last executing test programs:

2m2.644764274s ago: executing program 3 (id=1001):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000640), 0x40040, 0x0)
ioctl$TIOCGSID(r0, 0x5429, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f0000000040)={0xffffffffffffffff, 0x7, 0xa1, 0x8, 0x5cc, 0x6})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, 0x0, 0x80a0000})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x84}, {0x6}]})
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x93f)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r4 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2m1.655556289s ago: executing program 3 (id=1014):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000200)=0x1, 0x12)
mkdirat$cgroup(r1, &(0x7f00000000c0)='syz1\x00', 0x1ff)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000240)=<r3=>0x0)
write$cgroup_pid(r2, &(0x7f0000000180)=r3, 0x12)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r4 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x11e, 0x0, 0xa1a9}]})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000380)={0x78, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f00000001c0)={@flat=@binder={0x73622a85, 0x1, 0x2}, @fd={0x66642a85, 0x0, r0}, @flat=@weak_binder={0x77622a85, 0x100}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}, @release={0x40046306, 0x3}, @clear_death={0x400c630f, 0x1}, @increfs_done={0x40106308, 0x1}], 0x5a, 0x0, &(0x7f0000000000)="1920ff09471b1099c7961fdcc405843a41a786d3ed8ebe8e80e4b4144e1cf51c728b926c80eb2a8e4f6b2dab5b6ac25dd16066dc703442a9132a8dd210e45df98d795a638622681df1cb222612051f612948409bc69ce5464f37"})

2m1.320568395s ago: executing program 3 (id=1019):
syz_clone3(&(0x7f0000000080)={0x4000011, 0x0, 0x0, 0x0, {0x8000011}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0xbe8, 0x0, 0x732}]}) (async)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0)

2m1.052667409s ago: executing program 3 (id=1022):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000640), 0x40040, 0x0)
ioctl$TIOCGSID(r0, 0x5429, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f0000000040)={0xffffffffffffffff, 0x7, 0xa1, 0x8, 0x5cc, 0x6})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, 0x0, 0x80a0000})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x84}, {0x6}]})
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x93f)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r4 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2m0.001377405s ago: executing program 3 (id=1030):
r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x6)
ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000000)={0x1, 0x0, 0x15, 0xb, 0x1e5, &(0x7f00000002c0)})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000002080), 0x0, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r4)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x12)
write$uinput_user_dev(r3, &(0x7f00000025c0)={'syz0\x00', {}, 0x40}, 0x45c)
ioctl$UI_DEV_CREATE(r3, 0x5501)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r5, &(0x7f0000000040)={0x2020}, 0x2020)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x74, 0x0, 0x0, 0xfffffffe}, {0x8, 0x20, 0xfd}]})
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00')
mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x8)

1m59.809394968s ago: executing program 3 (id=1033):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x1b8303, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x10000003)
mmap(&(0x7f0000fec000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"])
mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, r6, 0x2000006, 0x13, r7, 0x100000)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000eb2000/0x3000)=nil, 0x930, 0x3, 0x32e7851d6de9e532, 0xffffffffffffffff, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r11, 0x4018aee2, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r0, 0x0)

1m44.773181779s ago: executing program 32 (id=1033):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x1b8303, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x10000003)
mmap(&(0x7f0000fec000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"])
mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, r6, 0x2000006, 0x13, r7, 0x100000)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000eb2000/0x3000)=nil, 0x930, 0x3, 0x32e7851d6de9e532, 0xffffffffffffffff, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r11, 0x4018aee2, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r0, 0x0)

1m42.728796491s ago: executing program 0 (id=1190):
openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) (async)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040))
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r3, 0x0) (async)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r4, 0x400c330d, &(0x7f0000000140)={0xc1b})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000580)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x32}, @fda={0x66646185, 0x3fffffffffffffff, 0x0, 0x16}, @ptr={0x70742a85, 0xfffffffc, 0x0, 0x0, 0x1}}, &(0x7f00000004c0)={0x0, 0x28, 0x48}}, 0x1000}], 0x0, 0x0, 0x0})

1m42.494234464s ago: executing program 0 (id=1194):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x301000, 0x0)
ioctl$VT_DISALLOCATE(r0, 0x5608)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x8, 0x9, 0xfff, 0x7, "af54ca77f77842bbf9a062261605bbfe823a7d"})
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
read(r1, &(0x7f0000000080)=""/100, 0x64) (async)
r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000180)={0x8, &(0x7f0000000140)=[{0x7930, 0xd, 0x8, 0x6}, {0x7, 0x10, 0x5, 0x1}, {0x7, 0x0, 0x9, 0x4699bd23}, {0xe, 0x8, 0xfb, 0x2}, {0x5, 0x81, 0x5, 0xff}, {0xfff9, 0x8, 0xfe, 0x3}, {0x5, 0xf, 0x5, 0x10001}, {0x433, 0x6, 0x10}]}) (async)
read$FUSE(r2, &(0x7f00000001c0)={0x2020}, 0x2020) (async)
ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000002200)=0x4) (async)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000002240), 0x802, 0x0)
write$uinput_user_dev(r3, &(0x7f0000002280)={'syz0\x00', {0x8000, 0x0, 0xffff, 0x3}, 0x10, [0x8, 0x6, 0xd441, 0x8, 0x3ff, 0x100, 0x8, 0x2, 0xffffffff, 0x4, 0x7f, 0x101, 0x6, 0x8001, 0x1, 0x0, 0x4d6, 0xe, 0x81, 0x5, 0x2, 0x3, 0x2, 0x6, 0x2, 0x6, 0x1ff, 0x9, 0x2, 0x3, 0x9, 0x9, 0x7, 0x1, 0xffffffff, 0x8001, 0xff, 0x5, 0x8, 0x7ff, 0x6, 0x0, 0x3f, 0x8, 0x5, 0x6, 0x6, 0x7ff, 0x8, 0x80000001, 0x0, 0x6, 0x2, 0x3ff, 0x28, 0x4, 0x8, 0xfffffff8, 0x9, 0x8, 0x6, 0xfffffffb, 0x0, 0x161a], [0x1, 0x80000000, 0x1, 0x0, 0xf4d, 0x1, 0x6e, 0x7, 0x2, 0x6, 0x5, 0x2, 0x0, 0x5, 0x0, 0x1, 0x9, 0x7, 0x1, 0x52, 0x6, 0x6, 0xfffffff7, 0x5, 0x7, 0x8, 0x9, 0xf5, 0x4, 0xe, 0x0, 0x2, 0x0, 0xffffffff, 0x1, 0x8, 0x6, 0x1, 0x0, 0x5, 0x2, 0x10000, 0xffffffff, 0x400, 0xffff7fff, 0x5, 0xfffffff8, 0x5, 0x2, 0x1ff, 0x3, 0x800, 0x2, 0x10001, 0x2, 0x2, 0x2, 0xfffff801, 0x2, 0x7, 0x4000000, 0xffffffa3, 0xa8, 0x7], [0x9, 0x275, 0x6, 0x4, 0x1, 0x5, 0x4, 0x2, 0x8, 0x0, 0xda88, 0x3e1c, 0x3c78, 0x1, 0x9, 0x6, 0x6, 0xfffffffd, 0x7, 0xb, 0x8, 0xb, 0xfffeffff, 0x9, 0x1, 0xf59, 0x7ee, 0x6, 0x6, 0x2020, 0x3, 0x1, 0x3, 0xfffff07b, 0x1, 0x4, 0x100, 0xffff, 0xe8b2, 0x4, 0x3, 0x7, 0x7fffffff, 0x5, 0x8, 0x2, 0xd332, 0xb67f, 0x0, 0x9, 0xc, 0xf, 0xf, 0x8, 0x5, 0xffff8000, 0xd, 0xe82, 0x1, 0x7, 0x80000001, 0xb, 0x3, 0x1], [0x400, 0x4, 0x8, 0x5, 0x708, 0x6, 0x4, 0x38, 0xc72, 0x0, 0x6, 0x6, 0xb34a, 0x34ea, 0x8a, 0x80000000, 0x6, 0xf, 0x9877, 0x4, 0x200000, 0x2, 0x0, 0x3, 0x9, 0x1, 0x8, 0x80000000, 0xfffffe00, 0x1, 0x9, 0x8, 0x8000, 0x7, 0x10001, 0x1000, 0xd, 0x7, 0x5, 0x977, 0x40, 0x5, 0x1, 0x3d9cf814, 0x80000001, 0x2, 0xb99e, 0x9, 0x7, 0xfffffffa, 0xfffffff2, 0x7, 0x4, 0xfffffffe, 0x5, 0x3, 0x8, 0x7, 0xffff, 0xb2, 0x6, 0x40, 0x9, 0x3ff]}, 0x45c)
ioctl$FIONCLEX(r3, 0x5450) (async)
ioctl$KVM_CAP_HYPERV_DIRECT_TLBFLUSH(r2, 0x4068aea3, &(0x7f0000002700))
write$selinux_attr(r2, &(0x7f0000002780)='system_u:object_r:getty_var_run_t:s0\x00', 0x25)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r2, 0x8010671f, &(0x7f00000028c0)={&(0x7f00000027c0)=""/219, 0xdb}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r1, 0x5000940e, &(0x7f0000002900)={{r1}, "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"}) (async)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000003900)={0x10002, 0x2, 0x1000, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
r4 = openat(r2, &(0x7f0000003940)='./file0\x00', 0x42, 0x4)
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000003980)={0x6, 0x0, [{0x3, 0x5, 0x0, 0x0, @msi={0x0, 0xd, 0x8000, 0x4}}, {0x2, 0x0, 0x1, 0x0, @irqchip={0xfffffffa, 0xa21}}, {0xc, 0x2, 0x1, 0x0, @adapter={0x8, 0x8, 0x1, 0x0, 0xffffff07}}, {0x8, 0x1, 0x1, 0x0, @adapter={0xfffffffffffffffa, 0xc, 0x1dcf, 0x2, 0xffff}}, {0x7fffffff, 0x1, 0x1, 0x0, @adapter={0x8, 0x5, 0x6, 0xe, 0x9}}, {0xa, 0x2, 0x1, 0x0, @irqchip={0x6ce, 0x1}}]}) (async)
r5 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000003ac0), 0x2, 0x0)
ioctl$TUNSETQUEUE(r5, 0x400454d9, &(0x7f0000003b00)={'veth1_to_team\x00', 0x400})
r6 = openat(r4, &(0x7f0000003b40)='./file0\x00', 0x8080, 0x192) (async)
r7 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000003b80)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r7, &(0x7f0000003bc0)='system_u:object_r:apt_exec_t:s0\x00', 0x20) (async)
ioctl$KVM_CAP_DISABLE_QUIRKS2(r6, 0x4068aea3, &(0x7f0000003c00)={0xd5, 0x0, 0x31})
r8 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000003c80), 0x200000, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000003cc0), 0x40000, 0x0)
ioctl$TIOCMSET(r9, 0x5418, &(0x7f0000003d00)=0x2)

1m42.356882826s ago: executing program 0 (id=1196):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x0, 0x3})
prctl$PR_MCE_KILL(0x21, 0x0, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000480)={0xe, 0x1, 0x7})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="03000000000000007b01"])
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0)

1m42.208565609s ago: executing program 0 (id=1199):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x5b, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70b7a440b418709844294623"})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000780)={0x2020}, 0x2020)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/custom0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000340)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1m42.053818491s ago: executing program 0 (id=1201):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x4b564d07}]}) (async)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
openat(r0, &(0x7f0000000100)='./file1\x00', 0x46000, 0x0) (async)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x141202, 0x0)
write$vga_arbiter(r5, &(0x7f0000000240)=@other={'trylock', ' ', 'mem'}, 0xc)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000280)=0x10) (async)
r6 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r6, 0x40087703, 0x100000002) (async, rerun: 32)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r6, 0x0) (rerun: 32)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async, rerun: 32)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r8, 0x4068aea3, &(0x7f0000000100)={0xdf, 0x0, 0x1000}) (async)
ioctl$KVM_GET_DIRTY_LOG(r8, 0x4010ae42, &(0x7f0000000040)={0x5, 0x0, &(0x7f0000e4d000/0x2000)=nil}) (async, rerun: 32)
ioctl$ASHMEM_SET_NAME(r6, 0x40087708, &(0x7f0000002600)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80`4/\xe9\x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\x16\\n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x04;\xc5[\nja\xb9\'\xc9#\xfcx\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00B\x05\xd4\xea\xea\x7f=\xc6:\\N\xc3\xb7Vw\xc6\x9c\x96s\xaaHL\x96\xc72\n\x18Ynj\xceTS\xfbl\x0f\x9f8M\f\x89\xa1\xd2Hs`\x8bp\x8a\xc4%\xf8\x1d3\nV\x9a\xaf\x1f\xf96^\x93\xc1\xaf)\rg\x86\xd6\xea\xa9\x0f\x9a\xf1V\x1b\xbf\x8b\'-\xab\x8e\t7\xd3\xf7\xa9v\xfbY\xe6\x9b^d\x8c\xb1\xdd') (rerun: 32)
ioctl$ASHMEM_SET_NAME(r6, 0x40087707, &(0x7f0000000300)='\x00\x00\x00\x06\x00\x00\x03\x00\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00') (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x9) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1, 0x0, 0x1000000})

1m41.836880624s ago: executing program 0 (id=1205):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0xa, 0x2})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xffff0000, 0x0, 0xf000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe}, {0x5002, 0x0, 0x0, 0x8, 0x0, 0x0, 0x81, 0x0, 0x44, 0xe, 0x0, 0x3}, {0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x11000, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1a}, {0x100000, 0xd000, 0x0, 0x0, 0x0, 0x8f, 0xa, 0x0, 0x0, 0x0, 0x84}, {0xeeee8000, 0x0, 0x9, 0x0, 0x0, 0x0, 0x40}, {0x0, 0x4000, 0x0, 0x82}, {0x6000}, {0x1, 0xfffe}, 0xa0010012, 0x0, 0x0, 0x30020, 0x0, 0x0, 0x900, [0x0, 0x0, 0x0, 0x3]})
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000640), 0x1, 0x0)
write$selinux_load(r3, &(0x7f0000000280)={0xf97cff8c, 0x8, 'SE Linux', "22d8f16777d3548e10dab2443a406178fac57d63a8fb3aa713c94b094aece06ff9481f181abf5468af3ea67031a823df7b6fe79e0def53db7bb2a84ac785cb9169d737d71f172374dcdb4039d43568536eec70e308d728df108347ae061250b23f2823872daad841e041c7df5f99c77ca32f67616ff10e8b323b7e20f96a15a6b37f31bc9a20fcd1ee4f3377483cd15a842d04"}, 0xa3)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_INIT(r4, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f0000000080)={0x30, 0x5, 0x0, {0x0, 0x1, 0x8001, 0x7f}}, 0x30)
write$UHID_INPUT(r3, &(0x7f0000000680)={0x8, {"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", 0x1000}}, 0x1006)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCGNPMODE(r5, 0x4008744b, &(0x7f0000000140)={0x29})
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x10}], 0x5b, 0x0, 0x0})

1m26.773535416s ago: executing program 33 (id=1205):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0xa, 0x2})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xffff0000, 0x0, 0xf000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe}, {0x5002, 0x0, 0x0, 0x8, 0x0, 0x0, 0x81, 0x0, 0x44, 0xe, 0x0, 0x3}, {0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x11000, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1a}, {0x100000, 0xd000, 0x0, 0x0, 0x0, 0x8f, 0xa, 0x0, 0x0, 0x0, 0x84}, {0xeeee8000, 0x0, 0x9, 0x0, 0x0, 0x0, 0x40}, {0x0, 0x4000, 0x0, 0x82}, {0x6000}, {0x1, 0xfffe}, 0xa0010012, 0x0, 0x0, 0x30020, 0x0, 0x0, 0x900, [0x0, 0x0, 0x0, 0x3]})
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000640), 0x1, 0x0)
write$selinux_load(r3, &(0x7f0000000280)={0xf97cff8c, 0x8, 'SE Linux', "22d8f16777d3548e10dab2443a406178fac57d63a8fb3aa713c94b094aece06ff9481f181abf5468af3ea67031a823df7b6fe79e0def53db7bb2a84ac785cb9169d737d71f172374dcdb4039d43568536eec70e308d728df108347ae061250b23f2823872daad841e041c7df5f99c77ca32f67616ff10e8b323b7e20f96a15a6b37f31bc9a20fcd1ee4f3377483cd15a842d04"}, 0xa3)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_INIT(r4, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f0000000080)={0x30, 0x5, 0x0, {0x0, 0x1, 0x8001, 0x7f}}, 0x30)
write$UHID_INPUT(r3, &(0x7f0000000680)={0x8, {"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", 0x1000}}, 0x1006)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCGNPMODE(r5, 0x4008744b, &(0x7f0000000140)={0x29})
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x10}], 0x5b, 0x0, 0x0})

1m4.710091125s ago: executing program 1 (id=1645):
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000000)=ANY=[@ANYBLOB="8e355c0b50d17f33761f"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x18)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x80040, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x40, 0x0)
ioctl$TIOCSPGRP(r2, 0x5410, &(0x7f00000005c0))
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000180)=ANY=[@ANYBLOB="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"])
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000000c0)={[0x6, 0xfffffffffffffffd, 0x2bf9, 0x1, 0x2, 0x0, 0x400, 0x5, 0x0, 0x6, 0x2, 0x0, 0x2, 0x6, 0x0, 0x4], 0x2000, 0x2c0242})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

1m4.660384596s ago: executing program 1 (id=1648):
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x402, 0x0)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000040), 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x2)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x22052, r2, 0xffffc000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0xc2a4a000)

1m4.630885297s ago: executing program 1 (id=1649):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000000)={0x1}) (async)
r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x34000, 0x9)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000080)={&(0x7f00000001c0)=""/170, 0xffffffffffffff46}) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000080)=0x10) (async)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0x40305829, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x4}) (async)
read(r1, &(0x7f0000000280)=""/244, 0xf4)

1m4.566114717s ago: executing program 1 (id=1650):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f0000000240)={0x0, 0x107000})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x4, 0x0, &(0x7f0000000000)=[@register_looper={0x40086315}], 0x0, 0x0, 0x0})

1m4.437506879s ago: executing program 1 (id=1652):
mount$binderfs(0x0, &(0x7f00000000c0)='./binderfs\x00', &(0x7f0000000100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="6d61783d30303030300e30303030303030303030303030303030322c00"])
read$FUSE(0xffffffffffffffff, &(0x7f00000002c0)={0x2020}, 0x2020)
read$FUSE(0xffffffffffffffff, &(0x7f0000002300)={0x2020, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x2020)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000006340), 0x410200, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pim6reg1\x00', 0xe511})
write$cgroup_subtree(r2, &(0x7f00000000c0)=ANY=[@ANYRES16=r2, @ANYRES16=r2, @ANYRES32=r2, @ANYBLOB="92982fa3"], 0xfdef)
openat(r1, &(0x7f00000062c0)='./file0\x00', 0x80000, 0x4)
read$FUSE(r1, &(0x7f0000002240)={0x2020}, 0x2020)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000007a80), 0x101000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_MSR_PLATFORM_INFO(r4, 0x4068aea3, &(0x7f0000000000))
read$FUSE(r1, &(0x7f0000004280)={0x2020}, 0x2020)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000000, 0x40010, r1, 0x33770000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000080)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0xa0400, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000001000)=ANY=[@ANYBLOB="4500000000000000000804000000000000f4c5dc5cd72bbe6efa508840dc62368c2b180c55bb7ffd8617c7ed22b9dae61f62c94726803727c97f4af4308e8e898221c7b979a6a55b3b35e1ef80c8eec1840470409106cb69aad897cb5d97f6d1ccd24fcdc541a1a0fd9585c4f759541b2a60a0baaf3667396f0463b7f8efd3a1f5474cf7c8850f319076064ca0754e9d8ce03c97f4dea73ea03950e2ccfaf3f8c4706d4d094d3a6ff851f2dc3b69d40751c823126187be15f5cc15"])
write$cgroup_pid(r1, &(0x7f0000006300)=r0, 0x12)
ioctl$KVM_XEN_HVM_CONFIG(r4, 0x4038ae7a, &(0x7f0000000100)={0x0, 0xaaa, &(0x7f0000000240)="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", 0x0, 0xdb1})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r10, 0x4020aeb2, &(0x7f0000000740)={0x0, 0x12c, @ioapic={0x1000, 0x8, 0x6, 0x1, 0x0, [{0x1, 0x3, 0x3, '\x00', 0x2}, {0x0, 0x5, 0x1, '\x00', 0x8}, {0x7, 0x2b, 0xf3, '\x00', 0x2}, {0x7, 0x2, 0x1c, '\x00', 0x7}, {0x0, 0x3, 0x4, '\x00', 0x58}, {0x7f, 0x2, 0xb, '\x00', 0x9}, {0x2, 0x7, 0x5, '\x00', 0x2}, {0x0, 0x81, 0x4, '\x00', 0x22}, {0x9, 0x9, 0x6, '\x00', 0x4}, {0x3, 0x58, 0x81, '\x00', 0x1}, {0x9, 0x5, 0x5, '\x00', 0xfa}, {0x1, 0x7f, 0x2, '\x00', 0x81}, {0x2, 0x3, 0xff, '\x00', 0xa}, {0x7b, 0x1, 0x7, '\x00', 0x45}, {0x7f, 0x4, 0x6, '\x00', 0x6}, {0x1, 0x0, 0x9}, {0xa, 0x1, 0xff, '\x00', 0x7}, {0x3, 0x2, 0x4, '\x00', 0x1}, {0x82, 0x5, 0x6, '\x00', 0x2e}, {0x2, 0x8, 0x0, '\x00', 0x8}, {0x8, 0x41, 0xfe, '\x00', 0x6}, {0x1, 0x4, 0x7, '\x00', 0x8}, {0x0, 0x5, 0x2, '\x00', 0x3}, {0x1, 0x9, 0x6, '\x00', 0xc}]}})

