:180
[   81.349102][ T2649] rust_binder: Write failure EINVAL in pid:180
[   81.501008][ T2654] binder: Unknown parameter 'obj_role'
[   81.721391][ T2659] SELinux: failed to load policy
[   81.741826][ T2661] cgroup: fork rejected by pids controller in /syz4
[   81.748766][ T2661] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[   82.091373][ T2666] binder: Unknown parameter 'co"‰t'
[   82.335425][  T567] hid (null): invalid report_count 42446
[   82.341164][  T567] hid (null): invalid report_count 392870008
[   82.348225][  T567] hid-generic 0000:FFFFFFFB:0009.0008: invalid report_count 42446
[   82.356239][  T567] hid-generic 0000:FFFFFFFB:0009.0008: item 0 2 1 9 parsing failed
[   82.364319][  T567] hid-generic 0000:FFFFFFFB:0009.0008: probe with driver hid-generic failed with error -22
[   82.726661][ T2699] input: syz1 as /devices/virtual/input/input47
[   82.742808][  T305] bridge_slave_1: left allmulticast mode
[   82.748525][  T305] bridge_slave_1: left promiscuous mode
[   82.754165][  T305] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.799287][  T305] bridge_slave_0: left allmulticast mode
[   82.804941][  T305] bridge_slave_0: left promiscuous mode
[   82.810575][  T305] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.987930][ T2705] input input48: cannot allocate more than FF_MAX_EFFECTS effects
[   83.199977][ T2709] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   83.200002][ T2709] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:250
[   83.225490][ T2713] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[   83.243679][ T2714] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[   83.259350][ T2716] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 128, limit: 144, size: 112)
[   83.259372][ T2716] rust_binder: Error while translating object.
[   83.269998][ T2716] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   83.276174][ T2716] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:257
[   83.629168][  T305] veth1_macvtap: left promiscuous mode
[   83.644083][  T305] veth0_vlan: left promiscuous mode
[   83.759148][   T36] audit: type=1326 audit(1750346041.419:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2727 comm="syz.5.760" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc420d8e929 code=0x0
[   83.864617][   T36] audit: type=1326 audit(1750346041.519:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2727 comm="syz.5.760" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc420d8e929 code=0x0
[   84.789310][ T2678] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.796485][ T2678] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.803590][ T2678] bridge_slave_0: entered allmulticast mode
[   84.809815][ T2678] bridge_slave_0: entered promiscuous mode
[   84.899370][ T2678] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.906599][ T2678] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.913703][ T2678] bridge_slave_1: entered allmulticast mode
[   84.919904][ T2678] bridge_slave_1: entered promiscuous mode
[   85.509361][ T2696] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.516460][ T2696] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.523565][ T2696] bridge_slave_0: entered allmulticast mode
[   85.529957][ T2696] bridge_slave_0: entered promiscuous mode
[   85.537245][ T2696] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.544349][ T2696] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.551492][ T2696] bridge_slave_1: entered allmulticast mode
[   85.557672][ T2696] bridge_slave_1: entered promiscuous mode
[   85.630508][ T2757] kvm: user requested TSC rate below hardware speed
[   85.915022][ T2773] input: syz1 as /devices/virtual/input/input51
[   86.106268][ T2778] rust_binder: Write failure EINVAL in pid:299
[   86.205753][ T2781] rust_binder: Failed to allocate buffer. len:120, is_oneway:false
[   87.290608][  T305] bridge_slave_1: left allmulticast mode
[   87.304185][  T305] bridge_slave_1: left promiscuous mode
[   87.309801][  T305] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.329211][  T305] bridge_slave_0: left allmulticast mode
[   87.334856][  T305] bridge_slave_0: left promiscuous mode
[   87.340484][  T305] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.963371][   T36] audit: type=1326 audit(1750346045.619:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2797 comm="syz.5.777" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc420d8e929 code=0x0
[   88.059216][  T305] veth1_macvtap: left promiscuous mode
[   88.064725][  T305] veth0_vlan: left promiscuous mode
[   88.500121][   T36] audit: type=1400 audit(1750346046.159:331): avc:  denied  { view } for  pid=2799 comm="syz.3.778" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   88.712322][ T2808] binder: Unknown parameter 'd]Á7íaçôÛD'
[   88.891200][  T304] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.898254][  T304] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.910274][  T304] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.917423][  T304] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.930928][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.938008][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.945863][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.952910][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.006801][ T2678] veth0_vlan: entered promiscuous mode
[   89.016341][ T2696] veth0_vlan: entered promiscuous mode
[   89.033004][ T2816] binder: Unknown parameter 'non'
[   89.033082][ T2696] veth1_macvtap: entered promiscuous mode
[   89.046291][ T2678] veth1_macvtap: entered promiscuous mode
[   89.056024][   T36] audit: type=1400 audit(1750346046.719:332): avc:  denied  { append } for  pid=2817 comm="syz.3.784" name="hwrng" dev="devtmpfs" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[   89.230358][ T2823] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   89.705569][   T36] audit: type=1400 audit(1750346047.359:333): avc:  denied  { append } for  pid=2838 comm="syz.2.787" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   89.928469][ T2851] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   89.928495][ T2851] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:12
[   89.938335][ T2851] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[   89.948292][ T2851] rust_binder: Read failure Err(EFAULT) in pid:12
[   90.125809][ T2867] binder: Bad value for 'stats'
[   90.861442][ T2887] random: crng reseeded on system resumption
[   91.149840][ T2895] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   91.271775][   T36] audit: type=1400 audit(1750346048.929:334): avc:  denied  { map } for  pid=2922 comm="syz.3.814" path="/dev/bsg" dev="devtmpfs" ino=88 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=dir permissive=1
[   91.274113][ T2923] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[   91.300565][ T2916] binder: Bad value for 'stats'
[   91.848964][ T2929] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[   91.861411][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x7
[   91.869837][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x3
[   91.877289][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x0
[   91.884750][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x0
[   91.892195][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x0
[   91.899636][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x0
[   91.907068][   T31] hid-generic 009C:0008:0003.0009: unknown main item tag 0x0
[   91.914997][   T31] hid-generic 009C:0008:0003.0009: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[   91.994994][ T2933] rust_binder: Write failure EINVAL in pid:35
[   92.000920][   T36] audit: type=1326 audit(1750346049.659:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2939 comm="syz.3.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   92.030469][   T36] audit: type=1326 audit(1750346049.659:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2939 comm="syz.3.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   92.053710][   T36] audit: type=1326 audit(1750346049.659:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2939 comm="syz.3.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   92.076933][   T36] audit: type=1326 audit(1750346049.659:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2939 comm="syz.3.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   92.100221][   T36] audit: type=1326 audit(1750346049.659:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2939 comm="syz.3.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   92.399419][ T2952] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   92.532530][ T2962] rust_binder: Error in use_page_slow: ESRCH
[   92.532545][ T2962] rust_binder: use_range failure ESRCH
[   92.544129][ T2962] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   92.544155][ T2962] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[   92.551998][ T2962] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:43
[   92.801123][ T2970] rust_binder: Error while translating object.
