last executing test programs:

7m3.338438281s ago: executing program 3 (id=433):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000400)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0xca800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x2200, 0xe0)
ioctl$FS_IOC_RESVSP(r3, 0x4030582b, &(0x7f0000000300)={0x1100, 0x2, 0x75, 0x2a40}) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f00000001c0)=0x3) (async)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000880)={"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"}) (async)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x28001, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r5, 0x0) (async)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r5}, @ptr={0x70742a85, 0x0, 0x0}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f00000002c0)})

7m3.338074991s ago: executing program 3 (id=434):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000280), 0x8800, 0x0)
read(r1, &(0x7f0000000080)=""/93, 0xffffff6c)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000180)={{0x2, 0x0, 0x1, 0x1, 0x9}})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x1de}]})
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
ioctl$PPPIOCGIDLE64(r6, 0x8010743f, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1, 0x22052, r0, 0xfffff000)

7m3.226234113s ago: executing program 3 (id=435):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x84}, {0x6}]})
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x93f)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/profiling', 0x42, 0x1)
write$UHID_DESTROY(r3, &(0x7f0000000200), 0x7)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x600, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

7m2.185291699s ago: executing program 3 (id=445):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f0000000080), 0x400, &(0x7f00000000c0)=ANY=[])

7m2.044292751s ago: executing program 3 (id=450):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$ASHMEM_GET_PROT_MASK(r1, 0x7706, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(0xffffffffffffffff, 0x4068aea3, 0x0) (async)
ioctl$KVM_CAP_DISABLE_QUIRKS(0xffffffffffffffff, 0x4068aea3, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(0xffffffffffffffff, 0xc040aed5, 0x0) (async)
ioctl$KVM_PRE_FAULT_MEMORY(0xffffffffffffffff, 0xc040aed5, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0xd9) (async)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0xd9)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x54, 0x0, &(0x7f0000000440)=[@request_death, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000140)={@ptr={0x70742a85, 0x0, &(0x7f00000002c0)=""/191, 0xbf, 0x2, 0x3c}, @fda={0x66646185, 0x5, 0x1, 0x2c}, @ptr={0x70742a85, 0x0, &(0x7f0000000380)=""/183, 0xb7, 0x1, 0x19}}, &(0x7f0000000080)={0x0, 0x28, 0x48}}}], 0x0, 0x0, 0x0})

7m2.043889731s ago: executing program 3 (id=451):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x4)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0xffff1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f00000001c0)={0x70003, 0x0, [0x7, 0xb, 0x2, 0x9, 0x7, 0x6, 0x3000000002, 0xffffffffffffffed]})
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000080)=@x86={0x4, 0x10, 0x0, 0x0, 0x10001, 0x2, 0x58, 0x80, 0x73, 0x3, 0x2, 0x7, 0x0, 0x8, 0x2, 0x7f, 0x2, 0x3, 0x1, '\x00', 0x77, 0x1d})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x4) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0xffff1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f00000001c0)={0x70003, 0x0, [0x7, 0xb, 0x2, 0x9, 0x7, 0x6, 0x3000000002, 0xffffffffffffffed]}) (async)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000080)=@x86={0x4, 0x10, 0x0, 0x0, 0x10001, 0x2, 0x58, 0x80, 0x73, 0x3, 0x2, 0x7, 0x0, 0x8, 0x2, 0x7f, 0x2, 0x3, 0x1, '\x00', 0x77, 0x1d}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, 0x0) (async)

6m47.04058451s ago: executing program 32 (id=451):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x4)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0xffff1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f00000001c0)={0x70003, 0x0, [0x7, 0xb, 0x2, 0x9, 0x7, 0x6, 0x3000000002, 0xffffffffffffffed]})
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000080)=@x86={0x4, 0x10, 0x0, 0x0, 0x10001, 0x2, 0x58, 0x80, 0x73, 0x3, 0x2, 0x7, 0x0, 0x8, 0x2, 0x7f, 0x2, 0x3, 0x1, '\x00', 0x77, 0x1d})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x4) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0xffff1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f00000001c0)={0x70003, 0x0, [0x7, 0xb, 0x2, 0x9, 0x7, 0x6, 0x3000000002, 0xffffffffffffffed]}) (async)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000080)=@x86={0x4, 0x10, 0x0, 0x0, 0x10001, 0x2, 0x58, 0x80, 0x73, 0x3, 0x2, 0x7, 0x0, 0x8, 0x2, 0x7f, 0x2, 0x3, 0x1, '\x00', 0x77, 0x1d}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, 0x0) (async)

2m8.483426066s ago: executing program 0 (id=3726):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f000032b000/0x1000)=nil, 0x1000, 0x2000002, 0x4010, r1, 0xa2ada000)
read(r0, &(0x7f0000000040)=""/106, 0x6a)

2m8.404164078s ago: executing program 0 (id=3727):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x4000002a, 0x0, 0x4}]})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92, 0x809ffff})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000640)={[0x202a4, 0x7, 0x8000, 0x800000000005, 0x2, 0x5, 0xefffffffffffffff, 0xb, 0x0, 0x7fffffffffffffff, 0x0, 0x9, 0x3, 0x1, 0x8000000000000000, 0xff], 0x0, 0x41845})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000280), 0x8800, 0x0)
r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000040)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f0000000540)={{r4}, r5, 0x12, @unused=[0x4, 0x7, 0x7, 0x80], @name="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"})
r6 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
syz_clone3(&(0x7f0000000480)={0x300040200, 0x0, 0x0, 0x0, {0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)
read(r3, &(0x7f00000004c0)=""/92, 0x5c)

2m8.168988321s ago: executing program 0 (id=3732):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x22052, 0xffffffffffffffff, 0x2000)

2m8.049156133s ago: executing program 0 (id=3733):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000000)={@flat=@weak_binder={0x77622a85, 0x90e, 0x2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @fda={0x66646185, 0x8, 0x2, 0x40}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0})

2m7.847803766s ago: executing program 0 (id=3735):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x8800, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x81)
read(r0, &(0x7f0000000280)=""/4096, 0x1000)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000001380)=ANY=[@ANYBLOB="0100000000db000072050000000000000100000000000000cfb74e370ef46b7adb502c8304c7fcf56d3707073a43d983d705785a44dd693007e0585fe50d2ac5df2b6dccc73178297178c5885ce93b9c8a144e1414c3c4a6f3092b012d410dde2fa5c4429664b055da734103007c4f4668911a3976f5fc0226305e81b85c8e0a5ab8592ed94b40f1f14c56e4f3fbfae9a4e13ac80273fa70335edcc3bdc9d99cb984ba8839a7ae5757f765d5b66263b65db19767dd943d0a2381164d51c15d166ab49457cd20127ec7de073d4038676df2f441ec02f39493259d3735b8ca22d6"])
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000000000000840c00000000a92f3569b0a94c28da00001009000000000000"])
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="020000000000000068020000000000000500", @ANYRESOCT])
r4 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x20800, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x16)
ioctl$TCSETSW(r4, 0x5403, &(0x7f0000000100)={0x7fff, 0x7f, 0xfffffffe, 0xd52, 0x9, "0a0000341c00"})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000240))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x14080, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000001300)=""/92, 0x80a0000})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000640)={[0x202a4, 0x7, 0x1, 0x800000000005, 0x2, 0x5, 0xefffffffffffffff, 0xb, 0x0, 0x7fffffffffffffff, 0x0, 0x9, 0x3, 0x1, 0x8000000000000000, 0xff], 0x0, 0x41845})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/reserved_size', 0x40, 0x73b006b000cc8ca8)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, r8, 0x0)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

2m7.410076233s ago: executing program 0 (id=3739):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000200)=ANY=[@ANYRES32=r1])
openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f00000000c0)={[{0x9, 0x3, 0xd0, 0x0, 0x3, 0x9, 0x52, 0x6, 0xc, 0x4, 0xe, 0xfb, 0x1000}, {0x4, 0x8001, 0x0, 0xb, 0xff, 0x0, 0x81, 0xe, 0xe, 0x2f, 0x0, 0x0, 0x7}, {0x1, 0x0, 0x7, 0x10, 0xd6, 0x6, 0x4, 0x7f, 0x4, 0xfa, 0x81, 0x7, 0x7f}], 0xffff1096})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000300)={{0x3, 0x0, 0x80, {0x8080000, 0x80a0000}}, "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", "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"})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008004"])
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r8, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f00000008c0)={0x2, 0x0, [{0x4, 0x6c, &(0x7f0000000580)=""/108}, {0x1, 0xffffffffffffffee, &(0x7f00000007c0)=""/203}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r8, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000002380)={[0x100000001, 0xa, 0x2, 0x1, 0x7, 0x8, 0x1ff, 0x5, 0x40, 0x1, 0x2, 0x6, 0xfffffffffffffffe, 0x9, 0x8000000000000000, 0x2], 0x4000, 0x220000})
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r10 = openat$cgroup_procs(r9, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f00000001c0), 0x12)
r11 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r11, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$BLKRRPART(r6, 0x125f, 0x0)