1m4.028878386s ago: executing program 1 (id=1664):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x10, 0x0, &(0x7f0000000080)=[@register_looper, @register_looper, @decrefs], 0x73, 0x0, &(0x7f00000002c0)="b513428386797fa31d1d9be7b5032aaacbd979482b511e7d94356bace42db3c636bcea728da915ed857d56b05b3f166215333ad39d93f3001c0bc02336eda861a7d517ca183861b176ad5d2920a656fcfae35b36cef94275cb9d857f347e01f8fecd03bad5847c928af39425913f239c4a32f4"})
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000140)={0x20000, 0x0, [0x0, 0x2, 0x1, 0x4, 0x3ff, 0x46926b6b, 0x8, 0xe]})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
syz_clone3(&(0x7f0000000200)={0x200000400, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000000)={@flat=@binder={0x73622a85, 0x1101, 0x3}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x10}, @fda={0x66646185, 0x8, 0x1, 0x40}}, &(0x7f0000000280)={0x0, 0x18}}, 0x10}], 0x0, 0x0, 0x0})

48.934878137s ago: executing program 34 (id=1664):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x10, 0x0, &(0x7f0000000080)=[@register_looper, @register_looper, @decrefs], 0x73, 0x0, &(0x7f00000002c0)="b513428386797fa31d1d9be7b5032aaacbd979482b511e7d94356bace42db3c636bcea728da915ed857d56b05b3f166215333ad39d93f3001c0bc02336eda861a7d517ca183861b176ad5d2920a656fcfae35b36cef94275cb9d857f347e01f8fecd03bad5847c928af39425913f239c4a32f4"})
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000140)={0x20000, 0x0, [0x0, 0x2, 0x1, 0x4, 0x3ff, 0x46926b6b, 0x8, 0xe]})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
syz_clone3(&(0x7f0000000200)={0x200000400, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000000)={@flat=@binder={0x73622a85, 0x1101, 0x3}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x10}, @fda={0x66646185, 0x8, 0x1, 0x40}}, &(0x7f0000000280)={0x0, 0x18}}, 0x10}], 0x0, 0x0, 0x0})

17.828501856s ago: executing program 5 (id=2395):
ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0xe)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x2)
ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x255)
ioctl$UI_DEV_DESTROY(0xffffffffffffffff, 0x5502)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x4200, 0x0)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000080)={{0x1, 0x8000, 0x3}, 'syz0\x00', 0x2f})
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x1f)
ioctl$UI_DEV_CREATE(r1, 0x5501)
close(r1)
ioctl$KVM_GET_SREGS(r1, 0x8138ae83, &(0x7f0000000100))
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000007, 0x810, r0, 0xe6554000)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000001, 0x8010, r1, 0x86c37000)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000240)={'syz1\x00', {0x8, 0x73, 0x422, 0x4}, 0x3e, [0x5b99, 0x2, 0x10000, 0x5, 0x1, 0x1915, 0x101, 0x7, 0x1ff, 0x2, 0x4, 0x9, 0xfffffff7, 0xffff0001, 0x9, 0x8b, 0x6, 0xb, 0x800, 0x0, 0x7f0, 0x0, 0x1, 0xfff, 0x2, 0x0, 0x5, 0x1, 0x80000000, 0x9, 0xffffffff, 0x9, 0x6, 0x3, 0x3, 0x1, 0xfffffffa, 0x5, 0x6, 0xffffff7f, 0xffffff00, 0x5, 0x3, 0x0, 0x8001, 0x8, 0x0, 0x6, 0x8, 0x7ff, 0x100, 0x9, 0x7, 0x9, 0x6, 0x80000001, 0x1, 0x487, 0x26, 0x2, 0x2, 0x6, 0x401, 0x4], [0x3, 0x8, 0x1, 0x79b, 0xaf3, 0x0, 0x7785, 0x7, 0x400, 0x4, 0x2, 0x1, 0xb, 0x9e, 0x30, 0x6, 0x7, 0xdac7, 0x9, 0x10, 0x6, 0x3, 0x772, 0x5d18, 0x7fff, 0x9, 0x9, 0x3d, 0x1, 0x80000000, 0x7fffffff, 0x10, 0x8, 0x4, 0x8, 0x4, 0x8fe3, 0xff, 0x9, 0x9, 0x101, 0x3ff, 0x7, 0x6, 0x10001, 0x1, 0x0, 0x0, 0xfd, 0x1, 0x5, 0x3, 0x8, 0x1, 0xa0, 0x8, 0x6, 0x7f, 0xe, 0xfffffff7, 0x5, 0x9, 0x3, 0xa], [0x8001, 0xaf9, 0x3, 0x1, 0x8, 0x40, 0x1, 0xfffffff0, 0x5, 0x3, 0x7, 0x5, 0x5b5, 0xee3, 0x0, 0x3, 0x8, 0xdf, 0x6f31, 0xc67, 0x1, 0xff, 0x4, 0x5, 0xffff, 0x3, 0xd5, 0x7, 0xb03, 0x1, 0x81, 0x827d, 0x0, 0x9, 0x10001, 0x0, 0x7, 0x31b, 0x2, 0x1, 0x5, 0x32dd, 0x6, 0x5, 0x5, 0x0, 0x3, 0x6, 0x6, 0x26, 0xffffffff, 0xffff, 0xffff, 0xaa9, 0xa2, 0x6, 0xf, 0x400, 0x0, 0x7fffffff, 0x800, 0x40, 0x8, 0xd], [0x8, 0x8, 0x2, 0xbb, 0xc88, 0x9, 0x3, 0xb41, 0x2, 0x5, 0x4537, 0x4, 0x2, 0x8, 0x6, 0x8, 0x1, 0x2, 0x6, 0x240000, 0x45b, 0x9, 0xac, 0x7ff, 0xfbfc, 0x80000000, 0xd, 0xfffffffe, 0x3, 0x9, 0xd, 0xd8, 0x5, 0x7, 0x2, 0x7, 0xfffffeff, 0x1b4, 0x5, 0x6, 0x7f, 0x48f2c34a, 0x7f, 0x3, 0x101, 0x5, 0xff, 0x6, 0x8176, 0xffffffff, 0x7, 0x8, 0x7, 0x0, 0x7, 0x3, 0x3, 0xfffffffc, 0x2, 0x9, 0x6, 0x1, 0x4, 0xda78]}, 0x45c)
r3 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$UI_GET_SYSNAME(r3, 0x8040552c, &(0x7f0000000700))
ioctl$UI_SET_LEDBIT(r1, 0x40045569, 0x1)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000740)={{0x4, 0x2, 0x8, 0x5}, 'syz1\x00', 0x47})
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f00000007c0)={<r4=>0x0, 0xf, 0x33b, 0x1})
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000bc0)={r4, 0x2, 0x1, [0x9, 0x0, 0x527b47c1, 0x0, 0x5], [0x101, 0x10000, 0xed, 0x8000000000000001, 0x6, 0x3, 0x9, 0x8, 0x5, 0x4, 0xc03, 0x3, 0xb7, 0x200, 0xcc7, 0x1, 0xff, 0x15a0000, 0xfffffffffffffff0, 0xd, 0xfffffffffffffff2, 0xf, 0xd, 0x6b9ebb18, 0x4, 0x7, 0x10001, 0xa, 0x82, 0x1ff, 0x0, 0xf4, 0x66, 0x8, 0xb, 0x0, 0x724ee4ea, 0x80000001, 0x7fffffff, 0x7ff, 0x9, 0x4, 0x4, 0x7, 0x2, 0x8, 0x6, 0x8, 0x9, 0x8, 0x0, 0x5, 0x5, 0x75e5, 0x3, 0xfffffffffffffff7, 0x8, 0x59251939, 0x3bec, 0xe, 0x7379, 0x6, 0x6, 0x74b, 0x200, 0x174b4ae6, 0x9, 0x0, 0x6, 0x71b3, 0x9, 0x9, 0x7ff, 0x8, 0x6, 0x60a, 0x4, 0x3, 0x3, 0x9, 0x4, 0x2, 0x100, 0x40, 0x8, 0xe, 0x1, 0x132e, 0x5, 0x8, 0x80000001, 0x9, 0x4, 0x4, 0x0, 0x1, 0x6, 0x2, 0x80000001, 0x2, 0x3ff, 0xb, 0x4, 0x347, 0x10, 0x10000, 0x1e, 0x84f, 0x9, 0xc, 0x1, 0x8, 0x10, 0x9, 0xf7e1, 0xffffffffffffffff, 0x3, 0x4, 0x1c, 0x4, 0x3ff]})
ioctl$UI_DEV_DESTROY(r1, 0x5502)
mmap(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x1, 0x12, r2, 0xabae000)
ioctl$UI_DEV_CREATE(r1, 0x5501)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000004, 0x11, 0xffffffffffffffff, 0x52b7a000)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x9)
ioctl$BINDER_THREAD_EXIT(r3, 0x40046208, 0x0)

17.826478786s ago: executing program 5 (id=2396):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x40087708, &(0x7f0000000540)='\x00\x00\x03\x06\x00\x00\x00\x1f\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\x87\xa3\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b^:4\xeb\xd37\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Hd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\xadP\x1c2\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x1b\xdaR-\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd8\\\x99\xc7Dp\x98\xa4o\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12KL\xf2\xd5\b^[D~\x00\x00\x00\x00\x00\x00\x00') (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe) (async)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000000)='/dev/ashmem\x00')

17.825648646s ago: executing program 5 (id=2397):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder1\x00', 0x2, 0x0)
r1 = mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0xc, 0x0, &(0x7f0000000180)=[@free_buffer={0x40086303, r1}], 0x1, 0x0, &(0x7f0000000100)="95"}) (async)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002d00), 0x2000)
ioctl$INCFS_IOC_PERMIT_FILL(0xffffffffffffffff, 0x40046721, &(0x7f0000000040)={r2}) (async)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x440601, 0x0)
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000500)={0x2, r3})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000002fffffff30000000000000400000000000000"]) (async)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x10000, 0x1, 0x2, 0x1000, &(0x7f0000001000/0x1000)=nil}) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000440)={[0x3, 0xf, 0x1, 0x1ff, 0x4, 0x9, 0xa, 0x4, 0x1ff, 0x40, 0xaa49, 0xfffffffffffffffa, 0x2, 0x0, 0x0, 0x1200000000], 0x6000, 0x20040}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
write$vga_arbiter(r7, &(0x7f0000000280)=ANY=[@ANYBLOB='t'], 0xc) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r8, &(0x7f0000000a80)={'syz1\x00'}, 0x45c)
ioctl$UI_SET_RELBIT(r8, 0x40045566, 0xe)
ioctl$UI_SET_EVBIT(r8, 0x40045564, 0x2) (async)
ioctl$UI_DEV_CREATE(r8, 0x5501)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/resume_offset', 0x341800, 0x10c)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async, rerun: 64)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000640)={[0x202a4, 0x7, 0x8000, 0x800000000005, 0x2, 0x5, 0xefffffffffffffff, 0x2, 0x0, 0x7fffffffffffffff, 0x0, 0x9, 0x3, 0x1, 0x4, 0xff], 0x8000000, 0x41845}) (async, rerun: 64)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001600)='/proc/slabinfo\x00', 0x0, 0x0)
read$FUSE(r9, &(0x7f0000006140)={0x2020}, 0x2020)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
close(r0)

17.805775686s ago: executing program 5 (id=2398):
mount$binderfs(0x0, &(0x7f0000000580)='./binderfs\x00', 0x0, 0x4008024, &(0x7f0000000040)={[{@stats}]})
r0 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x4010, r0, 0xca38c000) (async)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x4010, r0, 0xca38c000)

17.788452736s ago: executing program 5 (id=2399):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x8)
ioctl$KVM_TRANSLATE(r6, 0xc018ae85, &(0x7f0000000180)={0x6000, 0x1, 0x3, 0x9, 0x7})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) (async)
r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000000009684040000000000000408000000000000"])
r8 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r8, 0x0)
read(r0, &(0x7f0000000040)=""/106, 0x6a) (async)
read(r0, &(0x7f0000000040)=""/106, 0x6a)

17.724598527s ago: executing program 5 (id=2400):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={<r3=>r0, 0x9, 0xffff, 0xe})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
prctl$PR_GET_TIMERSLACK(0x1e)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd1000, 0x10, 0x0, 0x8, 0x2, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x2, 0x1, 0x7, 0x4}, {0x2000, 0x5000, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xffff1000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0xc, 0x0, 0x0, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x5000, 0x0, 0x0, 0x7, 0x2, 0x0, 0x2, 0x0, 0x0, 0x10, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x2}, {0x8080000, 0x3000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1a, 0x26, 0x0, 0xfd}, {0x80ac000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x8080000, 0x70, 0x0, 0xdd00, 0x5000, [0xfffffffffffffffc, 0x0, 0x1]})
ioctl$KVM_GET_SREGS(r3, 0x8138ae83, &(0x7f0000000840))
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x9, 0x810, r2, 0xaed5f000)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000000540)='\x00\x00\x03\x06\x00\x00\x00\x1f\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\x87\xa3\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b^:4\xeb\xd37\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Hd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\xadP\x1c2\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x1b\xdaR-\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd8\\\x99\xc7Dp\x98\xa4o\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12KL\xf2\xd5\b^[D~\x00\x00\x00\x00\x00\x00\x00')
ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000040)='rdma.current\x00', 0x0, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r5, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087707, &(0x7f0000000cc0)='\x00\x00\x03\x06\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642@\xb8\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc3\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5U\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x13\xc8\xdc\x00\x00\x00\x00\x00\x00\x00\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5h/41\x99\'\xd0\x1e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xaf\x03\x9bWwh\xca\xf5d\x8di\xe7\xc4\xdbx\xbc\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6NR\x13\x84~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaa\x868hB+\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99v.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\x02\x7f\xc4T\xa5\xc1,*\x8d\xf6\x1f\xbe\x10\x04\x97\x9d+\x81\xbb8|\xf3\x8bo\xa5\xf9\xab[-t\xdf6H\xc1\xb1\b\b\xcc\xbf\xb0c\xe8S\xea6\xf5\xd0\xda/\xbf\xe5p\x82\xb8V\xe9g[\x8d\x14e;\x11o\v\xb8\xb6\x0f\xd3\x16\x82\xc5$\xce\xe2\xab\a\x1c\x8c\x843\xf4\xbb\xc8\xd3\xf5R\xb5\x8dZ\xb7Jql\x05+i{\xc5w\xfcD\x1fE\xcc]\xb7~\xd3\x99\xde\x1dX\xdc}C,|\bf\x80&WeT\x98X\xeb\xef(\x1c9\x00'/623)

2.737069707s ago: executing program 35 (id=2400):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={<r3=>r0, 0x9, 0xffff, 0xe})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
prctl$PR_GET_TIMERSLACK(0x1e)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd1000, 0x10, 0x0, 0x8, 0x2, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x2, 0x1, 0x7, 0x4}, {0x2000, 0x5000, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xffff1000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0xc, 0x0, 0x0, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x5000, 0x0, 0x0, 0x7, 0x2, 0x0, 0x2, 0x0, 0x0, 0x10, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x2}, {0x8080000, 0x3000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1a, 0x26, 0x0, 0xfd}, {0x80ac000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x8080000, 0x70, 0x0, 0xdd00, 0x5000, [0xfffffffffffffffc, 0x0, 0x1]})
ioctl$KVM_GET_SREGS(r3, 0x8138ae83, &(0x7f0000000840))
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x9, 0x810, r2, 0xaed5f000)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000000540)='\x00\x00\x03\x06\x00\x00\x00\x1f\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\x87\xa3\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b^:4\xeb\xd37\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Hd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\xadP\x1c2\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x1b\xdaR-\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd8\\\x99\xc7Dp\x98\xa4o\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12KL\xf2\xd5\b^[D~\x00\x00\x00\x00\x00\x00\x00')
ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000040)='rdma.current\x00', 0x0, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r5, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087707, &(0x7f0000000cc0)='\x00\x00\x03\x06\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642@\xb8\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc3\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5U\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x13\xc8\xdc\x00\x00\x00\x00\x00\x00\x00\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5h/41\x99\'\xd0\x1e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xaf\x03\x9bWwh\xca\xf5d\x8di\xe7\xc4\xdbx\xbc\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6NR\x13\x84~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaa\x868hB+\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99v.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\x02\x7f\xc4T\xa5\xc1,*\x8d\xf6\x1f\xbe\x10\x04\x97\x9d+\x81\xbb8|\xf3\x8bo\xa5\xf9\xab[-t\xdf6H\xc1\xb1\b\b\xcc\xbf\xb0c\xe8S\xea6\xf5\xd0\xda/\xbf\xe5p\x82\xb8V\xe9g[\x8d\x14e;\x11o\v\xb8\xb6\x0f\xd3\x16\x82\xc5$\xce\xe2\xab\a\x1c\x8c\x843\xf4\xbb\xc8\xd3\xf5R\xb5\x8dZ\xb7Jql\x05+i{\xc5w\xfcD\x1fE\xcc]\xb7~\xd3\x99\xde\x1dX\xdc}C,|\bf\x80&WeT\x98X\xeb\xef(\x1c9\x00'/623)

2.696502418s ago: executing program 2 (id=2753):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000e00), 0x41, 0x0)
ioctl$ASHMEM_GET_PIN_STATUS(r0, 0x7709, 0x1000000000000)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x2)

2.696022648s ago: executing program 4 (id=2754):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000009f000040"])
close(0x5)
close(0x4)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000600)={0x22000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r4], 0x1}, 0x58)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000000)={@flat=@weak_binder={0x77622a85, 0x90e, 0x2}, @ptr={0x70742a85, 0x0, &(0x7f0000000140)=""/255, 0xff, 0x0, 0x33}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x31}}, &(0x7f0000000280)={0x9, 0x18, 0x40}}, 0x10}], 0x52, 0x0, &(0x7f0000000380)="1920ff09471b1099c7961fdcc405843a41a786d3ed8ebe8e80e4b4144e1cf51c728b926c80eb2a8e4f6b2dab5b6ac95dd16066dc703442a9132a8dd210e45df98d795a638622681df1cb222612051f612948"})

