last executing test programs: 1.448998009s ago: executing program 2 (id=68): read$FUSE(0xffffffffffffffff, 0x0, 0x0) (async) read$FUSE(0xffffffffffffffff, 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$FUSE_LK(r2, &(0x7f0000000040)={0x28, 0x0, r0, {{0xa, 0xc, 0x2, r1}}}, 0x28) mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, 0x0) 1.39990536s ago: executing program 1 (id=69): mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x84040, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats']) mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x84040, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats']) (async) 1.33624958s ago: executing program 2 (id=70): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) r1 = mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x1c, 0x0, &(0x7f0000000100)=[@free_buffer={0x40086303, r1}, @release, @acquire={0x40046305, 0x1}], 0x7b, 0x0, &(0x7f0000000340)="a89aff67520a7335b849b4f88a6db06e45e3f5e648a65b8003975be8a982d5135e161a783d3d01fddcbd838bac308358a7e349f333e620505e4cf1982c991b516a9e26b6bb537c85f5ad467697f0d78b9a43ea40c3624c71b5e32ed937ba22fba69b54c33212008edddb2934108a099068934d2bc30696c313eed1"}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, 0x0}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f0000000100)}) 1.312896001s ago: executing program 1 (id=72): r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'nr0\x00', 0x2}) (async) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000600)={0x2, &(0x7f0000000340)=[{0x5c}, {0x6}]}) (async) ioctl$ASHMEM_GET_PROT_MASK(r0, 0x7706, &(0x7f0000000000)) (async) mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) 1.299542991s ago: executing program 3 (id=73): r0 = openat$kvm(0xffffff9c, &(0x7f0000000080), 0x2000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"]) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000fdff8f04"]) ioctl$TCXONC(r1, 0x540a, 0x3) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}}) ioctl$SNDRV_TIMER_IOCTL_INFO(r4, 0x80e85411, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) 1.159728913s ago: executing program 1 (id=75): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000040)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x0, 0x10, 0x80}]}) (async) mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, &(0x7f0000000200)=ANY=[@ANYBLOB='context=sy\"te']) 1.159352033s ago: executing program 3 (id=76): r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000280)={0x2020}, 0x2020) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000001380), 0x101100, 0x0) read$FUSE(r1, 0x0, 0x0) mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="6d61783d923030303022db209893177fd22bd3070031000000000000000000000000000000001c6a438cfaa146ef5257ddf26e39d1f78968aff061337a5ed9e688097a3a53f29a9a89d6d37c84e50a7867fbffffffffffffff503ecf02a8ba4b40c06c8340c4b9b24c4d78ae3ade99e8c41b67a6e419683d056b4ac47352c8b39ded0d6aff1d1db140f42faafa5fa28e"]) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/binder1\x00', 0x2, 0x0) 1.056841594s ago: executing program 3 (id=77): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x2000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f0000000040)={0x1}) (async) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(r2, 0x40187014, &(0x7f0000000080)={0x1, 0x0, {0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x1}}) (async) prctl$PR_SET_THP_DISABLE(0x29, 0x1) (async) read$FUSE(0xffffffffffffffff, &(0x7f0000000200)={0x2020, 0x0, 0x0, 0x0}, 0x2020) mount$binderfs(0x0, &(0x7f00000000c0)='./binderfs\x00', &(0x7f0000000100), 0x180000, &(0x7f0000000140)={[{@stats}], [{@fsuuid={'fsuuid', 0x3d, {[0x37, 0x31, 0x34, 0x62, 0x30, 0xf, 0x66, 0x35], 0x2d, [0x61, 0x66, 0x30, 0x62], 0x2d, [0x34, 0x30, 0x65, 0x31], 0x2d, [0x39, 0x65, 0x31, 0x31], 0x2d, [0x38, 0x38, 0x39, 0x39, 0x32, 0x66, 0x36, 0x30]}}}, {@pcr={'pcr', 0x3d, 0x1e}}, {@hash}, {@hash}, {@fowner_eq={'fowner', 0x3d, r3}}]}) 992.322736ms ago: executing program 1 (id=78): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0xe05, 0x0, &(0x7f0000000580)="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"}) mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000340)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 902.762207ms ago: executing program 3 (id=80): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000980)={0x4, 0x0, [{0x10000, 0xa, &(0x7f0000000580)=""/10}, {0x2000, 0x16, &(0x7f00000005c0)=""/22}, {0x2, 0xc0, &(0x7f0000000640)=""/192}, {0x0, 0x0, 0x0}]}) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000500)) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f00000000c0)={0x0, 0x2}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000001180)={0x1, 0x0, @pic={0x81, 0xfe, 0x5, 0xff, 0x6, 0x2, 0x40, 0x5b, 0x0, 0x8, 0xc, 0xfd, 0x0, 0x40, 0xfe, 0x3}}) openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400}) close(r3) r4 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000c, 0x12, r4, 0x4b445000) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x42082) ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_STATUS32(r5, 0xc0f85403, &(0x7f0000000040)) 821.462968ms ago: executing program 0 (id=82): r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/sync_on_suspend', 0x82200, 0x62) write$tcp_mem(r1, &(0x7f0000000080)={0xc, 0x20, 0x100000001, 0x20, 0x6}, 0x48) ioctl$BLKRRPART(r0, 0x125f, 0x0) 736.146899ms ago: executing program 0 (id=83): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) write(r0, &(0x7f0000000040)="02000000777744952b", 0x9) (async) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0) prctl$PR_SET_MM(0x23, 0x1, &(0x7f0000ffd000/0x2000)=nil) (async) prctl$PR_SET_MM(0x23, 0x2, &(0x7f0000ffe000/0x2000)=nil) (async) r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x13) ioctl$TCXONC(r2, 0x540a, 0x0) (async) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) (async) close(0x3) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0x2, 0x0) (async) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r1}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/10, 