1m52.309966754s ago: executing program 33 (id=3739):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000200)=ANY=[@ANYRES32=r1])
openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f00000000c0)={[{0x9, 0x3, 0xd0, 0x0, 0x3, 0x9, 0x52, 0x6, 0xc, 0x4, 0xe, 0xfb, 0x1000}, {0x4, 0x8001, 0x0, 0xb, 0xff, 0x0, 0x81, 0xe, 0xe, 0x2f, 0x0, 0x0, 0x7}, {0x1, 0x0, 0x7, 0x10, 0xd6, 0x6, 0x4, 0x7f, 0x4, 0xfa, 0x81, 0x7, 0x7f}], 0xffff1096})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000300)={{0x3, 0x0, 0x80, {0x8080000, 0x80a0000}}, "f4cbeeb756336fcf354a429bfd496c66a6a4f391a9710cc234e0a8d04e9d6d0d53390ee30ef2ba18224437ed8df5c86b9713586059380fc7d773e3a3f0d06dfacb4acf381f5a5b537f66d15928472559b84684003d398f5d3bc1bca7aee5c39385bcd0062388842a1eaa099803119b61ff83003f7dfba2c0081223274eff7a2fe580a4233b21c1829a03dd7c60a1cce7bc783a2ab74c41b5b598332818dcd14c49c5352c4ce77bae6006bf89e7ac74ca18139fa0243743969692640b3ecf1fd9ae1ba224a2da12419f6733c466e8594b045b350c62c05176928fc37ee273864fde3aef1171730108a4b3eac583bdeb123252b2ff8c7f3183f5a3dd7872b3a7922e0cb24688273f7d64877ce789e7c6405bfedd12bc33c53738fd2d3de169dd9ad605bbab8f58618c9c170cae78c480438d87a12131be8e0014fb95b5f3ee54525ec93dbb3f06fb2c75edf5fd47bcc118c8c618c1b61109a9ce992441f83f42a0e7324e433d3cca61b0a96e60b650b5d42f5b8175311f8d2002407270ffdbea88bcc6a5920bc94d06851686c84224396f3ee2ec94676d3295ca98ddded2fa62603fe47d33f58a2594831df881623b18ebe95a00db267532b00ffcb501528c69632365d447ebcf2ecaab61d8727c7d2eb6bb0531c380961147d83686024682999e46db6a2ef4c0b29732fc75d72d0fdaba29a525a7a9e42342cc848034b93187170c0dffbe330ff955ddb4c4dce051c653da2db1f47992b9a6e71e05e31d9966123b59433f2ebe4e2faa307af9bd6d6569b81180f67c62a1d434ef19e88b2a49ddb4af972623054c5896b993b31388dd5d96f991aa6a37c151d37a5884eae88db6e4b77d6ef526e13ff31134228b64a5e844dbc3f8b549fffe41597abdfe235d080e3e3e9068eb37b0653a2dff65c846819b1427feca1a90247a69ba7699af1f04b90d1a0ceec2c1b1fc9bf20626f7531aa7c4e5ba6c84e761553fc4a76626cf9da7b9602464aba0515a1994b913eded69e623a452428d9037ddce882671f6ac133660296ce44118ab4bb5b3e6a3126a55168005227b3575673066258eb4ff5c23805ed1728f249283498b0e67e12dfba02bacae23f676a690e842bf02ab002b756e7c5153cf8bd4580e1be26ccc77e46a6d7166a5008034e1be6eaf5c6c44bd43a3a722f1697d6a46871eb49ca5773c7b3066ae24a6548841fb73320667ba1a0c6a484019d1aab525d85061e16cb129e9b4c1c93aa2ba5e193c214e158b69ff7cee0086535116d59c154e08f2817f66eb90af5f704ef6ec4cabfaef20eeba1ba54bd9cf6605c54706126f6701335bc8e8cbd1ced11ef86b8f4a20ddea4568983b4df60822f736e5970ac4a07af71cfbfff9292e9143f2cba391cc8a9495fd76a92f8bb6b01b8f94154e6397cb4bab66eaf623f590da17d7e244289485e00673a93a93b3fbaca0caf98529e788c9cceb457d803af7e7c2d5a27fff8d60f44a911f05fff39af3254151f1c0b43c80d9b6e67aa03fd1e9e0d2ac8f941d29ef65152a46d79f5a66b21867dd3446dd6c47fee6e8c94eccd58dbf37cb08536ece2d8e49892f25e2339faa66f6c04f12572e0ef4391b3db9ac8b509d43de347f7bd3c36542f701f8f9f1ea094ab71a0c83f0d3b78d6ff603b5f3ea0a8b2e36931cca5c1a9a27d582769a4f82053fae03a8cc17b19edd843a9ec6171b806af452eac111ac9f4940c4f8ff385fa07f43684fea51dc1610efbd6cf63427f084819f9e5525093d38b9977d7ba230ddbeccf05ddc7f12be568a81cbacb40e7e08da317b6ab01ff8102fe3539cc8d37e372fbb7d34201a6e1f4e208093011f3949d04eae986a93fedea49fa388142fbb14b9a04ee2b47843aa513628835c1e2079e726322deded47a30d2413028b1e62427ac13c59bb2cab4bf91a90dc1a48ce03c2fadcc86a7e45ba3bdef1671009c2d96f349cc9cdbaf538521c58d92f92a8b6c2fa1283a37c718a6f0c4480e35eb8264a00f6603e31d6a99d01782ed2a978f91387504134765faf606080203a722840cbdb0b59468c81484b7cd7fedc4bf6374515bdc2d881f9def756e454ebf06ce24c610313abc56d6884e27f56197580ef95ced24e6640dc9d6440d341934a75f877031e0440b6b89ca9088d6ac74d2acddfbbaa7881caeb8dbd8f4713b3c67ee60a0e8c43537bf1c6e24ddcbf2c13f45c227424156f6e1176424556652a0ce3dac4c76ba99763bc2d70e8916e2ba5fb46a94e9ec58ce304fa5b6dc5bc99aa82b84432d29917e3113c34e83beae5d047f7c85bc8af02f5c05e46a5bb5ad5a071b58b8cc6c70ee8ff80b223a0c60a9008503a647f2de9d3b9e9d245419a2b21535cf243d4c96a1e1db05c59ed172d72f2d65039650c8b8409750303b49095b0ddbed680ce4f281d40ad7b35ed4057057b7cae99099aa3cfbba62a7f1b8164d30b454a9d43cbb7129d3798a3e135f12fcea062c834c779eebd6e617dd36960632c9bfb18bfa506f4b0d3a01a33be4b1f78ab8c94ce7a1edadd8e1f1fa3ddedcd8dd8d08787c22920a770c75c565e2e34317338f4d09eeff2c5318bda4c141ecc9237c5715f76f1867e0033ae3c8b8d1b916579631c91b3d59c76c5ed64349f0964c836062a1dd74a3a8e7b26197acb18b25ceabf9d82b80ff44020878404be630776b24590e9ca70150e7ec739bd7a0fe941043925315a0dc6a31f55acb4f5c5a4c1f1894633a52c7e0a1ffac99db84c9a3a832570c2b6b1c22ad4705b793590b56d988c92213936cf038f94dfcfd863b39fb8b34838cd6dd77c8b6c9dfd491adfeab04a63d75498070dc383594b140d89ce405c20e748289d0d44dc24c594aa5619a0592872f84f975a70d9aba612d85c40224c5af31c65a31033213a6d31745f448797ed1506a023290af61e7f28e305d2ee8d4a5f4423ff9ec6acb0414f9a177ed43b087b645d5b49140a3165899fbc280697c0c6b6ce24e34107f0cfd50214086998675d476b71457e53582c81cad64483e07eace8c3d7f81ec239cd404afebd6b7703f0fea9d6d68efc46b018b2c029ebd65a0057dce75853d52d63c95ee9ae0970e3bd94173b368cb1c4d75af10b4d0f8f4ed217a927d978e5b663483b05df6d55be88a5c8eef612105a41497c877dc8603c9517f99416a94aefb56f4a193e2c7f7a5720ccee8a9f2c32a88d516b194f30774caa0d82da53041d856c676a7b1115268a0565d9f96631f351388680a6530665b3f602c49b5d256a4156ef9633c0f19b82115c131f4620619273acf00ddd903290e4c2464ea92678835233284f6f32590272e15a9742a8e1a2701d3b79460903816a21ccbcc6e87391c9b53bb740c63cc6ba67a1c5fd74c63bee4eada19c3713863724fa9165213045f90fa3a6cb0ba3a7cc8f339f547421680171be36b13b15f3e3c3db61b1db10657dabea859a4a4c4c86d6dc1a069060ba7f5ac4631226019692318e0024f0e564e1bfb942533aac251d5238a200915f827bfa98ef9f0ad8769899080e7e961419a550f339c3594906062c0813dde20769c4598b1e7851b0d564e7700de04ce0286d32135ca295631d792818a1d41da2d6d107a2eda082d7dd3cc790ad69c2ab29e1edf41932e5279fe9c605542f3cf442a5098f4fe7082969efe9d99f8ce41daaad5297a15741678629ecd009d102718d90dc0169ac9019a22a0fee9e74666d754cc737dbd26f7cfcd0017b3d96728e866a26f55e049bba592b5d77d4e638e2f8b04e9234398a4c1a265b4e058883a15828ffe19134166be7cbcc2efa4b05b6700318f09372b9b77a503f0cef6be3419a0539d3f11c5a10031babb91d22f65f36bc93632dfc7983480204760c537c1c672eb7033d23d2e694e8f54a5765395fa0cc7ab70366a2fbd6206f6f960ac5472ccc657ade101d59a0e2ed845be80a45d1c8ae08958e5b0e45ed9f1efcbfa4233b19797f22ebf0687bc7a00290878b80ea11d6e60f435f0a7ca52abea2bec404f5a6696bbd796f7b3e987eddae9f1ff2648dbf47bcce61604a35de7379cbbf8cabfc186be6d1cf8d1294acc6240eef87def4fa57127ed21b1f08030955d068b8a5fccd6d8ae1382272fe959cd96200b3e476005ab64f9f1dcbb63f7dbef447ca55a4a05b70c56b1b31dc6da9f72b0006f48b514f51c48d18ddc8256471a22da7278e3e92369c753b219b1dfcd3d7df750a4f40f114b75921cb6abc70b692e8324e846a3400650f00ba6dfd95db2e84c21676d15dcf48c67ab3241b949fcb87a260128ab0693f7b95df9afbd021721b2ac4d7b6ea14295c6adf76bf088beb49c5c52c8c121abb8ff2a0767ba042eca40804fad3bcd35d981586cd00430222e60dfce5a9c5851a1bd5a216ad393c39d2dea94599a32e16c375826ba191bb90a788b6bd19ddbf0d7f37c432a6eb53c5ace7fadd0f740e7c35ed073bad4d9a41b1c659e597e8f89455b057e798b172187b919a93f1e6a07008d70c3903eacc16574358ee064f41bf78090db48fde09a212f278a83c41b3b12df1441eac777bfa9d8d97d08cbafce1dd3043ecb7c4d8d710a2f3eec61965a518710c23175a92456565df30459ef5af71b24d29e29156ef75e0e29c169e6d8ab2292615bb021d5fd0dcea15586392e6b3ad45805316e0a581f8a579021d2323f6f5e61fa7ea3c04b3b52ffdaba8076f3a60868a30dd2a824b7f81598fb90e943ed8f5a4ed87f4bf090c37bcfe11dfa6432cfe7b1857a83c8186da769dad2c2816f2f6128644430180ffaa0ebf78b34c6f64586feffc7ac5d6785064c6ae6c1b1cc5246450a2aaf8e9e701745d3260fee5b0b5a83d3ed426c29bd830cca62b579fd25582a53a6f371c703703feae600feb47708a16b189eb08bbd01736c21ea31fc33feb2808a9c92ebeee90142312833f4086f0e5d0856b827c8291289f39cffcfd3847f50d94418fb69fc05b50fb9dc88b6fa1c0f1bd93f94adcdf8afced95cc3c688ca6a0869eb9cb8583f88664d8a5e40594bfb32e1e65c5683c65a9271ffe91766be4c4b80e4ca987e30c39ba985e1891041c7ac11c79bd0570eebf5f609105ca42fbe76f13b49a03eb8d8f1f1d94f945f23ac9b678811f82081acd59a520f6511a10b82230dee299652606eca7bef68cf2e2a7b65f2c44d761f9d4a110b64fda17787be8c48a9ba5dd76e069fc0ebc3c9f05928f4f01eee2d430318ff8146b7eb5eb3f61bb33be8182f652c1472d42e803bbe1744215c6b6d1a62cc523856db2111cd1423174bf79e9f5f6cf9ddae3f5e5d77ccd56b0299cfd05229f4871477b333e80123631db621a7a21348f7f54e4d0f968260fd22a4990a7fcc10475d4c4738c8d0714d65138e22ecbbb669ed9f1f86ab04298903273c2c4ac3892caea02b20b3aaeccacfd96f5f7618b0550427e2d2fbd9bc9b140974dfd71ded30a6b3ca95eaec0278258ee4b0ee46ed013de2eacd451d6e4f497371a8afb1ad147bb0f01f5582886546c35da6bacb40d536576a430f15da428835c9b83492ae39da41534dc1fab69145b4282090044dc713cda0bf4a2fd34430cf435978574a8d403612927f952985b38aae0e510d7d22513e6960c947ce3420d341e2f227bd73a23546e47ffe3f441c0d476495a783487dddda20e979718aac5233f986111ec63fe4846888275b63db19df930662185f826efb97113a6d4d20a0b2ec0a578d361d4d6890b68a0427f0a2d483f070cac4be55fdb25167910cfa7696ea44d6eda2addc51a00147971577ec387e5d72f77d250dbe783", "482f8ebe94303088028889733bc3fe2b7f5001f39ef80ea65e790cfc9a1b41b9715e377847fc793b0d7b6bd54d5aef90af791a30a1efd4bfb64d4fceb423768e4bbca89a8493ccb39fc9d15b68e9ffa94daf6768d43de289fc2fa931ae9e3c25271acc30416861d5e13c7fd5f264b6b2cf47f882c4b6a309a119f59cf3dd71d3b8de40c4ae3fb5f7c9762df74e2fc55ac5db725b251cca39cdc7153716fe5e0f391921ce4aeb6b2f8362f5551df75b22b44fa29a20015e1fa99f9e4dd817d176a42086ce2bbf5e36f077dbdbf9d2ced992538c018182eda6164ad7916b80abb60836dbd475042a911afdf77cac6747edcf48905f6574ea49be20c39c96ce6b2a9af37cc8a9851fa0be4d841a6795c7d70baa4909dfc9bfb0dce75983dc61d2d055c8e1a8ef5ffc847b23ed998aa12f180baa41664402631814ff73d5858ff380c2223cdfdcd9819fa9b8ff5a0862ef238be2b29ffc10981cf51df7001804b2b1eae5fc64dab311ecf438d807e06ec5bf7d1565db15b03974b410e95426c848aa490661827ede88eac4b01aebf41b64c640edb9ac70624d085d401a5ee8abd3edde2277f6a44fff67dee3fbf257c268736b7b9b2bce8fc7dc6c5d6deaf81a2c9e2ea984392094aa32230ac8c5462ab02dae4f006bde02928349d70de77075b511e7c771bc23fc5927c96ab91f904e74ec76ddac252eee38b16ff8a006134480f1b2f38729c177604e4806664b1e0c85a8db38edac2fcb0a18c7ae07f52d0e6999e216d80aaf589d2184b37165eb7da452db831120b0fb0b476adafe12af03b2ffbf7419e5b4b3dc8df5da1974eaff014afe85aa21b60c5153ef85a083ebae9337521aa046d02c989ba57f9132c316303102ebd89a5ce95a6f66013572232228371db58eacd78eeb47ef1fe536ae1658f82464370271529e3e38137ecf0e6aaab083e9883e3f3c15ecd22e9b8347e755219c458b4b3387d9fc978714a99093e7908d37acdd932f65a918ec335f4eaeccfbe5262c49efc39d4b4c19a7bca3b8fe680cef13afab93fa5cfa77ce5c1635cf7bec5a2297d8ed3527eedfa1cf1eef5dae0698abf711991dbc14644dbdfe6f663541558ea72b1f9609ede6543e62f0822ac96106186c8e01fb8fa28900c8fce7fcec6e18598c9cfeb36b5c45dce59633ad89b7578624da8d26456157ab7af6f0814750d37e5a9efc9badb876b04255299b3e7b4e54a7d6ad0fa1749f0818b2859ee29c2380108fdc7582fe026d9496e786fae394c8f9586dd593539abf14533a33e15f1cd2af3ba6004663f56ac5a2961b1b604313dbf2f248f6376e8732fe8e36923589844ed7590b09c92fb487f9993f0799a965ff4473ce346f8ff518565264a5f212c18dcda319b9014059279759160247a9aa2878ae62fc67049bd7077f3e56c59b8411f89c579c15d5b608ea22ad9e6350c7e7d855130ae9d2f8918762c92aa1c37a86d8768a1a814e46d82a0d95dec58fae3cd552ba14b6ac9b69131d3079c9cde41aff124ad29d8af9757e0dcfc35e2b3c56e6c3c81d257cd52b5a83aa8b35dd86745d8cfc1ee5686aeffae8a374cf7994f5baed44a2130495bcc7fe04d42b287d1fb2ee74bea869cc16824c67b5baa6d2d9adb06128f364eeeb38e9c3090b0444c405a0d7b0926649c2c652faa7fa44d0858cc99cda60d7e06ac6ed95a0c582f91f2c46e1cd97bb5935c536e050337c59b1e673fe8a9afcf2cbb82b9b2be034054f59b4dacf6ae1b217418d701a339fea50781493399e37ef70808f7e7a39491bfdc7b6e6757a37130682b80227de03dbc127e46f8638981c9e5e0cbff229af844ec0d5ec9a1f93638c7917ef00d77f57aaeb828e764de09df5a526f3bc0b0f7e71da209ed3bb724f53687b2a208d787878145b0cc1a1faa02e45fafa29e5f504298b0db2a8bff59bc489088942372cee209219a0616ca366d9553029f90277a4b48cc4da2bf65267853ff1c766db43940b20ad7e1647a932c9fe7f39d6cd14326fd7611cbe6ed049851ee6727a6191291e522ce539073de040b3479a4b7b789f6f8127765551111a3593622b10ef192ad0cc3ce7566d9fd30cbb64187c74b38ce88e5cf5fd8d089089b23e257ebfa82e5ebc2f482e6a29f60652746ecf36054e25f7795bf62e09fd92079babdfbd4d250def0fad1ee3026a1194b84a38b06251b31a32ee38b5ec2016379e13599c8faec9c28e095c2914acbadfddbde212990c244d053b8fb7a708344ebb293b65b538f71f3c1c06d7574a57d3a6d1efbc118a70156cf8219758038a51f3985e7aacdcdc7f9f189b7ab887222752332b05b1b3c7961c3421afb27b91e7eb0eef88b1b37a0646d890d791bc7aa3706b9133bf5e941d6b801ca0411eb0d7cd429702096a18339f7f423b43fca309c971a857e70686ab4e4acba2722cdb2856bc69c4106d5a5cc6c98a59e6cee134983757396d38dcbf41fb90bf3ab655582319d323478c3a99ef85e9617cf3c97375483182046d34fe94dfda94b4ecbc594d1c6914078bdaee9353bbce0e73c37f9c3c7161b76d5254d1dd44d93d372f4775097db50a13382619bd8834a8b7d841d2c9f38da2de087e9c5e743ddc2ced474ff8f081fde98539e13ed9c7a61788c4cc35638480b2ffad06b2973dea5dcc0fd5ceb0f397d3b15584f230bab3f6619611e6c20dfffb9db26c39372fde44003a16520aaa5c5b9f49249281024da720b8dba719fe07228d9aa419940327e524f6cd90f80aab3873ef2a2d2216417064abd1f7288d0633f626e5483e37d60885ac920ba8d4450798a04cafb76f084c820b514fbfe069c4fa1e36f1c0ddc06c0dd3fcfe129bce79598a3d584339f203b4d591fae7e855b7649cb6aef3b9aa0112afe5f0aac3ab23bf60e4cde71775f59f04f49897e1b3760d0165e9a5cde8440626abad2b8a8b87398f3b274ae4ac49f39460f27e3142f3a1941b164b91c5316a176751899cbc009a37c6cbc99d34e37f62b61f2ff6cf22e1fe94d86de2c4381f246fabf3b0a98ea20f5a249699a7fbf2845a0e7f12454aeee443bda81ddaca2effaa6a8251bcc8bd2bbbc8634cdb9823def7f865a4b781a9a484b44a280a81f6dce1160ccf37fe42cab7abf1eb4d7fb8cbc8bd4c0a941c4ee0e74cc47a19ccc257432f72d569e3b2953e80c3f7bef92fd8dfbe115a880d9eb4d46e5f69ea9a346d1a41d77094e3ca40f7c7c9529a3b107d3e8d31d1fa6297c40b5af98457a3da821829fcf0526eea041bf8e936b64e0adb218d4792c932ce0eabaf6f5a44511df6c15d5da84f0ed3d3cbf0438c9bca799e5d03e698c368467b8acbe7849b02a116ad3315c6be7c8d91190477c7858ea5e06099d48d09f0ff2e17a0607e8af03dcc7e1f343682aa11745250a67c5588b8bb60e10dab1dfce273ec9ffdd3d1d743678ed7c389267d7007a2ccf250d5b30c01c89df82530c4465a8a30064079c9e073d6e87a628e3dba8ae35e7bf0409346c212459b8d8236ab497c4fe8db49198f8e9a78b0e4dd4671d2d3170677717b63d33e053d71d006951fcf75b0a13bbe33462bea686eb62756c2475670ac110b520f143440de93227e6f5a8ccaf138bf31de0e3797dd0a6d51c1f22d703af5bc4eab7a40b602244994cf4c5a30bf3f3bfa9de7ca628d9a61d31abe621e78a6c65d6f46803ec66c492c0ac58cce04f8a99d759c6f9eb4111df284d3cd04d9884fd73311941b6a7d2218433f0cbe21c8983e8ad00b5c80b0c951e3fcffb7d67329f531641600e8ad8fab775ef71d8ec05caf64698b6c9932578b1e9a3783aa1cc46ba4590c09057cc7128c1ded5eb7823fcb74535139b526cafc0c2554cd3a24f82b969305df4a856f3b4f62504040295fb7b66e05f6441b2445066d13e890d73b9ee99d198bf52ecc2bb5907b35e0429f7a0d3dc157f9398e3251e732c28c3a5f9d2b3f918e20ef60ccdb77917f7b2e07e73426210377ddd6ec361a4b771871f08af99b5b412bf9584e390db6a78a07b71491dbec161fe6d7ded3501051eeb96f14da5bf825ea9a3815a7881ecc0912da3477b11ef0d2aa378a24d28fde683f0927dc02ce419916a8e2fddecc515c7d62d2f05c0d856ed96727343c28437470d3736018189d25b27ed8fc936c59fc27911fb68fc1be50f680627768a183b9583afa0c674f24300179d315ea82bb1fadbedb19d86ed2c78209592c9195b5e34527202c0d27df43a525f913ac86d2572b61c4aab5c83b61f497e48ea009cc96c8e21b18977cb01340fe9832a56be6ba681ba22cc160a3b1739fd3cd8182cb0a944ea143aa36e687be80e8bd81ed733b551ad37313b9f41c5daaeaaf39f382c00f75cafa79c1ae86ae881f69850326c131017f24724c3f1f726b2b2150132e19056a8b5297185de7267bf6ad4800b18dadecb540c4c466db12f0fb5dfef9cadd1565ea48acf1fc84f529a6e5b09c80162771e735149aac4b07686ad42b4f074719cb0e4c301210a9b86e36738e6ce883b06a705b2a7ba537878599965fb2e400c284016536cd882a9a238a270336a57c62f6af977c0604354df4fea6e2ef5b446e85f2edaef4d94fea9b4d983850b77d7b84b2f13769a78f0cf709f613645c4681209229c0b6b0e8f0a00f4286be978df3774684a30315e36bcc1d33692915037fd4bffc38cb662079852cf1bbdf394e495fc2f495e4eb0c52bb8c0e114f28973481b06778f203798b99fa4d007a33ab1fc72b39ff6f06caabf38e8d7d6e93fefcd0ea1d3efd426eec9d20bb9c85f470b98078c913ee12977558ccdde00b8cebec4a18f5d153e4563bdecc72ee7d74f9e4fd991069b069da5ae260c13028b5f207b26b829155c6a6a455a1778ad3da0eff2d5dea394732f68096418683df5ba1f3c544cb54506640709d2d22b42bbcf7dbf6fcb28327a0336124475cb6e29ee58589d3b266bd9f1bde2ff2dd72344cd8a741754efa3463b2b711cf89c17cc42751efe4ca09d58f5a0ee4f49c626d6083d7a0d622eb7e07a769521777e30a77f0c7ee84aed4c833175d3ee107b52548c2c25bed976b0b92e829d2b2bd8770c27f756a8ccf1b742791314bcf3994e4a753f9f82b662fb453f8116f279a57cc11fc8e3bdfc2b5b08347c9432534f86329fc199ffcac7de1aeb50dbf6aa13d689088bf5ac323fffa75d1175e164ecb5346e206c0be2caec56f4201268e0565713d846eaff713d1183617627a4ce5c457e9e6f387d7ddced0753811cf76f28bb9ece0798a80f403972e587277438a87356c098ea8050990bb2c78316bfa2c1b7f09d15dc53fa8a480ab965d080af7f937f8c6566dbfe74c1309a68348041d2d7a7b65a4b68ea5610add1b21ed855df6a9007592c14a0f46af0c16e0a77b534e476d2308d8060df073a9a1caf37a1bad8986dae7768600b4d8fd810b5ce5c3f61169b747b4489c8c445b7c83776beb0d3eed3e03275bc339c30333883a42e29ef12a28738c22ec1de09d449820b2ae58ef590474d4c083c6cb94ef13e6778e5d0e67a8d0d99b3577e401273b39b1258177b6d9e8814f5807eb06c78ca46d279df3eb7b64b627371fb23ffbdbfb748e7f981d5d4b9ae8f782d8e3e10af107c9545855e5b7dea415da103f61d5318b12787f29a560f15394e3152ea4b13e54249514215954a69dd75c75116757fddde9a99079eecff6d6a9590d5a0678bdc93a1fae290079c1ef503d12b9aefb24c08ff007887a9301a0c7ed94015eb16274083d514af33ad78d9f5facf07db30ec92f7f0b3e481a058b8a3590"})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008004"])
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r8, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f00000008c0)={0x2, 0x0, [{0x4, 0x6c, &(0x7f0000000580)=""/108}, {0x1, 0xffffffffffffffee, &(0x7f00000007c0)=""/203}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r8, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000002380)={[0x100000001, 0xa, 0x2, 0x1, 0x7, 0x8, 0x1ff, 0x5, 0x40, 0x1, 0x2, 0x6, 0xfffffffffffffffe, 0x9, 0x8000000000000000, 0x2], 0x4000, 0x220000})
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r10 = openat$cgroup_procs(r9, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f00000001c0), 0x12)
r11 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r11, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$BLKRRPART(r6, 0x125f, 0x0)