2.666649088s ago: executing program 2 (id=2755):
r0 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000040)={0x0, 0x0, {0x0, @struct}, {}, {0x0, @usage, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) (async)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000440)={<r2=>0x0, 0x10, 0x1, [0x0, 0x8, 0x21, 0x4, 0xc85], [0xfffffffffffffffd, 0x2, 0xffffffffffffffdc, 0x98, 0x3000000000000000, 0x9, 0x200, 0x800, 0x9, 0x8, 0x5, 0x2, 0xfffffffffffffffc, 0x5, 0xa0b, 0x0, 0x6, 0x7fffffffffffffff, 0x3970a47c, 0x1, 0x2, 0x7, 0x2, 0x8, 0x21a89a86, 0x9, 0x4, 0x81, 0x2, 0x0, 0x2, 0x9, 0x2, 0x7, 0x5, 0x1, 0x5, 0x3, 0xb, 0x8, 0x6, 0x8, 0x5, 0x116b, 0x6, 0x101, 0x5, 0x0, 0x0, 0x5, 0xfffffffffffffffa, 0x1826, 0x8000000000000000, 0x5a, 0x0, 0x1, 0x1, 0xc, 0x3, 0x1e, 0x10, 0x100000000, 0xf0, 0x1, 0x1000, 0x0, 0x2, 0x9, 0x9, 0x3, 0x9, 0xf, 0xe4, 0x2, 0xab, 0x0, 0x0, 0x3, 0xacc, 0x0, 0x4ad, 0x7, 0x4fe, 0x6, 0xffffffff, 0x3, 0x0, 0x5, 0x5, 0x1, 0x0, 0x2, 0x53b6, 0x3, 0x8, 0x1, 0x3, 0x3, 0x3, 0xb, 0x6, 0x442, 0x4, 0x7f, 0xa0, 0x5, 0x8, 0xffffffff, 0x6, 0x1, 0x5, 0x8, 0xfffffffffffffffa, 0x0, 0x1, 0xffd7, 0x11, 0x1, 0x7, 0x6, 0x3]}) (async)
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000880)={<r3=>0x0, 0x7, 0x33f, 0x1})
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000c80)={0x19, 0x1, {0x3, @usage=0x1ff, r1, 0x2, 0x7, 0xb, 0x1c000000, 0x7471, 0x20, @usage=0x1, 0x10001, 0xc, [0x2, 0x8, 0x3, 0xfff, 0x6, 0xaf2]}, {0x0, @struct={0x2, 0x4}, r2, 0x2, 0x5, 0x10000, 0x8000000000000001, 0xbb12, 0x20, @struct={0xfffffffd, 0x5}, 0xfff, 0x9, [0x7, 0x0, 0x7, 0xd, 0x3, 0x3ff]}, {0xab16, @usage=0x1, r3, 0xf3aa, 0x1, 0x8000000000000001, 0x2, 0x5, 0x1, @usage=0x8, 0x2, 0x3, [0x7, 0x10, 0x4, 0xc656, 0x4]}, {0x7, 0x1, 0x7}}) (async)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000001080))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000010c0)) (async)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000012c0), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000001300)={0x2020, 0x0, <r5=>0x0, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_LSEEK(r4, &(0x7f0000003340)={0x18, 0x0, r5, {0x16df4ee1}}, 0x18) (async)
write$FUSE_STATFS(r4, &(0x7f0000003380)={0x60, 0x0, r5, {{0x3, 0x2, 0x7fff, 0x1, 0x10, 0x80000001, 0x5, 0x100}}}, 0x60) (async)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000003400)=<r7=>0x0)
write$FUSE_ENTRY(r4, &(0x7f0000003440)={0x90, 0xffffffffffffffda, r5, {0x3, 0x1, 0x5, 0x7fffffffffffffff, 0x81, 0x6, {0x1, 0x1ff, 0x9, 0x3, 0x7ff, 0xc1f, 0x7ff, 0x8, 0x8, 0xa000, 0x7, r7, r6, 0x6, 0x101}}}, 0x90) (async)
r8 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000003500), 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r8, 0x40046207, 0x0) (async)
ioctl$TIOCCBRK(r8, 0x5428)
r9 = openat$zero(0xffffffffffffff9c, &(0x7f0000003540), 0x50000, 0x0) (async)
read$FUSE(r8, &(0x7f0000003580)={0x2020, 0x0, <r10=>0x0}, 0x2020)
write$FUSE_POLL(r9, &(0x7f00000055c0)={0x18, 0x7ffffffffffffffa, r10}, 0x18) (async)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000005800)={0x60, 0x0, &(0x7f00000056c0)=[@clear_death, @enter_looper, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x60, 0x18, &(0x7f0000005600)={@fda={0x66646185, 0xa, 0x2, 0xa}, @fda={0x66646185, 0x1, 0x2, 0x1d}, @fda={0x66646185, 0x8, 0x2, 0x1c}}, &(0x7f0000005680)={0x0, 0x20, 0x40}}, 0x40}], 0xa0, 0x0, &(0x7f0000005740)="2e7ac47d81d7275aeedf77e0db00f6cd0f29215aae480d5216fc25059fc6e39ca1ad1172a3d9fc8ce40966c9fb638407dd0b6750f4857a09514fc6d38323ae0bf1c6e98edaea9a79cd1b770c0910d0bb3edbb5aace16b14a8d3364c284e23a62168b49ebce4c462d6ff2163a6a6af20cb2c9211c06292500ea341ed36c303b18fc2b4e6880b209c3d8773e3e27a339232fe713b64264a09fbf3e5b29378c74a1"}) (async)
ioctl$PIO_UNIMAP(r9, 0x4b67, &(0x7f0000005880)={0x1, &(0x7f0000005840)=[{0xc9ce, 0x401}]}) (async)
ioctl$RTC_WIE_OFF(r8, 0x7010) (async)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000006c40)={0x8c, 0x0, &(0x7f0000006a80)=[@acquire={0x40046305, 0x2}, @acquire_done={0x40106309, 0x2}, @increfs={0x40046304, 0x2}, @decrefs={0x40046307, 0x1}, @register_looper, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x70, 0x18, &(0x7f00000069c0)={@ptr={0x70742a85, 0x0, &(0x7f00000058c0)=""/4096, 0x1000, 0x0, 0x39}, @fda={0x66646185, 0x3, 0x2, 0x14}, @ptr={0x70742a85, 0x0, &(0x7f00000068c0)=""/235, 0xeb, 0x1, 0x4}}, &(0x7f0000006a40)={0x0, 0x28, 0x48}}, 0x40}, @clear_death={0x400c630f, 0x2}], 0xc7, 0x0, &(0x7f0000006b40)="653c924eeb471f5ebbf227aa8c1548aac5af5a747c5490cc874b21754fbca3017373d26ab26fa7bac675a65c2c47142c1353b8e344e6f086deb4f4cd72b900de40136e38f7dac6c9b54ca91cf395a4940369a8ccb45b0d219455b33aa608ca339ee2ccaf7eae242505e579c84b09dd4694ac5214f3491d7eaf8c1d4e2c3b6fcacbc1ea3a21f42e402b7c2aea4cfb8e78052b641891d0ebadb56edfd92dbc29deedcbae39a9bd42913dd8163e5887772e33df45398f7023b7b0f45002e77c66486e29f0eba3e8c3"})
r11 = openat$cgroup_type(r8, &(0x7f0000006c80), 0x2, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r11, 0x80049367, &(0x7f0000006cc0)=0x64a) (async)
write$FUSE_INIT(r8, &(0x7f0000006d00)={0x50, 0x0, r10, {0x7, 0x2b, 0x0, 0x8000120, 0x4, 0x4, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2}}, 0x50) (async)
ioctl$TIOCL_SCROLLCONSOLE(r8, 0x541c, &(0x7f0000006d80)={0xd, 0xd055})
r12 = ioctl$NS_GET_PARENT(r9, 0xb702, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r4, 0x5000940a, &(0x7f0000006dc0)={{r12}, "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"})
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000007dc0)={0x2, 0x0, [{0xb36}, {0xb3b, 0x0, 0x53f}]})

2.250643485s ago: executing program 2 (id=2756):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_FPU(r3, 0x41a0ae8d, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0xa, 0x2})
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x1001, &(0x7f0000000400)={@ptr={0x70742a85, 0x0, &(0x7f0000000340)=""/89, 0x59, 0x2, 0x2}, @fd, @fda={0x66646185, 0x2, 0x1, 0x3f}}, &(0x7f0000000240)={0x0, 0x28, 0x40}}, 0x10}], 0x0, 0x0, 0x0})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) (async)
ioctl$KVM_SET_FPU(r3, 0x41a0ae8d, 0x0) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0xa, 0x2}) (async)
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x1001, &(0x7f0000000400)={@ptr={0x70742a85, 0x0, &(0x7f0000000340)=""/89, 0x59, 0x2, 0x2}, @fd, @fda={0x66646185, 0x2, 0x1, 0x3f}}, &(0x7f0000000240)={0x0, 0x28, 0x40}}, 0x10}], 0x0, 0x0, 0x0}) (async)

2.249752065s ago: executing program 4 (id=2757):
prctl$PR_CAPBSET_DROP(0x18, 0x1e)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000140))
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000004c0)={0x44, 0x0, &(0x7f0000000380)=[@reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x53, 0x0, &(0x7f0000000400)="892a7863af87409b1b8fe4e183cc4e2c2eddca324f8c2a61fb078c81d7272d92b902bf051aacb6decd83ec368991a0d7599c3ce3f7bed9d8078ba649896475d964ddb0c6d4d498b0ef80a3f6170b75654851be"})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000940)=[@transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000880)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r1}, @fda={0x66646185, 0x5, 0x0, 0x3e}}, &(0x7f0000000900)={0x0, 0x18, 0x30}}}], 0x50, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70"})
r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080), 0x3f00, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x8, 0x0, &(0x7f0000000340)=[@increfs], 0x0, 0x0, 0x0})
r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'nicvf0\x00', 0x5902})
ioctl$TUNSETVNETHDRSZ(r4, 0x800454e0, &(0x7f0000000140))
r5 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r5, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c80)={0x84, 0x0, &(0x7f0000000b00)=[@dead_binder_done, @reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000a80)={@ptr={0x70742a85, 0x1, &(0x7f00000009c0)=""/144, 0x90, 0x1, 0x30}, @fda={0x66646185, 0x7, 0x0, 0x24}, @flat=@weak_handle={0x77682a85, 0x1, 0x3}}, &(0x7f00000001c0)={0x0, 0x28, 0x48}}}, @request_death={0x400c630e, 0x1}, @acquire_done={0x40106309, 0x1}, @increfs={0x40046304, 0x3}, @increfs={0x40046304, 0x3}], 0x85, 0x0, &(0x7f0000000bc0)="7517766e1fbd17c63cb47074363426a8647a05d999edc764baefbd0578189be22b6d92fd1da102bc2b109d93c6fd96f5da79177b1f23f45ddbecf2ac8ce75d214e47e552532466f3db32e87335ad9629213420626be056fd35fcd5465518c16433395764be3724119fadd250737adbec7cbdb45b926182e642e4832d190065ac210f3ca95c"})
write$selinux_load(r3, &(0x7f0000000000)=ANY=[], 0x6000)
r6 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.threads\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000840)={0x10c, 0x0, &(0x7f0000000700)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000100)={@fd={0x66642a85, 0x0, r6}, @fda={0x66646185, 0x4, 0x1, 0x30}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000080)={0x0, 0x18, 0x38}}}, @register_looper, @register_looper, @release, @enter_looper, @increfs_done={0x40106308, 0x3}, @dead_binder_done, @register_looper, @reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000280)={@ptr={0x70742a85, 0x1, &(0x7f0000000600)=""/199, 0xc7, 0x0, 0x37}, @fda={0x66646185, 0xa, 0x0, 0x3d}, @flat=@weak_handle={0x77682a85, 0xbf3c0fa8a4bf99d6}}, &(0x7f0000000180)={0x0, 0x28, 0x48}}}, @reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000500)={@fda={0x66646185, 0x8, 0x1, 0x1e}, @flat=@weak_handle={0x77682a85, 0x1, 0x3}, @flat=@weak_handle={0x77682a85, 0x1001, 0x3}}, &(0x7f0000000300)={0x0, 0x20, 0x38}}, 0x400}], 0x15, 0x0, &(0x7f0000000480)="c1cf2d133e14bb7360fecaa8aa23657a85218094e2"})

1.684074064s ago: executing program 2 (id=2759):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000040)={{0x7, 0xf9, 0x8be, 0xffff}, 'syz0\x00', 0x2})
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/10, 0xa}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f00000002c0)})

1.682752964s ago: executing program 4 (id=2760):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001500)={0x44, 0x0, &(0x7f0000001380)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x2c, 0x0, &(0x7f0000000000)=[@release={0x40046306, 0x3}, @decrefs={0x40046307, 0x3}, @request_death={0x400c630e, 0x3}, @dead_binder_done], 0xf1, 0x0, &(0x7f0000000100)="e5b15a78048631c5e8fab7624b0d64828a006cc73f54a41847c5c093192678fd807fd69e8ffe589d66199e4d3167998796d79cbe9c01230f39aeccf30291af965fc47f8c1525035e073b94a2a026679e7fcefc2bfcd3320c13822ad70d3682f0e1a851f37a0230777c88971f547ea1c6de3544108c512b96ff7c098472a7d528e5bac2c8517d499022e5992d0b499837ad89f3732b00cfdc52800aae1762b2865ed9b2e0ef651c962aea61112a5a6405f0cfa7fa811c948ad10e64c9bb1800ce671faf36b73c44f0642af5373037991a77a6c143763112bc9c9c9b8b208dd98090ca1ac45f750e207aa1158fef367b25b0"})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001500)={0x44, 0x0, &(0x7f0000001380)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x2c, 0x0, &(0x7f0000000000)=[@release={0x40046306, 0x3}, @decrefs={0x40046307, 0x3}, @request_death={0x400c630e, 0x3}, @dead_binder_done], 0xf1, 0x0, &(0x7f0000000100)="e5b15a78048631c5e8fab7624b0d64828a006cc73f54a41847c5c093192678fd807fd69e8ffe589d66199e4d3167998796d79cbe9c01230f39aeccf30291af965fc47f8c1525035e073b94a2a026679e7fcefc2bfcd3320c13822ad70d3682f0e1a851f37a0230777c88971f547ea1c6de3544108c512b96ff7c098472a7d528e5bac2c8517d499022e5992d0b499837ad89f3732b00cfdc52800aae1762b2865ed9b2e0ef651c962aea61112a5a6405f0cfa7fa811c948ad10e64c9bb1800ce671faf36b73c44f0642af5373037991a77a6c143763112bc9c9c9b8b208dd98090ca1ac45f750e207aa1158fef367b25b0"}) (async)

1.119622513s ago: executing program 6 (id=2761):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x8000, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r1, &(0x7f00000002c0)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20}}, 0x120)
write$UHID_DESTROY(r1, &(0x7f0000000440)={0xa}, 0xffffff95)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
write(r0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000080)=@arm64={0x3, 0xc, 0xf, '\x00', 0x10001})
ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f00000002c0)={0x150002, 0x0, [0x3, 0xfffffffffffffffa, 0x5, 0x200, 0x6, 0x1, 0x9, 0xe8f]})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x40002, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1)
ioctl$KVM_SET_FPU(r9, 0x41a0ae8d, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r10 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x32d280, 0x0)
ioctl$ASHMEM_SET_SIZE(r10, 0x40087703, 0xfffffffe)
ioctl$KVM_GET_NESTED_STATE(0xffffffffffffffff, 0xc080aebe, &(0x7f0000000580)={{0x0, 0x0, 0x80}})
ioctl$ASHMEM_SET_NAME(r10, 0x41007701, &(0x7f0000000000)='\x00')
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r13, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="04000000000000004503"])
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r10, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2000004, 0x31, 0xffffffffffffffff, 0x0)

1.116549372s ago: executing program 2 (id=2762):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000000400)={0x0, r2})
write$UHID_INPUT(r2, &(0x7f0000000440)={0x8, {"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", 0x1000}}, 0x1006)
mmap$binder(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x0)

1.115797032s ago: executing program 4 (id=2763):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000080), 0x12)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
syz_clone(0x20180, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0x4048aecb, &(0x7f0000000080)=ANY=[@ANYRES16=r6])
ioctl$KVM_SET_CLOCK(r6, 0x4030ae7b, &(0x7f00000000c0)={0x5, 0xc, 0x3, 0xfffffffffffffff8, 0x7ff})
ioctl$KVM_GET_VCPU_EVENTS(r7, 0x4048aecb, &(0x7f0000000080))
r8 = openat$cgroup_procs(r2, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r8, &(0x7f00000001c0), 0x12)
openat$cgroup_int(r2, &(0x7f0000000080)='memory.high\x00', 0x2, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r9, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0x1})
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/wake_lock', 0x40802, 0x122)
write$tcp_mem(r10, &(0x7f0000000200)={0x9ac, 0x20, 0xfffffffffffffffb, 0x20, 0x20000000000005}, 0x70)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$BLKRRPART(r0, 0x125f, 0x0)

343.340664ms ago: executing program 6 (id=2764):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x0, 0x3})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000007501"])
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$UHID_INPUT(r5, &(0x7f0000000940)={0x8, {"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", 0xdd52d6c}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r5, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

342.880494ms ago: executing program 2 (id=2765):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x84}, {0x6}]})
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x93f)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0x7709, 0x2)
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)=0x400})

341.523044ms ago: executing program 4 (id=2766):
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x40, 0x10)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x3, 0x0, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000100)={0x2, 0x0, @ioapic={0x4000, 0x40, 0x80000001, 0x1, 0x0, [{0x98, 0x4a, 0x1d, '\x00', 0x2}, {0xe4, 0x4, 0x7, '\x00', 0x2}, {0x8, 0x1, 0xd, '\x00', 0x7}, {0x5, 0x2, 0x2, '\x00', 0x3}, {0xd0, 0x0, 0x4, '\x00', 0x2}, {0x6, 0x81, 0xfe, '\x00', 0x5}, {0x6, 0x4, 0x3, '\x00', 0xf}, {0x0, 0x4, 0x3}, {0xe9, 0x76, 0x3}, {0xb, 0x1, 0x8, '\x00', 0x3}, {0x1, 0x8, 0x1, '\x00', 0x4}, {0x5, 0xa5, 0x9, '\x00', 0x22}, {0x0, 0xc5, 0x4, '\x00', 0x75}, {0x0, 0x3, 0x3, '\x00', 0x4}, {0x2, 0x2, 0x5, '\x00', 0x8}, {0x6, 0x0, 0x3, '\x00', 0x2}, {0x9, 0x9, 0x3, '\x00', 0x2}, {0xa2, 0x2, 0x5, '\x00', 0x3}, {0xd, 0x3, 0x6, '\x00', 0xc}, {0x5b, 0x9}, {0x1, 0x81, 0x1, '\x00', 0xfe}, {0x4, 0x9, 0x8, '\x00', 0x3}, {0x5, 0x0, 0x8, '\x00', 0xc}, {0x81, 0xe, 0x40, '\x00', 0x9}]}})
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000340)={0x3, 0x5, 0x3000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000380), 0x40443, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000003c0)={0x1fa, 0x0, 0xffff1000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000600)={0x58, 0x0, &(0x7f0000000500)=[@reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000440)={@fda={0x66646185, 0x5, 0x0, 0x2b}, @flat=@weak_binder={0x77622a85, 0x1000, 0x1}, @ptr={0x70742a85, 0x1, &(0x7f0000000400)=""/46, 0x2e, 0x2, 0xb}}, &(0x7f00000004c0)={0x0, 0x20, 0x38}}}, @dead_binder_done], 0x78, 0x0, &(0x7f0000000580)="b8acde38272a0419a20859d4a7f6aa3f1043962d0aeb1b57d2363bfa5acbfee92718b4c59c8cf9ed9051a5e0e606bb4cb37264e8f8bd6366d51639fb02c62dd6ebb498fc0daaf38665f3e69d7f24952c3ec53c0895639973f9b5551b1f56674e51047ac0e58dc1d90068b6afe53441d10a54a925b7754ba4"})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000640)={[0x8, 0x6, 0xae, 0x7, 0x6, 0x1, 0x1, 0x4, 0x9, 0x6, 0xfff, 0x8, 0x0, 0x5, 0x0, 0xd241], 0x6000, 0x200})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000700)={0xeeef0000, 0x12000, 0x1})
r4 = openat$cgroup_ro(r0, &(0x7f0000000740)='memory.current\x00', 0x0, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000780))
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f00000007c0)=0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000800)={0x80, 0xdb5, 0x6, 0x0, 0x8, 0x3})
ioctl$KVM_CAP_SYNC_REGS(r1, 0x4068aea3, &(0x7f0000000840))
r5 = openat$selinux_user(0xffffffffffffff9c, &(0x7f00000008c0), 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000900)={0x1ff, 0x1, 0x6000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$FIBMAP(r5, 0x1, &(0x7f0000000940)=0xb)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000ac0)={0x2, 0x1, &(0x7f0000000980)=""/140, &(0x7f0000000a40)=""/39, &(0x7f0000000a80)=""/42, 0x8080000})
ioctl$KVM_NMI(r4, 0xae9a)
r6 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000b00), 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000001d40)={0x2, 0x1, &(0x7f0000000b40)=""/232, &(0x7f0000000c40)=""/222, &(0x7f0000000d40)=""/4096, 0x8000000})
write$selinux_load(r4, &(0x7f0000001d80)={0xf97cff8c, 0x8, 'SE Linux', "f43fa5bab52163887982ff8afb93151e81f9923fd51526df197445f5bc0afb5fe1e92d06dbd34cfacaa6f4e07d05bd8f937b07ebe5ccbc67adbffc164b3a84fece2ee3bf04d75e38f624ffb28b391c04d8360736ac8c2d6fe78938994eab7a4f0425aaec1161fd31236c873eb27bdae02eda6bce07194c3a70fae751d9749da028a06b21c113750948d527af2a5fc871e1edfad1f94dbe13b421bd52fc551259b6309eec7dfc554a4fc844de0a56602aa90b728655e8c8873f5b00a60cbfccca90ad338f07ab226a669bfa8e7f6dbba985921b81eb67eebbf198c0ec8a546c82f0cd5efbea"}, 0xf5)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001e80)='/proc/key-users\x00', 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000001f00)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000001ec0)=0x10})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000002200)={0x3, 0x0, &(0x7f0000001f40)=""/253, &(0x7f0000002040)=""/182, &(0x7f0000002100)=""/211, 0x1000})
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000002240)={0x0, r2, 0x6, 0x1, 0x9, 0x5})