0xa}}, &(0x7f0000000000)={0x0, 0x18, 0x30}}, 0x10}], 0x6b, 0x0, &(0x7f0000000280)="27340dbe79e8af432ff4fa2360c88df5a04d8e7eeb14f8d0fab09d900a6bb5bc0f07887e054cb7693ae1fb57bdf9173c6f2dd3f6284401f0a87fa2166027d3eda04b0809ab53399e60c5169690bcaa67b7123d2729933e63d78255ba0d073c4c19e166677001adbe306baa"}) 735.682409ms ago: executing program 0 (id=84): mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000180)=ANY=[@ANYBLOB="04"]) (async) mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000180)=ANY=[@ANYBLOB="04"]) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom0\x00', 0x802, 0x0) 725.212359ms ago: executing program 0 (id=85): openat$rnullb(0xffffffffffffff9c, 0x0, 0x200, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000800)='/sys/power/image_size', 0x141a82, 0x0) write$UHID_GET_REPORT_REPLY(r0, &(0x7f0000000000), 0xa) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000033c0), 0x0, 0x0) r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1e1243, 0x0) ioctl$BLKRRPART(r2, 0x125f, 0x0) read$FUSE(r1, 0x0, 0x0) r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0) r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000002a40), 0x200, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0) write$vga_arbiter(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x32) ioctl$BLKROSET(r4, 0x125d, &(0x7f0000000540)=0x10001) ioctl$BLKRRPART(r3, 0x125f, 0x0) 709.29608ms ago: executing program 3 (id=86): prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x0) mount$binderfs(0x0, &(0x7f0000000000)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB='max=000000100']) 636.059921ms ago: executing program 3 (id=87): ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0xfffffffa) mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000280)=ANY=[@ANYBLOB="0100000000000000480000000000000006"]) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_CAP_HYPERV_DIRECT_TLBFLUSH(r5, 0x4068aea3, &(0x7f0000000c00)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0xd, 0x10, r1, 0x93299000) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r6) syz_clone(0x80001000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r7, 0x4040ae77, &(0x7f0000000100)={0x4}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_CAP_HYPERV_SYNIC2(r10, 0x4068aea3, &(0x7f0000000640)={0x94, 0x1000000}) r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$KVM_CREATE_VCPU(r11, 0x40047705, 0x2) write$cgroup_devices(r11, &(0x7f0000000040)={'a', ' *:* ', 'w\x00'}, 0x8) r12 = ioctl$TUNGETDEVNETNS(r6, 0xff01, 0x0) ioctl$NS_GET_USERNS(r12, 0xb701, 0x0) r13 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r13, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r13, 0x400455c8, 0x4) 634.966631ms ago: executing program 0 (id=88): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="0100000000c00000000100c0"]) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="01000000000000008d03000097d17518bdb70c8d000000ffffff", @ANYBLOB="35951ab0a3e5c22b764601a939fbeb9caeb6b11da95f9a332e4963ff41c15ea8", @ANYRESOCT=r0]) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000700)={0x10, 0x0, &(0x7f0000000540)=[@clear_death={0x400c630f, 0x3}], 0x0, 0x0, 0x0}) 504.273493ms ago: executing program 2 (id=89): r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000040)='\x00') ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000080)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000480)={r1, 0xfffffffffffffe00, 0xff}) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000880), 0x258000, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) close_range(r0, r2, 0x2) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfff) r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000008c0)='./binderfs2/binder-control\x00', 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000900)) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000b00)='/dev/ptmx\x00') ioctl$KDADDIO(r2, 0x4b34, 0xf5) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000b40), 0x20000, 0x0) close_range(r4, r3, 0x2) ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000b80)=0x2) close_range(r4, r0, 0x2) ioctl$ASHMEM_SET_NAME(r4, 0x41007701, &(0x7f0000000bc0)='!#&}\xd2\x00') prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000c00)) r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000c40), 0x4000, 0x0) close_range(r3, r5, 0x2) r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) ioctl$ASHMEM_SET_NAME(r4, 0x41007701, &(0x7f0000000c80)='/dev/ashmem\x00') openat$kvm(0xffffffffffffff9c, &(0x7f0000000cc0), 0x80202, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000d00), 0x40, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000d40), 0x40042, 0x0) 466.742593ms ago: executing program 2 (id=90): ioctl$KVM_SIGNAL_MSI(0xffffffffffffffff, 0x4020aea5, &(0x7f0000000000)={0x100000, 0x4000, 0xb, 0x0, 0x8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x141000, 0x0) ioctl$EXT4_IOC_SETFSUUID(r0, 0x4008662c, &(0x7f0000000080)={0x0, 0x0, "488d44598a53e7f1938f4b434175a761"}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f00000000c0)) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/custom1\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000240)={0x10, 0x0, &(0x7f0000000180)=[@release={0x40046306, 0x2}, @acquire={0x40046305, 0x3}], 0x41, 0x0, &(0x7f00000001c0)="510a8bd43e76600dce119e3440590db899fb651aefee77994e2289e98f531cfbf1023eaa0331fcf8ba507d990e8968da0c9f817c2f6e438d22ddcfe8a5144d54dd"}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x400040, 0x0) r4 = openat$random(0xffffffffffffff9c, &(0x7f00000002c0), 0x175441, 0x0) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000300)={0xff, 0x8000, 0x5, 0x0, 0x0, [{{r2}, 0xb}, {{r3}, 0x5}, {{r2}, 0xf7}, {{r1}, 0x2}, {{r4}, 0x1}]}) openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0), 0x800, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000400), 0x100, 0x0) write$uinput_user_dev(r5, &(0x7f0000000440)={'syz1\x00', {0x8975, 0x5, 0x2000, 0x5}, 0x17, [0x354a, 0x9, 0x9, 0x0, 0x5, 0x0, 0x6b, 0x9, 0x0, 0x916, 0xf57d, 0x7fff, 0x3, 0x25, 