1.759767123s ago: executing program 2 (id=5289):
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.log\x00', 0x200182, 0x0)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000040)=0x100)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000080)={0x0, 0x0, @ioapic})
r2 = getpid()
syz_clone3(&(0x7f0000000540)={0x30000000, &(0x7f00000002c0)=<r3=>0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340), {0x38}, &(0x7f0000000380)=""/71, 0x47, &(0x7f0000000400)=""/251, &(0x7f0000000500)=[r2], 0x1, {r0}}, 0x58)
r4 = openat(r0, &(0x7f00000005c0)='./file0\x00', 0x20000, 0xc)
r5 = openat(r0, &(0x7f0000000600)='./file0\x00', 0xaa000, 0x8)
ioctl$EXT4_IOC_CHECKPOINT(r1, 0x4004662b, &(0x7f0000000640)=0x5)
read(r4, &(0x7f0000000680)=""/90, 0x5a)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, r6, 0x8, 0x50, r5, 0x0)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000000700)={{0xdddd1000, 0xd000, 0xc, 0x7, 0x8, 0x7, 0x2, 0xf, 0x8, 0x1, 0x7, 0xb}, {0xffff1000, 0xdddd2000, 0x8, 0x6a, 0x4, 0x3, 0x2, 0x4, 0xb, 0x8, 0x3, 0xff}, {0x4, 0xdddd1000, 0xe, 0x5, 0x7, 0x9, 0xb, 0x7f, 0x6, 0x8, 0x0, 0x2}, {0x0, 0x4, 0xd, 0x4, 0x38, 0x3, 0x8, 0x6, 0x4, 0x7, 0x5, 0x83}, {0xf000, 0x8080000, 0x9, 0x7a, 0x7, 0x0, 0x6, 0x7, 0x7, 0xf3, 0x8, 0x6}, {0xd000, 0xffff1000, 0xb, 0x15, 0xae, 0x1, 0x0, 0xa, 0x7, 0x0, 0x4, 0x5}, {0x121002, 0x0, 0x3, 0x6, 0x2, 0x4, 0x5, 0xf, 0xa3, 0x1, 0x1, 0x94}, {0x1, 0x0, 0xb, 0x1, 0x7, 0xe, 0x1, 0x3, 0x0, 0xff, 0x5, 0x9}, {0x2, 0x3}, {0x6000, 0x6}, 0x20, 0x0, 0xdddd0000, 0x800010, 0xc, 0x1000, 0x80a0000, [0x7, 0x416, 0x7fffffffffffffff, 0x3ff]})
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r5, 0x4002f516, &(0x7f0000000840)={0x0, 0x2})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
r7 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000880)='/proc/sys/fs/binfmt_misc/syz2\x00', 0x2, 0x0)
ioctl$int_in(r7, 0x5452, &(0x7f00000008c0)=0x1)
ioctl$BTRFS_IOC_START_SYNC(r7, 0x80089418, &(0x7f0000000900)=<r8=>0x0)
ioctl$BTRFS_IOC_DEV_INFO(r5, 0xd000941e, &(0x7f00000009c0)={<r9=>0x0, "3d932448ab2481f272674aae153b18d6"})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r4, 0x50009417, &(0x7f00000019c0)={{r4}, r8, 0x10, @inherit={0x50, &(0x7f0000000940)={0x0, 0x1, 0x10000, 0x2, {0x10, 0x5, 0xffffffff, 0x9, 0xa6b}, [0x7]}}, @devid=r9})
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x2)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f00000029c0)={0x0, 0x0, 0x6, 0x0, '\x00', [{0x1a9, 0xd78e, 0x4, 0x2, 0x8, 0x8000000000000001}, {0x10, 0xccf8, 0x7, 0x8, 0x10000, 0x9}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3)
ioctl$INCFS_IOC_PERMIT_FILL(r0, 0x40046721, &(0x7f0000002c00)={r4})
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000002c40), 0x2, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000002c80), 0x103000, 0x0)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002d00)={0x2020}, 0x2020)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

1.670303534s ago: executing program 2 (id=5291):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000000)={@flat=@weak_binder={0x77622a85, 0x90e, 0x2}, @ptr={0x70742a85, 0x0, &(0x7f0000000140)=""/255, 0xff, 0x0, 0x33}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x31}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x52, 0x0, &(0x7f00000002c0)="1920ff09471b1099c7961fdcc405843a41a786d3ed8ebe8e80e4b4144e1cf51c728b926c80eb2a8e4f6b2dab5b6ac95dd16066dc703442a9132a8dd210e45df98d795a638622681df1cb222612051f612948"})

1.551096996s ago: executing program 2 (id=5293):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000040)={0xf97cff8c, 0x8, 'SE Linux', "87bb489d425ad46ef40e14f4495c0d10a6734ad37705015b7dba34f9"}, 0x2c)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000380)={0x3, 0xf96a, &(0x7f00000000c0)=""/236, &(0x7f00000001c0)=""/250, &(0x7f00000002c0)=""/172, 0xf000})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_GET_PIT(r3, 0xc048ae65, &(0x7f00000003c0))
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f0000000440)={0x6, 0x400})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x100, 0x50)
ioctl$TCXONC(r5, 0x540a, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000004c0)={0x100000, 0x101000})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000640)={0x18, 0x0, &(0x7f0000000500)=[@clear_death={0x400c630f, 0x3}, @release], 0xd1, 0x0, &(0x7f0000000540)="9b8370e65749429176059f6208a4e71ab077942d6f8786433bed0adac32c88adf482cd6607ee292cabdebcbc446d39663c09c89b237bb002d32f07e347666cb07e802db93f0f191c2ff6b0d478f87ea3146d8a2be45fb9292121eb56e690360e49e6cc1cec755f55613088fc9c833006734f82f2ce6aedc955239ff11d0c80236d1792ef98ca997febc5c465b38c2cf5b8d395175f5a4d5e4167878fc45dc53982170caf9a11adbfe7ded72f9ccca4aa255940369cc889fcf757a71a8d9de547f30cfd0c44e728a12c0dd788e6acdc1a74"})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000680)={0x0, 0x4f, [0x80000001, 0x2, 0x9df, 0xab7, 0x8, 0x9]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$tcp_congestion(r5, &(0x7f00000006c0)='bbr\x00', 0x4)
ioctl$KVM_INTERRUPT(r5, 0x4004ae86, &(0x7f0000000700)=0x4)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, &(0x7f0000000740)={0x4})
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000900)={0x1, 0x1, 0x1000, 0x80, &(0x7f0000000780)="7299e653f7bfd51105de6bb4844a77996a2ca0d87894f22f4d6672b12861d487f170609d6bf4625ce8ebb4c87ddf9b2d8b06d4b869ce6ac0f7452b92a0b8cb451ef2d99fd83772d7902b6a482d9037e12b3a981774577bc207e0669f78e3150687a6e2f76c0327a195afa8c9cc03397b94c2846c6596c80ab593f279e5c60f17", 0xf0, 0x0, &(0x7f0000000800)="8ba711f73ff3820972b221e10055d674c9ecf1ed61f528b56354feedfbaa331542820cac08f73cb9969b13579014820fe1ad4c8283689cd54159f5cff170cde9c6260341199d37717e1038fc5fffe14250b568045a7eff831a95cf985a75bfe8c156ab332630cfa2b1fd17223ff26c90cc16a39155a97bd62b83729ba21091fd0def4342a4a559a588573d5bc200ee7cbf0b37e35b20d67aee246aa1c0dbfba2a677da9c96166817ea4556d15c0e34ab4da745b88ee595e03696e3e78a57b7b2b2742512d7fa5e81355a3bdc46f621c509a7bc7ed84440aaea76e6d047fb476a8fc748d07341aaf4d32aa3c774c0b1c7"})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000980)={0x10004, 0x0, &(0x7f0000ffa000/0x4000)=nil})
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r5, 0x4068aea3, &(0x7f00000009c0))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000a40)='./binderfs/binder1\x00', 0x802, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000a80), 0x0, 0x0)
ioctl$RTC_WIE_ON(r5, 0x700f)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r5, 0xf504, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000ac0))

1.426675638s ago: executing program 4 (id=5294):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x121400, 0x0)
prctl$PR_SCHED_CORE(0x23, 0x0, 0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCSWINSZ(r1, 0x5414, 0x0) (async)
ioctl$TIOCSWINSZ(r1, 0x5414, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) (async)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r3, 0x0) (async)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000000)={@flat=@weak_binder={0x77622a85, 0x90e, 0x2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @fda={0x66646185, 0x8, 0x1, 0x18}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000000)={@flat=@weak_binder={0x77622a85, 0x90e, 0x2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @fda={0x66646185, 0x8, 0x1, 0x18}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0})
ioctl$TUNSETTXFILTER(r2, 0x400454d1, &(0x7f00000002c0)={0x0, 0xa, [@remote, @remote, @local, @dev, @link_local, @broadcast, @remote, @link_local, @random="db6576d74337", @random="bb8021e9da14"]})
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ff9000/0x4000)=nil, 0xfffffe98, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000001200), 0x802, 0x0) (async)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000001200), 0x802, 0x0)
ioctl$UI_SET_LEDBIT(r4, 0x40045569, 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
close(r1) (async)
close(r1)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0xc008aec1, &(0x7f0000000080)=@x86={0x5, 0x1, 0x1, 0x0, 0x40, 0x6, 0xfb, 0x89, 0x18, 0xd, 0x7, 0x4, 0x0, 0x1000, 0x1000, 0x4, 0xc, 0x7, 0x19, '\x00', 0x2, 0x8000000000000001})
mmap(&(0x7f0000fec000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) (async)
mmap(&(0x7f0000fec000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r0, 0x0)

1.29535548s ago: executing program 5 (id=5296):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000200)=0x1, 0x12)
write$cgroup_int(r3, &(0x7f00000000c0), 0x12)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000000200)=0x5)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc028ae92, &(0x7f0000000180)={0x5})
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$RTC_RD_TIME(r5, 0x80247009, &(0x7f0000000940))
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_async', 0x1, 0x2)
write$FUSE_NOTIFY_RETRIEVE(r7, &(0x7f0000002580)={0x30, 0x5, 0x0, {0x0, 0x3, 0x5, 0x8000000}}, 0x30)
write$selinux_load(r7, &(0x7f0000000080)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578dca3747581994e2f30c03e29ba5189f4c4151ba0984a066f4af3784873d8ae82211eff465d85aa56603d168c2192f09873fa7732fdff162c026008684fdd7f94430aa5b0976d46d8408526081ae0133088da1ce0b6686e197624428e8d34c48f82a5b2aab81cf005861cf9eb60da2562b780a291a84f2277d15f7d8634b8ec1058e8de72f28d3f918238a6f189a1b95a9fa3b8a714e636abb80169405b89793b5cbbe8c7649686adebb1dc67f4b49287be737695be0886"], 0xcf)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r6, 0x4018aee3, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x23, 0xb}})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r8, 0xae03, 0x9f)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, &(0x7f00000001c0)='\x00')

1.188190082s ago: executing program 4 (id=5299):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"])
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x1c5}]})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x82000, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x200)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r6, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x1001, &(0x7f0000000000)=""/48, &(0x7f0000000240)=""/18, &(0x7f0000000340)=""/96, 0xffff1000})
r7 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0)
ioctl$BLKSECTGET(r7, 0x1267, &(0x7f0000000140))
ioctl$KVM_GET_MSRS(r6, 0xc008ae88, &(0x7f0000000040))
r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r10 = openat$cgroup_procs(r9, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
r11 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r11, 0xc018620c, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000004c0), 0x0, 0x0, 0x0})
write$cgroup_pid(r10, &(0x7f00000001c0), 0x12)
r12 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
openat$cgroup_freezer_state(r9, &(0x7f0000000200), 0x2, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r12, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$BLKRRPART(r0, 0x125f, 0x0)

1.146175382s ago: executing program 5 (id=5300):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000080)) (async)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="010a00e500000000e8080000000000164f0000fff7fe0000"]) (async)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="010a00e500000000e8080000000000164f0000fff7fe0000"])
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000a40)={0x2020}, 0x2020)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x33, 0x6, 0x0, {0x6, 0x2, 0xa, 0x0, '/dev/full\x00'}}, 0x33)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
read$FUSE(r3, &(0x7f0000002a80)={0x2020}, 0xffffffffffffff58) (async)
read$FUSE(r3, &(0x7f0000002a80)={0x2020}, 0xffffffffffffff58)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000340)={0x4, 0x0, &(0x7f0000000040)=[@enter_looper], 0x4, 0x0, &(0x7f00000002c0)="8a3e4b14"})

975.911255ms ago: executing program 5 (id=5302):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
read$FUSE(r0, &(0x7f0000001d40)={0x2020}, 0x2020)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000080)={'syz0\x00', {0x0, 0x0, 0xb}, 0x0, [0x0, 0x3, 0x403, 0x100000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x10000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa9a4], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xfffffff8, 0x0, 0x0, 0x79, 0xfffffffd, 0x0, 0x0, 0x0, 0x2, 0x47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x20], [0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0xffffffff, 0x89, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xfffffffe, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x351e, 0x0, 0xfffffffd, 0x0, 0x0, 0x6492, 0x8], [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x200000, 0x0, 0x0, 0x10, 0x0, 0x0, 0x804, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfd32, 0x6, 0x0, 0x0, 0x0, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0x100000]}, 0x45c)
ioctl$UI_SET_SWBIT(r3, 0x4004556d, 0xf)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r3, 0x5501)
syz_clone(0x41000000, &(0x7f0000000540)="5a3a26e381272e812ddb8312e463f088966e50ae6df020eeb33908be604c1c89154ff2ecff77f5807765da9471b553d727c840047f402957ee2a5ed1e5330df628fddd33e3f94f7defa2abc5ffe994e9dacb8a4f9d4fabbbf61861d74a7ee1d130a5e59cb789173acf3136e5034ac70b51b4c35806b111158cacd8c98c0a2c923a73131c14bd64ded79ddf8ad12f245b5efa3f44a774fbd70be2a369355420d17b1c7eb2724df6b4155b5d6429f38559989fa22582bc81dd410879e851fcc47b6e52b30f330104bb9a67192064fc6b7d2059f1844382333ef6823596ddef3a80c1dd54f1e6cde181a7e23bd4", 0xec, &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="b3ea442dd64b31df3474aa")
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f0000000140))
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xffff1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap$binder(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000004c0)={0x94, 0x0, &(0x7f0000000380)=[@transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000000)={@fd, @fda={0x66646185, 0x6, 0x1, 0x36}, @flat=@handle={0x73682a85, 0x101, 0x1}}, &(0x7f0000000200)={0x0, 0x18, 0x38}}}, @decrefs, @exit_looper, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x68, 0x18, &(0x7f00000002c0)={@ptr={0x70742a85, 0x0, 0xfffffffffffffffe, 0x0, 0x1, 0x1d}, @fd={0x66642a85, 0x0, r6}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/121, 0x79, 0x2, 0x7}}, &(0x7f0000000340)={0x0, 0x28, 0x40}}}], 0x56, 0x0, &(0x7f0000000440)="399cffa086049b69deda1985403eb795311e25b8a549dd1674f7189a0e08994202606dcbe586af1bdbefeaf8f8c2d112f549c3fcd78c1e8c7cebc5c4b2eddfb89d7d0a7b8f700c4761b1297749bf0c9a0f950d9572c5"})

974.940075ms ago: executing program 1 (id=5303):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/cpuinfo\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0xc181, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000380), 0x500, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000008000"/48])
ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000500))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x480042, 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0xa8d)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000180)=ANY=[])

878.346566ms ago: executing program 4 (id=5304):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x581, 0x0, 0x6}]})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
ioctl$TIOCGDEV(0xffffffffffffffff, 0x80045432, &(0x7f0000000000)) (async)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r3, 0x0) (async)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0) (async)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async, rerun: 32)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="01000000000000006a0200000000210005000000000000e6"]) (rerun: 32)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"]) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80000, 0x0)
r7 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_create(r7, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) (async, rerun: 64)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x81, 0x0) (rerun: 64)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r12, 0xc208ae62, &(0x7f0000000600)={0x2, 0x0, @ioapic={0x10000, 0x8, 0xd, 0x7, 0x0, [{0x4, 0x9, 0x3, '\x00', 0x2}, {0x9, 0x2c, 0x4, '\x00', 0x5e}, {0x6, 0xf8, 0x5c, '\x00', 0x3}, {0x6, 0x4, 0xc8, '\x00', 0x7}, {0x9a, 0x7, 0xf9, '\x00', 0x3}, {0x40, 0x6, 0xe, '\x00', 0x1}, {0x40, 0x5d, 0x7}, {0xf8, 0x1, 0x2, '\x00', 0x3}, {0x0, 0x5, 0xa, '\x00', 0xf9}, {0xe, 0x7, 0x66, '\x00', 0x32}, {0x0, 0x5, 0x3, '\x00', 0xd4}, {0x4, 0x3, 0x0, '\x00', 0x7}, {0x73, 0x9, 0x8, '\x00', 0x1}, {0xf, 0x5a, 0xfd, '\x00', 0x8}, {0xb8, 0x8, 0x7, '\x00', 0x3}, {0x4, 0x5, 0xc0, '\x00', 0xc}, {0x52, 0xd7, 0x7, '\x00', 0x8}, {0x9, 0x0, 0x1, '\x00', 0x4}, {0x7, 0x7, 0x77, '\x00', 0x8}, {0x2, 0x10, 0x9, '\x00', 0x4}, {0x6f, 0xbe, 0x0, '\x00', 0x7}, {0x3, 0x1, 0x4, '\x00', 0x96}, {0x7, 0xf9, 0x4, '\x00', 0xc}, {0x2, 0xf3, 0x6, '\x00', 0x1}]}})
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000400)={0x20000, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f00000000c0)=0xa) (rerun: 32)
ioctl$IOC_PR_PREEMPT(r4, 0x401870cb, 0x0)