[   92.810204][ T2970] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   92.816365][ T2970] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:340
[   92.912856][ T2980] input: syz0 as /devices/virtual/input/input54
[   92.913523][ T2981] binder: Unknown parameter ''
[   92.934080][ T2986] binder: Unknown parameter ''
[   92.951170][ T2989] SELinux: failed to load policy
[   92.956204][ T2989] SELinux: failed to load policy
[   92.962911][ T2989] SELinux: failed to load policy
[   92.968269][ T2989] SELinux: failed to load policy
[   92.973363][ T2989] SELinux: failed to load policy
[   92.978456][ T2989] SELinux: failed to load policy
[   92.983529][ T2989] SELinux: failed to load policy
[   92.988631][ T2989] SELinux: failed to load policy
[   92.993780][ T2989] SELinux: failed to load policy
[   92.998853][ T2989] SELinux: failed to load policy
[   93.158142][ T3007] input: syz1 as /devices/virtual/input/input55
[   93.167033][ T3007] rtc_cmos 00:00: Alarms can be up to one day in the future
[   93.177107][ T3006] rtc_cmos 00:00: Alarms can be up to one day in the future
[   93.472299][ T3025] binder: Bad value for 'defcontext'
[   93.549122][ T3033] binder: Bad value for 'defcontext'
[   93.554492][ T3033] binder: Bad value for 'defcontext'
[   93.559938][ T3033] binder: Bad value for 'defcontext'
[   93.565272][ T3033] binder: Bad value for 'defcontext'
[   93.570820][ T3033] binder: Bad value for 'defcontext'
[   93.576216][ T3033] binder: Bad value for 'defcontext'
[   93.581593][ T3033] binder: Bad value for 'defcontext'
[   93.586897][ T3033] binder: Bad value for 'defcontext'
[   93.592282][ T3033] binder: Bad value for 'defcontext'
[   93.597639][ T3033] binder: Bad value for 'defcontext'
[   93.603017][ T3033] binder: Bad value for 'defcontext'
[   93.608387][ T3033] binder: Bad value for 'defcontext'
[   93.613879][ T3033] binder: Bad value for 'defcontext'
[   93.619412][ T3033] binder: Bad value for 'defcontext'
[   93.624835][ T3033] binder: Bad value for 'defcontext'
[   93.630256][ T3033] binder: Bad value for 'defcontext'
[   93.635643][ T3033] binder: Bad value for 'defcontext'
[   93.641468][ T3033] binder: Bad value for 'defcontext'
[   93.646871][ T3033] binder: Bad value for 'defcontext'
[   93.652241][ T3033] binder: Bad value for 'defcontext'
[   93.657789][ T3033] binder: Bad value for 'defcontext'
[   93.663196][ T3033] binder: Bad value for 'defcontext'
[   93.668534][ T3033] binder: Bad value for 'defcontext'
[   93.673951][ T3033] binder: Bad value for 'defcontext'
[   93.679315][ T3033] binder: Bad value for 'defcontext'
[   93.684630][ T3033] binder: Bad value for 'defcontext'
[   93.690026][ T3033] binder: Bad value for 'defcontext'
[   93.695411][ T3033] binder: Bad value for 'defcontext'
[   93.701165][   T53] rtc_cmos 00:00: Alarms can be up to one day in the future
[   93.708682][   T53] rtc_cmos 00:00: Alarms can be up to one day in the future
[   93.716140][ T3033] binder: Bad value for 'defcontext'
[   93.721735][ T3033] binder: Bad value for 'defcontext'
[   93.727116][ T3033] binder: Bad value for 'defcontext'
[   93.732695][   T53] rtc_cmos 00:00: Alarms can be up to one day in the future
[   93.740394][   T53] rtc_cmos 00:00: Alarms can be up to one day in the future
[   93.747895][ T3033] binder: Bad value for 'defcontext'
[   93.753395][ T3033] binder: Bad value for 'defcontext'
[   93.758777][ T3033] binder: Bad value for 'defcontext'
[   93.764253][   T53] rtc rtc0: __rtc_set_alarm: err=-22
[   93.769915][ T3033] binder: Bad value for 'defcontext'
[   93.775408][ T3033] binder: Bad value for 'defcontext'
[   93.781115][ T3033] binder: Bad value for 'defcontext'
[   93.786929][ T3033] binder: Bad value for 'defcontext'
[   93.792887][ T3033] binder: Bad value for 'defcontext'
[   93.798375][ T3033] binder: Bad value for 'defcontext'
[   93.803943][ T3033] binder: Bad value for 'defcontext'
[   93.809915][ T3041] cgroup: fork rejected by pids controller in /syz5
[   93.816849][ T3033] binder: Bad value for 'defcontext'
[   93.822371][ T3033] binder: Bad value for 'defcontext'
[   93.827837][ T3033] binder: Bad value for 'defcontext'
[   93.833489][ T3033] binder: Bad value for 'defcontext'
[   93.839031][ T3033] binder: Bad value for 'defcontext'
[   93.844534][ T3033] binder: Bad value for 'defcontext'
[   93.850170][ T3033] binder: Bad value for 'defcontext'
[   93.855643][ T3033] binder: Bad value for 'defcontext'
[   93.861139][ T3033] binder: Bad value for 'defcontext'
[   93.866491][ T3033] binder: Bad value for 'defcontext'
[   93.872193][ T3033] binder: Bad value for 'defcontext'
[   93.877526][ T3033] binder: Bad value for 'defcontext'
[   93.882910][ T3033] binder: Bad value for 'defcontext'
[   93.888272][ T3033] binder: Bad value for 'defcontext'
[   93.893795][ T3033] binder: Bad value for 'defcontext'
[   93.899223][ T3033] binder: Bad value for 'defcontext'
[   93.904857][ T3033] binder: Bad value for 'defcontext'
[   93.910574][ T3033] binder: Bad value for 'defcontext'
[   93.916010][ T3033] binder: Bad value for 'defcontext'
[   93.921583][ T3033] binder: Bad value for 'defcontext'
[   93.927026][ T3033] binder: Bad value for 'defcontext'
[   93.932463][ T3033] binder: Bad value for 'defcontext'
[   93.937795][ T3033] binder: Bad value for 'defcontext'
[   93.943425][ T3033] binder: Bad value for 'defcontext'
[   94.507447][ T3166] rust_binder: Write failure EINVAL in pid:64
[   94.828590][ T3170] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[   94.855214][ T3174] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:65
[   94.956726][   T36] kauditd_printk_skb: 4 callbacks suppressed