0x401, 0x3, 0xf, 0x5, 0xfffffffa, 0xa7, 0x9, 0x80000000, 0xfffffffe, 0x0, 0x5, 0xfffffffe, 0xc, 0xff, 0x1, 0xd, 0x2, 0x2, 0x9, 0x7, 0x4, 0x5, 0x7ff, 0x9aab, 0xb13, 0x6, 0x2, 0xb4b8, 0x3, 0xffff0000, 0x7, 0x20, 0x3, 0x9, 0x1aa3f9bb, 0xfffffffc, 0x0, 0xb, 0x0, 0x6, 0x6, 0x2, 0x1ff, 0x9, 0x8, 0x9, 0x2, 0x1, 0x6, 0xa], [0x100, 0x2, 0x80000000, 0x0, 0x30000, 0x940, 0x4, 0x3, 0x7cd, 0x401, 0x200, 0x3000, 0x6, 0x4, 0x5, 0x7fffffff, 0x8, 0xe6, 0xa4, 0x3, 0x4, 0x7fffffff, 0x0, 0x512, 0x2, 0x6, 0x1, 0x0, 0x8000, 0x1, 0x7, 0x3ff, 0x5, 0x8, 0x3, 0x7fffffff, 0x0, 0x2, 0x4, 0x744, 0xffff, 0x9, 0x6, 0x160, 0x7, 0x8, 0x7, 0x7f, 0x0, 0x80000001, 0xfffff5f0, 0x6, 0x1ae48, 0x8, 0xfffffffc, 0x7, 0xfffffffe, 0x1, 0xf, 0x8, 0x7, 0x100, 0x8, 0x6], [0x8, 0x0, 0x3, 0xe, 0x6806, 0x7, 0x4, 0x3, 0x2, 0x9ae9f1d8, 0x6cb, 0x5, 0x0, 0x3ff, 0x8, 0x8, 0x3, 0x80000000, 0x40, 0x9, 0xcf2, 0x8, 0xfffffffe, 0x10000, 0x2e, 0xffff, 0x0, 0x8, 0x9, 0x1, 0x101, 0xfffffffa, 0x6, 0x7, 0xabc0, 0x4, 0x81, 0x10001, 0x1, 0x24a, 0xfffffffa, 0xffffffff, 0x7, 0x6098d4eb, 0x7, 0x6, 0x0, 0x7, 0xde9c, 0xffffffff, 0x2, 0x5, 0xac, 0x3, 0x5, 0x3, 0xff, 0x4, 0x8f8, 0xc, 0x4, 0x1, 0x1, 0x3], [0xfffffffb, 0x3, 0x5, 0x9, 0x3, 0x8, 0xfff, 0x4, 0x8, 0xaaf, 0x5, 0xff, 0x8, 0xb, 0x8b1, 0xfff, 0x6, 0x7, 0x6, 0x7, 0x9, 0x7, 0xab8, 0x8, 0x6, 0x0, 0x25039efe, 0xbd, 0x32, 0x1, 0x5, 0x39, 0x5, 0x53e05249, 0x5, 0x840, 0x202, 0x2, 0x8, 0x100, 0xff, 0xfff, 0x0, 0x6, 0x3ff, 0x8, 0x0, 0x7, 0x8, 0x3, 0x0, 0x3f8, 0xd, 0x5, 0x9, 0x5b3, 0x7, 0x3, 0x2, 0x6, 0x48, 0xb, 0x5]}, 0x45c) ioctl$KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM(r5, 0x4068aea3, &(0x7f00000008c0)={0xce, 0x0, r1}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000940)={0x7, 0xffffffffffffffff, 0x1}) write(r6, &(0x7f0000000980)="7629d186fdefe17e30ddabbd11a38ad3a9e8a9d986fe2656adfe005033b7321baa8fc88f3c16541285e61ca9ed02ab5fb16b5c5ea9fb3dc6ba865b02a9f2c99616f7216341367ea6630f31e67799d710ed21d32235077c7bedbb3321d14f5d52986728da2bafc073b8f1348a85b5992cdea58d048a1e098f17001b486343df388ee2d7d9df396ee6b3fcf6", 0x8b) r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000a40), 0x800, 0x0) close(r7) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000a80)='./cgroup.net/syz0\x00', 0x1ff) r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0) ioctl$RNDADDENTROPY(r4, 0x40085203, &(0x7f0000000b00)={0x5, 0xa4, "a0bf1c73dc699a3366ffc34e6a060641fca92ea19216cd1389d41aaf629abe55823c08e4b8f2ac2f9b0cf16674a2c8a16921bc163c3d680b665ad90bab5fe3caa3f89afe80503e438362491d2b18a04c67c4c84bbfea22e4058ff0c7c7316115f5e078d00474ad68e94d035f8881e06f800f249b45a1366f671131a6498239633c15baf928ba3c9e1ad8640fa30e68dca8af5207c3abae5a3aefdeb7844de368058307a5"}) mmap$binder(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0xa) ioctl$KVM_GET_XSAVE(r8, 0x9000aea4, &(0x7f0000000bc0)) openat$procfs(0xffffffffffffff9c, &(0x7f0000001bc0)='/proc/vmstat\x00', 0x0, 0x0) ioctl$KVM_GET_XSAVE(r5, 0x9000aea4, &(0x7f0000001c00)) ioctl$BTRFS_IOC_START_SYNC(r7, 0x80089418, &(0x7f0000002c00)) write$selinux_load(r8, &(0x7f0000002c40)={0xf97cff8c, 0x8, 'SE Linux', "7fce6b3e3ceb54993f1846b86cee881d7341a73cf51aaafdcbe1c6c084be148abc316b46e79b0720b02a3e934170bae65d824cafd30fa5e7da27deff67de0056372622d4ed7e5eae62c5afed4af7a2e7145b143f463dcb80721754393bc5a93206596fda07f432db396b6fb30c0ba0c1666f076e7363806e7f7342030950f8e22fd6235c1b742332b78443033b46738f3bb7e47d05b4ef84c959c171997907ab14d1a0c1ffc90a327f33267cd94aa89e3cb91fbc63415f86f3d82def4e7259dcb8c645923a34"}, 0xd6) ioctl$KVM_CAP_VM_TYPES(r1, 0x4068aea3, &(0x7f0000002d40)={0xeb, 0x0, 0x6}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r4, 0xc400941d, &(0x7f0000002dc0)={0x0, 0xe, 0x7fffffff}) 416.180224ms ago: executing program 0 (id=91): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000003c0)={0x2, 0x0, @ioapic={0x0, 0x2, 0x3, 0xeffffdff, 0x0, [{0x0, 0x90}, {0x19, 0x5, 0x0, '\x00', 0x10}, {0xfc}, {0xfe, 0x0, 0x7f, '\x00', 0x2}, {0x8, 0x0, 0x5, '\x00', 0x7}, {0x77}, {0x0, 0x85, 0xbe}, {0x0, 0xc2}, {0x0, 0x2, 0x0, '\x00', 0x7f}, {0x8, 0x6, 0xfa, '\x00', 0x42}, {0x0, 0x5}, {0x0, 0x50, 0x0, '\x00', 0x1}, {0x4, 0x0, 0x4, '\x00', 0x3}, {0x1, 0x4e, 0x0, '\x00', 0xd}, {0x2, 0x2, 0x4, '\x00', 0x9}, {}, {0x1, 0xfd, 0x4, '\x00', 0x4}, {0x0, 0x0, 0x0, '\x00', 0xfd}, {0x1, 0x4, 0x7, '\x00', 0x3}, {0x80, 0x0, 0x0, '\x00', 0x40}, {0x0, 0x4}, {0x0, 0x0, 0x0, '\x00', 0x70}, {0x1, 0x0, 0x0, '\x00', 0xe}, {0x10, 0x83, 0xe, '\x00', 0x3}]}}) mount$binderfs(0x0, &(0x7f0000000580)='./binderfs\x00', 0x0, 0x4008024, &(0x7f0000000040)=ANY=[@ANYRES64=0x0, @ANYRES64=0x0]) 335.828825ms ago: executing program 2 (id=92): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) write$cgroup_devices(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="1e031800dd"], 0x22) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r7, 0x4138ae84, &(0x7f0000000100)={{0x0, 0x0, 0xb, 0x0, 0x8, 0x0, 0x0, 0x2, 0x7b, 0x40, 0x9, 0x10}, {0x10000, 0x0, 0xc, 0x8, 0x2, 0x0, 0x7, 0x0, 0x5, 0x7, 0x14, 0x6}, {0xeeef0000, 0xdddd0000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x4, 0xfc}, {0x5000, 0xd000, 0x0, 0xff, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0xeeef0000, 0xd, 0x0, 0xfc, 0x4, 0x0, 0x3, 0x0, 0x3c}, {0x0, 0x5000, 0x0, 0x0, 0x0, 0xbf, 0x2, 0x0, 0xa, 0x2}, {0xeeee0000, 0xdddd1000, 0xe, 0xfe, 0x0, 0x0, 0x3, 0x80, 0x0, 0xfc}, {0x2000, 0x0, 0xf, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26}, {0xdddd1000}, {0xdddd1000, 0xfbff}, 0xddf8ffdb, 0x0, 0xeeee8000, 0x430, 0x0, 0x2501, 0xdddd0000, [0x4, 0x0, 0x2]}) ioctl$KVM_TRANSLATE(r7, 0xc018ae85, &(0x7f0000000000)={0x4, 0x8080000, 0x5, 0xf7, 0xa}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f0000000140)={0x79, 0x0, 0x1}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f00000000c0)={0x1, 0xaa4, 0x0, &(0x7f0000000100)}) ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, 0x0}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000140)={0x8000000, 0x104000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'ip6gre0\x00', 0x112}) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x5, 0x2, 0xc, 0x3}]}) r11 