811.788807ms ago: executing program 1 (id=5305):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r1=>r0, 0x3, 0x7f, 0x3})
write$selinux_create(r1, &(0x7f0000000040)=@objname={'system_u:object_r:devicekit_disk_exec_t:s0', 0x20, '/sbin/dhclient', 0x20, 0x100, 0x20, './file0\x00'}, 0x57)
ioctl$FS_IOC_GETFSSYSFSPATH(r1, 0x80811501, &(0x7f00000000c0)={0x80})
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000180)={0x180003, 0x0, [0xf, 0x3, 0x0, 0xff, 0x8, 0x2, 0x2, 0x80]})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000200)={0x2710, 0x0, &(0x7f0000ffc000/0x2000)=nil})
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000240))
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000280), 0x20040, 0x0)
ioctl$KDGETLED(r1, 0x4b31, &(0x7f00000002c0))
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000300))
ioctl$KDGETMODE(r1, 0x4b3b, &(0x7f0000000340))
ioctl$BTRFS_IOC_GET_FEATURES(r2, 0x80189439, &(0x7f0000000380))
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SET_CPUID(r0, 0x4008ae8a, &(0x7f00000003c0)={0x3, 0x0, [{0x2, 0x2, 0xa566, 0xd3, 0x3}, {0x80000000, 0x28000000, 0x5, 0x2, 0x986c}, {0x80000000, 0x38000000, 0xbc, 0xf, 0x8}]})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
close(r1)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000000480)={0x2020, 0x0, <r4=>0x0}, 0x2020)
read$FUSE(r1, &(0x7f00000024c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_LK(r3, &(0x7f0000004500)={0x28, 0x0, r4, {{0x3, 0x0, 0x0, r5}}}, 0x28)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000004540), 0x4e840, 0x0)
ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000004580)={0x1, 0x1, {0x38, 0x18, 0x10, 0xb, 0x0, 0x81, 0x5, 0xc1}})
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r6, 0x8040942d, &(0x7f00000045c0))
close_range(r6, 0xffffffffffffffff, 0x0)
write$UHID_INPUT2(r6, &(0x7f0000004600)={0xc, {0x96, "6c29e53e9e9e75df1b86bb7318b12b6d6ad9f87227ec91290417ee18ecf2dba110bdb15f0f3ec1b37bbbd16bbf3cc9e1d7fb342c712a5ad6ef9489bc31e77e2e2647de2b7d6a28cc8aace60ee298bc57e8f91ccbd6fb54076a2a25c9b253647bcd463be65a695ec8f6f38669686f6f4b430978046028805487ed3ce0f9c0d058a955cfe0a57d6336dc0c483ad1d1f09a16bcf3dc443d"}}, 0x9c)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000046c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x0)
write$tcp_mem(r7, &(0x7f0000004700)={0x0, 0x20, 0x8000000000000001, 0x20, 0x2}, 0x48)

746.099118ms ago: executing program 1 (id=5306):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 64)
prctl$PR_SET_PTRACER(0x59616d61, 0x0) (async, rerun: 64)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SMI(r4, 0xaeb7) (async, rerun: 64)
close(r1) (async, rerun: 64)
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00') (async, rerun: 64)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (rerun: 64)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000009002"])
r8 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_create(r8, &(0x7f0000000040)=@access={'system_u:object_r:gpg_helper_exec_t:s0', 0x20, '/usr/sbin/cupsd', 0x20, 0x0, 0x25}, 0x4c)
syz_clone(0x80001000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) (async)
r9 = ioctl$TUNGETDEVNETNS(r1, 0xff01, 0x0)
ioctl$NS_GET_USERNS(r9, 0xb701, 0x0) (async)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r9, 0x50009417, &(0x7f00000007c0)={{r9}, 0x0, 0x0, @unused=[0xff, 0xffffffff, 0x0, 0x7ff], @subvolid=0x3})
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
r11 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000001c0)='./binderfs2/custom1\x00', 0x1004, 0x0)
ioctl$BINDER_WRITE_READ(r11, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000200)={@flat=@weak_binder={0x77622a85, 0x190e}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x33}, @fda={0x66646185, 0x7, 0x0, 0xf}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0}) (async)
r12 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r12, 0xc018620c, &(0x7f0000000000)={0x1}) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000540)={0x44, 0x0, &(0x7f0000000400)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000700)={@flat=@handle={0x73682a85, 0x1b00, 0x1}, @fd, @fd}, &(0x7f0000000780)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0}) (async, rerun: 64)
ioctl$NS_GET_USERNS(r9, 0xb701, 0x0) (rerun: 64)

685.480449ms ago: executing program 1 (id=5307):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x28000, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe)
r1 = openat$kvm(0xffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)={0x5, 0x0, [{0x0, 0x6, 0x6, 0x9, 0xfff, 0x26, 0x4}, {0x7, 0xe08, 0x4, 0xdfd4, 0x1, 0x0, 0xffffffc1}, {0x1, 0x40, 0x7, 0x2, 0x24, 0xfffffff7, 0xfffffffc}, {0x40000000, 0x2, 0x2, 0xb5, 0x9, 0x3, 0x9b}, {0x2, 0x7, 0x5, 0x7, 0x7fff, 0x5, 0x9}]})
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0xcd, 0x0, 0xfffffffffffffffe}]})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478e"])
r4 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000000)='\x00')
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x28000, 0x0) (async)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe) (async)
openat$kvm(0xffffff9c, &(0x7f0000000080), 0x2000, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)={0x5, 0x0, [{0x0, 0x6, 0x6, 0x9, 0xfff, 0x26, 0x4}, {0x7, 0xe08, 0x4, 0xdfd4, 0x1, 0x0, 0xffffffc1}, {0x1, 0x40, 0x7, 0x2, 0x24, 0xfffffff7, 0xfffffffc}, {0x40000000, 0x2, 0x2, 0xb5, 0x9, 0x3, 0x9b}, {0x2, 0x7, 0x5, 0x7, 0x7fff, 0x5, 0x9}]}) (async)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0xcd, 0x0, 0xfffffffffffffffe}]}) (async)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478e"]) (async)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) (async)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000000)='\x00') (async)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) (async)

627.89909ms ago: executing program 4 (id=5308):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000040))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000140)={0x0, 0x2000000, 0x1, 0x0, 0x1, "ff00f7000000af88008300"})
ioctl$TIOCGPTPEER(r1, 0x5441, 0x8)
close(0x3)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000280)={0x2})

553.225801ms ago: executing program 4 (id=5309):
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000000)={0x6, 0x5, 0x800000000000102})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000080)={0x2020}, 0x2020)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000380)={0xce})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = openat$random(0xffffffffffffff9c, &(0x7f0000000940), 0x800, 0x0)
ioctl$RNDADDENTROPY(r5, 0x40085203, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000eb00"])
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100))
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f0000000340)=ANY=[@ANYBLOB="01000000000000e68204"])
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000480)={0x18, 0x0, &(0x7f0000000000)=[@clear_death={0x400c630e}, @release], 0x0, 0x0, 0x0})
r8 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r9 = openat$cgroup_type(r8, &(0x7f00000020c0), 0x2, 0x0)
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r9, 0x4002f516, &(0x7f0000002100)={0x4, 0x60})

547.929551ms ago: executing program 2 (id=5310):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1, 0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000200)={0x2, 0xd3e, 0x389, 0x0, 0xe})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000018c0)='/sys/kernel/fscaps', 0x40, 0x40)
mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, &(0x7f0000000040)={{0x0, 0x1, 0x80000000, 0x3}, 0x3, 0x2, 0xbd6})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x4, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee3, &(0x7f00000006c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r1, 0xc018620c, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000000))
ioctl$PPPIOCSMRU1(r6, 0x40047452, &(0x7f0000000880)=0x9)
r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000100)=0x2000000)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)

499.939262ms ago: executing program 5 (id=5311):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000040)=0x7d)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x4000, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000080)=[@request_death={0x400c630e, 0x3}], 0x0, 0x0, 0x0})

423.462503ms ago: executing program 5 (id=5312):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x802, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x4080, 0x0) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000003580)={0x2020}, 0x1c68)
ioctl$FS_IOC_GETFSUUID(r0, 0x80111500, &(0x7f0000000240)) (async)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000001500)={0x44, 0x0, &(0x7f0000001380)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

401.638464ms ago: executing program 1 (id=5313):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, &(0x7f0000000140)=0x3)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000040)={@fd={0x66642a85, 0x0, r0}, @fda={0x66646185, 0x7, 0x2, 0x18}, @fda={0x66646185, 0x8, 0x1, 0x21}}, &(0x7f0000000100)={0x0, 0x18, 0x38}}}], 0x51, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70b7"})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0)
syz_clone3(&(0x7f0000000280)={0x243012400, 0x0, 0x0, 0x0, {0x13}, 0x0, 0x0, 0x0, 0x0}, 0x58)

239.835256ms ago: executing program 5 (id=5314):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f0000000140)={'bond0\x00'})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})
r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x10040, 0x0)
ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x10000003)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder-control\x00', 0x2, 0x0)
ioctl$BINDER_CTL_ADD(r5, 0xc1086201, &(0x7f0000000200)={'custom1\x00'})
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r9, 0x4068aea3, &(0x7f00000000c0)={0xc7, 0x0, 0x1})
ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f00000001c0)={0x1, 0x0, [{0x4000009b, 0x0, 0x31c4}]})
mmap(&(0x7f0000fec000/0x4000)=nil, 0x4000, 0x300000c, 0x13, r2, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r2, 0x0)

239.314356ms ago: executing program 1 (id=5315):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000300)=[@decrefs={0x40046307, 0x3}, @reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={@fda={0x66646185, 0x8, 0x1, 0x16}, @flat=@handle={0x73682a85, 0x1000, 0x3}, @fda={0x66646185, 0x9, 0x1, 0x38}}, &(0x7f00000001c0)={0x0, 0x0, 0xfffffffffffffd98}}, 0x40}, @register_looper], 0x0, 0x0, 0x0})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000140)={0x10200, 0x100, 0x40, &(0x7f0000000380)=[0x2f2e, 0xf, 0xf0fa, 0x39d04cc, 0x1, 0x81, 0x1, 0xffffffff00000000, 0x9, 0x2, 0xffffffff80000001, 0xffffffff, 0x3, 0x7, 0x81, 0xfffffffffffffffa, 0xfffffffffffffffa, 0x0, 0x0, 0x30, 0xfec, 0x7a50, 0x8, 0x1ff, 0x8, 0x9, 0x5, 0x4, 0x5, 0xffffffffffffff40, 0x3, 0x9, 0x7, 0x5d, 0x200, 0x6, 0x3, 0x0, 0x6, 0x0, 0x4, 0x4, 0x10, 0x2, 0x0, 0x15, 0xfffffffffffffffb, 0xc, 0xffffffffffffffff, 0x5, 0x6, 0x4, 0x80000000, 0x9, 0xffffffff, 0x3, 0x2, 0x3, 0x7fff, 0x8, 0x8000, 0x2, 0x10000, 0x7, 0x0, 0x1, 0x4, 0x4, 0x0, 0x10001, 0x7, 0x8, 0xfffffffffffffff9, 0x0, 0x3, 0x1, 0xb4f9, 0x9, 0x368, 0x0, 0xe, 0x583, 0x100000000, 0x6, 0x1, 0x8000000000000001, 0xfff, 0x8000, 0x9, 0xc09e, 0x400, 0xfffffffffffffffb, 0x2, 0x10, 0x5, 0x4, 0x8, 0x1, 0x37, 0x2c4, 0x9, 0x80000000, 0x1, 0xd, 0x4, 0xe5, 0x7fff, 0x7, 0xd98, 0x3ff, 0x9, 0x80, 0x164, 0x8001, 0x5, 0x1, 0x574, 0xff79, 0x11, 0x401, 0x100, 0x3, 0x7, 0xfffffffffffffff8, 0x5, 0xc, 0xc, 0xbfa5]})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x5c1800, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)

225.087137ms ago: executing program 4 (id=5316):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x8a400, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xbf) (async)
ioctl$PTP_PEROUT_REQUEST(r0, 0x40383d03, &(0x7f0000000180)={{0x1, 0x10}, {0x1, 0x4}, 0xa945})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume_offset', 0x8ab06, 0x13)
mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_clone(0x802400, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r6, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1})
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000440)={0x1, 0x0, [{0x4b564d03, 0x0, 0xfffe}]}) (async)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x300000c, 0x13, r3, 0x293f000)

167.411877ms ago: executing program 2 (id=5317):
mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, &(0x7f0000000200)=ANY=[@ANYBLOB='context=sy\"te'])

0s ago: executing program 2 (id=5318):
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000000)=ANY=[@ANYBLOB='defcontext=\"'])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x3, 0x0, [{0xb76, 0x0, 0x2}, {0x400000b6, 0x0, 0x5}, {0xb4c}]})

kernel console output (not intermixed with test programs):