[   94.956743][   T36] audit: type=1326 audit(1750346052.609:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   94.995078][   T36] audit: type=1326 audit(1750346052.609:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.018461][   T36] audit: type=1326 audit(1750346052.609:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.042937][   T36] audit: type=1326 audit(1750346052.609:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.069061][   T36] audit: type=1326 audit(1750346052.609:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.092379][   T36] audit: type=1326 audit(1750346052.609:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.115709][   T36] audit: type=1326 audit(1750346052.609:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.128341][ T3181] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 120, limit: 136, size: 89)
[   95.139225][ T3181] rust_binder: Error while translating object.
[   95.139229][   T36] audit: type=1326 audit(1750346052.609:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.139254][   T36] audit: type=1326 audit(1750346052.609:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.149791][ T3181] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   95.156201][   T36] audit: type=1326 audit(1750346052.609:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3177 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3e3b8e929 code=0x7ffc0000
[   95.179386][ T3181] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:71
[   95.236751][  T304] bridge_slave_1: left allmulticast mode
[   95.256310][  T304] bridge_slave_1: left promiscuous mode
[   95.262000][  T304] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.289324][  T304] bridge_slave_0: left allmulticast mode
[   95.295306][  T304] bridge_slave_0: left promiscuous mode
[   95.301070][  T304] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.516080][ T3190] binder: Unknown parameter 'dont_hash'
[   95.541237][ T3192] binder: Bad value for 'max'
[   95.965486][ T3201] input: syz0 as /devices/virtual/input/input57
[   96.009434][  T304] veth1_macvtap: left promiscuous mode
[   96.015266][  T304] veth0_vlan: left promiscuous mode
[   96.062942][ T3205] binder: Unknown parameter 'stats00000000000000000003'
[   96.118309][ T3208] input: syz0 as /devices/virtual/input/input59
[   96.125550][ T3208] rust_binder: Write failure EINVAL in pid:674
[   96.719752][ T3162] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.732971][ T3162] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.740045][ T3162] bridge_slave_0: entered allmulticast mode
[   96.746193][ T3162] bridge_slave_0: entered promiscuous mode
[   96.752603][ T3162] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.759643][ T3162] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.766680][ T3162] bridge_slave_1: entered allmulticast mode
[   96.772915][ T3162] bridge_slave_1: entered promiscuous mode
[   96.925132][ T3235] binder: Unknown parameter 'dont_hash'
[   96.945961][ T3241] binder: Bad value for 'stats'
[   96.969741][ T3248] rust_binder: Write failure EINVAL in pid:84
[   97.120755][ T3261] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[   97.223142][ T3264] rust_binder: Write failure EINVAL in pid:704
[   97.240876][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.254546][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.261985][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.269426][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.276795][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.284231][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.291639][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.299031][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.306402][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.313788][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.321185][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.328673][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.336103][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.343566][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.350984][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.358395][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.367840][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.375495][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.384086][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.391623][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.399190][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.406658][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.414389][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.421875][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.429284][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.436680][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.444185][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.451667][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.459195][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.466571][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.474120][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.481552][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   97.490595][    T9] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   97.508838][ T3271] fido_id[3271]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   97.514126][ T3274] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   97.744791][ T3278] binder: Unknown parameter '18446744073709551615'
[   97.770495][ T3280] rust_binder: Read failure Err(EAGAIN) in pid:85
[   97.971291][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   97.985813][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   97.993262][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.000721][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.008093][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.015509][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.022994][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.025393][ T3290] rust_binder: Error while translating object.