155.348417ms ago: executing program 6 (id=2767):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r0, 0xf504, 0x0)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000440)='/sys/power/pm_wakeup_irq', 0x149880, 0x40)
read$FUSE(r1, &(0x7f00000024c0)={0x2020}, 0x2020)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
read(r2, &(0x7f00000000c0)=""/32, 0x20)
ioctl$KVM_GET_CLOCK(0xffffffffffffffff, 0x8030ae7c, &(0x7f0000000140))
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_VDPA_GET_VQS_COUNT(r5, 0x8004af80, &(0x7f0000000200))
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/address_bits', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000004500)={0x2020}, 0x2020)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="f3ff0000000000000102000000000000e516e203"])
ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"])
r7 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_CAP_X86_BUS_LOCK_EXIT(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000180))
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x3, 0x7, 0xfffffffffffffffd, 0x0, 0x10000, 0x4, 0x4002004c4, 0x1000, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_CAP_X2APIC_API(r4, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x3})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_SIGNAL_MSI(r4, 0x4020aea5, &(0x7f0000000640)={0x81aa001, 0x8000000, 0x40, 0x0, 0xffffffff})
write$tcp_congestion(r0, 0x0, 0xffffff93)
mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, &(0x7f0000000000)=ANY=[@ANYBLOB="636f6e746578743d73797374656d5f75dd47d0b90b893a03ffdf"])

119.793668ms ago: executing program 4 (id=2768):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000196000/0x1000)=nil, 0x1000, 0x0, 0x840000000000a132, 0xffffffffffffffff, 0x0)
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r0, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x300000c, 0x13, r0, 0x293f000)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x511340, 0x0)

91.575458ms ago: executing program 6 (id=2769):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000001180)={'\x00', 0x7fff, 0x88, 0x18, 0x0, 0x3, 0x1000, 0x80a0000, '\x00', 0x5bd})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x200)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom1\x00', 0x2, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0xc, 0x0, &(0x7f0000000100)=[@acquire={0x40046305, 0x1}, @register_looper], 0x51, 0x0, &(0x7f0000000340)="a89aff67520a7335b849b4f88a6db06e45e3f5e648a65b8003975be8a982d5135e161a783d3d01fddcbd838bac308358a7e349f333e620505e4cf1982c991b516a9e26b6bb537c85f5ad467697f0d78b9a"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@fd={0x66642a85, 0x0, r3}, @fd={0x66642a85, 0x0, r3}, @ptr={0x70742a85, 0x0, 0x0}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, 0x0})

572.62µs ago: executing program 6 (id=2770):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000000000000910000400eca"]) (async)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000000000000910000400eca"])
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r5, 0x405c5503, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_SREGS(r4, 0x8138ae83, 0x0) (async)
ioctl$KVM_GET_SREGS(r4, 0x8138ae83, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/oops_count', 0x10b902, 0x1ac) (async)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/oops_count', 0x10b902, 0x1ac)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
write$cgroup_int(r6, &(0x7f0000000000)=0x9, 0xfffffffffffffe62)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r9, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSNPMODE(r9, 0x4008744b, &(0x7f0000000000)={0x2f}) (async)
ioctl$PPPIOCSNPMODE(r9, 0x4008744b, &(0x7f0000000000)={0x2f})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.controllers\x00', 0x275a, 0x0) (async)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r10, 0xc9f12000)
mount$binderfs(0x0, 0x0, 0x0, 0x14c860, &(0x7f0000000300)=ANY=[@ANYBLOB="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"])
r11 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r11, 0xc0306201, &(0x7f0000000100)={0x58, 0x0, &(0x7f0000000140)=[@decrefs={0x40046307, 0x3}, @reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000040)={@fda={0x66646185, 0x8, 0x1, 0x4000000016}, @flat=@weak_binder={0x77622a85, 0x100a, 0x1}, @flat=@binder={0x73622a85, 0x100, 0x1}}, &(0x7f00000001c0)={0x0, 0x20, 0x38}}, 0x1000}, @register_looper], 0x0, 0x0, 0x0})

0s ago: executing program 6 (id=2771):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000006c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) (async)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f00000001c0)={0x2, &(0x7f0000000100)=[{}, {0x94}]}) (async)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000006, 0x22052, r1, 0x2000)

kernel console output (not intermixed with test programs):