54]  syscall_exit_to_user_mode+0x58/0xb0
[  399.928057][T14654]  do_syscall_64+0x64/0xf0
[  399.928079][T14654]  ? clear_bhb_loop+0x35/0x90
[  399.928104][T14654]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  399.928128][T14654] RIP: 0033:0x7f9320b8e929
[  399.928155][T14654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.928175][T14654] RSP: 002b:00007f932195e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  399.928198][T14654] RAX: fffffffffffffe00 RBX: 00007f9320db6080 RCX: 00007f9320b8e929
[  399.928214][T14654] RDX: 0000000000001000 RSI: 0000200000002a40 RDI: 0000000000000004
[  399.928229][T14654] RBP: 00007f932195e090 R08: 0000000000000000 R09: 0000000000000000
[  399.928242][T14654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  399.928253][T14654] R13: 0000000000000000 R14: 00007f9320db6080 R15: 00007ffd20ff5d48
[  399.928269][T14654]  </TASK>
[  400.103972][T14686] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 128, limit: 144, size: 255)
[  400.106828][   T36] audit: type=1400 audit(1750358325.520:49848): avc:  denied  { read write open } for  pid=14673 comm="syz.5.4403" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  400.118492][T14686] rust_binder: Error while translating object.
[  400.121111][   T36] audit: type=1400 audit(1750358325.520:49849): avc:  denied  { read write } for  pid=14673 comm="syz.5.4403" name="uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  400.146899][T14686] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  400.151343][   T36] audit: type=1400 audit(1750358325.520:49850): avc:  denied  { read write open } for  pid=14673 comm="syz.5.4403" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  400.173038][T14686] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:373
[  400.563459][T14700] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  400.595646][T14701] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[  400.609680][T14700] rust_binder: Error in use_page_slow: ESRCH
[  400.609705][T14700] rust_binder: use_range failure ESRCH
[  400.615738][T14700] rust_binder: Failed to allocate buffer. len:4224, is_oneway:false
[  400.628537][T14701] rust_binder: Write failure EINVAL in pid:376
[  400.647945][T14705] rust_binder: Write failure EFAULT in pid:277
[  400.654244][T14700] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  400.679684][T14700] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:555
[  400.743359][T14708] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  400.801804][T14711] binder: Unknown parameter 'nXI'
[  400.846257][T14712] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:379
[  400.846855][T14715] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:279
[  401.086211][T14728] tun0: tun_chr_ioctl cmd 1074025675
[  401.122130][T14728] tun0: persist disabled
[  401.224435][T14730] binder: Bad value for 'defcontext'
[  401.235447][T14731] tun0: tun_chr_ioctl cmd 1074025673
[  401.511557][T14739] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[  401.818815][T14742] rust_binder: Error in use_page_slow: ESRCH
[  401.818842][T14742] rust_binder: use_range failure ESRCH
[  401.824940][T14742] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  401.858493][T14742] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  401.858833][T14753] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:286
[  401.888480][T14742] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:1293
[  402.027731][T14760] random: crng reseeded on system resumption
[  402.252014][T14765] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  402.309505][T14770] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  402.327252][T14770] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  402.336259][T14770] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:583
[  402.602606][T14778] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:398
[  402.637102][T14778] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  402.672976][T14778] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:398
[  402.736396][T14776] rust_binder: got new transaction with bad transaction stack
[  402.828704][T14782] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:401
[  402.829200][T14776] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1297
[  403.148059][T14795] SELinux: security_context_str_to_sid () failed with errno=-22
[  403.384378][T14806] input: syz1 as /devices/virtual/input/input223
[  403.480602][T14811] rust_binder: Write failure EINVAL in pid:586
[  403.504662][T14810] input: syz0 as /devices/virtual/input/input224
[  403.650043][T14810] binder: Unknown parameter ''
[  403.714412][T14797] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  404.248079][T14832] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  404.334882][T14835] input: syz0 as /devices/virtual/input/input225
[  404.431232][T14842] rust_binder: Read failure Err(EAGAIN) in pid:426
[  404.451931][T14842] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:426
[  404.489726][T14842] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:426
[  404.549758][   T36] kauditd_printk_skb: 591 callbacks suppressed
[  404.549778][   T36] audit: type=1400 audit(1750358330.480:50442): avc:  denied  { read } for  pid=14846 comm="syz.2.4455" name="binder0" dev="binder" ino=32 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  404.594178][T14847] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  404.622128][T14847] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  404.633637][   T36] audit: type=1400 audit(1750358330.480:50443): avc:  denied  { read write } for  pid=13497 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  404.680712][   T36] audit: type=1400 audit(1750358330.480:50444): avc:  denied  { read write open } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  404.722756][   T36] audit: type=1400 audit(1750358330.480:50445): avc:  denied  { ioctl } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  404.761510][   T36] audit: type=1400 audit(1750358330.480:50446): avc:  denied  { read write } for  pid=14844 comm="syz.1.4456" name="vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  404.786899][   T36] audit: type=1400 audit(1750358330.480:50447): avc:  denied  { read write open } for  pid=14844 comm="syz.1.4456" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  404.871684][   T36] audit: type=1400 audit(1750358330.480:50448): avc:  denied  { ioctl } for  pid=14844 comm="syz.1.4456" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  404.912812][T14859] audit: audit_backlog=65 > audit_backlog_limit=64
[  404.929434][T14861] audit: audit_backlog=65 > audit_backlog_limit=64
[  404.940653][T14859] audit: audit_lost=243 audit_rate_limit=0 audit_backlog_limit=64
[  405.043717][T14867] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1317
[  405.076675][T14865] binder: Unknown parameter 'nXI'
[  405.487351][T14882] random: crng reseeded on system resumption
[  405.599959][T14884] binder: Unknown parameter 'maxv/kvm'
[  405.618521][T14882] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  405.925283][T14901] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1328
[  405.926162][T14893] rust_binder: Write failure EINVAL in pid:309
[  405.935162][T14902] rust_binder: Write failure EFAULT in pid:1328
[  405.952359][T14902] rust_binder: Write failure EFAULT in pid:1328
[  405.964445][T14902] rust_binder: Write failure EFAULT in pid:1328
[  405.979751][T14902] rust_binder: Write failure EFAULT in pid:1328
[  405.990046][T14898] random: crng reseeded on system resumption
[  406.002773][T14902] rust_binder: Write failure EFAULT in pid:1328
[  406.003075][T14902] rust_binder: Write failure EFAULT in pid:1328
[  406.317160][T14917] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1337
[  406.685058][T14923] binder: Unknown parameter 'fscontext?}l'
[  406.856871][T14925] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  406.857309][T14925] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:621
[  406.881454][T14925] rust_binder: Error while translating object.
[  406.893597][T14925] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  406.900598][T14925] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:621
[  406.980965][T14925] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  406.997234][T14925] rust_binder: Read failure Err(EFAULT) in pid:621
[  407.019942][T14925] SELinux:  policydb version 1303999153 does not match my version range 15-33
[  407.037731][T14925] SELinux: failed to load policy
[  407.420742][T14946] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.426843][T14946] rust_binder: Write failure EINVAL in pid:444
[  407.581796][T14959] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.595512][T14961] SELinux:  policydb string  does not match my string SE Linux
[  407.601390][T14958] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.622359][T14961] SELinux: failed to load policy
[  407.649825][T14958] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:327
[  407.665439][T14955] rust_binder: Write failure EFAULT in pid:1344
[  407.799661][T14972] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.884866][T12106] hid-generic C98F:0003:0000.0021: unknown main item tag 0x0
[  407.929897][T12106] hid-generic C98F:0003:0000.0021: unknown main item tag 0x0
[  407.954782][T12106] hid-generic C98F:0003:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  407.982617][T14959] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:448
[  408.169847][T14981] fido_id[14981]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  408.932652][T15000] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION already set
[  408.974361][T15000] rust_binder: Write failure EINVAL in pid:1353
[  408.990381][T15003] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  409.076228][T15005] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:650
[  409.250019][T15012] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  409.298147][   T10] hid-generic C98F:0003:0000.0022: unknown main item tag 0x0
[  409.338739][   T10] hid-generic C98F:0003:0000.0022: unknown main item tag 0x0
[  409.364777][   T10] hid-generic C98F:0003:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  409.379809][T15020] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  409.490776][T15025] binder: Unknown parameter 'fscontext?}'
[  409.558866][   T36] kauditd_printk_skb: 763 callbacks suppressed
[  409.558888][   T36] audit: type=1400 audit(1750358335.490:51209): avc:  denied  { read open } for  pid=15024 comm="syz.5.4512" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  409.589826][T15026] fido_id[15026]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  409.624804][   T36] audit: type=1400 audit(1750358335.490:51210): avc:  denied  { read write } for  pid=13497 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  409.699732][T15025] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  409.721389][   T36] audit: type=1400 audit(1750358335.490:51211): avc:  denied  { read write open } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  409.790504][   T36] audit: type=1400 audit(1750358335.490:51212): avc:  denied  { ioctl } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  409.828990][   T36] audit: type=1400 audit(1750358335.540:51213): avc:  denied  { ioctl } for  pid=15024 comm="syz.5.4512" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  409.854849][   T36] audit: type=1400 audit(1750358335.560:51214): avc:  denied  { read write } for  pid=15033 comm="syz.4.4515" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  409.898489][   T36] audit: type=1400 audit(1750358335.560:51215): avc:  denied  { read open } for  pid=15033 comm="syz.4.4515" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  409.936699][T15043] rust_binder: Failed to allocate buffer. len:18446744073709550816, is_oneway:false
[  409.936724][T15043] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOSPC }
[  409.957135][   T36] audit: type=1400 audit(1750358335.570:51216): avc:  denied  { ioctl } for  pid=15033 comm="syz.4.4515" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  409.958492][T15043] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOSPC } my_pid:1364
[  409.976070][   T36] audit: type=1400 audit(1750358335.580:51217): avc:  denied  { read } for  pid=15033 comm="syz.4.4515" name="binder1" dev="binder" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  410.055793][   T36] audit: type=1400 audit(1750358335.580:51218): avc:  denied  { read open } for  pid=15033 comm="syz.4.4515" path="/dev/binderfs/binder1" dev="binder" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  410.122596][T15045] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  410.122632][T15045] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:1366
[  410.239725][T15047] random: crng reseeded on system resumption
[  410.410176][T15058] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  410.553872][T15062] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:353
[  410.556146][T15062] input: syz0 as /devices/virtual/input/input229
[  410.758795][T15066] input: syz1 as /devices/virtual/input/input231
[  411.043266][T15082] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  411.044365][T15080] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  411.398809][T15094] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  411.407105][T15094] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  411.416293][T15094] rust_binder: Read failure Err(EFAULT) in pid:672
[  411.578201][T15097] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  411.588271][T15097] rust_binder: Write failure EINVAL in pid:471
[  411.671166][T15101] rust_binder: Write failure EFAULT in pid:674
[  411.893883][T15115] input: syz0 as /devices/virtual/input/input232
[  411.971344][T15115] tun0: tun_chr_ioctl cmd 1074025675
[  412.000534][T15115] tun0: persist enabled
[  412.048481][T15116] tun0: tun_chr_ioctl cmd 1074025675
[  412.053851][T15116] tun0: persist enabled
[  412.091290][T15115] binder: Unknown parameter 'defcontext01777777777777777777777'
[  412.134531][T15128] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  412.149163][T15128] rust_binder: Write failure EINVAL in pid:486
[  412.276302][T15139] binder: Unknown parameter 'm¹!ou¢§Þ»ÖN}:J¡�u–C0000000'
[  412.337701][T15140] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  412.413187][T15144] binder: Bad value for 'stats'
[  412.745593][T15160] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  412.749588][T15159] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  412.792104][T15159] rust_binder: Error while translating object.
[  412.792184][T15159] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  412.801053][T15156] kvm: kvm [15155]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0xa1a9
[  412.829128][T15159] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:367
[  412.867721][T15161] binder: Unknown parameter 'processor	: 0
[  412.867721][T15161] vendor_id	: GenuineIntel
[  412.867721][T15161] cpu family	: 6
[  412.867721][T15161] model		: 7/dev/ptmx'
[  412.941146][T15170] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  412.947307][T15172] rust_binder: Error in use_page_slow: ESRCH
[  412.956248][T15170] rust_binder: Error while translating object.
[  412.963293][T15172] rust_binder: use_range failure ESRCH
[  412.980799][T15170] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  412.989378][T15172] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  412.999021][T15170] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:371
[  413.018565][T15172] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  413.036893][T15172] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:504
[  413.146711][T15170] binder: Unknown parameter '00000000000000000004'
[  413.259313][T15180] binfmt_misc: register: failed to install interpreter file ./cgroup.cpu/cpuset.cpus
[  413.364840][T15183] input: syz0 as /devices/virtual/input/input234
[  413.548772][T15185] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  413.553778][T15185] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 3
[  413.569030][T15185] rust_binder: Write failure EINVAL in pid:374
[  413.692488][T15195] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  413.786077][T15203] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:377
[  413.881868][T15209] binder: Unknown parameter 'fscontextÝ'
[  413.966309][T15204] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  414.102798][T15215] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:379
[  414.340799][T15222] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  414.342882][T15219] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[  414.356592][T15219] rust_binder: Failure in copy_transaction_data: BR_DEAD_REPLY
[  414.364396][T15219] rust_binder: Failure BR_DEAD_REPLY during reply - delivering BR_FAILED_REPLY to sender.
[  414.436955][T15222] rust_binder: Error while translating object.
[  414.447121][T15222] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBADF }
[  414.453694][T15222] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EBADF } my_pid:511
[  414.471066][T15226] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  414.558521][T15229] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  414.601403][   T36] kauditd_printk_skb: 875 callbacks suppressed
[  414.601426][   T36] audit: type=1400 audit(1750358340.530:52094): avc:  denied  { read write } for  pid=9673 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  414.640365][   T36] audit: type=1400 audit(1750358340.550:52095): avc:  denied  { read write } for  pid=13497 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  414.678102][T15235] binder: Unknown parameter 'appraise_type'
[  414.679738][T15238] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  414.698183][   T36] audit: type=1400 audit(1750358340.550:52096): avc:  denied  { read write open } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  414.702167][T15238] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:388
[  414.705710][   T36] audit: type=1400 audit(1750358340.550:52097): avc:  denied  { ioctl } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  414.764796][T15241] rust_binder: Error while translating object.
[  414.765069][T15241] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  414.778454][T15241] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:388
[  414.790807][T15240] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  414.806866][   T36] audit: type=1400 audit(1750358340.570:52098): avc:  denied  { read write open } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  414.851124][T15244] rust_binder: Write failure EINVAL in pid:513
[  414.858172][T15247] audit: audit_backlog=65 > audit_backlog_limit=64
[  414.875376][T15250] audit: audit_backlog=65 > audit_backlog_limit=64
[  414.882248][   T36] audit: type=1400 audit(1750358340.570:52099): avc:  denied  { ioctl } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  414.885653][T15248] audit: audit_backlog=65 > audit_backlog_limit=64
[  414.909171][T15250] audit: audit_lost=245 audit_rate_limit=0 audit_backlog_limit=64
[  415.111634][T15260] binder: Bad value for 'stats'
[  415.120395][T15263] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  415.138748][T15263] rust_binder: Error in use_page_slow: ESRCH
[  415.173403][T15263] rust_binder: use_range failure ESRCH
[  415.173434][T15263] rust_binder: Failed to allocate buffer. len:4224, is_oneway:false
[  415.189334][T15263] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  415.189370][T15263] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:519
[  415.509561][T15277] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  415.512411][T15267] rust_binder: Read failure Err(EFAULT) in pid:397
[  415.568065][T15284] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  415.575933][T15277] rust_binder: Error in use_page_slow: ESRCH
[  415.590589][T15277] rust_binder: use_range failure ESRCH
[  415.595403][T15284] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:527
[  415.603953][T15277] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  415.635692][T15277] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  415.652837][T15277] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:706
[  415.674275][T15291] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  415.686755][T15291] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 0
[  415.728478][T15291] rust_binder: Write failure EINVAL in pid:529
[  415.842257][T15295] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  416.228391][T15311] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  416.233457][T15312] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1440
[  416.260036][   T13] bridge_slave_1: left allmulticast mode
[  416.279713][   T13] bridge_slave_1: left promiscuous mode
[  416.285487][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.306626][T15315] rust_binder: Failed to allocate buffer. len:160, is_oneway:false
[  416.312897][   T13] bridge_slave_0: left allmulticast mode
[  416.342920][   T13] bridge_slave_0: left promiscuous mode
[  416.355233][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.555552][T15323] rust_binder: Write failure EINVAL in pid:1447
[  416.566268][T15318] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.581716][T15318] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.589153][T15318] bridge_slave_0: entered allmulticast mode
[  416.595853][T15318] bridge_slave_0: entered promiscuous mode
[  416.603509][   T13] veth1_macvtap: left promiscuous mode
[  416.618442][   T13] veth0_vlan: left promiscuous mode
[  416.728517][T15318] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.743301][T15330] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  416.744983][T15318] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.759071][T15318] bridge_slave_1: entered allmulticast mode
[  416.765502][T15318] bridge_slave_1: entered promiscuous mode
[  417.159582][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  417.166680][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  417.175999][T15344] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  417.176355][T15343] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  417.185876][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  417.185946][T15345] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  417.192358][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  417.406259][T15318] veth0_vlan: entered promiscuous mode
[  417.474470][T15318] veth1_macvtap: entered promiscuous mode
[  417.576772][T15361] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  418.030071][T15380] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  418.129124][T15390] rust_binder: Failed to allocate buffer. len:152, is_oneway:false
[  418.207711][T15392] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:543
[  418.514734][T15398] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[  418.535326][T15398] rust_binder: Failed to allocate buffer. len:24, is_oneway:false
[  418.633240][T15404] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:430
[  418.814670][T15407] rust_binder: Write failure EINVAL in pid:433
[  418.960923][T15409] binder: Unknown parameter 'defcontext01777777777777777777777'
[  418.998723][T15412] input: syz0 as /devices/virtual/input/input235
[  419.202528][T15418] rust_binder: Failed to allocate buffer. len:136, is_oneway:true
[  419.273063][T15421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  419.311183][T15418] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  419.514540][T15426] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  419.612950][   T36] kauditd_printk_skb: 964 callbacks suppressed
[  419.612972][   T36] audit: type=1400 audit(1750358345.540:53023): avc:  denied  { map } for  pid=15429 comm="syz.1.4630" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  419.684324][   T36] audit: type=1400 audit(1750358345.550:53024): avc:  denied  { read } for  pid=15429 comm="syz.1.4630" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  419.731758][T15439] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:441
[  419.753251][   T36] audit: type=1400 audit(1750358345.550:53025): avc:  denied  { read } for  pid=15429 comm="syz.1.4630" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  419.818457][   T36] audit: type=1400 audit(1750358345.550:53026): avc:  denied  { read open } for  pid=15429 comm="syz.1.4630" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  419.892013][   T36] audit: type=1400 audit(1750358345.550:53027): avc:  denied  { ioctl } for  pid=15429 comm="syz.1.4630" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  419.959793][   T36] audit: type=1400 audit(1750358345.550:53028): avc:  denied  { read write } for  pid=15318 comm="syz-executor" name="loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  420.030660][   T36] audit: type=1400 audit(1750358345.550:53029): avc:  denied  { read write open } for  pid=15318 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  420.088543][   T36] audit: type=1400 audit(1750358345.550:53030): avc:  denied  { ioctl } for  pid=15318 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  420.128481][   T36] audit: type=1400 audit(1750358345.570:53031): avc:  denied  { write } for  pid=15429 comm="syz.1.4630" name="pfkey" dev="proc" ino=4026532573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  420.157848][   T36] audit: type=1400 audit(1750358345.570:53032): avc:  denied  { write } for  pid=15429 comm="syz.1.4630" path="/proc/1494/net/pfkey" dev="proc" ino=4026532573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  420.697873][T15476] input: syz0 as /devices/virtual/input/input236
[  420.727610][T15476] input: failed to attach handler leds to device input236, error: -6
[  420.829233][T15476] rust_binder: Error while translating object.
[  420.829262][T15476] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  420.835473][T15476] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:38
[  421.069406][T15494] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  421.109157][T15495] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:47
[  421.183480][T15494] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:558
[  421.728840][T15514] kvm: Disabled LAPIC found during irq injection
[  421.782411][T15516] rust_binder: Error while translating object.
[  421.782458][T15516] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  421.791266][T15516] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1523
[  421.902151][T15519] rust_binder: Error while translating object.
[  421.929865][T15519] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  421.936674][T15519] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1525
[  422.901197][T15557] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:568
[  423.285815][T15566] kvm: kvm [15556]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x882
[  423.346250][T15569] input: syz1 as /devices/virtual/input/input238
[  423.391660][T15571] SELinux: security_context_str_to_sid () failed with errno=-22
[  423.732296][T15575] rust_binder: Error while translating object.
[  423.732325][T15575] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  423.733640][T15577] rust_binder: Write failure EINVAL in pid:1541
[  423.752198][T15575] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:468
[  423.781633][T15576] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  424.027349][T15584] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[  424.058512][T15584] rust_binder: Write failure EINVAL in pid:1544
[  424.172994][T15582] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:470
[  424.279473][T15595] rust_binder: Write failure EFAULT in pid:1546
[  424.449484][T15601] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 176, size: 75)