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r11, 0xaf01, 0x0) ioctl$EXT4_IOC_GETSTATE(r11, 0x4008af24, &(0x7f0000000080)) 111.485158ms ago: executing program 2 (id=93): r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffffffffff6) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) mmap(&(0x7f0000701000/0x3000)=nil, 0x3000, 0x2, 0x50, r0, 0x2f5000) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) read(r2, 0x0, 0x0) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x35, 0x0, 0x3, 0xfffffffe}, {}, {}, {0x0, 0x0, 0x20}, {0x6, 0x0, 0x0, 0xac}]}) mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) 100.383708ms ago: executing program 1 (id=94): openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002d00), 0xcc400) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0) openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0) r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0) close_range(r0, r1, 0x0) 0s ago: executing program 1 (id=95): r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x800000, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340), 0x2000, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42a02, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) r4 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/fscreate\x00', 0x2, 0x0) write$selinux_attr(r4, &(0x7f00000000c0)='system_u:object_r:printer_device_t:s0\x00', 0x9) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r5, &(0x7f0000008480)={0x2020}, 0x2020) (async, rerun: 32) read$FUSE(r5, &(0x7f000000bd80)={0x2020}, 0x2020) (async, rerun: 32) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) (async, rerun: 32) ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r3, 0x4068aea3, &(0x7f0000000700)={0xcc, 0x0, 0x1}) (rerun: 32) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) close(r0) mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000000)=ANY=[@ANYBLOB="009475567c0000000000007b406f5e84cbf9f45cee"]) (async) r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r7, 0xaf01, 0x0) (async, rerun: 64) ioctl$VHOST_VDPA_SET_STATUS(r7, 0x4001af72, &(0x7f00000001c0)=0x40) (async, rerun: 64) r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000140)={'pimreg0\x00', 0x2}) (async) openat$binderfs(0xffffffffffffff9c, &(0x7f00000002c0)='./binderfs2/binder0\x00', 0x802, 0x0) (async) ioctl$TUNGETVNETHDRSZ(r8, 0x400454de, 0xffffffffffffffff) (async) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0x37) (async) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom1\x00', 0x800, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000280)={0x30, 0x0, &(0x7f00000000c0)=[@clear_death={0x400c630f, 0x3}, @acquire, @increfs={0x40046304, 0x3}, @request_death={0x400c630e, 0x3}], 0xdb, 0x0, &(0x7f0000000180)="7c88e4516be459dd9aa61181b8ec8b6a2dcd23f30180990a4b0d14ab10862897cc94f956fc6ee68d297475ebd08198f852b8eb1be3ae5185741abc9aa78d8b7b23cd5b6771519a5087aae079cf4b389548f88f6ebc8bd7c80bd02216d8be5faa71e8872012304477ebd81a715b5c2a3c2e525965122ebc70cd7e7db5ef692fa6cbc690574a33a15c8298c05f89d043d02e7a02d184c61f8c1b0732c8a239a02cd00920e4411ae353f97b4e15e3cbc8a375bfdb553dd2c99bc1bbdadabaee38bc1816167edd15efea331f9b74f07721ac5419d2b09b3b0f7c6f149f"}) (async) r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNSETQUEUE(r10, 0x400454d9, &(0x7f00000000c0)={'macsec0\x00', 0x400}) (async, rerun: 64) ioctl$TUNSETQUEUE(r10, 0x400454d9, &(0x7f00000006c0)={'bridge_slave_0\x00', 0x600}) (rerun: 64) write$cgroup_devices(r1, &(0x7f0000000380)=ANY=[@ANYRES64=r5], 0x8) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.130' (ED25519) to the list of known hosts. [ 22.539704][ T36] audit: type=1400 audit(1750310546.300:64): avc: denied { mounton } for pid=281 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 22.540755][ T281] cgroup: Unknown subsys name 'net' [ 22.562337][ T36] audit: type=1400 audit(1750310546.300:65): avc: denied { mount } for pid=281 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 22.589632][ T36] audit: type=1400 audit(1750310546.330:66): avc: denied { unmount } for pid=281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 22.589770][ T281] cgroup: Unknown subsys name 'devices' [ 22.760649][ T281] cgroup: Unknown subsys name 'hugetlb' [ 22.766295][ T281] cgroup: Unknown subsys name 'rlimit' [ 22.917636][ T36] audit: type=1400 audit(1750310546.670:67): avc: denied { setattr } for pid=281 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 22.940891][ T36] audit: type=1400 audit(1750310546.670:68): avc: denied { mounton } for pid=281 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 22.948544][ T283] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 22.965697][ T36] audit: type=1400 audit(1750310546.670:69): avc: denied { mount } for pid=281 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 22.997368][ T36] audit: type=1400 audit(1750310546.740:70): avc: denied { relabelto } for pid=283 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 23.022935][ T36] audit: type=1400 audit(1750310546.740:71): avc: denied { write } for pid=283 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 23.032827][ T281] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 23.048634][ T36] audit: type=1400 audit(1750310546.800:72): avc: denied { read } for pid=281 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 23.082679][ T36] audit: type=1400 audit(1750310546.800:73): avc: denied { open } for pid=281 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 24.319524][ T289] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.326561][ T289] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.333642][ T289] bridge_slave_0: entered allmulticast mode [ 24.339878][ T289] bridge_slave_0: entered promiscuous mode [ 24.351780][ T289] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.358840][ T289] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.365881][ T289] bridge_slave_1: entered allmulticast mode [ 24.372127][ T289] bridge_slave_1: entered promiscuous mode [ 24.407600][ T290] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.414812][ T290] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.421909][ T290] bridge_slave_0: entered allmulticast mode [ 24.428045][ T290] bridge_slave_0: entered promiscuous mode [ 24.434388][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.441447][ T290] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.448470][ T290] bridge_slave_1: entered allmulticast mode [ 24.454757][ T290] bridge_slave_1: entered promiscuous mode [ 24.463895][ T291] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.471017][ T291] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.478073][ T291] bridge_slave_0: entered allmulticast mode [ 24.484313][ T291] bridge_slave_0: entered promiscuous mode [ 24.499981][ T291] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.507021][ T291] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.514120][ T291] bridge_slave_1: entered allmulticast mode [ 24.520286][ T291] bridge_slave_1: entered promiscuous mode [ 24.563029][ T288] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.570095][ T288] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.577131][ T288] bridge_slave_0: entered allmulticast mode [ 24.583368][ T288] bridge_slave_0: entered promiscuous mode [ 24.589575][ T288] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.596586][ T288] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.603648][ T288] bridge_slave_1: entered allmulticast mode [ 24.610122][ T288] bridge_slave_1: entered promiscuous mode [ 24.733752][ T291] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.740828][ T291] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.748076][ T291] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.755109][ T291] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.763135][ T289] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.770184][ T289] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.777439][ T289] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.784457][ T289] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.795943][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.802983][ T290] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.810263][ T290] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.817278][ T290] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.831529][ T288] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.838591][ T288] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.845838][ T288] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.852868][ T288] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.895065][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.902474][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.909694][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.917079][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.924724][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.932367][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.941204][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.948225][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.957123][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.964163][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.000480][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.007526][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 25.018818][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.025848][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.037777][ T288] veth0_vlan: entered promiscuous mode [ 25.054055][ T288] veth1_macvtap: entered promiscuous mode [ 25.062742][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.069794][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 25.082830][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.089873][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.114224][ T291] veth0_vlan: entered promiscuous mode [ 25.133903][ T290] veth0_vlan: entered promiscuous mode [ 25.141948][ T289] veth0_vlan: entered promiscuous mode [ 25.159677][ T291] veth1_macvtap: entered promiscuous mode [ 25.174493][ T288] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 25.188610][ T290] veth1_macvtap: entered promiscuous mode [ 25.196512][ T289] veth1_macvtap: entered promiscuous mode [ 25.221425][ T307] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 25.268426][ T307] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 25.298172][ T13] Bluetooth: hci0: Frame reassembly failed (-84) [ 25.337350][ T317] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 25.337409][ T317] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:2 [ 25.394865][ T322] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 144, limit: 160, size: 104) [ 25.404733][ T316] input: syz1 as /devices/virtual/input/input4 [ 25.422594][ T322] rust_binder: Error while translating object. [ 25.422620][ T322] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 25.428871][ T322] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:4 [ 25.708705][ T333] ======================================================= [ 25.708705][ T333] WARNING: The mand mount option has been deprecated and [ 25.708705][ T333] and is ignored by this kernel. Remove the mand [ 25.708705][ T333] option from the mount to silence this warning. [ 25.708705][ T333] ======================================================= [ 25.761475][ T331] SELinux: failed to load policy [ 25.996780][ T350] vhost-347: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=syz1,mems_allowed=0 [ 26.013969][ T350] CPU: 1 UID: 0 PID: 350 Comm: vhost-347 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd [ 26.013995][ T350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 26.014013][ T350] Call Trace: [ 26.014019][ T350] [ 26.014025][ T350] __dump_stack+0x21/0x30 [ 26.014055][ T350] dump_stack_lvl+0x10c/0x190 [ 26.014073][ T350] ? __cfi_dump_stack_lvl+0x10/0x10 [ 26.014091][ T350] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 26.014112][ T350] dump_stack+0x19/0x20 [ 26.014128][ T350] warn_alloc+0x1bc/0x2a0 [ 26.014143][ T350] ? kasan_save_track+0x3e/0x80 [ 