[  148.150162][ T5542]  ? __cfi_mutex_lock_killable+0x10/0x10
[  148.150177][ T5542]  ? proc_fail_nth_write+0x17e/0x210
[  148.150192][ T5542]  kvm_vcpu_ioctl+0x96f/0xee0
[  148.150211][ T5542]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  148.150229][ T5542]  ? __cfi_vfs_write+0x10/0x10
[  148.150245][ T5542]  ? __kasan_check_write+0x18/0x20
[  148.150259][ T5542]  ? mutex_unlock+0x8b/0x240
[  148.150271][ T5542]  ? __cfi_mutex_unlock+0x10/0x10
[  148.150282][ T5542]  ? __fget_files+0x2c5/0x340
[  148.150301][ T5542]  ? __fget_files+0x2c5/0x340
[  148.150318][ T5542]  ? bpf_lsm_file_ioctl+0xd/0x20
[  148.150335][ T5542]  ? security_file_ioctl+0x34/0xd0
[  148.150354][ T5542]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  148.150373][ T5542]  __se_sys_ioctl+0x132/0x1b0
[  148.150394][ T5542]  __x64_sys_ioctl+0x7f/0xa0
[  148.150413][ T5542]  x64_sys_call+0x1878/0x2ee0
[  148.150430][ T5542]  do_syscall_64+0x58/0xf0
[  148.150447][ T5542]  ? clear_bhb_loop+0x35/0x90
[  148.150468][ T5542]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  148.150486][ T5542] RIP: 0033:0x7f4d4f58e929
[  148.150501][ T5542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.150514][ T5542] RSP: 002b:00007f4d5035e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  148.150532][ T5542] RAX: ffffffffffffffda RBX: 00007f4d4f7b5fa0 RCX: 00007f4d4f58e929
[  148.150545][ T5542] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  148.150555][ T5542] RBP: 00007f4d5035e090 R08: 0000000000000000 R09: 0000000000000000
[  148.150564][ T5542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  148.150573][ T5542] R13: 0000000000000000 R14: 00007f4d4f7b5fa0 R15: 00007ffd42dea9b8
[  148.150586][ T5542]  </TASK>
[  148.673703][ T5561] kvm: vcpu 5: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  148.712474][ T5564] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1222729745 (39127351840 ns) > initial count (25964891200 ns). Using initial count to start timer.
[  148.745348][ T5568] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  148.745376][ T5568] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:1114
[  148.759136][ T5571] serio: Serial port ttynull
[  148.788603][ T5575] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:325
[  148.914552][ T5580] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  148.915721][ T5583] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  148.923887][ T5580] rust_binder: Read failure Err(EFAULT) in pid:327
[  148.932187][ T5582] FAULT_INJECTION: forcing a failure.
[  148.932187][ T5582] name failslab, interval 1, probability 0, space 0, times 0
[  148.940027][ T5583] rust_binder: Read failure Err(EFAULT) in pid:327
[  148.946672][ T5582] CPU: 0 UID: 0 PID: 5582 Comm: syz.5.1573 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  148.946700][ T5582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.946711][ T5582] Call Trace:
[  148.946717][ T5582]  <TASK>
[  148.946723][ T5582]  __dump_stack+0x21/0x30
[  148.946746][ T5582]  dump_stack_lvl+0x10c/0x190
[  148.946763][ T5582]  ? __cfi_dump_stack_lvl+0x10/0x10
[  148.946781][ T5582]  ? __kasan_check_write+0x18/0x20
[  148.946798][ T5582]  ? copy_mm+0x2a5/0x1c20
[  148.946813][ T5582]  dump_stack+0x19/0x20
[  148.946829][ T5582]  should_fail_ex+0x3d9/0x530
[  148.946847][ T5582]  should_failslab+0xac/0x100
[  148.946867][ T5582]  kmem_cache_alloc_noprof+0x42/0x3a0
[  148.946884][ T5582]  ? alloc_pid+0xa5/0xba0
[  148.946903][ T5582]  ? __asan_memcpy+0x5a/0x80
[  148.946920][ T5582]  alloc_pid+0xa5/0xba0
[  148.946940][ T5582]  copy_process+0x13ff/0x3220
[  148.946957][ T5582]  ? __cfi_copy_process+0x10/0x10
[  148.946980][ T5582]  ? __kasan_check_write+0x18/0x20
[  148.946996][ T5582]  ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  148.947018][ T5582]  vhost_task_create+0x1d6/0x350
[  148.947036][ T5582]  ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  148.947059][ T5582]  ? __cfi_vhost_task_create+0x10/0x10
[  148.947079][ T5582]  ? __cfi_vhost_task_fn+0x10/0x10
[  148.947098][ T5582]  ? __kasan_check_write+0x18/0x20
[  148.947114][ T5582]  ? mutex_lock+0x92/0x1c0
[  148.947129][ T5582]  ? __cfi_mutex_lock+0x10/0x10
[  148.947143][ T5582]  ? kernel_text_address+0xa9/0xe0
[  148.947160][ T5582]  kvm_mmu_post_init_vm+0x1a6/0x310
[  148.947178][ T5582]  kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0
[  148.947196][ T5582]  ? _parse_integer_limit+0x195/0x1e0
[  148.947213][ T5582]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  148.947229][ T5582]  ? kstrtoull+0x13b/0x1e0
[  148.947245][ T5582]  ? kstrtouint+0x78/0xf0
[  148.947260][ T5582]  ? ioctl_has_perm+0x1aa/0x4d0
[  148.947281][ T5582]  ? __asan_memcpy+0x5a/0x80
[  148.947297][ T5582]  ? ioctl_has_perm+0x3e0/0x4d0
[  148.947317][ T5582]  ? has_cap_mac_admin+0xd0/0xd0
[  148.947337][ T5582]  ? __kasan_check_write+0x18/0x20
[  148.947353][ T5582]  ? mutex_lock_killable+0x92/0x1c0
[  148.947463][ T5582]  ? __cfi_mutex_lock_killable+0x10/0x10
[  148.947478][ T5582]  ? proc_fail_nth_write+0x17e/0x210
[  148.947495][ T5582]  kvm_vcpu_ioctl+0x96f/0xee0
[  148.947516][ T5582]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  148.947535][ T5582]  ? __cfi_vfs_write+0x10/0x10
[  148.947552][ T5582]  ? __kasan_check_write+0x18/0x20
[  148.947569][ T5582]  ? mutex_unlock+0x8b/0x240
[  148.947583][ T5582]  ? __cfi_mutex_unlock+0x10/0x10
[  148.947596][ T5582]  ? __fget_files+0x2c5/0x340
[  148.947617][ T5582]  ? __fget_files+0x2c5/0x340
[  148.947636][ T5582]  ? bpf_lsm_file_ioctl+0xd/0x20
[  148.947652][ T5582]  ? security_file_ioctl+0x34/0xd0
[  148.947672][ T5582]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  148.947691][ T5582]  __se_sys_ioctl+0x132/0x1b0
[  148.947711][ T5582]  __x64_sys_ioctl+0x7f/0xa0
[  148.947730][ T5582]  x64_sys_call+0x1878/0x2ee0
[  148.947749][ T5582]  do_syscall_64+0x58/0xf0
[  148.947767][ T5582]  ? clear_bhb_loop+0x35/0x90
[  148.947789][ T5582]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  148.947809][ T5582] RIP: 0033:0x7f4d4f58e929
[  148.947823][ T5582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.947836][ T5582] RSP: 002b:00007f4d5035e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  148.947854][ T5582] RAX: ffffffffffffffda RBX: 00007f4d4f7b5fa0 RCX: 00007f4d4f58e929
[  148.947867][ T5582] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  148.947878][ T5582] RBP: 00007f4d5035e090 R08: 0000000000000000 R09: 0000000000000000
[  148.947888][ T5582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  148.947897][ T5582] R13: 0000000000000000 R14: 00007f4d4f7b5fa0 R15: 00007ffd42dea9b8
[  148.947911][ T5582]  </TASK>
[  149.435496][ T5599] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  149.443468][ T5599] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  149.461836][ T5599] rust_binder: Failed to allocate buffer. len:184, is_oneway:true
[  149.479362][ T5607] SELinux:  policydb magic number 0xf97cef8c does not match expected magic number 0xf97cff8c
[  149.491663][ T5609] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 120, limit: 136, size: 89)
[  149.506323][ T5609] rust_binder: Error while translating object.
[  149.517109][ T5609] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  149.517227][ T5607] SELinux: failed to load policy
[  149.523450][ T5609] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:594
[  149.595363][ T5616] FAULT_INJECTION: forcing a failure.
[  149.595363][ T5616] name failslab, interval 1, probability 0, space 0, times 0
[  149.617951][ T5616] CPU: 0 UID: 0 PID: 5616 Comm: syz.1.1582 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  149.617983][ T5616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.617994][ T5616] Call Trace:
[  149.618000][ T5616]  <TASK>
[  149.618007][ T5616]  __dump_stack+0x21/0x30
[  149.618029][ T5616]  dump_stack_lvl+0x10c/0x190
[  149.618046][ T5616]  ? __cfi_dump_stack_lvl+0x10/0x10
[  149.618063][ T5616]  dump_stack+0x19/0x20
[  149.618080][ T5616]  should_fail_ex+0x3d9/0x530
[  149.618099][ T5616]  should_failslab+0xac/0x100
[  149.618118][ T5616]  __kmalloc_node_noprof+0x6c/0x450
[  149.618136][ T5616]  ? __kvmalloc_node_noprof+0x11d/0x300
[  149.618154][ T5616]  __kvmalloc_node_noprof+0x11d/0x300
[  149.618170][ T5616]  ? __cfi___kvmalloc_node_noprof+0x10/0x10
[  149.618186][ T5616]  ? xa_find+0x11b/0x170
[  149.618201][ T5616]  __kvm_mmu_topup_memory_cache+0x5f0/0x860
[  149.618221][ T5616]  ? kvm_vcpu_kick+0x24e/0x3f0
[  149.618235][ T5616]  ? pic_unlock+0x1fb/0x2a0
[  149.618253][ T5616]  kvm_mmu_topup_memory_cache+0x24/0x30
[  149.618272][ T5616]  kvm_mmu_load+0xa2/0x28a0
[  149.618286][ T5616]  ? kvm_pic_read_irq+0x2e3/0xc70
[  149.618306][ T5616]  ? kvm_apic_has_interrupt+0x4fa/0x7b0
[  149.618325][ T5616]  vcpu_run+0x4bb3/0x7260
[  149.618351][ T5616]  ? signal_pending+0xc0/0xc0
[  149.618368][ T5616]  ? __kasan_check_write+0x18/0x20
[  149.618386][ T5616]  ? xfd_validate_state+0x68/0x150
[  149.618404][ T5616]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  149.618426][ T5616]  ? __kasan_check_write+0x18/0x20
[  149.618443][ T5616]  ? fpregs_mark_activate+0x69/0x160
[  149.618466][ T5616]  ? fpu_swap_kvm_fpstate+0x44d/0x5f0
[  149.618488][ T5616]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  149.618511][ T5616]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  149.618531][ T5616]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  149.618549][ T5616]  ? kstrtoull+0x13b/0x1e0
[  149.618566][ T5616]  ? kstrtouint+0x78/0xf0
[  149.618581][ T5616]  ? ioctl_has_perm+0x1aa/0x4d0
[  149.618611][ T5616]  ? __asan_memcpy+0x5a/0x80
[  149.618629][ T5616]  ? ioctl_has_perm+0x3e0/0x4d0
[  149.618649][ T5616]  ? has_cap_mac_admin+0xd0/0xd0
[  149.618671][ T5616]  ? __kasan_check_write+0x18/0x20
[  149.618688][ T5616]  ? mutex_lock_killable+0x92/0x1c0
[  149.618705][ T5616]  ? __cfi_mutex_lock_killable+0x10/0x10
[  149.618721][ T5616]  ? proc_fail_nth_write+0x17e/0x210
[  149.618739][ T5616]  kvm_vcpu_ioctl+0x96f/0xee0
[  149.618760][ T5616]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  149.618781][ T5616]  ? __cfi_vfs_write+0x10/0x10
[  149.618799][ T5616]  ? __kasan_check_write+0x18/0x20
[  149.618816][ T5616]  ? mutex_unlock+0x8b/0x240
[  149.618831][ T5616]  ? __cfi_mutex_unlock+0x10/0x10
[  149.618846][ T5616]  ? __fget_files+0x2c5/0x340
[  149.618868][ T5616]  ? __fget_files+0x2c5/0x340
[  149.618888][ T5616]  ? bpf_lsm_file_ioctl+0xd/0x20
[  149.618906][ T5616]  ? security_file_ioctl+0x34/0xd0
[  149.618927][ T5616]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  149.618947][ T5616]  __se_sys_ioctl+0x132/0x1b0
[  149.618968][ T5616]  __x64_sys_ioctl+0x7f/0xa0
[  149.618989][ T5616]  x64_sys_call+0x1878/0x2ee0
[  149.619009][ T5616]  do_syscall_64+0x58/0xf0
[  149.619029][ T5616]  ? clear_bhb_loop+0x35/0x90
[  149.619052][ T5616]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  149.619073][ T5616] RIP: 0033:0x7f54f518e929
[  149.619088][ T5616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.619103][ T5616] RSP: 002b:00007f54f5f28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  149.619122][ T5616] RAX: ffffffffffffffda RBX: 00007f54f53b5fa0 RCX: 00007f54f518e929
[  149.619134][ T5616] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  149.619146][ T5616] RBP: 00007f54f5f28090 R08: 0000000000000000 R09: 0000000000000000
[  149.619157][ T5616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.619167][ T5616] R13: 0000000000000000 R14: 00007f54f53b5fa0 R15: 00007ffcb7d167b8
[  149.619181][ T5616]  </TASK>
[  150.126648][ T5624] binder: Bad value for 'context'
[  150.141469][ T5629] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  150.141495][ T5629] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:221
[  150.313056][ T5639] SELinux: security_context_str_to_sid (syte00000) failed with errno=-22
[  150.527902][ T5659] rust_binder: Error while translating object.
[  150.527927][ T5659] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBADF }
[  150.539110][ T5659] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EBADF } my_pid:343
[  150.662324][ T5673] rust_binder: Read failure Err(EAGAIN) in pid:1136
[  150.718397][ T5679] binder: Unknown parameter '01777777777777777777777'
[  150.806126][ T5690] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:361
[  150.808944][   T36] kauditd_printk_skb: 343 callbacks suppressed
[  150.808956][ T5690] rust_binder: Error while translating object.
[  150.808959][   T36] audit: type=1400 audit(1750362763.479:32699): avc:  denied  { transfer } for  pid=5689 comm="syz.4.1604" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  150.849825][ T5690] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  150.849856][ T5690] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:361
[  150.942361][   T36] audit: type=1400 audit(1750362763.609:32700): avc:  denied  { read write } for  pid=5699 comm="syz.4.1608" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  150.978853][   T36] audit: type=1400 audit(1750362763.609:32701): avc:  denied  { open } for  pid=5699 comm="syz.4.1608" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  151.061980][   T36] audit: type=1400 audit(1750362763.729:32702): avc:  denied  { read } for  pid=5711 comm="syz.4.1610" name="uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  151.085315][   T36] audit: type=1400 audit(1750362763.729:32703): avc:  denied  { open } for  pid=5711 comm="syz.4.1610" path="/dev/uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  151.109351][   T36] audit: type=1400 audit(1750362763.729:32704): avc:  denied  { ioctl } for  pid=5711 comm="syz.4.1610" path="/dev/uinput" dev="devtmpfs" ino=194 ioctlcmd=0x55c9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  151.144562][   T36] audit: type=1400 audit(1750362763.809:32705): avc:  denied  { write } for  pid=5715 comm="syz.2.1611" name="uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  151.219502][   T36] audit: type=1400 audit(1750362763.889:32706): avc:  denied  { read } for  pid=5719 comm="syz.5.1613" name="snapshot" dev="devtmpfs" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  151.243237][   T36] audit: type=1400 audit(1750362763.889:32707): avc:  denied  { open } for  pid=5719 comm="syz.5.1613" path="/dev/snapshot" dev="devtmpfs" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  151.266968][   T36] audit: type=1400 audit(1750362763.889:32708): avc:  denied  { mount } for  pid=5722 comm="syz.4.1614" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  151.330189][ T5727] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:381
[  151.345869][ T5734] SELinux: security_context_str_to_sid () failed with errno=-22
[  151.461829][ T5741] binder: Unknown parameter 'context'
[  151.481355][ T5745] rust_binder: Write failure EINVAL in pid:1142
[  151.528123][ T5757] input: syz0 as /devices/virtual/input/input117
[  151.566423][ T5765] binder: Unknown parameter './binderfs'
[  151.584879][ T5770] SELinux: security_context_str_to_sid () failed with errno=-22
[  151.698463][ T5780] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  151.738638][ T5784] binder: Bad value for 'context'
[  151.754731][ T5786] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  151.754800][ T5786] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  151.761864][ T5788] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  151.777683][ T5792] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  151.784654][ T5792] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1157
[  151.784902][ T5793] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1157
[  151.818992][ T5797] SELinux: security_context_str_to_sid (system_uÝGй‰:ÿß) failed with errno=-22
[  151.844322][ T5796] SELinux: failed to load policy
[  152.177603][ T5811] rtc_cmos 00:00: Alarms can be up to one day in the future
[  152.187200][ T5810] rtc_cmos 00:00: Alarms can be up to one day in the future
[  152.199202][ T5818] binder: Unknown parameter 'Ž5\PÑ3v'
[  152.235225][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.244784][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.254294][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.263572][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.272820][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.284912][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.294394][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.303885][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.314417][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.324012][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.333416][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.342824][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.363133][ T5834] rust_binder: Write failure EFAULT in pid:1178
[  152.363307][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.379133][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.392690][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.402036][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.411377][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.420702][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.430183][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.439638][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.441442][  T306] rtc_cmos 00:00: Alarms can be up to one day in the future
[  152.448960][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.466092][  T306] rtc_cmos 00:00: Alarms can be up to one day in the future
[  152.466479][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.476710][  T306] rtc_cmos 00:00: Alarms can be up to one day in the future
[  152.482830][ T5836] binder: Bad value for 'defcontext'
[  152.490482][  T306] rtc_cmos 00:00: Alarms can be up to one day in the future
[  152.496664][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.522124][ T5840] binder: Bad value for 'max'
[  152.522216][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.530945][  T306] rtc rtc0: __rtc_set_alarm: err=-22
[  152.539238][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.547088][ T5838] rust_binder: Write failure EFAULT in pid:392
[  152.554457][ T5836] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:657
[  152.562993][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.584884][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.594390][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.604077][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.613569][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.623033][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.632703][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.642577][ T5824] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  152.672162][ T5849] binder: Unknown parameter 'Ž5\PÑ3v'
[  152.806171][ T5857] binder: Unknown parameter 'ÿ'
[  152.822722][ T5859] binder: Unknown parameter 'nXI'
[  152.975917][ T5881] binder: Unknown parameter 'Ž5\PÑ3v'
[  153.144094][ T5896] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  153.184983][ T5896] kvm: requested 56152 ns i8254 timer period limited to 200000 ns
[  153.198396][ T5896] kvm: requested 86323 ns i8254 timer period limited to 200000 ns
[  153.327434][ T5924] binder: Unknown parameter 'Ž5\PÑ3v'
[  153.394258][ T5934] rust_binder: Write failure EFAULT in pid:302
[  153.676687][ T5957] binder: Unknown parameter 'Ž5\PÑ3v'
[  154.024033][ T5982] binder: Unknown parameter 'Ž5\PÑ3v'
[  154.030426][ T5977] rust_binder: Error while translating object.
[  154.030452][ T5977] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  154.036629][ T5977] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:440
[  154.167935][ T5988] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:322
[  154.191060][ T5992] binder: Unknown parameter 'Ž5\PÑ3v'
[  154.229763][ T5998] binder: Unknown parameter 'dev/ppp'
[  154.456720][ T6017] binder: Unknown parameter 'seclabdl'
[  154.466746][ T6020] binder: Unknown parameter 'Ž5\PÑ3v'
[  154.506997][ T6023] random: crng reseeded on system resumption
[  154.571393][ T6029] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  154.571437][ T6029] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:340
[  154.595986][ T6031] binder: Unknown parameter 'röw'
[  154.969696][ T6044] binder: Unknown parameter 'Ž5\PÑ3v'
[  155.425622][ T6060] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  155.446258][ T6060] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  155.541677][ T6069] binder: Unknown parameter 'Ž5\PÑ3v'
[  155.629286][ T6075] SELinux: failed to load policy
[  155.781222][ T6083] binder: Unknown parameter 'Ž5\PÑ3v'
[  155.823685][   T36] kauditd_printk_skb: 203 callbacks suppressed
[  155.823701][   T36] audit: type=1400 audit(1750362768.489:32912): avc:  denied  { setattr } for  pid=1059 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  155.889395][   T36] audit: type=1400 audit(1750362768.509:32913): avc:  denied  { read write } for  pid=6084 comm="syz.2.1735" name="ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.915379][   T36] audit: type=1400 audit(1750362768.509:32914): avc:  denied  { read write open } for  pid=6084 comm="syz.2.1735" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.941159][ T1059] audit: audit_backlog=65 > audit_backlog_limit=64
[  155.945404][   T36] audit: type=1400 audit(1750362768.509:32915): avc:  denied  { ioctl } for  pid=6084 comm="syz.2.1735" path="/dev/ashmem" dev="devtmpfs" ino=201 ioctlcmd=0x7703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.947669][ T1059] audit: audit_lost=101 audit_rate_limit=0 audit_backlog_limit=64
[  155.973336][   T36] audit: type=1400 audit(1750362768.519:32916): avc:  denied  { map } for  pid=6084 comm="syz.2.1735" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.980220][ T1059] audit: backlog limit exceeded
[  156.004252][   T36] audit: type=1400 audit(1750362768.519:32917): avc:  denied  { read } for  pid=6084 comm="syz.2.1735" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  156.037743][ T6089] audit: audit_backlog=65 > audit_backlog_limit=64
[  156.068765][ T6089] binder: Unknown parameter 'nXI'
[  156.087138][ T6091] binder: Unknown parameter 'Ž5\PÑ3v'
[  156.179440][ T6095] FAULT_INJECTION: forcing a failure.
[  156.179440][ T6095] name failslab, interval 1, probability 0, space 0, times 0
[  156.199643][ T6094] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  156.212467][ T6094] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  156.219205][ T6095] CPU: 0 UID: 0 PID: 6095 Comm: syz.2.1739 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  156.219234][ T6095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.219246][ T6095] Call Trace:
[  156.219253][ T6095]  <TASK>
[  156.219260][ T6095]  __dump_stack+0x21/0x30
[  156.219285][ T6095]  dump_stack_lvl+0x10c/0x190
[  156.219304][ T6095]  ? __cfi_dump_stack_lvl+0x10/0x10
[  156.219325][ T6095]  dump_stack+0x19/0x20
[  156.219343][ T6095]  should_fail_ex+0x3d9/0x530
[  156.219362][ T6095]  should_failslab+0xac/0x100
[  156.219384][ T6095]  kmem_cache_alloc_noprof+0x42/0x3a0
[  156.219402][ T6095]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  156.219420][ T6095]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  156.219440][ T6095]  ? pic_unlock+0x1fb/0x2a0
[  156.219458][ T6095]  kvm_mmu_topup_memory_cache+0x24/0x30
[  156.219478][ T6095]  kvm_mmu_load+0xa2/0x28a0
[  156.219496][ T6095]  ? kvm_pic_read_irq+0x2e3/0xc70
[  156.219517][ T6095]  ? kvm_apic_has_interrupt+0x4fa/0x7b0
[  156.219538][ T6095]  vcpu_run+0x4bb3/0x7260
[  156.219566][ T6095]  ? signal_pending+0xc0/0xc0
[  156.219583][ T6095]  ? __kasan_check_write+0x18/0x20
[  156.219602][ T6095]  ? xfd_validate_state+0x68/0x150
[  156.219621][ T6095]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  156.219644][ T6095]  ? __kasan_check_write+0x18/0x20
[  156.219661][ T6095]  ? fpregs_mark_activate+0x69/0x160
[  156.219684][ T6095]  ? fpu_swap_kvm_fpstate+0x44d/0x5f0
[  156.219706][ T6095]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  156.219730][ T6095]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  156.219751][ T6095]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  156.219770][ T6095]  ? kstrtoull+0x13b/0x1e0
[  156.219786][ T6095]  ? kstrtouint+0x78/0xf0
[  156.219802][ T6095]  ? ioctl_has_perm+0x1aa/0x4d0
[  156.219849][ T6095]  ? __asan_memcpy+0x5a/0x80
[  156.219875][ T6095]  ? ioctl_has_perm+0x3e0/0x4d0