[  424.467046][T15601] rust_binder: Error while translating object.
[  424.498163][T15601] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  424.527784][T15601] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:473
[  424.621171][   T36] kauditd_printk_skb: 733 callbacks suppressed
[  424.621194][   T36] audit: type=1400 audit(1750358350.550:53766): avc:  denied  { read } for  pid=15606 comm="syz.1.4683" name="binder0" dev="binder" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  424.670192][T15607] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  424.688682][   T36] audit: type=1400 audit(1750358350.550:53767): avc:  denied  { read open } for  pid=15606 comm="syz.1.4683" path="/dev/binderfs/binder0" dev="binder" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  424.728555][   T36] audit: type=1400 audit(1750358350.550:53768): avc:  denied  { ioctl } for  pid=15606 comm="syz.1.4683" path="/dev/binderfs/binder0" dev="binder" ino=138 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  424.757662][   T36] audit: type=1400 audit(1750358350.550:53769): avc:  denied  { set_context_mgr } for  pid=15606 comm="syz.1.4683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  424.778320][   T36] audit: type=1400 audit(1750358350.560:53770): avc:  denied  { ioctl } for  pid=15606 comm="syz.1.4683" path="/dev/binderfs/binder0" dev="binder" ino=138 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  424.818681][   T36] audit: type=1326 audit(1750358350.560:53771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15606 comm="syz.1.4683" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9320b8e929 code=0x0
[  424.892016][   T36] audit: type=1400 audit(1750358350.590:53772): avc:  denied  { map } for  pid=15592 comm="syz.2.4680" path="/dev/binderfs/binder0" dev="binder" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  424.907767][T15613] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:77
[  424.936573][   T36] audit: type=1400 audit(1750358350.590:53773): avc:  denied  { read } for  pid=15592 comm="syz.2.4680" path="/dev/binderfs/binder0" dev="binder" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  424.972197][T15615] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:476
[  425.018462][   T36] audit: type=1400 audit(1750358350.590:53774): avc:  denied  { read } for  pid=15605 comm="syz.5.4682" name="binder0" dev="binder" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  425.027569][T15617] rust_binder: Write failure EINVAL in pid:476
[  425.044696][   T36] audit: type=1400 audit(1750358350.590:53775): avc:  denied  { read open } for  pid=15605 comm="syz.5.4682" path="/dev/binderfs/binder0" dev="binder" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  425.431523][T15636] rust_binder: Write failure EFAULT in pid:84
[  425.563575][T15639] SELinux:  policydb version -845211227 does not match my version range 15-33
[  425.620869][T15639] SELinux: failed to load policy
[  425.657133][T15647] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:88
[  425.659867][T15639] input: syz0 as /devices/virtual/input/input239
[  425.726955][T15643] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  425.727315][T15643] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  425.775668][T15650] binder: Unknown parameter '00000000000000000000'
[  426.401057][T15667] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  426.608057][T15671] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  426.618087][T15674] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  426.665675][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x7
[  426.701905][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x3
[  426.715195][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.724257][T15681] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:98
[  426.724336][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.743800][T15679] rust_binder: Write failure EINVAL in pid:98
[  426.744028][T15681] rust_binder: Write failure EINVAL in pid:98
[  426.750320][T15671] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  426.751689][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.757940][T15671] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:603
[  426.765937][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.790775][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.798628][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.808499][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.817118][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.824959][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.830102][T15683] binder: Unknown parameter 'non'
[  426.833000][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.845983][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.853820][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.861758][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.869695][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.877742][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.886099][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.894204][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.903070][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.911178][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.919016][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.926943][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.934868][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.949977][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.960467][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.969295][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.977592][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.985919][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  426.995137][T15691] rust_binder: Error while translating object.
[  426.995178][T15691] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  427.001422][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.018729][T15691] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:492
[  427.018839][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.036739][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.075255][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.087156][T15693] input: syz0 as /devices/virtual/input/input240
[  427.088494][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.104138][T15698] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  427.104591][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.123945][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.132937][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.141164][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.149255][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.166175][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.181255][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.198535][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.206340][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.225978][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.234345][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.239164][T15705] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  427.243675][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.255828][T15705] rust_binder: Write failure EINVAL in pid:103
[  427.258189][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.284814][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.293996][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.323996][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.331903][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.339865][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.347640][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.355601][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.377833][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.387745][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.396449][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.404395][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.413232][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.421887][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.434559][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.444907][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.454911][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.455646][T15718] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  427.462789][T15718] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:1576
[  427.481905][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.511896][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.521715][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.530788][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.548570][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.556408][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.568147][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.576294][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.584468][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.592355][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.608268][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.616807][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.625469][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.634119][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.657219][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.668547][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.676359][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.685063][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.693543][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.702055][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.718350][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.726994][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.735650][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.754325][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.765431][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.774962][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.788145][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.796173][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.804022][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.811997][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.823739][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.831686][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.839538][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.847347][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.857085][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.869658][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.877564][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.885367][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.893298][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.901451][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.910952][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.918853][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.926623][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.934654][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.942629][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.950719][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.958582][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.966400][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.974324][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.982234][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.990777][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  427.999267][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.015512][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.023369][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.031334][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.039124][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.046873][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x6
[  428.054688][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x3
[  428.062471][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.070263][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.078052][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.085853][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.093787][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.101600][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.118466][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.126343][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.137305][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.150203][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.158138][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.163526][T15750] serio: Serial port ttynull
[  428.165948][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.165980][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.166005][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.166029][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.207927][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.216326][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.248473][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.256281][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.265412][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.278202][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.286020][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.293876][    T9] hid-generic 0008:0000:FFFFFBFF.0023: unknown main item tag 0x0
[  428.303277][    T9] hid-generic 0008:0000:FFFFFBFF.0023: hidraw0: <UNKNOWN> HID v9.86 Device [syz0] on syz1
[  428.335191][T15762] binder: Unknown parameter 'dont_hash'
[  428.389959][T15765] rust_binder: Read failure Err(EAGAIN) in pid:119
[  428.516772][T15772] rust_binder: Write failure EINVAL in pid:609
[  428.529368][T15772] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  428.535683][T15772] rust_binder: Read failure Err(EFAULT) in pid:609
[  428.618636][T15773] kvm: user requested TSC rate below hardware speed
[  428.699892][T15785] binder: Unknown parameter 'dont;hash'
[  428.891463][T15787] kvm: vcpu 512: requested lapic timer restore with starting count register 0x390=1531215282 (3062430564 ns) > initial count (1473793136 ns). Using initial count to start timer.
[  429.167062][T15798] fido_id[15798]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  429.208884][T15801] rust_binder: Read failure Err(EAGAIN) in pid:136
[  429.291005][T15809] tap0: tun_chr_ioctl cmd 1074025677
[  429.344477][T15811] binder: Unknown parameter 'defcontext01777777777777777777777'
[  429.368585][T15809] tap0: linktype set to 774
[  429.490041][T15816] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  429.574033][T15821] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1595
[  429.592900][T15821] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  429.613163][T15821] rust_binder: Read failure Err(EFAULT) in pid:1595
[  429.650465][   T36] kauditd_printk_skb: 764 callbacks suppressed
[  429.650487][   T36] audit: type=1400 audit(1750358355.580:54540): avc:  denied  { read } for  pid=15815 comm="syz.2.4747" name="binder0" dev="binder" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  429.702508][T15820] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:141
[  429.775814][   T36] audit: type=1400 audit(1750358355.590:54541): avc:  denied  { read write } for  pid=9673 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  429.799237][   T36] audit: type=1400 audit(1750358355.590:54542): avc:  denied  { read write open } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  429.813917][T15831] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  429.836038][T15826] rust_binder: Error in use_page_slow: ESRCH
[  429.842568][T15826] rust_binder: use_range failure ESRCH
[  429.878489][T15826] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[  429.884047][T15826] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  429.894819][   T36] audit: type=1400 audit(1750358355.590:54543): avc:  denied  { ioctl } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  429.922787][T15831] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 3
[  429.948031][T15826] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:541
[  429.979856][   T36] audit: type=1400 audit(1750358355.600:54544): avc:  denied  { read write } for  pid=13497 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  429.998536][T15831] rust_binder: Write failure EINVAL in pid:1597
[  430.063154][   T36] audit: type=1400 audit(1750358355.600:54545): avc:  denied  { read write open } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  430.064736][T15837] audit: audit_backlog=65 > audit_backlog_limit=64
[  430.093895][   T36] audit: type=1400 audit(1750358355.600:54546): avc:  denied  { ioctl } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  430.101852][T15838] audit: audit_backlog=65 > audit_backlog_limit=64
[  430.145863][   T36] audit: type=1400 audit(1750358355.620:54547): avc:  denied  { read open } for  pid=15815 comm="syz.2.4747" path="/dev/binderfs/binder0" dev="binder" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  430.302849][T15844] rust_binder: Write failure EINVAL in pid:1604
[  430.314501][T15844] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  430.376068][T15837] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  430.610419][T15847] rust_binder: Failed to allocate buffer. len:120, is_oneway:false
[  430.752075][T15856] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  430.766964][T15859] rust_binder: Error in use_page_slow: ESRCH
[  430.773942][T15855] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  430.792307][T15859] rust_binder: use_range failure ESRCH
[  430.810044][T15855] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 1
[  430.811133][T15859] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  430.828483][T15859] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  430.836557][T15859] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:623
[  430.857941][T15855] rust_binder: Write failure EINVAL in pid:149
[  430.897799][T15849] rust_binder: Read failure Err(EFAULT) in pid:1606
[  430.963746][T15862] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  430.981370][T15862] SELinux:  truncated policydb string identifier
[  431.009830][T15862] SELinux: failed to load policy
[  431.058567][T15862] rust_binder: Write failure EINVAL in pid:627
[  431.096976][T15864] SELinux: failed to load policy
[  431.114229][T15867] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1610
[  431.114667][T15867] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1610
[  431.181062][T15871] binder: Unknown parameter 'de~montext'
[  431.259179][T15873] SELinux: security_context_str_to_sid () failed with errno=-22
[  431.331962][T15877] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  431.392648][T15882] binder: Unknown parameter 'context'
[  431.582403][T15889] binder: Unknown parameter 'non'
[  431.659177][T15893] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  431.667388][T15893] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[  431.688504][T15893] rust_binder: Error while translating object.
[  431.716115][T15893] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  431.725952][T15893] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:632
[  431.878505][T15903] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  431.898751][T15906] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  431.919938][T15903] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  432.048197][T15911] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  432.124774][T15911] SELinux: failed to load policy
[  432.170031][T15913] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  432.175075][T15916] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  432.199730][T15914] rust_binder: Write failure EINVAL in pid:159
[  432.200486][T15914] rust_binder: got new transaction with bad transaction stack
[  432.206677][T15914] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:159
[  432.272164][T15918] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  432.369682][T15920] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=320745794 (2565966352 ns) > initial count (325012024 ns). Using initial count to start timer.
[  432.400791][T15920] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  432.400827][T15920] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:162
[  432.458803][T15923] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:636
[  433.246151][T15951] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  433.277007][T15951] rust_binder: Error in use_page_slow: ESRCH
[  433.288444][T15951] rust_binder: use_range failure ESRCH
[  433.294683][T15951] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  433.308550][T15955] binder: Bad value for 'max'
[  433.321496][T15951] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  433.321536][T15951] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:166
[  433.440940][T15960] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:585
[  433.447006][T15963] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  433.499183][T15963] rust_binder: Error in use_page_slow: ESRCH
[  433.505673][T15963] rust_binder: use_range failure ESRCH
[  433.534199][T15963] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[  433.546835][T15963] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  433.558780][T15968] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  433.570630][T15963] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:1636
[  433.618812][T15974] rust_binder: Write failure EFAULT in pid:587
[  433.996746][T15994] binder: Unknown parameter 'defcontext01777777777777777777777'
[  434.012479][T15997] binder: Bad value for 'max'
[  434.026037][T15996] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  434.029862][T15996] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[  434.054828][T15996] rust_binder: Write failure EINVAL in pid:657
[  434.055563][T15996] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  434.090231][T15999] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  434.132603][T15999] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:179
[  434.178011][T16003] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:659
[  434.260260][T16005] input: syz1 as /devices/virtual/input/input244
[  434.441762][T16016] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  434.663547][   T36] kauditd_printk_skb: 881 callbacks suppressed
[  434.663569][   T36] audit: type=1400 audit(1750358360.590:55377): avc:  denied  { ioctl } for  pid=16019 comm="syz.5.4818" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0x9362 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  434.744942][   T36] audit: type=1400 audit(1750358360.600:55378): avc:  denied  { read write } for  pid=16022 comm="syz.2.4819" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  434.796943][   T36] audit: type=1400 audit(1750358360.600:55379): avc:  denied  { ioctl open } for  pid=16022 comm="syz.2.4819" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  434.823533][   T36] audit: type=1400 audit(1750358360.600:55380): avc:  denied  { ioctl } for  pid=16022 comm="syz.2.4819" path="/dev/rnullb0" dev="devtmpfs" ino=31 ioctlcmd=0x125f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  434.855372][   T36] audit: type=1400 audit(1750358360.600:55381): avc:  denied  { ioctl } for  pid=16022 comm="syz.2.4819" path="/dev/rnullb0" dev="devtmpfs" ino=31 ioctlcmd=0x125f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  434.856192][T16031] random: crng reseeded on system resumption
[  434.881326][   T36] audit: type=1400 audit(1750358360.600:55382): avc:  denied  { write } for  pid=16022 comm="syz.2.4819" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  434.928451][   T36] audit: type=1400 audit(1750358360.600:55383): avc:  denied  { write open } for  pid=16022 comm="syz.2.4819" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  434.975033][   T36] audit: type=1400 audit(1750358360.600:55384): avc:  denied  { read write } for  pid=16022 comm="syz.2.4819" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  435.008509][   T36] audit: type=1400 audit(1750358360.600:55385): avc:  denied  { read open } for  pid=16022 comm="syz.2.4819" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  435.034513][   T36] audit: type=1400 audit(1750358360.600:55386): avc:  denied  { ioctl } for  pid=16022 comm="syz.2.4819" path="/dev/rnullb0" dev="devtmpfs" ino=31 ioctlcmd=0x125d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  435.047651][T16041] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  435.280576][T16049] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  435.316183][T16049] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:197
[  435.351757][T16049] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  435.360619][T16050] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  435.363574][T16052] rust_binder: Error while translating object.
[  435.398591][T16049] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:197
[  435.413214][T16052] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  435.428536][T16052] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:1648
[  435.453818][T16050] rust_binder: Write failure EINVAL in pid:604
[  435.577341][T16057] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  435.772057][T16068] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  435.777227][T16068] rust_binder: validate_parent_fixup: new_min_offset=96, sg_entry.length=0
[  435.783880][T16068] rust_binder: Error while translating object.
[  435.794499][T16068] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  435.801497][T16068] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:677
[  435.995051][T16082] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1658
[  436.038198][T16082] rust_binder: Error while translating object.
[  436.065721][T16093] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  436.068702][T16082] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  436.073019][T16094] random: crng reseeded on system resumption
[  436.078384][T16082] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1658
[  436.111447][T16089] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  436.111689][T16093] rust_binder: Write failure EFAULT in pid:610
[  436.138465][T16089] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:213
[  436.180465][T16089] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  436.204119][T16093] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  436.204159][T16093] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:610
[  436.229543][T16088] rust_binder: Read failure Err(EAGAIN) in pid:213
[  436.280274][T16095] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  436.329193][T16102] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  436.330961][T16102] rust_binder: Error in use_page_slow: ESRCH
[  436.337519][T16102] rust_binder: use_range failure ESRCH
[  436.347498][T16102] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[  436.365528][T16102] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  436.376371][T16102] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:685
[  436.460783][T16108] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  436.488510][T16108] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:614
[  436.497969][T16108] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  436.521322][T16108] rust_binder: Read failure Err(EFAULT) in pid:614
[  436.538169][T16111] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  436.636707][T16113] binder: Bad value for 'defcontext'