26.014161][ T350] ? __cfi_warn_alloc+0x10/0x10 [ 26.014215][ T350] ? __get_vm_area_node+0x1dc/0x3a0 [ 26.014229][ T350] ? kcov_remote_start+0x20a/0x3c0 [ 26.014241][ T350] __vmalloc_node_range_noprof+0x68e/0x1420 [ 26.014253][ T350] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 26.014264][ T350] ? kcov_remote_start+0x20a/0x3c0 [ 26.014273][ T350] vmalloc_noprof+0xfd/0x1d0 [ 26.014282][ T350] ? kcov_remote_start+0x20a/0x3c0 [ 26.014291][ T350] ? __kasan_check_write+0x18/0x20 [ 26.014301][ T350] ? _raw_spin_lock+0x8c/0x120 [ 26.014312][ T350] ? __cfi_vmalloc_noprof+0x10/0x10 [ 26.014322][ T350] kcov_remote_start+0x20a/0x3c0 [ 26.014331][ T350] vhost_run_work_list+0xf6/0x190 [ 26.014343][ T350] ? __cfi_vhost_run_work_list+0x10/0x10 [ 26.014354][ T350] vhost_task_fn+0x23e/0x3b0 [ 26.014367][ T350] ? __cfi_vhost_task_fn+0x10/0x10 [ 26.014378][ T350] ? __kasan_check_write+0x18/0x20 [ 26.014388][ T350] ? recalc_sigpending+0x16d/0x1d0 [ 26.014400][ T350] ? _raw_spin_unlock_irq+0x45/0x70 [ 26.014411][ T350] ? calculate_sigpending+0x81/0x90 [ 26.014423][ T350] ? __cfi_vhost_task_fn+0x10/0x10 [ 26.014435][ T350] ret_from_fork+0x64/0xa0 [ 26.014445][ T350] ? __cfi_vhost_task_fn+0x10/0x10 [ 26.014456][ T350] ret_from_fork_asm+0x1a/0x30 [ 26.014479][ T350] RIP: 0033:0x0 [ 26.014493][ T350] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 26.014498][ T350] RSP: 002b:0000000000000000 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 26.014509][ T350] RAX: 0000000000000000 RBX: 00007f83115b5fa0 RCX: 00007f831138e929 [ 26.014516][ T350] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 26.014522][ T350] RBP: 00007f8311410b39 R08: 0000000000000000 R09: 0000000000000000 [ 26.014529][ T350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 26.014534][ T350] R13: 0000000000000000 R14: 00007f83115b5fa0 R15: 00007ffd3f1b61a8 [ 26.014542][ T350] [ 26.014555][ T350] Mem-Info: [ 26.266866][ T350] active_anon:4734 inactive_anon:0 isolated_anon:0 [ 26.266866][ T350] active_file:16145 inactive_file:2170 isolated_file:0 [ 26.266866][ T350] unevictable:0 dirty:1328 writeback:0 [ 26.266866][ T350] slab_reclaimable:3974 slab_unreclaimable:70935 [ 26.266866][ T350] mapped:23903 shmem:163 pagetables:718 [ 26.266866][ T350] sec_pagetables:6 bounce:0 [ 26.266866][ T350] kernel_misc_reclaimable:0 [ 26.266866][ T350] free:1544497 free_pcp:2498 free_cma:0 [ 26.312386][ T350] Node 0 active_anon:18936kB inactive_anon:0kB active_file:64580kB inactive_file:8680kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:95612kB dirty:5312kB writeback:0kB shmem:652kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4224kB pagetables:2872kB sec_pagetables:12kB all_unreclaimable? no [ 26.345372][ T350] DMA32 free:2960212kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2966004kB mlocked:0kB bounce:0kB free_pcp:5792kB local_pcp:5728kB free_cma:0kB [ 26.375374][ T350] lowmem_reserve[]: 0 3921 3921 [ 26.380293][ T350] Normal free:3220524kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18936kB inactive_anon:0kB active_file:64580kB inactive_file:8680kB unevictable:0kB writepending:5312kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:2132kB local_pcp:188kB free_cma:0kB [ 26.414541][ T350] lowmem_reserve[]: 0 0 0 [ 26.419127][ T350] DMA32: 5*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 4*64kB (M) 3*128kB (M) 4*256kB (M) 4*512kB (M) 5*1024kB (UM) 5*2048kB (M) 718*4096kB (M) = 2960212kB [ 26.434645][ T350] Normal: 288*4kB (UME) 213*8kB (UME) 543*16kB (UME) 379*32kB (UME) 355*64kB (UME) 11*128kB (UME) 11*256kB (UME) 6*512kB (ME) 5*1024kB (UME) 5*2048kB (ME) 770*4096kB (M) = 3222968kB [ 26.452977][ T350] 18474 total pagecache pages [ 26.457650][ T350] 0 pages in swap cache [ 26.461808][ T350] Free swap = 124996kB [ 26.465982][ T350] Total swap = 124996kB [ 26.470167][ T350] 2097051 pages RAM [ 26.473985][ T350] 0 pages HighMem/MovableOnly [ 26.478792][ T350] 351520 pages reserved [ 26.486937][ T350] 0 pages cma reserved [ 26.494377][ T350] Memory allocations: [ 26.498355][ T350] 0 B 0 init/main.c:1370 func:do_initcalls [ 26.505569][ T350] 0 B 0 init/do_mounts.c:186 func:mount_root_generic [ 26.513690][ T350] 0 B 0 init/do_mounts.c:158 func:do_mount_root [ 26.521546][ T350] 0 B 0 init/do_mounts.c:352 func:mount_nodev_root [ 26.529642][ T350] 0 B 0 init/do_mounts_rd.c:241 func:rd_load_image [ 26.537535][ T350] 0 B 0 init/do_mounts_rd.c:72 func:identify_ramdisk_image [ 26.546132][ T350] 0 B 0 init/initramfs.c:507 func:unpack_to_rootfs [ 26.554068][ T350] 0 B 0 init/initramfs.c:508 func:unpack_to_rootfs [ 26.562866][ T350] 0 B 0 init/initramfs.c:509 func:unpack_to_rootfs [ 26.571732][ T350] 0 B 0 init/initramfs.c:101 func:find_link [ 26.591124][ T357] rust_binder: Error while translating object. [ 26.591161][ T357] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM } [ 26.597439][ T357] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:23 [ 26.633327][ T361] rust_binder: Failed to allocate buffer. len:40, is_oneway:false [ 27.288610][ T53] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 27.438015][ T368] random: crng reseeded on system resumption [ 27.507499][ T368] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY [ 27.507527][ T368] rust_binder: Error in use_page_slow: EBUSY [ 27.519450][ T368] rust_binder: use_range failure EBUSY [ 27.526301][ T368] rust_binder: Failed to allocate buffer. len:8, is_oneway:true [ 27.532004][ T368] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY } [ 27.539755][ T368] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender. [ 27.549495][ T368] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:15 [ 27.564670][ T36] kauditd_printk_skb: 72 callbacks suppressed [ 27.564685][ T36] audit: type=1400 audit(1750310551.320:146): avc: denied { read write } for pid=369 comm="syz.1.22" name="uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 27.566605][ T376] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:28 [ 27.572945][ T36] audit: type=1400 audit(1750310551.320:147): avc: denied { open } for pid=369 