[   98.030522][ T3290] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[   98.030598][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.036758][ T3290] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:93
[   98.046653][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.075615][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.077883][ T3293] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[   98.083807][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.086009][ T3293] rust_binder: Write failure EINVAL in pid:95
[   98.092002][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.112585][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.119986][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.127357][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.134795][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.142202][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.149638][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.157020][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.164414][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.171856][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.179325][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.186761][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.194203][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.201649][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.209097][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.216530][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.223925][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.231373][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.238801][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.246213][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.253629][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.261023][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.268388][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.275812][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.283250][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.290649][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.298022][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.305458][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.312893][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.320297][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.327670][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.335094][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.342490][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.349914][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.357322][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.364815][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.373666][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.381294][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.388782][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.396219][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.403679][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.411114][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.418508][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.426164][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.444398][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.452171][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.460084][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.467650][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.475231][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.477350][ T1331] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.482817][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.489691][ T1331] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.497208][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.512135][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.520695][ T1331] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.527763][ T1331] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.535310][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.542965][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.550987][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.559778][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.567316][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.574946][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.583442][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.585925][ T3162] veth0_vlan: entered promiscuous mode
[   98.596419][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.604036][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.611992][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.619582][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.628464][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.636152][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.638308][ T3162] veth1_macvtap: entered promiscuous mode
[   98.649389][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.656921][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.664608][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.672310][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.681069][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.688598][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.696306][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.704077][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.712068][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.721198][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.730516][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.739824][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.747610][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.755356][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.764576][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.772248][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.779853][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.787338][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.795331][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.803026][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.810745][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.818225][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.826111][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.833969][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.841589][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.849223][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.874419][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.882237][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.889841][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.897516][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.905191][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.914305][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.922012][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.929649][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.937253][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.945025][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.954252][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.962573][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.970319][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.977785][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.985518][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   98.993458][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.001117][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.008754][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.016586][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.024189][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.031892][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.039477][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.046921][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.054567][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.062248][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.069945][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.077400][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.085008][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.092629][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.100365][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.107949][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.115690][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.123242][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.130846][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.138280][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.145867][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.153506][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.162521][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.170605][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.178084][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.185898][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.193637][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.201289][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.208768][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.216482][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.224354][ T3310] pim6reg0: tun_chr_ioctl cmd 1074025677
[   99.231705][ T3310] pim6reg0: linktype set to 769
[   99.243029][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.246715][ T3309] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:4
[   99.250754][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.267355][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.274990][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.282708][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.290349][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.300925][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.308348][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.316084][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.325026][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.332721][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.340368][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.347819][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.355468][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.363129][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.370718][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.378156][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.386151][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.393787][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.401390][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.408830][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.416467][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.424094][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.431960][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.439575][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.447534][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.458103][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.465997][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.473469][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.480892][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.488262][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.495681][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.503091][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.510507][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.517916][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.525327][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.532749][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.540512][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.547886][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.555275][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.562718][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.570155][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.577545][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.578883][ T3323] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:110