[  436.654575][T16115] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  436.668205][   T31] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  436.690924][T16115] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  436.690957][T16115] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:617
[  436.706268][T16119] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  436.709373][   T31] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  436.729358][   T31] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  436.736742][T16113] rust_binder: Write failure EINVAL in pid:1664
[  436.746761][   T31] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  436.760786][   T31] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  436.771379][   T31] hid-generic 0000:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  436.968272][T16133] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  436.973145][T16133] rust_binder: Error while translating object.
[  436.997641][T16133] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBADF }
[  437.015553][T16133] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EBADF } my_pid:622
[  437.058934][T16138] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 0
[  437.063986][T16136] fido_id[16136]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  437.076879][T16138] rust_binder: Write failure EINVAL in pid:1668
[  437.303034][T16145] rust_binder: Error while translating object.
[  437.312159][T16145] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  437.319586][T16145] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1670
[  437.360682][T16149] SELinux: security_context_str_to_sid () failed with errno=-22
[  437.381428][T16151] rust_binder: Error in use_page_slow: ESRCH
[  437.381451][T16151] rust_binder: use_range failure ESRCH
[  437.388361][T16151] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  437.398611][T16151] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  437.408802][T16151] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:1672
[  437.970561][T16182] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  438.094918][T16192] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  438.302971][T16191] rust_binder: Write failure EINVAL in pid:1684
[  438.339308][T16201] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  438.408261][T16207] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:709
[  438.590037][T16213] kvm: kvm [16212]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010001) = 0x200000000400
[  439.210124][T16241] __vm_enough_memory: pid: 16241, comm: syz.5.4890, bytes: 281474976845824 not enough memory for the allocation
[  439.233957][T16248] binfmt_misc: register: failed to install interpreter file ./cgroup
[  439.272302][T16247] input: syz0 as /devices/virtual/input/input247
[  439.279198][T16246] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  439.308737][T16248] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  439.316490][T16248] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  439.394683][T16248] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:652
[  439.409684][T16246] rust_binder: Error while translating object.
[  439.442087][T16246] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  439.466237][T16246] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:652
[  439.524401][T16257] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  439.549196][T16257] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  439.555670][T16257] rust_binder: Read failure Err(EFAULT) in pid:726
[  439.673071][   T36] kauditd_printk_skb: 946 callbacks suppressed
[  439.673097][   T36] audit: type=1400 audit(1750358365.600:56333): avc:  denied  { read } for  pid=16263 comm="syz.2.4898" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  439.728458][   T36] audit: type=1400 audit(1750358365.650:56334): avc:  denied  { ioctl } for  pid=16265 comm="syz.4.4899" path="/dev/ashmem" dev="devtmpfs" ino=201 ioctlcmd=0x7703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  439.786373][   T36] audit: type=1400 audit(1750358365.650:56335): avc:  denied  { read } for  pid=16265 comm="syz.4.4899" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  439.790623][T16254] rust_binder: Read failure Err(EFAULT) in pid:726
[  439.821680][   T36] audit: type=1400 audit(1750358365.650:56336): avc:  denied  { read open } for  pid=16265 comm="syz.4.4899" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  439.828902][T16269] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1706
[  439.854982][   T36] audit: type=1400 audit(1750358365.650:56337): avc:  denied  { read open } for  pid=16263 comm="syz.2.4898" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  439.889910][   T36] audit: type=1400 audit(1750358365.650:56338): avc:  denied  { ioctl } for  pid=16263 comm="syz.2.4898" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  439.916781][   T36] audit: type=1400 audit(1750358365.650:56339): avc:  denied  { read write } for  pid=9673 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  439.971589][   T36] audit: type=1400 audit(1750358365.650:56340): avc:  denied  { read write open } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  440.001632][   T36] audit: type=1400 audit(1750358365.650:56341): avc:  denied  { ioctl } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  440.083030][   T36] audit: type=1400 audit(1750358365.660:56342): avc:  denied  { ioctl } for  pid=16265 comm="syz.4.4899" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  440.125001][T16272] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 208, limit: 4240, size: 18446744073709550930)
[  440.125033][T16272] rust_binder: Error while translating object.
[  440.178563][T16272] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  440.198243][T16272] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1709
[  440.360363][T16283] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  440.722912][T16301] SELinux:  policydb version -797323976 does not match my version range 15-33
[  440.731908][T16301] SELinux: failed to load policy
[  440.813097][T16304] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  440.813970][T16304] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  440.838474][T16304] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:251
[  440.860448][T16304] rust_binder: Error while translating object.
[  440.879118][T16304] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  440.885339][T16304] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:251
[  440.906124][T16314] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  440.916517][T16314] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  441.130618][T16325] kvm: kvm [16322]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x7fffffffffffffff
[  441.145884][T16323] SELinux: failed to load policy
[  441.151507][T16324] kvm: kvm [16322]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x7fffffffffffffff
[  441.190966][T16328] rust_binder: Error in use_page_slow: ESRCH
[  441.190991][T16328] rust_binder: use_range failure ESRCH
[  441.228808][T16328] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[  441.234510][T16328] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  441.271503][T16328] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:1723
[  441.369983][T16333] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  441.413477][T16339] random: crng reseeded on system resumption
[  441.573374][T16344] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:262
[  441.579961][T16344] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[  441.599056][T16344] rust_binder: Error while translating object.
[  441.615625][T16344] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  441.625707][T16344] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:262
[  441.761947][T16350] rust_binder: Write failure EINVAL in pid:755
[  441.772073][T16350] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:755
[  441.805292][T16352] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  441.824252][T16352] SELinux: failed to load policy
[  441.898162][T16354] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  441.899255][T16354] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:757
[  441.924458][T16355] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  442.319650][T16372] serio: Serial port ttynull
[  442.421183][T16383] rust_binder: Write failure EFAULT in pid:1741
[  442.514680][T16395] rust_binder: Error in use_page_slow: ESRCH
[  442.525091][T16395] rust_binder: use_range failure ESRCH
[  442.534521][T16388] rust_binder: Write failure EINVAL in pid:265
[  442.542864][T16395] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  442.554681][T16388] rust_binder: Read failure Err(EAGAIN) in pid:265
[  442.562925][T16395] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  442.572053][T16395] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:772
[  442.680312][T16402] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  442.726680][T16402] rust_binder: Error while translating object.
[  442.757527][T16402] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  442.771575][T16402] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:680
[  443.018872][T16417] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  443.200311][T16427] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  443.289120][T16427] rust_binder: Error while translating object.
[  443.295746][T16427] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBADF }
[  443.306044][T16427] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EBADF } my_pid:778
[  443.503194][T16442] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  443.620167][T16442] rust_binder: Error while translating object.
[  443.645343][T16442] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  443.665191][T16442] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:780
[  443.736317][T16453] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:283
[  443.855816][T16459] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  443.910844][T16461] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  443.913962][T16459] rust_binder: Error in use_page_slow: ESRCH
[  443.946422][T16461] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1765
[  443.949756][T16462] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:285
[  443.972005][T16459] rust_binder: use_range failure ESRCH
[  443.991456][T16459] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  444.003718][T16459] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  444.024377][T16459] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:696
[  444.128385][T16469] SELinux: security_context_str_to_sid () failed with errno=-22
[  444.161889][T16470] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:786
[  444.167189][T16470] rust_binder: Read failure Err(EFAULT) in pid:786
[  444.277678][T16472] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  444.382513][T16476] binder: Unknown parameter 'nXI'
[  444.462121][T16479] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[  444.462155][T16479] rust_binder: Error while translating object.
[  444.484517][T16479] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  444.501062][T16479] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1772
[  444.692994][   T36] kauditd_printk_skb: 915 callbacks suppressed
[  444.693018][   T36] audit: type=1400 audit(1750358370.620:57258): avc:  denied  { map } for  pid=16480 comm="syz.5.4969" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  444.738390][   T36] audit: type=1400 audit(1750358370.620:57259): avc:  denied  { execmem } for  pid=16480 comm="syz.5.4969" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  444.819319][   T36] audit: type=1400 audit(1750358370.620:57260): avc:  denied  { read execute } for  pid=16480 comm="syz.5.4969" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  444.905303][   T36] audit: type=1400 audit(1750358370.670:57261): avc:  denied  { map } for  pid=16480 comm="syz.5.4969" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  444.963786][   T36] audit: type=1400 audit(1750358370.670:57262): avc:  denied  { read } for  pid=16480 comm="syz.5.4969" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  445.000878][T16488] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  445.003686][   T36] audit: type=1400 audit(1750358370.680:57263): avc:  denied  { read write } for  pid=15318 comm="syz-executor" name="loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  445.038352][T16488] rust_binder: Write failure EINVAL in pid:792
[  445.088163][   T36] audit: type=1400 audit(1750358370.680:57264): avc:  denied  { read write open } for  pid=15318 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  445.171163][   T36] audit: type=1400 audit(1750358370.680:57265): avc:  denied  { ioctl } for  pid=15318 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  445.224782][T16491] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  445.228364][   T36] audit: type=1326 audit(1750358370.760:57266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16484 comm="syz.2.4971" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2672b8e929 code=0x0
[  445.260330][T16491] random: crng reseeded on system resumption
[  445.290997][T16494] binder: Binderfs stats mode cannot be changed during a remount
[  445.336424][   T36] audit: type=1400 audit(1750358370.810:57267): avc:  denied  { read } for  pid=16484 comm="syz.2.4971" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  445.382911][T16495] rust_binder: Error while translating object.
[  445.382987][T16495] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBADF }
[  445.392292][T16495] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EBADF } my_pid:794
[  445.635089][T16504] tun0: tun_chr_ioctl cmd 1074025675
[  445.678770][T16510] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  445.689633][T16504] tun0: persist enabled
[  445.701361][T16510] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  445.701391][T16510] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:797
[  445.715572][T16512] input: syz1 as /devices/virtual/input/input248
[  445.728886][T16504] tun0: tun_chr_ioctl cmd 1074025675
[  445.738438][T16504] tun0: persist enabled
[  445.854721][T16516] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:292
[  445.868490][T16516] rust_binder: Error while translating object.
[  445.903240][T16516] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  445.918515][T16516] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:292
[  446.019326][T16521] kvm: user requested TSC rate below hardware speed
[  446.070572][T16527] kvm: user requested TSC rate below hardware speed
[  446.104649][T16521] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000000 not found
[  446.145572][T16526] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  446.145608][T16526] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:295
[  446.148448][T16521] rust_binder: Write failure EINVAL in pid:1778
[  446.414630][T16531] SELinux: security_context_str_to_sid () failed with errno=-22
[  446.527366][T16537] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  446.527414][T16537] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:301
[  446.658101][T16541] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  446.675256][T16544] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  446.702262][T16541] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  446.799964][T16554] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  446.963327][T16563] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  446.984351][T16565] rust_binder: Write failure EINVAL in pid:811
[  447.017017][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.041872][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.061016][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.075040][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.094525][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.108557][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.122146][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.152251][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.188899][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.210017][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.217512][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.238907][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.245372][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.253933][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.261209][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.275250][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.288844][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.308843][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.318813][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.338885][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.368562][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.385288][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.398573][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.405452][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.412050][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.419006][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.425535][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.434145][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.459040][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.459922][T16579] input: syz0 as /devices/virtual/input/input249
[  447.465627][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.479926][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.501073][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.522095][T16583] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  447.530657][T16583] rust_binder: Error while translating object.
[  447.537126][T16583] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  447.537212][T16568] rust_binder: Write failure EINVAL in pid:313
[  447.543830][T16583] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:819
[  447.559158][T16579] input: syz0 as /devices/virtual/input/input250
[  447.829871][T16590] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:316
[  448.090505][T16605] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:319
[  448.322800][T16620] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  448.394647][T16620] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  448.551106][T16630] kvm: kvm [16629]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x3032
[  448.586592][T16630] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  448.740290][T16639] binder: Unknown parameter 's<iH„{¡:‘Htats'
[  448.787511][T16640] binder: Unknown parameter 'processor	: 0
[  448.787511][T16640] vendor_id	: GenuineIntel
[  448.787511][T16640] cpu family	: 6
[  448.787511][T16640] model		: 79
[  448.787511][T16640] model name	: Intel(R) Xeon(R) CPU @ 2.20GHz
[  448.787511][T16640] stepping	: 0
[  448.787511][T16640] microcode	: 0xffffffff
[  448.787511][T16640] cpu MHz		: 2199.998
[  448.787511][T16640] cache size	: 56320 KB
[  448.787511][T16640] physical id	: 0
[  448.787511][T16640] siblings	: 2
[  448.787511][T16640] core id		: 0
[  448.787511][T16640] cpu cores	: 1
[  448.787511][T16640] apicid		: 0
[  448.787511][T16640] initial apicid	: 0
[  448.787511][T16640] fpu		: yes
[  448.787511][T16640] fpu_exception	: yes
[  448.787511][T16640] cpuid level	: 13
[  448.787511][T16640] wp		: yes
[  448.787511][T16640] flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc cpuid tsc_known_freq pni pclmulqdq vmx ssse3 fma cx16 sse4_1 sse4_2 x2apic movbe popcnt aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch pti ssbd ibrs ibpb stibp tpr_shadow flexpriority ept vpid ept_ad fsgsbase tsc_adjust bmi1 hle avx2 smep bmi2 erms invpcid rtm rdseed adx smap xsaveopt arat vnmi md_clear arch_capabilities
[  448.787511][T16640] vmx flags	: vnmi preemption_timer invvpid ept_x_only ept_ad flexpriority tsc_offset vtpr mtf vapic ept vpid unrestricted_guest vapi
[  448.832374][T16642] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  448.991503][T16652] binder: Unknown parameter 'fscontext?}eate'
[  449.079938][T16657] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  449.201591][T16662] rust_binder: Write failure EINVAL in pid:752
[  449.398833][T16671] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  449.469253][T16671] pim6reg0: tun_chr_ioctl cmd 1074025677
[  449.518525][T16671] pim6reg0: linktype set to 769
[  449.541062][T16671] rust_binder: Error in use_page_slow: ESRCH
[  449.541090][T16671] rust_binder: use_range failure ESRCH
[  449.555020][T16671] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  449.579426][T16671] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  449.598630][T16674] pim6reg0: tun_chr_ioctl cmd 1074025677
[  449.601256][T16671] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:756
[  449.619625][T16674] pim6reg0: linktype set to 783
[  449.662759][T16679] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  449.666895][T16679] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[  449.679884][T16679] rust_binder: Error while translating object.
[  449.713945][   T36] kauditd_printk_skb: 1010 callbacks suppressed
[  449.713967][   T36] audit: type=1400 audit(1750358375.640:58278): avc:  denied  { read write } for  pid=9673 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  449.727954][T16679] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  449.752943][   T36] audit: type=1400 audit(1750358375.640:58279): avc:  denied  { read write open } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  449.789919][T16679] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:838
[  449.849151][T16682] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:341
[  449.898456][   T36] audit: type=1400 audit(1750358375.640:58280): avc:  denied  { ioctl } for  pid=9673 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  449.997016][   T36] audit: type=1400 audit(1750358375.700:58281): avc:  denied  { read } for  pid=16680 comm="syz.2.5033" name="binder1" dev="binder" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  449.997992][T16693] rust_binder: Write failure EINVAL in pid:840
[  450.020452][   T36] audit: type=1400 audit(1750358375.700:58282): avc:  denied  { read open } for  pid=16680 comm="syz.2.5033" path="/dev/binderfs/binder1" dev="binder" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  450.091486][   T36] audit: type=1400 audit(1750358375.700:58283): avc:  denied  { read write } for  pid=16680 comm="syz.2.5033" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  450.133465][   T36] audit: type=1400 audit(1750358375.700:58284): avc:  denied  { read write open } for  pid=16680 comm="syz.2.5033" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  450.188535][   T36] audit: type=1400 audit(1750358375.700:58285): avc:  denied  { read append } for  pid=16680 comm="syz.2.5033" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  450.260430][   T36] audit: type=1400 audit(1750358375.700:58286): avc:  denied  { read append open } for  pid=16680 comm="syz.2.5033" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  450.288610][   T36] audit: type=1400 audit(1750358375.700:58287): avc:  denied  { ioctl } for  pid=16680 comm="syz.2.5033" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  450.324117][T16703] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1818
[  450.406352][T16703] rust_binder: Write failure EINVAL in pid:1818
[  450.537616][T16708] kvm: kvm [16707]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000002a) = 0x4
[  450.556324][T16708] SELinux: security_context_str_to_sid (syste) failed with errno=-22
[  450.748355][T16722] geneve1: tun_chr_ioctl cmd 1074025672
[  450.754019][T16722] geneve1: ignored: set checksum enabled
[  451.093723][T16738] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 1
[  451.120388][T16738] rust_binder: Write failure EINVAL in pid:1824
[  451.180657][T16738] random: crng reseeded on system resumption
[  451.232732][T16738] rust_binder: Write failure EINVAL in pid:1824
[  451.255183][T16752] binder: Bad value for 'defcontext'
[  451.279955][T16752] binder: Unknown parameter 'audit'
[  451.635706][T16771] kvm: user requested TSC rate below hardware speed
[  451.666234][T16771] kvm: user requested TSC rate below hardware speed
[  451.702649][T16771] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1831
[  451.757351][T16780] binder: Bad value for 'max'
[  451.819484][T16782] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:789
[  451.873674][T16789] rust_binder: Write failure EINVAL in pid:789
[  451.899028][T16789] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  451.986228][T16793] __vm_enough_memory: pid: 16793, comm: syz.1.5065, bytes: 281474976845824 not enough memory for the allocation
[  452.016804][T16795] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  452.022693][T16795] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  452.029340][T16795] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:856
[  452.051936][T16798] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  452.180260][T16810] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[  452.349559][T16816] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:383
[  452.349604][T16816] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  452.374966][T16816] rust_binder: Read failure Err(EFAULT) in pid:383
[  452.423025][T16819] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1845
[  452.599765][T16828] rust_binder: Write failure EINVAL in pid:868
[  452.618698][T16827] rust_binder: Write failure EINVAL in pid:868
[  452.760225][T16832] SELinux: security_context_str_to_sid () failed with errno=-22
[  453.131835][T16850] SELinux: security_context_str_to_sid () failed with errno=-22
[  453.206351][T16859] rust_binder: Write failure EFAULT in pid:1858
[  453.309998][T16863] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  453.614883][T16876] SELinux: failed to load policy
[  453.636453][T16876] binder: Unknown parameter 'fscontext?}Linux!'
[  453.662242][T16878] binder: Bad value for 'max'
[  453.906148][T16884] rust_binder: Write failure EINVAL in pid:1860
[  454.803815][   T36] kauditd_printk_skb: 1271 callbacks suppressed
[  454.803834][   T36] audit: type=1400 audit(1750358380.730:59514): avc:  denied  { read write } for  pid=13497 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  454.842920][   T36] audit: type=1400 audit(1750358380.730:59515): avc:  denied  { read write open } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  454.869079][   T36] audit: type=1400 audit(1750358380.730:59516): avc:  denied  { ioctl } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  455.116085][   T36] audit: type=1400 audit(1750358381.040:59517): avc:  denied  { read write } for  pid=15318 comm="syz-executor" name="loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  455.140461][   T36] audit: type=1400 audit(1750358381.040:59518): avc:  denied  { read write open } for  pid=15318 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  455.167078][   T36] audit: type=1400 audit(1750358381.040:59519): avc:  denied  { ioctl } for  pid=15318 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  455.732815][   T36] audit: type=1400 audit(1750358381.660:59520): avc:  denied  { read } for  pid=16932 comm="syz.5.5107" name="binder0" dev="binder" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  455.750106][T16936] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  455.773545][   T36] audit: type=1400 audit(1750358381.660:59521): avc:  denied  { read open } for  pid=16932 comm="syz.5.5107" path="/dev/binderfs/binder0" dev="binder" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  455.781360][T16936] rust_binder: Error in use_page_slow: ESRCH