[  156.219896][ T6095]  ? has_cap_mac_admin+0xd0/0xd0
[  156.219918][ T6095]  ? __kasan_check_write+0x18/0x20
[  156.219940][ T6095]  ? mutex_lock_killable+0x92/0x1c0
[  156.219958][ T6095]  ? __cfi_mutex_lock_killable+0x10/0x10
[  156.219975][ T6095]  ? proc_fail_nth_write+0x17e/0x210
[  156.219993][ T6095]  kvm_vcpu_ioctl+0x96f/0xee0
[  156.220013][ T6095]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  156.220034][ T6095]  ? __cfi_vfs_write+0x10/0x10
[  156.220053][ T6095]  ? __kasan_check_write+0x18/0x20
[  156.220077][ T6095]  ? mutex_unlock+0x8b/0x240
[  156.220092][ T6095]  ? __cfi_mutex_unlock+0x10/0x10
[  156.220104][ T6095]  ? __fget_files+0x2c5/0x340
[  156.220123][ T6095]  ? __fget_files+0x2c5/0x340
[  156.220143][ T6095]  ? bpf_lsm_file_ioctl+0xd/0x20
[  156.220162][ T6095]  ? security_file_ioctl+0x34/0xd0
[  156.220183][ T6095]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  156.220204][ T6095]  __se_sys_ioctl+0x132/0x1b0
[  156.220227][ T6095]  __x64_sys_ioctl+0x7f/0xa0
[  156.220247][ T6095]  x64_sys_call+0x1878/0x2ee0
[  156.220268][ T6095]  do_syscall_64+0x58/0xf0
[  156.220288][ T6095]  ? clear_bhb_loop+0x35/0x90
[  156.220311][ T6095]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  156.220334][ T6095] RIP: 0033:0x7f708078e929
[  156.220350][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.220364][ T6095] RSP: 002b:00007f7081676038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  156.220390][ T6095] RAX: ffffffffffffffda RBX: 00007f70809b5fa0 RCX: 00007f708078e929
[  156.220404][ T6095] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  156.220417][ T6095] RBP: 00007f7081676090 R08: 0000000000000000 R09: 0000000000000000
[  156.220429][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.220441][ T6095] R13: 0000000000000000 R14: 00007f70809b5fa0 R15: 00007ffcd5be7af8
[  156.220454][ T6095]  </TASK>
[  156.221693][ T6094] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:474
[  156.702077][ T6105] binder: Unknown parameter 'context'
[  156.801408][ T6109] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  156.909143][ T6114] binder: Unknown parameter 'Ž5\PÑ3v'
[  157.129234][ T6120] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[  157.169160][ T6123] binder: Unknown parameter 'Ž5\PÑ3v'
[  157.214412][ T6125] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  157.356974][ T6135] binder: Bad value for 'max'
[  157.365160][ T6130] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  157.397960][ T6133] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  157.975523][ T6159] binder: Unknown parameter 'nXI'
[  158.142656][ T6164] SELinux: failed to load policy
[  158.432947][ T6174] binder: Unknown parameter 'Ž5\PÑ3v'
[  158.720460][ T6183] binder: Bad value for 'stats'
[  158.796150][ T6184] kvm: kvm [6176]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000002a) = 0x4000000
[  159.049350][ T6193] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  159.349151][ T6203] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  159.421666][ T6203] rust_binder: Write failure EFAULT in pid:508
[  159.520834][ T6208] binder: Unknown parameter 'Ž5\PÑ3v'
[  159.659254][ T6212] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  159.939975][ T6222] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  159.946317][ T6222] rust_binder: Write failure EINVAL in pid:400
[  160.308790][ T6240] binder: Unknown parameter '#ontextüyystem'¦öq'
[  160.360493][ T6243] binder: Unknown parameter '#ontextüyystem'¦öq'
[  160.379312][ T6242] binder: Unknown parameter 'Ž5\PÑ3v'
[  160.508692][ T6245] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  160.565056][ T6246] rust_binder: Failed copying remainder into alloc: EFAULT
[  160.589510][ T6246] rust_binder: Failure in apply_sg: BR_FAILED_REPLY { source: EFAULT }
[  160.609519][ T6246] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  160.631598][ T6246] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:774
[  160.681191][ T6252] binder: Binderfs stats mode cannot be changed during a remount
[  160.828667][   T36] kauditd_printk_skb: 3534 callbacks suppressed
[  160.828683][   T36] audit: type=1400 audit(1750362773.499:36321): avc:  denied  { setattr } for  pid=1059 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  160.891702][   T36] audit: type=1400 audit(1750362773.529:36322): avc:  denied  { setattr } for  pid=1059 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  160.945417][ T1059] audit: audit_backlog=65 > audit_backlog_limit=64
[  160.961952][ T4203] audit: audit_backlog=65 > audit_backlog_limit=64
[  160.963245][ T6257] audit: audit_backlog=65 > audit_backlog_limit=64
[  160.969486][   T36] audit: type=1400 audit(1750362773.529:36323): avc:  denied  { setattr } for  pid=1059 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  160.987905][ T6257] audit: audit_lost=146 audit_rate_limit=0 audit_backlog_limit=64
[  160.998837][ T4203] audit: audit_lost=147 audit_rate_limit=0 audit_backlog_limit=64
[  161.006256][ T1059] audit: audit_lost=148 audit_rate_limit=0 audit_backlog_limit=64
[  161.015029][ T4203] audit: backlog limit exceeded
[  161.217905][ T6267] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:415
[  161.221630][ T6269] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  161.264861][ T6269] rust_binder: Error in use_page_slow: ESRCH
[  161.278020][ T6269] rust_binder: use_range failure ESRCH
[  161.294567][ T6269] rust_binder: Failed to allocate buffer. len:4240, is_oneway:false
[  161.326610][ T6269] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  161.341960][ T6269] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:536
[  161.367760][ T6273] binder: Unknown parameter 'Ž5\PÑ3v'
[  161.369352][ T6271] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  161.438909][ T6275] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:417
[  161.450584][ T6276] rust_binder: Error in use_page_slow: ESRCH
[  161.479654][ T6276] rust_binder: use_range failure ESRCH
[  161.502936][ T6275] rust_binder: Error in use_page_slow: ESRCH
[  161.520302][ T6276] rust_binder: Failed to allocate buffer. len:4096, is_oneway:false
[  161.526317][ T6276] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  161.558170][ T6280] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 1
[  161.562284][ T6275] rust_binder: use_range failure ESRCH
[  161.593795][ T6280] rust_binder: Write failure EINVAL in pid:780
[  161.624531][ T6276] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:417
[  161.655011][ T6275] rust_binder: Failed to allocate buffer. len:24, is_oneway:false
[  161.701170][ T6275] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  161.738974][ T6275] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:417
[  162.327580][ T6297] FAULT_INJECTION: forcing a failure.
[  162.327580][ T6297] name failslab, interval 1, probability 0, space 0, times 0
[  162.365791][ T6297] CPU: 0 UID: 0 PID: 6297 Comm: syz.4.1807 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  162.365822][ T6297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.365833][ T6297] Call Trace:
[  162.365839][ T6297]  <TASK>
[  162.365847][ T6297]  __dump_stack+0x21/0x30
[  162.365873][ T6297]  dump_stack_lvl+0x10c/0x190
[  162.365891][ T6297]  ? __cfi_dump_stack_lvl+0x10/0x10
[  162.365908][ T6297]  dump_stack+0x19/0x20
[  162.365925][ T6297]  should_fail_ex+0x3d9/0x530
[  162.365944][ T6297]  should_failslab+0xac/0x100
[  162.365966][ T6297]  kmem_cache_alloc_noprof+0x42/0x3a0
[  162.365986][ T6297]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  162.366009][ T6297]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  162.366030][ T6297]  ? pic_unlock+0x1fb/0x2a0
[  162.366051][ T6297]  kvm_mmu_topup_memory_cache+0x24/0x30
[  162.366071][ T6297]  kvm_mmu_load+0xa2/0x28a0
[  162.366089][ T6297]  ? kvm_pic_read_irq+0x2e3/0xc70
[  162.366111][ T6297]  ? kvm_apic_has_interrupt+0x4fa/0x7b0
[  162.366130][ T6297]  vcpu_run+0x4bb3/0x7260
[  162.366159][ T6297]  ? signal_pending+0xc0/0xc0
[  162.366176][ T6297]  ? __kasan_check_write+0x18/0x20
[  162.366195][ T6297]  ? xfd_validate_state+0x68/0x150
[  162.366213][ T6297]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  162.366236][ T6297]  ? __kasan_check_write+0x18/0x20
[  162.366254][ T6297]  ? fpregs_mark_activate+0x69/0x160
[  162.366277][ T6297]  ? fpu_swap_kvm_fpstate+0x44d/0x5f0
[  162.366301][ T6297]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  162.366322][ T6297]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  162.366341][ T6297]  ? kstrtoull+0x13b/0x1e0
[  162.366357][ T6297]  ? kstrtouint+0x78/0xf0
[  162.366373][ T6297]  ? ioctl_has_perm+0x1aa/0x4d0
[  162.366396][ T6297]  ? __asan_memcpy+0x5a/0x80
[  162.366414][ T6297]  ? ioctl_has_perm+0x3e0/0x4d0
[  162.366447][ T6297]  ? has_cap_mac_admin+0xd0/0xd0
[  162.366468][ T6297]  ? __kasan_check_write+0x18/0x20
[  162.366487][ T6297]  ? mutex_lock_killable+0x92/0x1c0
[  162.366505][ T6297]  ? __cfi_mutex_lock_killable+0x10/0x10
[  162.366521][ T6297]  ? proc_fail_nth_write+0x17e/0x210
[  162.366539][ T6297]  kvm_vcpu_ioctl+0x96f/0xee0
[  162.366560][ T6297]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  162.366582][ T6297]  ? __cfi_vfs_write+0x10/0x10
[  162.366601][ T6297]  ? __kasan_check_write+0x18/0x20
[  162.366619][ T6297]  ? mutex_unlock+0x8b/0x240
[  162.366635][ T6297]  ? __cfi_mutex_unlock+0x10/0x10
[  162.366650][ T6297]  ? __fget_files+0x2c5/0x340
[  162.366672][ T6297]  ? __fget_files+0x2c5/0x340
[  162.366692][ T6297]  ? bpf_lsm_file_ioctl+0xd/0x20
[  162.366710][ T6297]  ? security_file_ioctl+0x34/0xd0
[  162.366732][ T6297]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  162.366752][ T6297]  __se_sys_ioctl+0x132/0x1b0
[  162.366774][ T6297]  __x64_sys_ioctl+0x7f/0xa0
[  162.366795][ T6297]  x64_sys_call+0x1878/0x2ee0
[  162.366816][ T6297]  do_syscall_64+0x58/0xf0
[  162.366836][ T6297]  ? clear_bhb_loop+0x35/0x90
[  162.366860][ T6297]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  162.366882][ T6297] RIP: 0033:0x7f5b8b98e929
[  162.366897][ T6297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.366913][ T6297] RSP: 002b:00007f5b8c783038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.366932][ T6297] RAX: ffffffffffffffda RBX: 00007f5b8bbb5fa0 RCX: 00007f5b8b98e929
[  162.366958][ T6297] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  162.366969][ T6297] RBP: 00007f5b8c783090 R08: 0000000000000000 R09: 0000000000000000
[  162.366982][ T6297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.366993][ T6297] R13: 0000000000000000 R14: 00007f5b8bbb5fa0 R15: 00007fff09f49eb8
[  162.367008][ T6297]  </TASK>
[  162.896937][ T6311] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  162.951232][ T6312] rust_binder: Write failure EINVAL in pid:430
[  162.987348][ T6314] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  163.244262][ T6321] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  163.257743][ T6321] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 128, limit: 168, size: 255)
[  163.265320][ T6321] rust_binder: Error while translating object.
[  163.276780][ T6321] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  163.283703][ T6321] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:789
[  163.569800][ T6331] serio: Serial port ttynull
[  164.210775][ T6342] __vm_enough_memory: pid: 6342, comm: syz.2.1819, bytes: 281474976845824 not enough memory for the allocation
[  164.235394][ T6343] __vm_enough_memory: pid: 6343, comm: syz.2.1819, bytes: 281474976845824 not enough memory for the allocation
[  164.446230][ T6345] binder: Unknown parameter 'stat’'
[  164.815898][ T6356] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:800
[  164.820604][ T6356] input: syz0 as /devices/virtual/input/input124
[  164.949761][ T6356] rust_binder: Error while translating object.
[  164.949799][ T6356] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  164.956055][ T6356] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:800
[  164.993315][ T6360] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  164.998782][ T6361] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:800
[  165.112924][ T6364] binder: Unknown parameter 'context'
[  165.177027][ T6367] rust_binder: Error while translating object.
[  165.177081][ T6367] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBADF }
[  165.199467][ T6367] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EBADF } my_pid:805
[  165.279885][ T6370] FAULT_INJECTION: forcing a failure.
[  165.279885][ T6370] name failslab, interval 1, probability 0, space 0, times 0
[  165.329296][ T6370] CPU: 0 UID: 0 PID: 6370 Comm: syz.5.1827 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  165.329327][ T6370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.329339][ T6370] Call Trace:
[  165.329345][ T6370]  <TASK>
[  165.329354][ T6370]  __dump_stack+0x21/0x30
[  165.329378][ T6370]  dump_stack_lvl+0x10c/0x190
[  165.329397][ T6370]  ? __cfi_dump_stack_lvl+0x10/0x10
[  165.329417][ T6370]  dump_stack+0x19/0x20
[  165.329435][ T6370]  should_fail_ex+0x3d9/0x530
[  165.329454][ T6370]  should_failslab+0xac/0x100
[  165.329476][ T6370]  kmem_cache_alloc_noprof+0x42/0x3a0
[  165.329494][ T6370]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  165.329516][ T6370]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  165.329537][ T6370]  ? pic_unlock+0x1fb/0x2a0
[  165.329557][ T6370]  kvm_mmu_topup_memory_cache+0x24/0x30
[  165.329576][ T6370]  kvm_mmu_load+0xa2/0x28a0
[  165.329592][ T6370]  ? kvm_pic_read_irq+0x2e3/0xc70
[  165.329612][ T6370]  ? kvm_apic_has_interrupt+0x4fa/0x7b0
[  165.329631][ T6370]  vcpu_run+0x4bb3/0x7260
[  165.329656][ T6370]  ? signal_pending+0xc0/0xc0
[  165.329674][ T6370]  ? __kasan_check_write+0x18/0x20
[  165.329693][ T6370]  ? xfd_validate_state+0x68/0x150
[  165.329711][ T6370]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  165.329734][ T6370]  ? __kasan_check_write+0x18/0x20
[  165.329752][ T6370]  ? fpregs_mark_activate+0x69/0x160
[  165.329774][ T6370]  ? fpu_swap_kvm_fpstate+0x44d/0x5f0
[  165.329795][ T6370]  ? fpu_swap_kvm_fpstate+0x93/0x5f0
[  165.329817][ T6370]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  165.329838][ T6370]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  165.329856][ T6370]  ? kstrtoull+0x13b/0x1e0
[  165.329873][ T6370]  ? kstrtouint+0x78/0xf0
[  165.329889][ T6370]  ? ioctl_has_perm+0x1aa/0x4d0
[  165.329912][ T6370]  ? __asan_memcpy+0x5a/0x80
[  165.329930][ T6370]  ? ioctl_has_perm+0x3e0/0x4d0
[  165.329952][ T6370]  ? has_cap_mac_admin+0xd0/0xd0
[  165.329974][ T6370]  ? __kasan_check_write+0x18/0x20
[  165.329991][ T6370]  ? mutex_lock_killable+0x92/0x1c0
[  165.330009][ T6370]  ? __cfi_mutex_lock_killable+0x10/0x10
[  165.330026][ T6370]  ? proc_fail_nth_write+0x17e/0x210
[  165.330044][ T6370]  kvm_vcpu_ioctl+0x96f/0xee0
[  165.330067][ T6370]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  165.330087][ T6370]  ? __cfi_vfs_write+0x10/0x10
[  165.330103][ T6370]  ? __kasan_check_write+0x18/0x20
[  165.330119][ T6370]  ? mutex_unlock+0x8b/0x240
[  165.330134][ T6370]  ? __cfi_mutex_unlock+0x10/0x10
[  165.330149][ T6370]  ? __fget_files+0x2c5/0x340
[  165.330172][ T6370]  ? __fget_files+0x2c5/0x340
[  165.330193][ T6370]  ? bpf_lsm_file_ioctl+0xd/0x20
[  165.330211][ T6370]  ? security_file_ioctl+0x34/0xd0
[  165.330241][ T6370]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  165.330261][ T6370]  __se_sys_ioctl+0x132/0x1b0
[  165.330284][ T6370]  __x64_sys_ioctl+0x7f/0xa0
[  165.330304][ T6370]  x64_sys_call+0x1878/0x2ee0
[  165.330330][ T6370]  do_syscall_64+0x58/0xf0
[  165.330350][ T6370]  ? clear_bhb_loop+0x35/0x90
[  165.330373][ T6370]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  165.330397][ T6370] RIP: 0033:0x7f4d4f58e929
[  165.330412][ T6370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.330426][ T6370] RSP: 002b:00007f4d5035e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  165.330448][ T6370] RAX: ffffffffffffffda RBX: 00007f4d4f7b5fa0 RCX: 00007f4d4f58e929
[  165.330462][ T6370] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  165.330473][ T6370] RBP: 00007f4d5035e090 R08: 0000000000000000 R09: 0000000000000000
[  165.330484][ T6370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.330495][ T6370] R13: 0000000000000000 R14: 00007f4d4f7b5fa0 R15: 00007ffd42dea9b8
[  165.330509][ T6370]  </TASK>
[  165.837995][   T36] kauditd_printk_skb: 4467 callbacks suppressed
[  165.838011][   T36] audit: type=1400 audit(1750362778.509:40789): avc:  denied  { read } for  pid=6375 comm="syz.5.1830" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  165.902804][ T6377] audit: audit_backlog=65 > audit_backlog_limit=64
[  165.909378][ T6377] audit: audit_lost=149 audit_rate_limit=0 audit_backlog_limit=64
[  165.911825][ T1059] audit: audit_backlog=65 > audit_backlog_limit=64
[  165.917209][ T6377] audit: backlog limit exceeded
[  165.928952][   T36] audit: type=1400 audit(1750362778.509:40790): avc:  denied  { read open } for  pid=6375 comm="syz.5.1830" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  165.947834][ T1059] audit: audit_lost=150 audit_rate_limit=0 audit_backlog_limit=64
[  165.952602][   T36] audit: type=1400 audit(1750362778.509:40791): avc:  denied  { read } for  pid=6375 comm="syz.5.1830" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  165.973220][ T1059] audit: backlog limit exceeded
[  165.998656][   T36] audit: type=1400 audit(1750362778.509:40792): avc:  denied  { read open } for  pid=6375 comm="syz.5.1830" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  166.102024][ T6382] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:580
[  166.358636][ T6392] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:455
[  166.392576][ T6392] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  166.816585][ T6405] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  166.932175][ T6412] rust_binder: Error in use_page_slow: ESRCH
[  166.932201][ T6412] rust_binder: use_range failure ESRCH
[  166.940584][ T6413] rust_binder: Write failure EFAULT in pid:465
[  166.946362][ T6412] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[  166.953543][ T6412] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  166.962101][ T6412] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:816
[  167.145473][ T6418] input: syz1 as /devices/virtual/input/input125
[  167.220951][ T6418] random: crng reseeded on system resumption
[  167.770958][ T6432] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:469
[  168.037719][ T6444] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:831
[  168.040735][ T6439] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  168.097439][ T6439] rust_binder: Error while translating object.
[  168.129352][ T6439] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  168.142929][ T6439] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:475
[  168.185549][ T6439] binder: Unknown parameter 'dont_hash'
[  168.209183][   T60] bridge_slave_1: left allmulticast mode
[  168.219131][   T60] bridge_slave_1: left promiscuous mode
[  168.224769][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.272555][   T60] bridge_slave_0: left allmulticast mode
[  168.287890][   T60] bridge_slave_0: left promiscuous mode
[  168.294287][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.430522][ T6453] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  168.443345][   T60] veth1_macvtap: left promiscuous mode
[  168.467902][   T60] veth0_vlan: left promiscuous mode
[  168.488261][ T6453] SELinux: failed to load policy
[  168.548532][ T6453] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  168.601763][ T6449] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.615295][ T6449] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.623583][ T6449] bridge_slave_0: entered allmulticast mode
[  168.630602][ T6449] bridge_slave_0: entered promiscuous mode
[  168.639557][ T6449] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.646669][ T6449] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.654731][ T6449] bridge_slave_1: entered allmulticast mode
[  168.661172][ T6449] bridge_slave_1: entered promiscuous mode
[  168.764807][ T6449] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.771903][ T6449] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.779217][ T6449] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.786276][ T6449] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.909442][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.919136][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.931555][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.938647][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.954687][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.961783][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.012946][ T6463] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  169.018233][ T6464] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:481
[  169.064632][ T6449] veth0_vlan: entered promiscuous mode
[  169.129478][ T6466] SELinux: failed to load policy
[  169.134942][ T6449] veth1_macvtap: entered promiscuous mode
[  169.195126][ T6469] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  169.195171][ T6469] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:843
[  169.377404][ T6478] input: syz0 as /devices/virtual/input/input126
[  169.404200][ T6478] input: failed to attach handler leds to device input126, error: -6
[  169.422813][ T6477] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[  169.422837][ T6477] rust_binder: Failure in copy_transaction_data: BR_DEAD_REPLY
[  169.438377][ T6477] rust_binder: Failure BR_DEAD_REPLY during reply - delivering BR_FAILED_REPLY to sender.
[  169.462458][ T6477] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  169.483533][ T6477] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  169.503847][ T6477] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:2
[  170.310762][ T6484] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:484
[  170.311837][ T6486] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  170.336995][ T6486] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:850
[  170.356593][ T6486] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  170.385745][ T6486] rust_binder: Read failure Err(EFAULT) in pid:850
[  170.513055][ T6501] binder: Unknown parameter 'pcr'
[  170.577909][ T6507] input: syz0 as /devices/virtual/input/input127
[  170.612942][ T6507] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  170.721021][ T6509] rust_binder: Write failure EFAULT in pid:860
[  170.848119][   T36] kauditd_printk_skb: 2336 callbacks suppressed
[  170.848136][   T36] audit: type=1400 audit(1750362783.519:42844): avc:  denied  { read } for  pid=6510 comm="syz.2.1867" name="binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  170.909869][   T36] audit: type=1400 audit(1750362783.519:42845): avc:  denied  { read open } for  pid=6510 comm="syz.2.1867" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  170.945983][   T36] audit: type=1400 audit(1750362783.519:42846): avc:  denied  { read } for  pid=6510 comm="syz.2.1867" name="binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  170.980703][   T36] audit: type=1400 audit(1750362783.519:42847): avc:  denied  { read open } for  pid=6510 comm="syz.2.1867" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.005802][   T36] audit: type=1400 audit(1750362783.519:42848): avc:  denied  { read } for  pid=6510 comm="syz.2.1867" name="binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.029145][   T36] audit: type=1400 audit(1750362783.519:42849): avc:  denied  { read open } for  pid=6510 comm="syz.2.1867" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.055061][   T36] audit: type=1400 audit(1750362783.519:42850): avc:  denied  { read } for  pid=6510 comm="syz.2.1867" name="binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.080105][   T36] audit: type=1400 audit(1750362783.519:42851): avc:  denied  { read open } for  pid=6510 comm="syz.2.1867" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.105149][   T36] audit: type=1400 audit(1750362783.519:42852): avc:  denied  { read } for  pid=6510 comm="syz.2.1867" name="binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.152286][   T36] audit: type=1400 audit(1750362783.519:42853): avc:  denied  { read open } for  pid=6510 comm="syz.2.1867" path="/dev/binderfs/binder0" dev="binder" ino=42 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  171.310552][ T6521] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  171.312418][ T6521] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  171.445983][ T6521] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  171.472393][ T6521] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:602