[   99.584988][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.601556][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.608971][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.616364][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.622207][ T3323] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[   99.623728][ T3323] rust_binder: Error while translating object.
[   99.624136][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.639219][ T3323] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   99.646013][ T3323] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:110
[   99.647418][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.672002][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.679455][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.686832][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.694220][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.701857][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.709286][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.716668][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.724352][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.725067][ T3325] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:729
[   99.731792][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.748357][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.755817][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.763284][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.782343][ T3328] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[   99.788957][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.792857][ T3333] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[   99.796900][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.848959][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.856379][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.863903][   T31] hid-generic 01FF:0004:0400.000B: unknown main item tag 0x0
[   99.872012][   T31] hid-generic 01FF:0004:0400.000B: hidraw0: <UNKNOWN> HID v0.05 Device [syz0] on syz1
[   99.916416][ T3338] fido_id[3338]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   99.943881][ T3340] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:90
[  100.773205][ T3367] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:19
[  100.812404][ T3371] rust_binder: Write failure EINVAL in pid:97
[  100.861069][ T3373] rust_binder: Read failure Err(EAGAIN) in pid:133
[  100.952079][ T3379] input: syz0 as /devices/virtual/input/input61
[  101.015819][ T3377] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  101.030495][ T3377] SELinux: security_context_str_to_sid (sytem_uÝGйme         : rfc4106(gcm(aes))
[  101.030495][ T3377] driver       : rfc4106-gcm-aesni-avx
[  101.030495][ T3377] module       : kernel
[  101.030495][ T3377] priority     : 500
[  101.030495][ T3377] refcnt       : 1
[  101.030495][ T3377] selftest     : passed
[  101.030495][ T3377] internal     : no
[  101.030495][ T3377] type         : aead
[  101.030495][ T3377] async        : yes
[  101.030495][ T3377] blocksize    : 1
[  101.030495][ T3377] ivsize       : 8
[  101.030495][ T3377] maxauthsize  : 16
[  101.030495][ T3377] geniv        : <none>
[  101.030495][ T3377] 
[  101.030495][ T3377] name         : gcm(aes)
[  101.030495][ T3377] driver       : generic-gcm-aesni-avx
[  101.030495][ T3377] module       : kernel
[  101.030495][ T3377] priority     : 500
[  101.030495][ T3377] refcnt       : 1
[  101.030495][ T3377] selftest     : passed
[  101.030495][ T3377] internal     : no
[  101.030495][ T3377] type         : aead
[  101.030495][ T3377] async        : yes
[  101.030495][ T3377] blocksize    : 1
[  101.030495][ T3377] ivsize       : 12
[  101.030495][ T3377] maxauthsize  : 16
[  101.030495][ T3377] geniv        : <none>
[  101.030495][ T3377] 
[  101.030495][ T3377] name         : __rfc4106(gcm(aes))
[  101.030495][ T3377] driver       : __rfc4106-gcm-aesni-avx
[  101.030495][ T3377] module       : kernel
[  101.030495][ T3377] priority     : 500
[  101.030495][ T3377] refcnt       : 1
[  101.030495][ T3377] selftest     : passed
[  101.030495][ T3377] internal     : yes
[  101.030495][ T3377] type         : aead
[  101.030495][ T3377] async        : no
[  101.030495][ T3377] blocksize    : 1
[  101.030495][ T3377] ivsize       : 8
[  101.030495][ T3377] maxauthsize  : 16
[  101.030495][ T3377] geniv        : <none>
[  101.030495][ T3377] 
[  101.030495][ T3377] name         : __gcm(aes)
[  101.030495][ T3377] driver       : __generic-gcm-aesni-avx
[  101.030495][ T3377] module       : kernel
[  101.608512][ T3408] SELinux: security_context_str_to_sid () failed with errno=-22
[  102.044480][ T3417] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  102.847728][ T3421] rust_binder: Error while translating object.
[  102.847773][ T3421] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  102.854219][ T3421] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:158
[  103.428138][ T3441] binder: Unknown parameter 'i'
[  103.743548][ T3451] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  103.809255][ T3458] rust_binder: Error while translating object.
[  103.829689][ T3458] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  103.835900][ T3458] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:178
[  103.877796][ T3458] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  103.954646][ T3458] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  104.146422][ T3474] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[  104.367518][ T3484] binfmt_misc: register: failed to install interpreter file ./file0
[  104.455069][ T3486] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[  104.473273][ T3486] sel_write_load: 55 callbacks suppressed
[  104.473292][ T3486] SELinux: failed to load policy
[  104.542260][ T3490] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  104.686482][ T3492] rust_binder: Write failure EINVAL in pid:124
[  104.686730][ T3492] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:124
[  104.710550][ T3494] rust_binder: Write failure EINVAL in pid:196
[  105.083218][ T3509] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[  105.089513][ T3509] rust_binder: Error while translating object.
[  105.098296][ T3509] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  105.116117][ T3509] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:128
[  105.696282][   T36] kauditd_printk_skb: 26 callbacks suppressed
[  105.696299][   T36] audit: type=1326 audit(1750346063.349:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3535 comm="syz.4.970" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3cc78e929 code=0x0
[  105.796495][ T3545] binder: Unknown parameter '¹.MÐÖ2oêÃÅ®¸¯_$0l\'
[  105.821415][ T3547] input: syz0 as /devices/virtual/input/input63
[  105.843090][ T1331] Bluetooth: hci0: Frame reassembly failed (-84)
[  106.282804][ T3554] binder: Bad value for 'stats'
[  106.816188][ T3573] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  106.816410][ T3573] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  106.823231][ T3573] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:240
[  106.833065][ T3573] rust_binder: got new transaction with bad transaction stack
[  106.842371][ T3573] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:240
[  107.118986][ T3580] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:142
[  107.155897][ T3582] SELinux: failed to load policy
[  107.225121][ T3586] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  107.235886][ T3588] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  107.338349][ T3599] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[  107.345637][ T3600] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  107.493252][ T3606] rust_binder: Error while translating object.
[  107.499869][ T3606] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  107.506115][ T3606] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:152
[  107.516534][ T3606] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:152
[  107.748218][ T3615] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  107.832537][ T3621] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  107.859012][   T52] Bluetooth: hci0: command 0x1003 tx timeout
[  107.868968][  T408] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  107.890994][ T3622] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:270
[  108.054659][ T3624] input: syz1 as /devices/virtual/input/input66
[  108.074005][ T3624] input: failed to attach handler leds to device input66, error: -6
[  108.102261][ T3626] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  108.158239][   T36] audit: type=1400 audit(1750346065.809:381): avc:  denied  { write } for  pid=3632 comm="syz.5.1007" name="loop-control" dev="devtmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  108.182976][ T3633] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  108.183080][ T3633] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  108.199538][   T36] audit: type=1400 audit(1750346065.839:382): avc:  denied  { ioctl } for  pid=3632 comm="syz.5.1007" path="/dev/loop-control" dev="devtmpfs" ino=48 ioctlcmd=0x9439 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  108.443981][ T3639] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  108.714387][   T36] audit: type=1400 audit(1750346066.369:383): avc:  denied  { setcurrent } for  pid=3642 comm="syz.2.1011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  108.743572][ T3645] input: syz0 as /devices/virtual/input/input68
[  108.755347][ T3647] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  108.755518][ T3647] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  108.765088][ T3647] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOSPC }
[  108.773623][ T3647] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOSPC } my_pid:275
[  108.807853][ T3651] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  108.851015][   T36] audit: type=1400 audit(1750346066.499:384): avc:  granted  { setsecparam } for  pid=3653 comm="syz.2.1016" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  109.251984][ T3671] rust_binder: Write failure EINVAL in pid:87
[  109.263136][   T36] audit: type=1326 audit(1750346066.919:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3672 comm="syz.5.1022" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff59538e929 code=0x0
[  109.316758][ T3675] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  109.735307][ T3683] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  109.856386][ T3685] kvm: kvm [3684]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000002a) = 0x4
[  109.888614][ T3685] binder: Unknown parameter '»wÿÿÿÿÿÿÿ'
[  110.149017][ T3695] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  110.149258][ T3695] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  110.155703][ T3695] rust_binder: Read failure Err(EFAULT) in pid:187
[  110.214791][ T3702] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  110.229833][ T3702] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  110.239049][ T3702] rust_binder: Read failure Err(EFAULT) in pid:189
[  110.294712][ T3709] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  110.303263][ T3709] rust_binder: Error in use_page_slow: ESRCH
[  110.310107][ T3709] rust_binder: use_range failure ESRCH
[  110.316569][ T3709] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  110.322289][ T3709] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  110.330632][ T3709] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:196
[  110.417309][ T3719] rust_binder: Error while translating object.