[  455.813352][   T36] audit: type=1400 audit(1750358381.660:59522): avc:  denied  { read } for  pid=16933 comm="syz.1.5108" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  455.843146][T16936] rust_binder: use_range failure ESRCH
[  455.843195][T16936] rust_binder: Failed to allocate buffer. len:4224, is_oneway:false
[  455.852148][T16936] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  455.863573][T16936] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:876
[  455.878455][   T36] audit: type=1400 audit(1750358381.660:59523): avc:  denied  { read open } for  pid=16933 comm="syz.1.5108" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  455.964883][T16946] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:878
[  455.991788][T16946] rust_binder: Read failure Err(EFAULT) in pid:878
[  456.023389][T16950] random: crng reseeded on system resumption
[  456.265650][T16959] binder: Bad value for 'context'
[  456.531780][T16969] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  456.532597][T16969] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  456.611074][T16970] rust_binder: Write failure EINVAL in pid:1894
[  457.136419][T16989] binder: Unknown parameter 'context'
[  457.287667][T16990] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.294845][T16990] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.302206][T16990] bridge_slave_0: entered allmulticast mode
[  457.310636][T16990] bridge_slave_0: entered promiscuous mode
[  457.348619][T17002] binder: Bad value for 'stats'
[  457.545371][   T12] bridge_slave_1: left allmulticast mode
[  457.569404][   T12] bridge_slave_1: left promiscuous mode
[  457.575077][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.614631][   T12] bridge_slave_0: left allmulticast mode
[  457.620645][   T12] bridge_slave_0: left promiscuous mode
[  457.626444][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.753093][T16990] bridge0: port 2(bridge_slave_1) entered blocking state
[  457.760229][T16990] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.771430][T16990] bridge_slave_1: entered allmulticast mode
[  457.777903][T16990] bridge_slave_1: entered promiscuous mode
[  457.842559][   T12] veth1_macvtap: left promiscuous mode
[  457.858729][   T12] veth0_vlan: left promiscuous mode
[  457.896795][T17019] binder: Unknown parameter '00000000000000000000000'
[  457.975237][T17024] binder: Unknown parameter 'non'
[  458.017471][T17024] binder: Bad value for 'max'
[  458.259201][T17032] tun0: tun_chr_ioctl cmd 1074025675
[  458.264565][T17032] tun0: persist disabled
[  458.266990][T17034] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  458.286398][T17034] rust_binder: Error while translating object.
[  458.289220][T17032] tun0: tun_chr_ioctl cmd 1074025677
[  458.293719][T17036] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  458.300649][T17032] tun0: linktype set to 786
[  458.308801][T17034] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  458.323164][T17034] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:843
[  458.334046][T17036] rust_binder: Error in use_page_slow: ESRCH
[  458.357713][T17034] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  458.358434][T17036] rust_binder: use_range failure ESRCH
[  458.380849][T17034] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  458.384191][T17036] rust_binder: Failed to allocate buffer. len:4208, is_oneway:false
[  458.396525][T17036] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  458.405291][T17034] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:843
[  458.412288][T17036] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:903
[  458.444218][  T304] bridge0: port 1(bridge_slave_0) entered blocking state
[  458.460571][  T304] bridge0: port 1(bridge_slave_0) entered forwarding state
[  458.473851][  T304] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.480981][  T304] bridge0: port 2(bridge_slave_1) entered forwarding state
[  458.564331][T16990] veth0_vlan: entered promiscuous mode
[  458.619413][T16990] veth1_macvtap: entered promiscuous mode
[  459.087755][T17067] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:458
[  459.202647][T17071] kvm: apic: phys broadcast and lowest prio
[  459.238306][T17071] binder: Bad value for 'max'
[  459.305124][T17080] binder: Unknown parameter 'bsco_u'
[  459.416218][T17086] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  459.464239][T17086] SELinux:  unknown common r
[  459.478750][T17086] SELinux: failed to load policy
[  459.497947][T17089] rust_binder: Error while translating object.
[  459.497977][T17089] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  459.505520][T17089] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:12
[  459.550379][T17086] rust_binder: Write failure EINVAL in pid:919
[  459.712311][T17097] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  459.783116][T17104] binder: Bad value for 'max'
[  459.786897][T17105] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  459.808490][T17105] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:921
[  459.817978][   T36] kauditd_printk_skb: 831 callbacks suppressed
[  459.818000][   T36] audit: type=1400 audit(1750358385.740:60352): avc:  denied  { read } for  pid=17106 comm="syz.2.5164" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  459.892493][   T36] audit: type=1400 audit(1750358385.740:60353): avc:  denied  { read open } for  pid=17106 comm="syz.2.5164" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  459.951300][   T36] audit: type=1400 audit(1750358385.740:60354): avc:  denied  { read } for  pid=17106 comm="syz.2.5164" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  459.993483][   T36] audit: type=1400 audit(1750358385.740:60355): avc:  denied  { read open } for  pid=17106 comm="syz.2.5164" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  460.047487][   T36] audit: type=1400 audit(1750358385.740:60356): avc:  denied  { ioctl } for  pid=17106 comm="syz.2.5164" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  460.079732][   T36] audit: type=1400 audit(1750358385.740:60357): avc:  denied  { read } for  pid=17106 comm="syz.2.5164" name="binder1" dev="binder" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  460.106062][   T36] audit: type=1400 audit(1750358385.750:60358): avc:  denied  { read open } for  pid=17106 comm="syz.2.5164" path="/dev/binderfs/binder1" dev="binder" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  460.132109][   T36] audit: type=1400 audit(1750358385.750:60359): avc:  denied  { ioctl } for  pid=17106 comm="syz.2.5164" path="/dev/binderfs/binder1" dev="binder" ino=154 ioctlcmd=0x6205 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  460.165236][   T36] audit: type=1400 audit(1750358385.750:60360): avc:  denied  { read } for  pid=17106 comm="syz.2.5164" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  460.199686][T17112] rust_binder: Write failure EINVAL in pid:21
[  460.204133][   T36] audit: type=1400 audit(1750358385.750:60361): avc:  denied  { read open } for  pid=17106 comm="syz.2.5164" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  460.334383][T17121] __vm_enough_memory: pid: 17121, comm: syz.2.5169, bytes: 281474976845824 not enough memory for the allocation
[  460.481068][T17124] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  461.937478][T17139] rust_binder: Failed copying remainder into alloc: EFAULT
[  461.937510][T17139] rust_binder: Failure in apply_sg: BR_FAILED_REPLY { source: EFAULT }
[  461.951457][T17139] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  461.970170][T17139] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:30
[  461.999633][T17136] binder: Bad value for 'defcontext'
[  462.402448][T17163] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  462.425515][T17169] binder: Unknown parameter 'a3ync'
[  462.449625][T17163] rust_binder: Error in use_page_slow: ESRCH
[  462.449653][T17163] rust_binder: use_range failure ESRCH
[  462.455833][T17163] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[  462.484489][T17163] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  462.519246][T17163] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:930
[  462.639618][T17176] __vm_enough_memory: pid: 17176, comm: syz.2.5191, bytes: 281474976845824 not enough memory for the allocation
[  462.832872][T17179] binder: Unknown parameter 'rss 0
[  462.832872][T17179] rs'
[  463.234990][T17197] binder: Unknown parameter 'nXI'
[  463.498887][T17204] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:887
[  463.585700][T17209] random: crng reseeded on system resumption
[  463.617487][T17203] rust_binder: Write failure EINVAL in pid:887
[  463.739804][T17218] binder: Unknown parameter ''
[  463.894724][T17221] binder: Binderfs stats mode cannot be changed during a remount
[  464.027529][T17224] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  464.027844][T17224] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  464.055765][T17224] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  464.146979][T17231] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  464.470148][T17278] binder: Unknown parameter 'dirwync'
[  464.656156][T17348] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  464.660768][T17348] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  464.667300][T17348] rust_binder: Read failure Err(EFAULT) in pid:961
[  464.687344][T17348] rust_binder: Write failure EINVAL in pid:961
[  464.835590][   T36] kauditd_printk_skb: 619 callbacks suppressed
[  464.835612][   T36] audit: type=1400 audit(1750358390.760:60981): avc:  denied  { execmem } for  pid=17356 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  464.922114][T17361] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 1
[  464.931446][   T36] audit: type=1400 audit(1750358390.780:60982): avc:  denied  { read write } for  pid=13065 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  464.938531][T17361] rust_binder: Write failure EINVAL in pid:896
[  465.012805][   T36] audit: type=1400 audit(1750358390.780:60983): avc:  denied  { read write open } for  pid=13065 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  465.108587][   T36] audit: type=1400 audit(1750358390.780:60984): avc:  denied  { ioctl } for  pid=13065 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  465.120320][T17364] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  465.157643][   T12] bridge_slave_1: left allmulticast mode
[  465.163598][   T12] bridge_slave_1: left promiscuous mode
[  465.178477][   T36] audit: type=1400 audit(1750358390.780:60985): avc:  denied  { read write } for  pid=13497 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  465.208554][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  465.224362][   T36] audit: type=1400 audit(1750358390.780:60986): avc:  denied  { read write open } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  465.249669][   T12] bridge_slave_0: left allmulticast mode
[  465.255515][   T12] bridge_slave_0: left promiscuous mode
[  465.263180][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  465.351224][T17375] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  465.358488][   T36] audit: type=1400 audit(1750358390.780:60987): avc:  denied  { ioctl } for  pid=13497 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  465.424060][   T36] audit: type=1400 audit(1750358390.850:60988): avc:  denied  { read } for  pid=17359 comm="syz.4.5219" name="binder0" dev="binder" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  465.459090][T17368] audit: audit_backlog=65 > audit_backlog_limit=64
[  465.465649][T17368] audit: audit_lost=294 audit_rate_limit=0 audit_backlog_limit=64
[  465.581985][   T12] veth1_macvtap: left promiscuous mode
[  465.587591][   T12] veth0_vlan: left promiscuous mode
[  465.595996][T17383] binder: Unknown parameter 'fsuuid'
[  465.647803][T17383] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:971
[  465.771691][T17385] rust_binder: Write failure EFAULT in pid:55
[  465.787269][T17390] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[  465.795608][T17390] rust_binder: Error while translating object.
[  465.829635][T17390] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  465.844782][T17390] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:905
[  465.859121][T17392] binder: Unknown parameter 'fscontext?}'
[  465.881355][T17368] bridge0: port 1(bridge_slave_0) entered blocking state
[  465.889038][T17368] bridge0: port 1(bridge_slave_0) entered disabled state
[  465.928479][T17368] bridge_slave_0: entered allmulticast mode
[  465.934936][T17368] bridge_slave_0: entered promiscuous mode
[  465.975457][T17368] bridge0: port 2(bridge_slave_1) entered blocking state
[  465.988428][T17368] bridge0: port 2(bridge_slave_1) entered disabled state
[  465.995579][T17368] bridge_slave_1: entered allmulticast mode
[  466.021365][T17368] bridge_slave_1: entered promiscuous mode
[  466.029844][T17398] binder: Unknown parameter 'mf¤™yÎU!#ax'
[  466.109119][T17404] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.131811][T17404] rust_binder: Got transaction with invalid offset.
[  466.138517][T17404] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  466.145229][T17404] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:977
[  466.366765][T17418] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.410204][T17418] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.430246][T17418] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.437056][T17418] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.460825][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.467573][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.506676][T17418] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.515084][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.534172][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.535826][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.554231][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  466.577985][  T305] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.585338][  T305] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.604994][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.605282][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.624924][T17421] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.797862][T17368] veth0_vlan: entered promiscuous mode
[  466.822744][T17433] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.844372][T17433] rust_binder: Write failure EINVAL in pid:985
[  466.882300][T17435] rust_binder: Failed to allocate buffer. len:160, is_oneway:false
[  466.913085][T17438] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  466.933109][T17368] veth1_macvtap: entered promiscuous mode
[  467.029185][T17442] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  467.205303][T17451] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  467.253905][T17454] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  467.294478][T17454] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  467.351229][T17460] binder: Bad value for 'max'
[  467.450291][T17464] rust_binder: Write failure EINVAL in pid:932
[  467.461204][T17467] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  467.505650][T17470] rust_binder: Write failure EINVAL in pid:5
[  467.699128][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.738488][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.745926][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.759132][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.767371][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.779923][T17485] random: crng reseeded on system resumption
[  467.791651][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.808470][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.815981][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.831438][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.840364][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.848611][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.856084][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.864837][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.873626][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.881791][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.889817][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.897364][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.905790][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.913887][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.922077][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.938214][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.952593][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.964492][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.974066][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.985468][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  467.998626][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.012851][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.024758][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.028553][T17490] rust_binder: Write failure EFAULT in pid:992
[  468.034066][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.049528][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.057055][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.065543][  T306] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  468.075480][  T306] hid-generic 0000:0000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  468.168659][T17494] rust_binder: Write failure EINVAL in pid:9
[  468.301481][T17498] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:942
[  468.328622][T17498] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:942
[  468.351194][T17498] binder: Bad value for 'max'
[  468.374273][T17503] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  468.430264][T17506] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[  468.557086][T17507] fido_id[17507]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  468.598178][T17510] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  468.656545][T17510] rust_binder: Write failure EINVAL in pid:1000
[  468.782143][T17517] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  468.862857][T17525] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  468.892227][T17525] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1002
[  469.035858][T17534] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  469.045576][T17534] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:956
[  469.344169][T17545] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  469.366336][T17545] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:960
[  469.383219][T17550] input: syz1 as /devices/virtual/input/input257
[  469.408509][T17545] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  469.408536][T17545] rust_binder: Read failure Err(EFAULT) in pid:960
[  469.499290][T17553] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  469.560214][T17554] rust_binder: Write failure EINVAL in pid:19
[  469.697270][T17561] input: syz1 as /devices/virtual/input/input258
[  469.839028][   T36] kauditd_printk_skb: 848 callbacks suppressed
[  469.839050][   T36] audit: type=1400 audit(1750358395.770:61809): avc:  denied  { read write } for  pid=17565 comm="syz.5.5285" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  469.893405][   T36] audit: type=1400 audit(1750358395.770:61810): avc:  denied  { read open } for  pid=17565 comm="syz.5.5285" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  469.926979][   T36] audit: type=1400 audit(1750358395.770:61811): avc:  denied  { read } for  pid=17565 comm="syz.5.5285" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  469.952094][   T36] audit: type=1400 audit(1750358395.770:61812): avc:  denied  { read open } for  pid=17565 comm="syz.5.5285" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  469.977984][   T36] audit: type=1400 audit(1750358395.770:61813): avc:  denied  { ioctl } for  pid=17565 comm="syz.5.5285" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  470.009064][   T36] audit: type=1400 audit(1750358395.770:61814): avc:  denied  { read } for  pid=17565 comm="syz.5.5285" name="ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  470.034000][   T36] audit: type=1400 audit(1750358395.770:61815): avc:  denied  { read open } for  pid=17565 comm="syz.5.5285" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  470.063757][   T36] audit: type=1400 audit(1750358395.780:61816): avc:  denied  { ioctl } for  pid=17565 comm="syz.5.5285" path="/dev/ashmem" dev="devtmpfs" ino=201 ioctlcmd=0x7703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  470.089683][   T36] audit: type=1400 audit(1750358395.780:61817): avc:  denied  { map } for  pid=17565 comm="syz.5.5285" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  470.115935][   T36] audit: type=1400 audit(1750358395.780:61818): avc:  denied  { read } for  pid=17565 comm="syz.5.5285" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  470.155689][T17579] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  470.157995][T17579] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1019
[  470.495563][T17587] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  470.515289][T17587] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 128, limit: 144, size: 255)
[  470.528472][T17587] rust_binder: Error while translating object.
[  470.539671][T17587] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  470.546285][T17587] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:24
[  470.596953][T17589] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 4200, limit: 4216, size: 89)
[  470.642157][T17591] SELinux:  policydb version -1656177785 does not match my version range 15-33
[  470.644573][T17589] rust_binder: Error while translating object.
[  470.669834][T17591] SELinux: failed to load policy
[  470.724604][T17589] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  470.724644][T17589] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1025
[  470.809168][T17595] rust_binder: Error in use_page_slow: ESRCH
[  470.809197][T17595] rust_binder: use_range failure ESRCH
[  470.815221][T17595] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[  470.819622][T17605] input: syz1 as /devices/virtual/input/input259
[  470.863759][T17595] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  470.863796][T17595] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:968
[  471.199442][T17624] input: syz0 as /devices/virtual/input/input260
[  471.399346][T17624] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1033
[  471.653132][T17652] rust_binder: Write failure EINVAL in pid:1038
[  471.764576][T17657] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1040
[  471.778138][T17660] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:148
[  471.909067][T17665] rust_binder: Write failure EFAULT in pid:151
[  472.028727][T17671] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  472.099229][   T37] INFO: task syz.0.3739:12504 blocked for more than 122 seconds.
[  472.103839][T17674] SELinux: security_context_str_to_sid () failed with errno=-22
[  472.117159][   T37]       Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0
[  472.127246][   T37] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  472.141044][   T37] task:syz.0.3739      state:D stack:0     pid:12504 tgid:12504 ppid:7956   flags:0x00004004
[  472.153226][   T37] Call Trace:
[  472.156627][   T37]  <TASK>
[  472.163088][   T37]  __schedule+0x145b/0x1f10
[  472.167791][   T37]  ? __sched_text_start+0x10/0x10
[  472.174153][   T37]  ? __kasan_check_write+0x18/0x20
[  472.180232][   T37]  schedule+0xc6/0x240
[  472.184384][   T37]  schedule_timeout+0xb2/0x3a0
[  472.193574][   T37]  ? __cfi_schedule_timeout+0x10/0x10
[  472.199759][   T37]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[  472.205369][   T37]  wait_for_common+0x359/0x630
[  472.216091][   T37]  ? wait_for_completion+0x40/0x40
[  472.222009][   T37]  ? mutex_unlock+0x8b/0x240
[  472.226633][   T37]  ? __cfi_mutex_unlock+0x10/0x10
[  472.232844][   T37]  ? xas_load+0x394/0x3d0
[  472.237305][   T37]  wait_for_completion+0x1c/0x40
[  472.243631][   T37]  __vhost_worker_flush+0x1a7/0x240
[  472.249592][   T37]  ? xas_find+0x158/0x840
[  472.253997][   T37]  ? vhost_set_backend_features+0x1c0/0x1c0
[  472.261067][   T37]  ? __cfi_vhost_flush_work+0x10/0x10
[  472.266565][   T37]  ? xa_find+0x11b/0x170
[  472.271909][   T37]  vhost_dev_flush+0xb1/0x130
[  472.276604][   T37]  ? __cfi_vhost_dev_flush+0x10/0x10
[  472.282933][   T37]  ? mutex_unlock+0x8b/0x240
[  472.287594][   T37]  ? __cfi_mutex_unlock+0x10/0x10
[  472.293290][   T37]  ? _raw_spin_unlock_bh+0x54/0x60
[  472.298819][   T37]  ? vsock_for_each_connected_socket+0x10f/0x130
[  472.305250][   T37]  ? __cfi_vhost_vsock_dev_release+0x10/0x10
[  472.311280][   T37]  vhost_vsock_dev_release+0x24c/0x440
[  472.317031][   T37]  ? __cfi_vhost_vsock_dev_release+0x10/0x10
[  472.323102][   T37]  __fput+0x1fb/0xa00
[  472.327188][   T37]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[  472.332776][   T37]  ____fput+0x20/0x30
[  472.336799][   T37]  task_work_run+0x1e0/0x250
[  472.341846][   T37]  ? __cfi_task_work_run+0x10/0x10
[  472.346982][   T37]  ? __kasan_check_write+0x18/0x20
[  472.352177][   T37]  ? fpregs_restore_userregs+0x11d/0x260
[  472.357932][   T37]  resume_user_mode_work+0x36/0x50
[  472.363127][   T37]  syscall_exit_to_user_mode+0x64/0xb0
[  472.368719][   T37]  do_syscall_64+0x64/0xf0
[  472.373140][   T37]  ? clear_bhb_loop+0x35/0x90
[  472.377871][   T37]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  472.383871][   T37] RIP: 0033:0x7f604ab8e929
[  472.388306][   T37] RSP: 002b:00007ffd6d4f6e78 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  472.396795][   T37] RAX: 0000000000000000 RBX: 00007f604adb7ba0 RCX: 00007f604ab8e929
[  472.404826][   T37] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  472.412842][   T37] RBP: 00007f604adb7ba0 R08: 000000000000023c R09: 0000001d6d4f716f
[  472.421281][   T37] R10: 00007f604adb7ac0 R11: 0000000000000246 R12: 00000000000545ad
[  472.429493][   T37] R13: 00007ffd6d4f6f70 R14: ffffffffffffffff R15: 00007ffd6d4f6f90
[  472.437484][   T37]  </TASK>
[  472.440700][   T37] NMI backtrace for cpu 1
[  472.440716][   T37] CPU: 1 UID: 0 PID: 37 Comm: khungtaskd Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  472.440743][   T37] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  472.440755][   T37] Call Trace:
[  472.440762][   T37]  <TASK>
[  472.440771][   T37]  __dump_stack+0x21/0x30
[  472.440799][   T37]  dump_stack_lvl+0x10c/0x190
[  472.440822][   T37]  ? __cfi_dump_stack_lvl+0x10/0x10
[  472.440845][   T37]  dump_stack+0x19/0x20
[  472.440877][   T37]  nmi_cpu_backtrace+0x2bf/0x2d0
[  472.440901][   T37]  ? rcu_read_unlock_special+0xab/0x480
[  472.440920][   T37]  ? __cfi_nmi_cpu_backtrace+0x10/0x10
[  472.440943][   T37]  ? __rcu_read_unlock+0xc0/0xc0
[  472.440972][   T37]  ? __cfi_nmi_raise_cpu_backtrace+0x10/0x10
[  472.440992][   T37]  ? __cfi_nmi_raise_cpu_backtrace+0x10/0x10
[  472.441012][   T37]  nmi_trigger_cpumask_backtrace+0x142/0x2c0
[  472.441037][   T37]  arch_trigger_cpumask_backtrace+0x14/0x20
[  472.441057][   T37]  watchdog+0xd8f/0xed0
[  472.441078][   T37]  ? __cfi_watchdog+0x10/0x10
[  472.441097][   T37]  ? __kasan_check_read+0x15/0x20
[  472.441117][   T37]  ? __kthread_parkme+0x138/0x180
[  472.441140][   T37]  ? schedule+0xc6/0x240
[  472.441166][   T37]  kthread+0x2c7/0x370
[  472.441190][   T37]  ? __cfi_watchdog+0x10/0x10
[  472.441209][   T37]  ? __cfi_kthread+0x10/0x10
[  472.441234][   T37]  ret_from_fork+0x64/0xa0
[  472.441255][   T37]  ? __cfi_kthread+0x10/0x10
[  472.441279][   T37]  ret_from_fork_asm+0x1a/0x30
[  472.441305][   T37]  </TASK>
[  472.441313][   T37] Sending NMI from CPU 1 to CPUs 0:
[  472.597638][    C0] NMI backtrace for cpu 0 skipped: idling at default_idle+0x17/0x20