[  171.729042][ T6537] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  172.002508][ T6556] KVM: debugfs: duplicate directory 6556-5
[  172.045867][ T6556] binder: Unknown parameter 'fsconlext?}'
[  172.177563][ T6559] binder: Unknown parameter '"w'
[  172.693405][ T6586] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:36
[  172.728138][ T6586] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:36
[  172.941211][ T6590] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  173.112669][ T6604] kvm: kvm [6602]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010000) = 0x79a38c48ff000000
[  173.180812][ T6604] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  173.238545][ T6604] rust_binder: Write failure EINVAL in pid:506
[  173.292724][ T6608] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  173.322510][ T6610] SELinux: failed to load policy
[  173.421824][ T6621] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  173.695495][ T6625] rust_binder: Write failure EINVAL in pid:630
[  173.842706][ T6639] binder: Unknown parameter 'processor	: 0
[  173.842706][ T6639] vendor_id	: GenuineIntel
[  173.842706][ T6639] cpu family	: 6
[  173.842706][ T6639] model		: 79
[  173.842706][ T6639] model name	: Intel(R) Xeon(R) CPU @ 2.20GHz
[  173.842706][ T6639] stepping	: 0
[  173.842706][ T6639] microcode	: 0xffffffff
[  173.842706][ T6639] cpu MHz		: 2200.160
[  173.842706][ T6639] cache size	: 56320 KB
[  173.842706][ T6639] physical id	: 0
[  173.842706][ T6639] siblings	: 2
[  173.842706][ T6639] core id		: 0
[  173.842706][ T6639] cpu cores	: 1
[  173.842706][ T6639] apicid		: 0
[  173.842706][ T6639] initial apicid	: 0
[  173.842706][ T6639] fpu		: yes
[  173.842706][ T6639] fpu_exception	: yes
[  173.842706][ T6639] cpuid level	: 13
[  173.842706][ T6639] wp		: yes
[  173.842706][ T6639] flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc cpuid tsc_known_freq pni pclmulqdq vmx ssse3 fma cx16 sse4_1 sse4_2 x2apic movbe popcnt aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch pti ssbd ibrs ibpb stibp tpr_shadow flexpriority ept vpid ept_ad fsgsbase tsc_adjust bmi1 hle avx2 smep bmi2 erms invpcid rtm rdseed adx smap xsaveopt arat vnmi md_clear arch_capabilities
[  173.842706][ T6639] vmx flags	: vnmi preemption_timer invvpid ept_x_only ept_ad flexpriority tsc_offset vtpr mtf vapic ept vpid unrestricted_guest vapi
[  173.888790][ T6641] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  174.093821][ T6646] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  174.116490][ T6646] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:634
[  174.118604][ T6648] __vm_enough_memory: pid: 6648, comm: syz.6.1914, bytes: 281474976845824 not enough memory for the allocation
[  174.263943][ T6654] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  174.269104][ T6650] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:901
[  174.312232][ T6655] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[  174.348686][ T6655] rust_binder: Error while translating object.
[  174.361884][ T6655] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  174.368814][ T6655] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:636
[  174.481584][ T6666] random: crng reseeded on system resumption
[  174.574720][ T6672] rust_binder: Failed copying remainder into alloc: EFAULT
[  174.574747][ T6672] rust_binder: Failure in apply_sg: BR_FAILED_REPLY { source: EFAULT }
[  174.600852][ T6672] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  174.621320][ T6672] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:906
[  174.718387][ T6676] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  174.848101][ T6677] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:642
[  174.929001][ T6688] rust_binder: Write failure EFAULT in pid:913
[  174.978069][ T6696] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  175.011063][ T6696] rust_binder: Error in use_page_slow: ESRCH
[  175.020982][ T6696] rust_binder: use_range failure ESRCH
[  175.027094][ T6696] rust_binder: Failed to allocate buffer. len:4232, is_oneway:false
[  175.038036][ T6696] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  175.067768][ T6696] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:528
[  175.094130][ T6699] binder: Unknown parameter 'naÛ€žç'
[  175.175837][ T6702] random: crng reseeded on system resumption
[  175.329107][ T6706] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  175.337958][ T6706] rust_binder: Write failure EINVAL in pid:530
[  175.368112][ T6704] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[  175.376062][ T6704] rust_binder: Failure in copy_transaction_data: BR_DEAD_REPLY
[  175.416387][ T6704] rust_binder: Failure BR_DEAD_REPLY during reply - delivering BR_FAILED_REPLY to sender.
[  175.549881][ T6720] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  175.612980][ T6727] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[  175.620310][ T6725] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[  175.628936][ T6725] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:538
[  175.639145][ T6726] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[  175.657951][ T6725] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  175.677902][ T6725] rust_binder: Read failure Err(EFAULT) in pid:538
[  175.859987][   T36] kauditd_printk_skb: 1040 callbacks suppressed
[  175.860005][   T36] audit: type=1400 audit(1750362788.529:43894): avc:  denied  { write } for  pid=6741 comm="syz.5.1942" name="pfkey" dev="proc" ino=4026532651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  175.947877][   T36] audit: type=1400 audit(1750362788.559:43895): avc:  denied  { write } for  pid=6741 comm="syz.5.1942" name="pfkey" dev="proc" ino=4026532651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  175.997415][   T36] audit: type=1400 audit(1750362788.569:43896): avc:  denied  { read write } for  pid=6741 comm="syz.5.1942" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  176.031150][ T6745] audit: audit_backlog=65 > audit_backlog_limit=64
[  176.037707][ T6745] audit: audit_lost=246 audit_rate_limit=0 audit_backlog_limit=64
[  176.045252][   T36] audit: type=1400 audit(1750362788.569:43897): avc:  denied  { read open } for  pid=6741 comm="syz.5.1942" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  176.067698][ T6740] audit: audit_backlog=65 > audit_backlog_limit=64
[  176.085397][ T6740] audit: audit_lost=247 audit_rate_limit=0 audit_backlog_limit=64
[  176.098264][ T6749] audit: audit_backlog=65 > audit_backlog_limit=64
[  176.102626][   T36] audit: type=1400 audit(1750362788.569:43898): avc:  denied  { map } for  pid=6741 comm="syz.5.1942" path="/dev/rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  176.183482][ T6752] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  176.186265][ T6752] rust_binder: Error while translating object.
[  176.207715][ T6752] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  176.248608][ T6752] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:666
[  176.587993][ T6767] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  176.720962][ T6772] input: syz1 as /devices/virtual/input/input129
[  176.789017][ T6767] binder: Unknown parameter 'non'
[  176.860891][ T6779] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000000 not found
[  176.870182][ T6779] rust_binder: Write failure EINVAL in pid:673
[  176.970777][ T6784] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:676
[  177.136908][ T6795] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  177.172194][ T6795] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:678
[  177.213332][ T6795] kvm: kvm [6792]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x882
[  177.268219][ T6802] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  177.288796][ T6802] rust_binder: Failed to allocate buffer. len:144, is_oneway:false
[  177.323272][ T6804] SELinux: security_context_str_to_sid () failed with errno=-22
[  177.372074][ T6795] rust_binder: Error while translating object.
[  177.372126][ T6795] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  177.397882][ T6795] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:678
[  177.518401][ T6812] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  177.597710][ T6817] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  177.641508][ T6817] rust_binder: Write failure EINVAL in pid:559
[  177.811611][ T6828] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  177.819945][ T6825] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  178.038218][ T6846] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  178.078964][ T6846] rust_binder: Error while translating object.
[  178.091018][ T6846] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  178.097339][ T6846] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:686
[  178.150371][ T6847] kvm: user requested TSC rate below hardware speed
[  178.244482][ T6860] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  178.304967][ T6860] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[  178.311551][ T6860] rust_binder: Error while translating object.
[  178.354296][ T6860] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  178.395367][ T6865] rust_binder: Write failure EFAULT in pid:579
[  178.418426][ T6866] rust_binder: Write failure EFAULT in pid:88
[  178.431235][ T6860] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:579
[  178.554637][ T6875] binder: Bad value for 'max'
[  178.647609][ T6875] binder: Bad value for 'max'
[  178.746682][ T6884] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:693
[  178.746719][ T6884] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  178.763077][ T6884] rust_binder: Read failure Err(EFAULT) in pid:693
[  178.779463][ T6886] FAULT_INJECTION: forcing a failure.
[  178.779463][ T6886] name failslab, interval 1, probability 0, space 0, times 0
[  178.827910][ T6886] CPU: 1 UID: 0 PID: 6886 Comm: syz.2.1987 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  178.827942][ T6886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.827954][ T6886] Call Trace:
[  178.827961][ T6886]  <TASK>
[  178.827969][ T6886]  __dump_stack+0x21/0x30
[  178.827992][ T6886]  dump_stack_lvl+0x10c/0x190
[  178.828011][ T6886]  ? __cfi_dump_stack_lvl+0x10/0x10
[  178.828030][ T6886]  ? stack_depot_save_flags+0x38/0x800
[  178.828051][ T6886]  dump_stack+0x19/0x20
[  178.828068][ T6886]  should_fail_ex+0x3d9/0x530
[  178.828086][ T6886]  should_failslab+0xac/0x100
[  178.828107][ T6886]  __kmalloc_node_noprof+0x6c/0x450
[  178.828126][ T6886]  ? __kvmalloc_node_noprof+0x11d/0x300
[  178.828146][ T6886]  __kvmalloc_node_noprof+0x11d/0x300
[  178.828164][ T6886]  ? __cfi___kvmalloc_node_noprof+0x10/0x10
[  178.828182][ T6886]  ? __kasan_check_write+0x18/0x20
[  178.828198][ T6886]  ? enqueue_timer+0x1a4/0x480
[  178.828216][ T6886]  __kvm_mmu_topup_memory_cache+0x5f0/0x860
[  178.828234][ T6886]  ? mutex_unlock+0x8b/0x240
[  178.828251][ T6886]  ? __cfi_mutex_unlock+0x10/0x10
[  178.828267][ T6886]  kvm_mmu_topup_memory_cache+0x24/0x30
[  178.828288][ T6886]  kvm_mmu_load+0xa2/0x28a0
[  178.828305][ T6886]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  178.828325][ T6886]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  178.828346][ T6886]  vcpu_run+0x4bb3/0x7260
[  178.828376][ T6886]  ? signal_pending+0xc0/0xc0
[  178.828392][ T6886]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  178.828416][ T6886]  ? __kasan_check_write+0x18/0x20
[  178.828433][ T6886]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  178.828473][ T6886]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  178.828493][ T6886]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  178.828517][ T6886]  ? __kasan_check_write+0x18/0x20
[  178.828532][ T6886]  ? mutex_lock_killable+0x92/0x1c0
[  178.828556][ T6886]  kvm_vcpu_ioctl+0x96f/0xee0
[  178.828578][ T6886]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  178.828599][ T6886]  ? __cfi_vfs_write+0x10/0x10
[  178.828618][ T6886]  ? __kasan_check_write+0x18/0x20
[  178.828636][ T6886]  ? mutex_unlock+0x8b/0x240
[  178.828652][ T6886]  ? __cfi_mutex_unlock+0x10/0x10
[  178.828668][ T6886]  ? __fget_files+0x2c5/0x340
[  178.828688][ T6886]  ? __fget_files+0x2c5/0x340
[  178.828706][ T6886]  ? bpf_lsm_file_ioctl+0xd/0x20
[  178.828722][ T6886]  ? security_file_ioctl+0x34/0xd0
[  178.828742][ T6886]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  178.828761][ T6886]  __se_sys_ioctl+0x132/0x1b0
[  178.828781][ T6886]  __x64_sys_ioctl+0x7f/0xa0
[  178.828802][ T6886]  x64_sys_call+0x1878/0x2ee0
[  178.828823][ T6886]  do_syscall_64+0x58/0xf0
[  178.828844][ T6886]  ? clear_bhb_loop+0x35/0x90
[  178.828867][ T6886]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  178.828891][ T6886] RIP: 0033:0x7f708078e929
[  178.828906][ T6886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.828920][ T6886] RSP: 002b:00007f7081676038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  178.828941][ T6886] RAX: ffffffffffffffda RBX: 00007f70809b5fa0 RCX: 00007f708078e929
[  178.828955][ T6886] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  178.828967][ T6886] RBP: 00007f7081676090 R08: 0000000000000000 R09: 0000000000000000
[  178.828979][ T6886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.828991][ T6886] R13: 0000000000000000 R14: 00007f70809b5fa0 R15: 00007ffcd5be7af8
[  178.829006][ T6886]  </TASK>
[  179.562267][ T6910] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[  179.608118][ T6913] SELinux: failed to load policy
[  179.798027][ T6921] SELinux: failed to load policy
[  180.000318][ T6944] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  180.049303][ T6944] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  180.049328][ T6944] rust_binder: Read failure Err(EFAULT) in pid:705
[  180.068153][ T6946] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  180.074687][ T6946] rust_binder: Read failure Err(EFAULT) in pid:705
[  180.149084][ T6949] binder: Bad value for 'stats'
[  180.311667][ T6956] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  180.485946][ T6964] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  180.503748][ T6962] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  180.670438][ T6973] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  180.689771][ T6973] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[  180.719807][ T6973] rust_binder: Error while translating object.
[  180.735615][ T6973] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  180.741974][ T6973] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:714
[  180.825699][ T6981] binder: Unknown parameter 'seclabell'
[  180.867927][   T36] kauditd_printk_skb: 1452 callbacks suppressed
[  180.867943][   T36] audit: type=1400 audit(1750362793.539:45269): avc:  denied  { read write open } for  pid=6977 comm="syz.2.2013" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  180.907092][ T6978] rust_binder: Got transaction with invalid offset.
[  180.907133][ T6978] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  180.932185][ T6978] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:986
[  180.976300][   T36] audit: type=1400 audit(1750362793.569:45270): avc:  denied  { ioctl } for  pid=6977 comm="syz.2.2013" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  180.989783][ T6987] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  181.057856][   T36] audit: type=1400 audit(1750362793.569:45271): avc:  denied  { ioctl } for  pid=6977 comm="syz.2.2013" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 ioctlcmd=0xaf21 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  181.152917][ T6990] binder: Bad value for 'max'
[  181.157871][   T36] audit: type=1400 audit(1750362793.569:45272): avc:  denied  { ioctl } for  pid=6977 comm="syz.2.2013" path="/dev/binderfs/binder0" dev="binder" ino=42 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  181.197086][   T36] audit: type=1400 audit(1750362793.569:45273): avc:  denied  { call } for  pid=6977 comm="syz.2.2013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  181.237378][   T36] audit: type=1400 audit(1750362793.569:45274): avc:  denied  { transfer } for  pid=6977 comm="syz.2.2013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  181.257392][   T36] audit: type=1400 audit(1750362793.579:45275): avc:  denied  { ioctl } for  pid=6979 comm="syz.5.2015" path="/dev/binderfs/binder1" dev="binder" ino=33 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  181.325848][   T36] audit: type=1400 audit(1750362793.619:45276): avc:  denied  { read write } for  pid=4203 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  181.359712][   T36] audit: type=1400 audit(1750362793.619:45277): avc:  denied  { read write open } for  pid=4203 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  181.386761][   T36] audit: type=1400 audit(1750362793.619:45278): avc:  denied  { ioctl } for  pid=4203 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  181.448141][ T7002] rust_binder: Write failure EFAULT in pid:620
[  181.512331][ T7009] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  181.858180][ T7026] binder: Unknown parameter 'defcontext01777777777777777777777'
[  181.904415][ T7031] input: syz0 as /devices/virtual/input/input132
[  182.119056][ T7046] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  182.148352][ T7046] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  182.181621][ T7050] rust_binder: validate_parent_fixup: fixup_min_offset=35, parent_offset=27
[  182.181647][ T7050] rust_binder: Error while translating object.
[  182.194638][ T7050] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  182.201489][ T7050] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1003
[  182.220235][ T7051] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  182.358349][ T7060] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:639
[  182.378242][ T7065] binder: Bad value for 'max'
[  182.434406][ T7070] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  182.734813][ T7084] FAULT_INJECTION: forcing a failure.
[  182.734813][ T7084] name failslab, interval 1, probability 0, space 0, times 0
[  182.778547][ T7084] CPU: 1 UID: 0 PID: 7084 Comm: syz.6.2046 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  182.778578][ T7084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.778589][ T7084] Call Trace:
[  182.778596][ T7084]  <TASK>
[  182.778604][ T7084]  __dump_stack+0x21/0x30
[  182.778627][ T7084]  dump_stack_lvl+0x10c/0x190
[  182.778647][ T7084]  ? __cfi_dump_stack_lvl+0x10/0x10
[  182.778667][ T7084]  dump_stack+0x19/0x20
[  182.778685][ T7084]  should_fail_ex+0x3d9/0x530
[  182.778704][ T7084]  should_failslab+0xac/0x100
[  182.778726][ T7084]  kmem_cache_alloc_noprof+0x42/0x3a0
[  182.778744][ T7084]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  182.778767][ T7084]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  182.778787][ T7084]  ? mutex_unlock+0x8b/0x240
[  182.778805][ T7084]  kvm_mmu_topup_memory_cache+0x24/0x30
[  182.778825][ T7084]  kvm_mmu_load+0xa2/0x28a0
[  182.778844][ T7084]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  182.778864][ T7084]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  182.778884][ T7084]  vcpu_run+0x4bb3/0x7260
[  182.778911][ T7084]  ? signal_pending+0xc0/0xc0
[  182.778929][ T7084]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  182.778949][ T7084]  ? __kasan_check_write+0x18/0x20
[  182.778967][ T7084]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  182.778992][ T7084]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  182.779019][ T7084]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  182.779042][ T7084]  ? __kasan_check_write+0x18/0x20
[  182.779061][ T7084]  ? mutex_lock_killable+0x92/0x1c0
[  182.779079][ T7084]  kvm_vcpu_ioctl+0x96f/0xee0
[  182.779101][ T7084]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  182.779121][ T7084]  ? __cfi_vfs_write+0x10/0x10
[  182.779139][ T7084]  ? __kasan_check_write+0x18/0x20
[  182.779157][ T7084]  ? mutex_unlock+0x8b/0x240
[  182.779173][ T7084]  ? __cfi_mutex_unlock+0x10/0x10
[  182.779188][ T7084]  ? __fget_files+0x2c5/0x340
[  182.779210][ T7084]  ? __fget_files+0x2c5/0x340
[  182.779231][ T7084]  ? bpf_lsm_file_ioctl+0xd/0x20
[  182.779249][ T7084]  ? security_file_ioctl+0x34/0xd0
[  182.779270][ T7084]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  182.779289][ T7084]  __se_sys_ioctl+0x132/0x1b0
[  182.779311][ T7084]  __x64_sys_ioctl+0x7f/0xa0
[  182.779331][ T7084]  x64_sys_call+0x1878/0x2ee0
[  182.779351][ T7084]  do_syscall_64+0x58/0xf0
[  182.779372][ T7084]  ? clear_bhb_loop+0x35/0x90
[  182.779395][ T7084]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  182.779417][ T7084] RIP: 0033:0x7fd4fdb8e929
[  182.779432][ T7084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.779445][ T7084] RSP: 002b:00007fd4fea39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  182.779463][ T7084] RAX: ffffffffffffffda RBX: 00007fd4fddb5fa0 RCX: 00007fd4fdb8e929
[  182.779475][ T7084] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  182.779485][ T7084] RBP: 00007fd4fea39090 R08: 0000000000000000 R09: 0000000000000000
[  182.779495][ T7084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.779504][ T7084] R13: 0000000000000000 R14: 00007fd4fddb5fa0 R15: 00007fff10f66348
[  182.779517][ T7084]  </TASK>
[  184.006877][ T7126] FAULT_INJECTION: forcing a failure.
[  184.006877][ T7126] name failslab, interval 1, probability 0, space 0, times 0
[  184.021328][ T7126] CPU: 0 UID: 0 PID: 7126 Comm: syz.5.2058 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  184.021360][ T7126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.021372][ T7126] Call Trace:
[  184.021378][ T7126]  <TASK>
[  184.021386][ T7126]  __dump_stack+0x21/0x30
[  184.021421][ T7126]  dump_stack_lvl+0x10c/0x190
[  184.021440][ T7126]  ? __cfi_dump_stack_lvl+0x10/0x10
[  184.021461][ T7126]  dump_stack+0x19/0x20
[  184.021479][ T7126]  should_fail_ex+0x3d9/0x530
[  184.021498][ T7126]  should_failslab+0xac/0x100
[  184.021528][ T7126]  kmem_cache_alloc_noprof+0x42/0x3a0
[  184.021547][ T7126]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  184.021569][ T7126]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  184.021590][ T7126]  ? mutex_unlock+0x8b/0x240
[  184.021607][ T7126]  kvm_mmu_topup_memory_cache+0x24/0x30
[  184.021624][ T7126]  kvm_mmu_load+0xa2/0x28a0
[  184.021642][ T7126]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  184.021663][ T7126]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  184.021683][ T7126]  vcpu_run+0x4bb3/0x7260
[  184.021713][ T7126]  ? signal_pending+0xc0/0xc0
[  184.021731][ T7126]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  184.021750][ T7126]  ? __kasan_check_write+0x18/0x20
[  184.021768][ T7126]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  184.021792][ T7126]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  184.021812][ T7126]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  184.021845][ T7126]  ? __kasan_check_write+0x18/0x20
[  184.021863][ T7126]  ? mutex_lock_killable+0x92/0x1c0
[  184.021882][ T7126]  kvm_vcpu_ioctl+0x96f/0xee0
[  184.021903][ T7126]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  184.021922][ T7126]  ? __cfi_vfs_write+0x10/0x10
[  184.021942][ T7126]  ? __kasan_check_write+0x18/0x20
[  184.021960][ T7126]  ? mutex_unlock+0x8b/0x240
[  184.021975][ T7126]  ? __cfi_mutex_unlock+0x10/0x10
[  184.021991][ T7126]  ? __fget_files+0x2c5/0x340
[  184.022013][ T7126]  ? __fget_files+0x2c5/0x340
[  184.022034][ T7126]  ? bpf_lsm_file_ioctl+0xd/0x20
[  184.022051][ T7126]  ? security_file_ioctl+0x34/0xd0
[  184.022073][ T7126]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  184.022218][ T7126]  __se_sys_ioctl+0x132/0x1b0
[  184.022242][ T7126]  __x64_sys_ioctl+0x7f/0xa0
[  184.022262][ T7126]  x64_sys_call+0x1878/0x2ee0
[  184.022281][ T7126]  do_syscall_64+0x58/0xf0
[  184.022301][ T7126]  ? clear_bhb_loop+0x35/0x90