[  110.426738][ T3719] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  110.433088][ T3719] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:298
[  111.274256][ T3750] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  111.330765][ T3754] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  111.511213][ T3773] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  111.712353][   T36] audit: type=1326 audit(1750346069.369:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3777 comm="syz.2.1057" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff8658e929 code=0x0
[  111.766664][   T36] audit: type=1400 audit(1750346069.419:387): avc:  denied  { append } for  pid=3777 comm="syz.2.1057" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  112.749519][ T3796] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  112.749623][ T3796] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  112.787436][   T53] hid-generic C98F:0003:0000.000C: unknown main item tag 0x0
[  112.803838][   T53] hid-generic C98F:0003:0000.000C: unknown main item tag 0x0
[  112.813045][   T53] hid-generic C98F:0003:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  112.854277][ T3801] fido_id[3801]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  112.868622][ T3809] rust_binder: Write failure EINVAL in pid:222
[  112.868786][   T36] audit: type=1400 audit(1750346070.509:388): avc:  denied  { map } for  pid=3807 comm="syz.5.1067" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  112.906245][   T36] audit: type=1400 audit(1750346070.509:389): avc:  denied  { execute } for  pid=3807 comm="syz.5.1067" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  112.975576][    T9] hid-generic C98F:0003:0000.000D: unknown main item tag 0x0
[  112.983540][    T9] hid-generic C98F:0003:0000.000D: unknown main item tag 0x0
[  112.993218][    T9] hid-generic C98F:0003:0000.000D: hidraw0: <UNKNOWN> HID v0.0a Device [syz0] on syz1
[  113.022763][ T3816] fido_id[3816]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  113.380599][ T3834] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  113.380661][ T3833] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  113.403166][ T3833] serio: Serial port ttynull
[  113.455229][ T3834] rust_binder: inc_ref_done called when no active inc_refs
[  113.455253][ T3834] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:327
[  113.470315][ T3836] rust_binder: inc_ref_done called when no active inc_refs
[  113.482837][ T3836] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:327
[  113.916194][   T36] audit: type=1326 audit(1750346071.569:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3852 comm="syz.2.1080" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff8658e929 code=0x0
[  113.979317][ T3855] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  113.983737][ T3855] input: syz0 as /devices/virtual/input/input72
[  114.055565][ T3856] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:231
[  114.222561][ T3859] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  114.793534][ T3878] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  114.793613][ T3878] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  114.949765][ T3880] binder: Bad value for 'stats'
[  115.217268][   T36] audit: type=1326 audit(1750346072.869:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3888 comm="syz.5.1091" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff59538e929 code=0x0
[  115.318640][ T3891] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  115.329102][   T10] ==================================================================
[  115.337178][   T10] BUG: KASAN: null-ptr-deref in down_write+0x83/0x2a0
[  115.343937][   T10] Write of size 8 at addr 0000000000000098 by task kworker/0:1/10
[  115.351742][   T10] 
[  115.354051][   T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  115.354067][   T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.354075][   T10] Workqueue: events _RNvXs6_NtCs43vyB533jt3_6kernel9workqueueINtNtNtB7_4sync3arc3ArcNtNtCshgDM7dBCdno_11rust_binder7process7ProcessEINtB5_15WorkItemPointerKy0_E3runB13_
[  115.354103][   T10] Call Trace:
[  115.354108][   T10]  <TASK>
[  115.354113][   T10]  __dump_stack+0x21/0x30
[  115.354127][   T10]  dump_stack_lvl+0x10c/0x190
[  115.354138][   T10]  ? __cfi_dump_stack_lvl+0x10/0x10
[  115.354149][   T10]  ? _RNvMs0_NtCshgDM7dBCdno_11rust_binder4nodeNtB5_4Node22update_refcount_locked+0x3aa/0x810
[  115.354168][   T10]  print_report+0x3d/0x70
[  115.354177][   T10]  kasan_report+0x163/0x1a0
[  115.354191][   T10]  ? down_write+0x83/0x2a0