comm="syz.1.22" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 27.592194][ T376] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 27.633893][ T376] rust_binder: Read failure Err(EFAULT) in pid:28 [ 27.665310][ T381] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 27.731427][ T379] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY [ 27.731458][ T379] rust_binder: Error in use_page_slow: EBUSY [ 27.741907][ T379] rust_binder: use_range failure EBUSY [ 27.747880][ T379] rust_binder: Failed to allocate buffer. len:8, is_oneway:true [ 27.753393][ T379] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY } [ 27.762006][ T379] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender. [ 27.771381][ T379] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:18 [ 27.784124][ T394] SELinux: policydb magic number 0xf97ca14b does not match expected magic number 0xf97cff8c [ 27.802447][ T394] SELinux: failed to load policy [ 27.829926][ T394] binder: Bad value for 'stats' [ 27.841338][ T36] audit: type=1400 audit(1750310551.600:148): avc: denied { read write } for pid=398 comm="syz.3.30" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 27.863330][ T399] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 27.865735][ T36] audit: type=1400 audit(1750310551.600:149): avc: denied { open } for pid=398 comm="syz.3.30" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 27.918175][ T36] audit: type=1400 audit(1750310551.670:150): avc: denied { write } for pid=402 comm="syz.0.32" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 27.941046][ T36] audit: type=1400 audit(1750310551.670:151): avc: denied { open } for pid=402 comm="syz.0.32" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 27.968176][ T36] audit: type=1400 audit(1750310551.680:152): avc: denied { ioctl } for pid=402 comm="syz.0.32" path="/dev/ppp" dev="devtmpfs" ino=86 ioctlcmd=0x743f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 27.972203][ T405] binder: Bad value for 'stats' [ 27.992489][ T36] audit: type=1400 audit(1750310551.680:153): avc: denied { map } for pid=402 comm="syz.0.32" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 28.020173][ T36] audit: type=1400 audit(1750310551.680:154): avc: denied { read } for pid=402 comm="syz.0.32" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 28.127609][ T407] random: crng reseeded on system resumption [ 28.203707][ T407] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY [ 28.203739][ T407] rust_binder: Error in use_page_slow: EBUSY [ 28.214244][ T407] rust_binder: use_range failure EBUSY [ 28.220425][ T407] rust_binder: Failed to allocate buffer. len:8, is_oneway:true [ 28.225895][ T407] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY } [ 28.233686][ T407] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender. [ 28.251185][ T407] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:28 [ 28.278655][ T36] audit: type=1400 audit(1750310552.040:155): avc: denied { write } for pid=419 comm="syz.3.39" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 28.394753][ T433] SELinux: security_context_str_to_sid () failed with errno=-22 [ 28.449192][ T438] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 28.449219][ T438] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:36 [ 28.470290][ T440] binder: Binderfs stats mode cannot be changed during a remount [ 28.549772][ T445] random: crng reseeded on system resumption [ 28.584367][ T443] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:41 [ 28.597178][ T449] input: syz1 as /devices/virtual/input/input7 [ 28.676710][ T445] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY [ 28.676738][ T445] rust_binder: Error in use_page_slow: EBUSY [ 28.687238][ T445] rust_binder: use_range failure EBUSY [ 28.693751][ T445] rust_binder: Failed to allocate buffer. len:8, is_oneway:true [ 28.699268][ T445] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY } [ 28.706896][ T445] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender. [ 28.716198][ T445] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:39 [ 28.845320][ T460] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:44 [ 28.854917][ T461] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:44 [ 29.074487][ T474] rust_binder: Write failure EINVAL in pid:50 [ 29.311015][ T484] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:55 [ 29.598672][ T312] Bluetooth: hci0: command 0x1003 tx timeout [ 29.598730][ T53] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 29.708630][ T489] input: syz1 as /devices/virtual/input/input8 [ 29.730792][ T491] kvm: user requested TSC rate below hardware speed [ 29.877273][ T494] input: syz0 as /devices/virtual/input/input9 [ 29.890760][ T494] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY [ 29.890787][ T494] rust_binder: Error in use_page_slow: EBUSY [ 29.902121][ T494] rust_binder: use_range failure EBUSY [ 29.909617][ T494] rust_binder: Failed to allocate buffer. len:8, is_oneway:true [ 29.918305][ T494] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY } [ 29.932743][ T494] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender. [ 29.956645][ T494] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:18 [ 30.249797][ T514] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 30.278366][ T514] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:60 [ 30.400229][ T527] SELinux: security_context_str_to_sid (syte) failed with errno=-22 [ 30.406288][ T528] binder: Bad value for 'max' [ 30.594358][ T538] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 30.598603][ T538] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:66 [ 30.623344][ T541] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:67 [ 30.665857][ T544] binder: Unknown parameter '00' [ 30.741727][ T548] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 30.763407][ T553] binder: Unknown parameter '' [ 30.763930][ T554] binder: Unknown parameter '' [ 30.926012][ T565] rust_binder: Write failure EINVAL in pid:82 [ 31.453065][ T580] rust_kernel: panicked at /syzkaller/managers/ci2-android-6-12-rust/kernel/rust/kernel/page_size_compat.rs:60:5: [ 31.453065][ T580] attempt to add with overflow [ 31.494451][ T580] ------------[ cut here ]------------ [ 31.499975][ T580] kernel BUG at rust/helpers/bug.c:7! [ 31.539396][ T580] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 31.546370][ T580] CPU: 0 UID: 0 PID: 580 Comm: syz.2.93 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd [ 31.559570][ T580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 31.569630][ T580] RIP: 0010:rust_helper_BUG+0x8/0x10 [ 31.574936][ T580] Code: cc cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 b8 de 08 4a 05 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 48 89 e5 <0f> 0b 66 0f 1f 44 00 00 b8 94 cc 03 89 90 90 90 90 90 90 90 90 90 [ 31.594528][ T580] RSP: 0018:ffffc9000d28f3f0 EFLAGS: 00010246 [ 31.600590][ T580] RAX: 000000000000008c RBX: 1ffff92001a51e80 RCX: 1f5a11c35916d700 [ 31.608569][ T580] RDX: ffffc90002a66000 RSI: 0000000000009519 RDI: 000000000000951a [ 31.616535][ T580] RBP: ffffc9000d28f3f0 R08: ffffc9000d28f0e7 R09: 1ffff92001a51e1c [ 31.624492][ T580] R10: dffffc0000000000 R11: fffff52001a51e1d R12: 0000000000000000 [ 31.632452][ T580] R13: dffffc0000000000 R14: ffffc9000d28f420 R15: ffffc9000d28f450 [ 31.640424][ T580] FS: 00007f84ccb176c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 31.649343][ T580] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.655913][ T580] CR2: 0000000000000000 CR3: 0000000115b80000 CR4: 00000000003526b0 [ 31.663872][ T580] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.671826][ T580] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.679785][ T580] Call Trace: [ 31.683043][ T580] [ 31.685960][ T580] _RNvCscSpY9Juk0HT_7___rustc17rust_begin_unwind+0x15b/0x160 [ 31.693406][ T580] ? __cfi__RNvCscSpY9Juk0HT_7___rustc17rust_begin_unwind+0x10/0x10 [ 31.701395][ T580] ? kernel_text_address+0xa9/0xe0 [ 31.706489][ T580] ? __cfi__RNvXs1b_NtCs9jEwPDbx20M_4core3fmtRNtNtNtB8_5panic10panic_info9PanicInfoNtB6_7Display3fmtCs43vyB533jt3_6kernel+0x10/0x10 [ 31.720015][ T580] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 31.726164][ T580] ? arch_stack_walk+0x10b/0x170 [ 31.731113][ T580] _RNvNtCs9jEwPDbx20M_4core9panicking9panic_fmt+0x84/0x90 [ 31.738307][ T580] ? __cfi__RNvNtCs9jEwPDbx20M_4core9panicking9panic_fmt+0x10/0x10 [ 31.746185][ T580] _RNvNtNtCs9jEwPDbx20M_4core9panicking11panic_const24panic_const_add_overflow+0xb2/0xc0 [ 31.756068][ T580] ? __cfi__RNvNtNtCs9jEwPDbx20M_4core9panicking11panic_const24panic_const_add_overflow+0x10/0x10 [ 31.766642][ T580] _RNvXs1_CscPPBqWtAqum_11ashmem_rustNtB5_6AshmemNtNtCs43vyB533jt3_6kernel10miscdevice10MiscDevice4mmap+0xe44/0xfb0 [ 31.778870][ T580] ? mas_wr_store_type+0x8eb/0x1ad0 [ 31.784052][ T580] ? __cfi__RNvXs1_CscPPBqWtAqum_11ashmem_rustNtB5_6AshmemNtNtCs43vyB533jt3_6kernel10miscdevice10MiscDevice4mmap+0x10/0x10 [ 31.796791][ T580] ? mas_preallocate+0x56e/0xc60 [ 31.801707][ T580] ? __cfi_mas_preallocate+0x10/0x10 [ 31.806970][ T580] ? kasan_save_alloc_info+0x40/0x50 [ 31.812322][ T580] ? __asan_memset+0x39/0x50 [ 31.816893][ T580] mmap_region+0x1371/0x1bd0 [ 31.821472][ T580] ? __cfi_mmap_region+0x10/0x10 [ 31.826390][ T580] ? __kasan_check_read+0x15/0x20 [ 31.831395][ T580] ? arch_get_unmapped_area_topdown+0x232/0x8d0 [ 31.837620][ T580] ? file_mmap_ok+0x147/0x1a0 [ 31.842279][ T580] do_mmap+0xb6d/0x13c0 [ 31.846418][ T580] ? __cfi_do_mmap+0x10/0x10 [ 31.851000][ T580] ? down_write_killable+0xe9/0x2d0 [ 31.856198][ T580] ? __cfi_down_write_killable+0x10/0x10 [ 31.861915][ T580] vm_mmap_pgoff+0x38f/0x4e0 [ 31.866496][ T580] ? __cfi_vm_mmap_pgoff+0x10/0x10 [ 31.871591][ T580] ? __fget_files+0x2c5/0x340 [ 31.876257][ T580] ksys_mmap_pgoff+0x166/0x1e0 [ 31.881006][ T580] __x64_sys_mmap+0x121/0x140 [ 31.885671][ T580] x64_sys_call+0x13bf/0x2ee0 [ 31.890331][ T580] do_syscall_64+0x58/0xf0 [ 31.894732][ T580] ? clear_bhb_loop+0x35/0x90 [ 31.899397][ T580] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 31.905284][ T580] RIP: 0033:0x7f84cbd8e929 [ 31.909692][ T580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 31.929285][ T580] RSP: 002b:00007f84ccb17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 31.937686][ T580] RAX: ffffffffffffffda RBX: 00007f84cbfb5fa0 RCX: 00007f84cbd8e929 [ 31.945649][ T580] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000701000 [ 31.953599][ T580] RBP: 00007f84cbe10b39 R08: 0000000000000003 R09: 0000000000000000 [ 31.961553][ T580] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000 [ 31.969502][ T580] R13: 0000000000000000 R14: 00007f84cbfb5fa0 R15: 00007fff0e3fe438 [ 31.977456][ T580] [ 31.980455][ T580] Modules linked in: [ 31.984522][ T580] ---[ end trace 0000000000000000 ]--- [ 32.002451][ T580] RIP: 0010:rust_helper_BUG+0x8/0x10 [ 32.007796][ T580] Code: cc cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 b8 de 08 4a 05 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 48 89 e5 <0f> 0b 66 0f 1f 44 00 00 b8 94 cc 03 89 90 90 90 90 90 90 90 90 90 [ 32.030081][ T580] RSP: 0018:ffffc9000d28f3f0 EFLAGS: 00010246 [ 32.036796][ T580] RAX: 000000000000008c RBX: 1ffff92001a51e80 RCX: 1f5a11c35916d700 [ 32.046410][ T580] RDX: ffffc90002a66000 RSI: 0000000000009519 RDI: 000000000000951a [ 32.054471][ T580] RBP: ffffc9000d28f3f0 R08: ffffc9000d28f0e7 R09: 1ffff92001a51e1c [ 32.062491][ T580] R10: dffffc0000000000 R11: fffff52001a51e1d R12: 0000000000000000 [ 32.070486][ T580] R13: dffffc0000000000 R14: ffffc9000d28f420 R15: ffffc9000d28f450 [ 32.078450][ T580] FS: 00007f84ccb176c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 32.087426][ T580] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 32.094033][ T580] CR2: 000000110c32adc0 CR3: 0000000115b80000 CR4: 00000000003526b0 [ 32.102072][ T580] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 32.110063][ T580] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 32.118028][ T580] Kernel panic - not syncing: Fatal exception [ 32.124291][ T580] Kernel Offset: disabled [ 32.128594][ T580] Rebooting in 86400 seconds..