[  115.354201][   T10]  ? down_write+0x83/0x2a0
[  115.354210][   T10]  kasan_check_range+0x299/0x2a0
[  115.354225][   T10]  __kasan_check_write+0x18/0x20
[  115.354235][   T10]  down_write+0x83/0x2a0
[  115.354244][   T10]  ? __cfi_down_write+0x10/0x10
[  115.354253][   T10]  ? _raw_spin_lock+0x8c/0x120
[  115.354264][   T10]  ? __cfi__raw_spin_lock+0x10/0x10
[  115.354275][   T10]  ? mutex_unlock+0x8b/0x240
[  115.354292][   T10]  ? __cfi_mutex_unlock+0x10/0x10
[  115.354314][   T10]  rust_binderfs_remove_file+0x6c/0x110
[  115.354336][   T10]  _RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x9d4/0x2860
[  115.354357][   T10]  ? update_curr_dl_se+0x10c/0xb20
[  115.354369][   T10]  ? __cfi___update_load_avg_cfs_rq+0x10/0x10
[  115.354379][   T10]  ? update_curr+0x60d/0xc60
[  115.354391][   T10]  ? __cfi__RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x10/0x10
[  115.354410][   T10]  ? update_load_avg+0x506/0x19a0
[  115.354419][   T10]  ? detach_entity_load_avg+0x7b0/0x7b0
[  115.354431][   T10]  ? dequeue_entity+0x354/0x1750
[  115.354442][   T10]  ? tg_unthrottle_up+0x980/0x980
[  115.354451][   T10]  ? kvm_sched_clock_read+0x15/0x30
[  115.354461][   T10]  ? sched_clock_noinstr+0xd/0x30
[  115.354474][   T10]  ? sched_clock+0x44/0x60
[  115.354483][   T10]  ? sched_clock_cpu+0x75/0x400
[  115.354493][   T10]  ? __cfi___update_load_avg_cfs_rq+0x10/0x10
[  115.354503][   T10]  ? sched_clock+0x44/0x60
[  115.354511][   T10]  ? xfd_validate_state+0x68/0x150
[  115.354522][   T10]  ? save_fpregs_to_fpstate+0x196/0x230
[  115.354535][   T10]  ? __kasan_check_write+0x18/0x20
[  115.354545][   T10]  ? __switch_to+0xc7b/0x1310
[  115.354556][   T10]  ? __cfi___switch_to+0x10/0x10
[  115.354567][   T10]  ? __switch_to_asm+0x3d/0x70
[  115.354579][   T10]  ? __kasan_check_write+0x18/0x20
[  115.354589][   T10]  ? pwq_dec_nr_in_flight+0x6c7/0xc60
[  115.354601][   T10]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[  115.354612][   T10]  ? kick_pool+0xb9/0x550
[  115.354625][   T10]  process_scheduled_works+0x7d2/0x1020
[  115.354638][   T10]  worker_thread+0xc58/0x1250
[  115.354651][   T10]  kthread+0x2c7/0x370
[  115.354663][   T10]  ? __cfi_worker_thread+0x10/0x10
[  115.354675][   T10]  ? __cfi_kthread+0x10/0x10
[  115.354687][   T10]  ret_from_fork+0x64/0xa0
[  115.354697][   T10]  ? __cfi_kthread+0x10/0x10
[  115.354709][   T10]  ret_from_fork_asm+0x1a/0x30
[  115.354728][   T10]  </TASK>
[  115.354734][   T10] ==================================================================
[  115.677507][   T10] Disabling lock debugging due to kernel taint
[  115.683976][   T10] BUG: kernel NULL pointer dereference, address: 0000000000000098
[  115.690074][ T3893] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  115.691794][   T10] #PF: supervisor write access in kernel mode
[  115.691805][   T10] #PF: error_code(0x0002) - not-present page
[  115.691815][   T10] PGD 0 P4D 0 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  115.715834][   T10] Oops: Oops: 0002 [#1] PREEMPT SMP KASAN PTI
[  115.721901][   T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Tainted: G    B              6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  115.736752][   T10] Tainted: [B]=BAD_PAGE
[  115.737450][   T36] audit: type=1400 audit(1750346073.349:392): avc:  denied  { write } for  pid=281 comm="syz-executor" path="pipe:[2587]" dev="pipefs" ino=2587 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  115.740895][   T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.740908][   T10] Workqueue: events _RNvXs6_NtCs43vyB533jt3_6kernel9workqueueINtNtNtB7_4sync3arc3ArcNtNtCshgDM7dBCdno_11rust_binder7process7ProcessEINtB5_15WorkItemPointerKy0_E3runB13_
[  115.740950][   T10] RIP: 0010:down_write+0x9a/0x2a0
[  115.740970][   T10] Code: 48 c7 44 24 20 00 00 00 00 be 08 00 00 00 e8 9d 40 55 fc 4c 89 f7 be 08 00 00 00 e8 90 40 55 fc 48 8b 44 24 20 b9 01 00 00 00 <f0> 48 0f b1 0b 0f 85 a0 00 00 00 48 c7 c0 c0 b9 20 87 48 c1 e8 03
[  115.815229][   T10] RSP: 0018:ffffc900000a7500 EFLAGS: 00010256
[  115.821307][   T10] RAX: 0000000000000000 RBX: 0000000000000098 RCX: 0000000000000001
[  115.829285][   T10] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc900000a7520
[  115.837262][   T10] RBP: ffffc900000a7598 R08: ffffc900000a7527 R09: 1ffff92000014ea4
[  115.838937][   T36] audit: type=1400 audit(1750346073.349:393): avc:  denied  { read } for  pid=91 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  115.845234][   T10] R10: dffffc0000000000 R11: fffff52000014ea5 R12: dffffc0000000000
[  115.873315][   T36] audit: type=1400 audit(1750346073.349:394): avc:  denied  { search } for  pid=91 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  115.874854][   T10] R13: 1ffff92000014ea0 R14: ffffc900000a7520 R15: 0000000000000000
[  115.896298][   T36] audit: type=1400 audit(1750346073.349:395): avc:  denied  { write } for  pid=91 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  115.904043][   T10] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  115.904060][   T10] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  115.940683][   T10] CR2: 0000000000000098 CR3: 000000010afc0000 CR4: 00000000003526b0
[  115.948637][   T10] DR0: 0000000000000007 DR1: 000000000000000b DR2: 0000000000000004
[  115.956583][   T10] DR3: 0000000000000002 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  115.964527][   T10] Call Trace:
[  115.967781][   T10]  <TASK>
[  115.970687][   T10]  ? __cfi_down_write+0x10/0x10
[  115.975513][   T10]  ? _raw_spin_lock+0x8c/0x120
[  115.980251][   T10]  ? __cfi__raw_spin_lock+0x10/0x10
[  115.985421][   T10]  ? mutex_unlock+0x8b/0x240
[  115.989984][   T10]  ? __cfi_mutex_unlock+0x10/0x10
[  115.994982][   T10]  rust_binderfs_remove_file+0x6c/0x110
[  116.000507][   T10]  _RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x9d4/0x2860
[  116.013246][   T10]  ? update_curr_dl_se+0x10c/0xb20
[  116.018335][   T10]  ? __cfi___update_load_avg_cfs_rq+0x10/0x10
[  116.024374][   T10]  ? update_curr+0x60d/0xc60
[  116.028938][   T10]  ? __cfi__RNvXs2_NtCshgDM7dBCdno_11rust_binder7processNtB5_7ProcessNtNtCs43vyB533jt3_6kernel9workqueue8WorkItem3run+0x10/0x10
[  116.042111][   T10]  ? update_load_avg+0x506/0x19a0
[  116.047110][   T10]  ? detach_entity_load_avg+0x7b0/0x7b0
[  116.052632][   T10]  ? dequeue_entity+0x354/0x1750
[  116.057547][   T10]  ? tg_unthrottle_up+0x980/0x980
[  116.062548][   T10]  ? kvm_sched_clock_read+0x15/0x30
[  116.067722][   T10]  ? sched_clock_noinstr+0xd/0x30
[  116.072727][   T10]  ? sched_clock+0x44/0x60
[  116.077131][   T10]  ? sched_clock_cpu+0x75/0x400
[  116.081962][   T10]  ? __cfi___update_load_avg_cfs_rq+0x10/0x10
[  116.088006][   T10]  ? sched_clock+0x44/0x60
[  116.092398][   T10]  ? xfd_validate_state+0x68/0x150
[  116.097484][   T10]  ? save_fpregs_to_fpstate+0x196/0x230
[  116.103009][   T10]  ? __kasan_check_write+0x18/0x20
[  116.108135][   T10]  ? __switch_to+0xc7b/0x1310
[  116.112794][   T10]  ? __cfi___switch_to+0x10/0x10
[  116.117707][   T10]  ? __switch_to_asm+0x3d/0x70
[  116.122457][   T10]  ? __kasan_check_write+0x18/0x20
[  116.127545][   T10]  ? pwq_dec_nr_in_flight+0x6c7/0xc60
[  116.132925][   T10]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[  116.138477][   T10]  ? kick_pool+0xb9/0x550
[  116.142785][   T10]  process_scheduled_works+0x7d2/0x1020
[  116.148363][   T10]  worker_thread+0xc58/0x1250
[  116.153037][   T10]  kthread+0x2c7/0x370
[  116.157097][   T10]  ? __cfi_worker_thread+0x10/0x10
[  116.162191][   T10]  ? __cfi_kthread+0x10/0x10
[  116.166761][   T10]  ret_from_fork+0x64/0xa0
[  116.171153][   T10]  ? __cfi_kthread+0x10/0x10
[  116.175733][   T10]  ret_from_fork_asm+0x1a/0x30
[  116.180489][   T10]  </TASK>
[  116.183491][   T10] Modules linked in:
[  116.187382][   T10] CR2: 0000000000000098
[  116.191519][   T10] ---[ end trace 0000000000000000 ]---
[  116.196950][   T10] RIP: 0010:down_write+0x9a/0x2a0
[  116.201962][   T10] Code: 48 c7 44 24 20 00 00 00 00 be 08 00 00 00 e8 9d 40 55 fc 4c 89 f7 be 08 00 00 00 e8 90 40 55 fc 48 8b 44 24 20 b9 01 00 00 00 <f0> 48 0f b1 0b 0f 85 a0 00 00 00 48 c7 c0 c0 b9 20 87 48 c1 e8 03
[  116.221543][   T10] RSP: 0018:ffffc900000a7500 EFLAGS: 00010256
[  116.227586][   T10] RAX: 0000000000000000 RBX: 0000000000000098 RCX: 0000000000000001
[  116.235532][   T10] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc900000a7520
[  116.243515][   T10] RBP: ffffc900000a7598 R08: ffffc900000a7527 R09: 1ffff92000014ea4
[  116.251463][   T10] R10: dffffc0000000000 R11: fffff52000014ea5 R12: dffffc0000000000
[  116.259672][   T10] R13: 1ffff92000014ea0 R14: ffffc900000a7520 R15: 0000000000000000
[  116.267620][   T10] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  116.276531][   T10] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  116.283109][   T10] CR2: 0000000000000098 CR3: 000000010afc0000 CR4: 00000000003526b0
[  116.291070][   T10] DR0: 0000000000000007 DR1: 000000000000000b DR2: 0000000000000004
[  116.299020][   T10] DR3: 0000000000000002 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  116.306970][   T10] Kernel panic - not syncing: Fatal exception
[  116.313321][   T10] Kernel Offset: disabled
[  116.317627][   T10] Rebooting in 86400 seconds..