[  184.022326][ T7126]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  184.022348][ T7126] RIP: 0033:0x7f4d4f58e929
[  184.022374][ T7126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.022389][ T7126] RSP: 002b:00007f4d5035e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  184.022413][ T7126] RAX: ffffffffffffffda RBX: 00007f4d4f7b5fa0 RCX: 00007f4d4f58e929
[  184.022428][ T7126] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  184.022439][ T7126] RBP: 00007f4d5035e090 R08: 0000000000000000 R09: 0000000000000000
[  184.022452][ T7126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.022465][ T7126] R13: 0000000000000000 R14: 00007f4d4f7b5fa0 R15: 00007ffd42dea9b8
[  184.022479][ T7126]  </TASK>
[  184.602890][ T7141] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1023
[  184.811168][ T7137] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  184.888207][ T7148] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  184.924410][ T7148] rust_binder: Write failure EINVAL in pid:1025
[  185.094160][ T7161] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000000 not found
[  185.108296][ T7158] binder: Unknown parameter 'ÿÿÿÿÿÿÿÿ'
[  185.126987][ T7160] FAULT_INJECTION: forcing a failure.
[  185.126987][ T7160] name failslab, interval 1, probability 0, space 0, times 0
[  185.139953][ T7160] CPU: 1 UID: 0 PID: 7160 Comm: syz.6.2068 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  185.139989][ T7160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.140002][ T7160] Call Trace:
[  185.140007][ T7160]  <TASK>
[  185.140013][ T7160]  __dump_stack+0x21/0x30
[  185.140036][ T7160]  dump_stack_lvl+0x10c/0x190
[  185.140063][ T7160]  ? __cfi_dump_stack_lvl+0x10/0x10
[  185.140084][ T7160]  dump_stack+0x19/0x20
[  185.140103][ T7160]  should_fail_ex+0x3d9/0x530
[  185.140129][ T7160]  should_failslab+0xac/0x100
[  185.140152][ T7160]  kmem_cache_alloc_noprof+0x42/0x3a0
[  185.140170][ T7160]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  185.140192][ T7160]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  185.140212][ T7160]  ? mutex_unlock+0x8b/0x240
[  185.140230][ T7160]  kvm_mmu_topup_memory_cache+0x24/0x30
[  185.140250][ T7160]  kvm_mmu_load+0xa2/0x28a0
[  185.140267][ T7160]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  185.140287][ T7160]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  185.140308][ T7160]  vcpu_run+0x4bb3/0x7260
[  185.140336][ T7160]  ? signal_pending+0xc0/0xc0
[  185.140355][ T7160]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  185.140374][ T7160]  ? __kasan_check_write+0x18/0x20
[  185.140391][ T7160]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  185.140416][ T7160]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  185.140436][ T7160]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  185.140464][ T7160]  ? __kasan_check_write+0x18/0x20
[  185.140483][ T7160]  ? mutex_lock_killable+0x92/0x1c0
[  185.140501][ T7160]  kvm_vcpu_ioctl+0x96f/0xee0
[  185.140522][ T7160]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  185.140544][ T7160]  ? __cfi_vfs_write+0x10/0x10
[  185.140563][ T7160]  ? __kasan_check_write+0x18/0x20
[  185.140580][ T7160]  ? mutex_unlock+0x8b/0x240
[  185.140596][ T7160]  ? __cfi_mutex_unlock+0x10/0x10
[  185.140611][ T7160]  ? __fget_files+0x2c5/0x340
[  185.140639][ T7160]  ? __fget_files+0x2c5/0x340
[  185.140660][ T7160]  ? bpf_lsm_file_ioctl+0xd/0x20
[  185.140678][ T7160]  ? security_file_ioctl+0x34/0xd0
[  185.140700][ T7160]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  185.140721][ T7160]  __se_sys_ioctl+0x132/0x1b0
[  185.140742][ T7160]  __x64_sys_ioctl+0x7f/0xa0
[  185.140763][ T7160]  x64_sys_call+0x1878/0x2ee0
[  185.140783][ T7160]  do_syscall_64+0x58/0xf0
[  185.140804][ T7160]  ? clear_bhb_loop+0x35/0x90
[  185.140827][ T7160]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  185.140849][ T7160] RIP: 0033:0x7fd4fdb8e929
[  185.140864][ T7160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.140879][ T7160] RSP: 002b:00007fd4fea39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  185.140899][ T7160] RAX: ffffffffffffffda RBX: 00007fd4fddb5fa0 RCX: 00007fd4fdb8e929
[  185.140912][ T7160] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  185.140924][ T7160] RBP: 00007fd4fea39090 R08: 0000000000000000 R09: 0000000000000000
[  185.140935][ T7160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.140947][ T7160] R13: 0000000000000000 R14: 00007fd4fddb5fa0 R15: 00007fff10f66348
[  185.140961][ T7160]  </TASK>
[  185.147513][ T7161] rust_binder: Write failure EINVAL in pid:1027
[  185.357943][ T7166] SELinux: security_context_str_to_sid () failed with errno=-22
[  185.666441][ T7173] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  185.901284][   T36] kauditd_printk_skb: 741 callbacks suppressed
[  185.901302][   T36] audit: type=1400 audit(1750362798.569:45981): avc:  denied  { read write } for  pid=4770 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.957520][   T36] audit: type=1400 audit(1750362798.579:45982): avc:  denied  { read write } for  pid=3747 comm="syz-executor" name="loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.982100][ T7192] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  185.983203][   T36] audit: type=1400 audit(1750362798.579:45983): avc:  denied  { read write open } for  pid=3747 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  185.984222][ T7194] rust_binder: Write failure EFAULT in pid:1045
[  185.990719][   T36] audit: type=1400 audit(1750362798.579:45984): avc:  denied  { ioctl } for  pid=3747 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=51 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  186.068643][ T7196] rust_binder: Write failure EFAULT in pid:666
[  186.069282][ T7196] rust_binder: Write failure EFAULT in pid:666
[  186.088347][   T36] audit: type=1400 audit(1750362798.599:45985): avc:  denied  { read write open } for  pid=4770 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  186.104743][ T7197] SELinux: security_context_str_to_sid (sytem_uÝGй‰:ÿß) failed with errno=-22
[  186.125007][   T36] audit: type=1400 audit(1750362798.599:45986): avc:  denied  { ioctl } for  pid=4770 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  186.156605][   T36] audit: type=1400 audit(1750362798.619:45987): avc:  denied  { read } for  pid=7191 comm="syz.5.2076" name="binder0" dev="binder" ino=32 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  186.182496][   T36] audit: type=1400 audit(1750362798.619:45988): avc:  denied  { read open } for  pid=7191 comm="syz.5.2076" path="/dev/binderfs/binder0" dev="binder" ino=32 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  186.232475][   T36] audit: type=1400 audit(1750362798.629:45989): avc:  denied  { read write } for  pid=6449 comm="syz-executor" name="loop6" dev="devtmpfs" ino=55 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  186.259737][   T36] audit: type=1400 audit(1750362798.629:45990): avc:  denied  { read write open } for  pid=6449 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=55 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  186.338455][ T7203] FAULT_INJECTION: forcing a failure.
[  186.338455][ T7203] name failslab, interval 1, probability 0, space 0, times 0
[  186.351338][ T7203] CPU: 0 UID: 0 PID: 7203 Comm: syz.6.2080 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  186.351367][ T7203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.351379][ T7203] Call Trace:
[  186.351385][ T7203]  <TASK>
[  186.351393][ T7203]  __dump_stack+0x21/0x30
[  186.351417][ T7203]  dump_stack_lvl+0x10c/0x190
[  186.351436][ T7203]  ? __cfi_dump_stack_lvl+0x10/0x10
[  186.351457][ T7203]  dump_stack+0x19/0x20
[  186.351475][ T7203]  should_fail_ex+0x3d9/0x530
[  186.351494][ T7203]  should_failslab+0xac/0x100
[  186.351514][ T7203]  kmem_cache_alloc_noprof+0x42/0x3a0
[  186.351534][ T7203]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  186.351556][ T7203]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  186.351576][ T7203]  ? mutex_unlock+0x8b/0x240
[  186.351594][ T7203]  kvm_mmu_topup_memory_cache+0x24/0x30
[  186.351614][ T7203]  kvm_mmu_load+0xa2/0x28a0
[  186.351632][ T7203]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  186.351672][ T7203]  ? sysvec_apic_timer_interrupt+0x50/0x90
[  186.351690][ T7203]  ? asm_sysvec_apic_timer_interrupt+0x1f/0x30
[  186.351714][ T7203]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  186.351735][ T7203]  vcpu_run+0x4bb3/0x7260
[  186.351764][ T7203]  ? signal_pending+0xc0/0xc0
[  186.351781][ T7203]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  186.351800][ T7203]  ? __kasan_check_write+0x18/0x20
[  186.351818][ T7203]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  186.351844][ T7203]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  186.351864][ T7203]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  186.351888][ T7203]  ? __kasan_check_write+0x18/0x20
[  186.351905][ T7203]  ? mutex_lock_killable+0x92/0x1c0
[  186.351923][ T7203]  kvm_vcpu_ioctl+0x96f/0xee0
[  186.351945][ T7203]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  186.351966][ T7203]  ? __cfi_vfs_write+0x10/0x10
[  186.351985][ T7203]  ? __kasan_check_write+0x18/0x20
[  186.352003][ T7203]  ? mutex_unlock+0x8b/0x240
[  186.352019][ T7203]  ? __cfi_mutex_unlock+0x10/0x10
[  186.352034][ T7203]  ? __fget_files+0x2c5/0x340
[  186.352057][ T7203]  ? __fget_files+0x2c5/0x340
[  186.352077][ T7203]  ? bpf_lsm_file_ioctl+0xd/0x20
[  186.352092][ T7203]  ? security_file_ioctl+0x34/0xd0
[  186.352113][ T7203]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  186.352133][ T7203]  __se_sys_ioctl+0x132/0x1b0
[  186.352155][ T7203]  __x64_sys_ioctl+0x7f/0xa0
[  186.352176][ T7203]  x64_sys_call+0x1878/0x2ee0
[  186.352197][ T7203]  do_syscall_64+0x58/0xf0
[  186.352217][ T7203]  ? clear_bhb_loop+0x35/0x90
[  186.352239][ T7203]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  186.352262][ T7203] RIP: 0033:0x7fd4fdb8e929
[  186.352281][ T7203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.352296][ T7203] RSP: 002b:00007fd4fea39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  186.352316][ T7203] RAX: ffffffffffffffda RBX: 00007fd4fddb5fa0 RCX: 00007fd4fdb8e929
[  186.352331][ T7203] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  186.352343][ T7203] RBP: 00007fd4fea39090 R08: 0000000000000000 R09: 0000000000000000
[  186.352355][ T7203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.352366][ T7203] R13: 0000000000000000 R14: 00007fd4fddb5fa0 R15: 00007fff10f66348
[  186.352380][ T7203]  </TASK>
[  186.831411][ T7208] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  186.884410][ T7218] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[  186.898061][ T7218] rust_binder: Write failure EINVAL in pid:669
[  186.899342][ T7215] input: syz0 as /devices/virtual/input/input134
[  186.902261][ T7218] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:669
[  187.163147][ T7229] rust_binder: Write failure EINVAL in pid:1059
[  187.201869][ T7238] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION freeze notification not active
[  187.264436][ T7238] rust_binder: Write failure EINVAL in pid:179
[  187.351843][ T7245] kvm: user requested TSC rate below hardware speed
[  187.714940][ T7270] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  187.728726][ T7270] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 128, limit: 144, size: 255)
[  187.745325][ T7270] rust_binder: Error while translating object.
[  187.771773][ T7270] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  187.803066][ T7270] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:672
[  187.895632][ T7274] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  188.164056][ T7297] rust_binder: got new transaction with bad transaction stack
[  188.164078][ T7297] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:785
[  188.190282][ T7291] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY
[  188.237892][ T7291] rust_binder: Error in use_page_slow: EBUSY
[  188.267974][ T7291] rust_binder: use_range failure EBUSY
[  188.273996][ T7291] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[  188.275023][ T7301] rust_binder: Write failure EFAULT in pid:682
[  188.287871][ T7291] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY }
[  188.307900][ T7291] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender.
[  188.339128][ T7291] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:1082
[  188.742487][ T7326] FAULT_INJECTION: forcing a failure.
[  188.742487][ T7326] name failslab, interval 1, probability 0, space 0, times 0
[  188.771174][ T7326] CPU: 1 UID: 0 PID: 7326 Comm: syz.4.2116 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  188.771203][ T7326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  188.771214][ T7326] Call Trace:
[  188.771221][ T7326]  <TASK>
[  188.771229][ T7326]  __dump_stack+0x21/0x30
[  188.771253][ T7326]  dump_stack_lvl+0x10c/0x190
[  188.771273][ T7326]  ? __cfi_dump_stack_lvl+0x10/0x10
[  188.771293][ T7326]  dump_stack+0x19/0x20
[  188.771309][ T7326]  should_fail_ex+0x3d9/0x530
[  188.771326][ T7326]  should_failslab+0xac/0x100
[  188.771348][ T7326]  kmem_cache_alloc_noprof+0x42/0x3a0
[  188.771367][ T7326]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  188.771387][ T7326]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  188.771404][ T7326]  ? mutex_unlock+0x8b/0x240
[  188.771419][ T7326]  kvm_mmu_topup_memory_cache+0x24/0x30
[  188.771437][ T7326]  kvm_mmu_load+0xa2/0x28a0
[  188.771454][ T7326]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  188.771482][ T7326]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  188.771503][ T7326]  vcpu_run+0x4bb3/0x7260
[  188.771530][ T7326]  ? signal_pending+0xc0/0xc0
[  188.771547][ T7326]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  188.771566][ T7326]  ? __kasan_check_write+0x18/0x20
[  188.771583][ T7326]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  188.771607][ T7326]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  188.771628][ T7326]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  188.771650][ T7326]  ? __kasan_check_write+0x18/0x20
[  188.771669][ T7326]  ? mutex_lock_killable+0x92/0x1c0
[  188.771685][ T7326]  ? __kasan_check_write+0x18/0x20
[  188.771704][ T7326]  kvm_vcpu_ioctl+0x96f/0xee0
[  188.771725][ T7326]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  188.771745][ T7326]  ? __cfi_vfs_write+0x10/0x10
[  188.771765][ T7326]  ? __kasan_check_write+0x18/0x20
[  188.771782][ T7326]  ? mutex_unlock+0x8b/0x240
[  188.771797][ T7326]  ? __cfi_mutex_unlock+0x10/0x10
[  188.771812][ T7326]  ? __fget_files+0x2c5/0x340
[  188.771835][ T7326]  ? __fget_files+0x2c5/0x340
[  188.771856][ T7326]  ? bpf_lsm_file_ioctl+0xd/0x20
[  188.771873][ T7326]  ? security_file_ioctl+0x34/0xd0
[  188.771895][ T7326]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  188.771914][ T7326]  __se_sys_ioctl+0x132/0x1b0
[  188.771934][ T7326]  __x64_sys_ioctl+0x7f/0xa0
[  188.771955][ T7326]  x64_sys_call+0x1878/0x2ee0
[  188.771975][ T7326]  do_syscall_64+0x58/0xf0
[  188.771996][ T7326]  ? clear_bhb_loop+0x35/0x90
[  188.772019][ T7326]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  188.772041][ T7326] RIP: 0033:0x7f5b8b98e929
[  188.772054][ T7326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.772069][ T7326] RSP: 002b:00007f5b8c783038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  188.772089][ T7326] RAX: ffffffffffffffda RBX: 00007f5b8bbb5fa0 RCX: 00007f5b8b98e929
[  188.772103][ T7326] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  188.772115][ T7326] RBP: 00007f5b8c783090 R08: 0000000000000000 R09: 0000000000000000
[  188.772127][ T7326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.772138][ T7326] R13: 0000000000000000 R14: 00007f5b8bbb5fa0 R15: 00007fff09f49eb8
[  188.772152][ T7326]  </TASK>
[  189.134440][ T7333] rust_binder: Error while translating object.
[  189.134468][ T7333] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  189.140733][ T7333] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1088
[  189.315184][ T7344] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 3
[  189.359873][ T7344] rust_binder: Write failure EINVAL in pid:691
[  189.436795][ T7348] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  189.456930][ T7351] binder: Unknown parameter 'consy"te'
[  189.468944][ T7348] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  189.488944][ T7353] SELinux: security_context_str_to_sid (syste_uÝGй‰:ÿß) failed with errno=-22
[  189.589296][ T7359] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  189.596070][ T7359] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:697
[  189.867063][ T7376] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:702
[  189.890826][    T9] hid (null): invalid report_size 26992
[  189.914602][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x6
[  189.927612][    T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x2
[  189.943203][    T9] hid-generic 0000:0000:0000.000A: invalid report_size 26992
[  189.951311][    T9] hid-generic 0000:0000:0000.000A: item 0 2 1 7 parsing failed
[  189.959520][    T9] hid-generic 0000:0000:0000.000A: probe with driver hid-generic failed with error -22
[  190.120813][ T7385] FAULT_INJECTION: forcing a failure.
[  190.120813][ T7385] name failslab, interval 1, probability 0, space 0, times 0
[  190.143689][ T7385] CPU: 0 UID: 0 PID: 7385 Comm: syz.5.2135 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  190.143721][ T7385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.143732][ T7385] Call Trace:
[  190.143738][ T7385]  <TASK>
[  190.143746][ T7385]  __dump_stack+0x21/0x30
[  190.143770][ T7385]  dump_stack_lvl+0x10c/0x190
[  190.143789][ T7385]  ? __cfi_dump_stack_lvl+0x10/0x10
[  190.143807][ T7385]  ? stack_depot_save_flags+0x38/0x800
[  190.143829][ T7385]  dump_stack+0x19/0x20
[  190.143846][ T7385]  should_fail_ex+0x3d9/0x530
[  190.143864][ T7385]  should_failslab+0xac/0x100
[  190.143885][ T7385]  __kmalloc_node_noprof+0x6c/0x450
[  190.143904][ T7385]  ? __kvmalloc_node_noprof+0x11d/0x300
[  190.143923][ T7385]  __kvmalloc_node_noprof+0x11d/0x300
[  190.143941][ T7385]  ? __cfi___kvmalloc_node_noprof+0x10/0x10
[  190.143960][ T7385]  ? __kasan_check_write+0x18/0x20
[  190.143977][ T7385]  ? enqueue_timer+0x1a4/0x480
[  190.143999][ T7385]  __kvm_mmu_topup_memory_cache+0x5f0/0x860
[  190.144020][ T7385]  ? mutex_unlock+0x8b/0x240
[  190.144036][ T7385]  ? __cfi_mutex_unlock+0x10/0x10
[  190.144052][ T7385]  kvm_mmu_topup_memory_cache+0x24/0x30
[  190.144071][ T7385]  kvm_mmu_load+0xa2/0x28a0
[  190.144089][ T7385]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  190.144109][ T7385]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  190.144128][ T7385]  vcpu_run+0x4bb3/0x7260
[  190.144155][ T7385]  ? signal_pending+0xc0/0xc0
[  190.144172][ T7385]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  190.144190][ T7385]  ? __kasan_check_write+0x18/0x20
[  190.144208][ T7385]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  190.144233][ T7385]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  190.144252][ T7385]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  190.144275][ T7385]  ? __kasan_check_write+0x18/0x20
[  190.144292][ T7385]  ? mutex_lock_killable+0x92/0x1c0
[  190.144309][ T7385]  kvm_vcpu_ioctl+0x96f/0xee0
[  190.144331][ T7385]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  190.144351][ T7385]  ? __cfi_vfs_write+0x10/0x10
[  190.144370][ T7385]  ? __kasan_check_write+0x18/0x20
[  190.144387][ T7385]  ? mutex_unlock+0x8b/0x240
[  190.144402][ T7385]  ? __cfi_mutex_unlock+0x10/0x10
[  190.144416][ T7385]  ? __fget_files+0x2c5/0x340
[  190.144443][ T7385]  ? __fget_files+0x2c5/0x340
[  190.144461][ T7385]  ? bpf_lsm_file_ioctl+0xd/0x20
[  190.144478][ T7385]  ? security_file_ioctl+0x34/0xd0
[  190.144498][ T7385]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  190.144516][ T7385]  __se_sys_ioctl+0x132/0x1b0
[  190.144537][ T7385]  __x64_sys_ioctl+0x7f/0xa0
[  190.144557][ T7385]  x64_sys_call+0x1878/0x2ee0
[  190.144576][ T7385]  do_syscall_64+0x58/0xf0
[  190.144595][ T7385]  ? clear_bhb_loop+0x35/0x90
[  190.144619][ T7385]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  190.144641][ T7385] RIP: 0033:0x7f4d4f58e929
[  190.144656][ T7385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.144670][ T7385] RSP: 002b:00007f4d5035e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  190.144689][ T7385] RAX: ffffffffffffffda RBX: 00007f4d4f7b5fa0 RCX: 00007f4d4f58e929
[  190.144702][ T7385] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  190.144713][ T7385] RBP: 00007f4d5035e090 R08: 0000000000000000 R09: 0000000000000000
[  190.144724][ T7385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.144734][ T7385] R13: 0000000000000000 R14: 00007f4d4f7b5fa0 R15: 00007ffd42dea9b8
[  190.144748][ T7385]  </TASK>
[  190.216674][ T7388] rust_binder: validate_parent_fixup: fixup_min_offset=29, parent_offset=27
[  190.485018][ T7388] rust_binder: Error while translating object.
[  190.493797][ T7388] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  190.499985][ T7388] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1106
[  190.864879][ T7416] binder: Unknown parameter 'non'
[  190.895674][ T7419] FAULT_INJECTION: forcing a failure.
[  190.895674][ T7419] name failslab, interval 1, probability 0, space 0, times 0
[  190.900111][ T7422] binder: Unknown parameter 'non'
[  190.908336][   T36] kauditd_printk_skb: 979 callbacks suppressed
[  190.908349][   T36] audit: type=1400 audit(1750362803.559:46970): avc:  denied  { mounton } for  pid=7415 comm="syz.5.2145" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.987877][ T7419] CPU: 1 UID: 0 PID: 7419 Comm: syz.2.2147 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  190.987909][ T7419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.987919][ T7419] Call Trace:
[  190.987925][ T7419]  <TASK>
[  190.987932][ T7419]  __dump_stack+0x21/0x30
[  190.987955][ T7419]  dump_stack_lvl+0x10c/0x190
[  190.987972][ T7419]  ? __cfi_dump_stack_lvl+0x10/0x10
[  190.987990][ T7419]  ? kasan_save_alloc_info+0x40/0x50
[  190.988006][ T7419]  ? __kasan_kmalloc+0x96/0xb0
[  190.988026][ T7419]  dump_stack+0x19/0x20
[  190.988044][ T7419]  should_fail_ex+0x3d9/0x530
[  190.988062][ T7419]  should_failslab+0xac/0x100
[  190.988084][ T7419]  kmem_cache_alloc_noprof+0x42/0x3a0
[  190.988102][ T7419]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  190.988124][ T7419]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  190.988144][ T7419]  ? mutex_unlock+0x8b/0x240
[  190.988163][ T7419]  kvm_mmu_topup_memory_cache+0x24/0x30
[  190.988184][ T7419]  kvm_mmu_load+0xa2/0x28a0
[  190.988202][ T7419]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  190.988223][ T7419]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  190.988244][ T7419]  vcpu_run+0x4bb3/0x7260
[  190.988272][ T7419]  ? signal_pending+0xc0/0xc0
[  190.988291][ T7419]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  190.988310][ T7419]  ? __kasan_check_write+0x18/0x20
[  190.988329][ T7419]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  190.988354][ T7419]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  190.988374][ T7419]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  190.988397][ T7419]  ? __kasan_check_write+0x18/0x20
[  190.988415][ T7419]  ? mutex_lock_killable+0x92/0x1c0
[  190.988434][ T7419]  kvm_vcpu_ioctl+0x96f/0xee0
[  190.988456][ T7419]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  190.988478][ T7419]  ? __cfi_vfs_write+0x10/0x10
[  190.988496][ T7419]  ? __kasan_check_write+0x18/0x20
[  190.988514][ T7419]  ? mutex_unlock+0x8b/0x240
[  190.988530][ T7419]  ? __cfi_mutex_unlock+0x10/0x10
[  190.988546][ T7419]  ? __fget_files+0x2c5/0x340
[  190.988569][ T7419]  ? __fget_files+0x2c5/0x340
[  190.988590][ T7419]  ? bpf_lsm_file_ioctl+0xd/0x20
[  190.988609][ T7419]  ? security_file_ioctl+0x34/0xd0
[  190.988639][ T7419]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  190.988659][ T7419]  __se_sys_ioctl+0x132/0x1b0
[  190.988682][ T7419]  __x64_sys_ioctl+0x7f/0xa0
[  190.988703][ T7419]  x64_sys_call+0x1878/0x2ee0
[  190.988724][ T7419]  do_syscall_64+0x58/0xf0
[  190.988744][ T7419]  ? clear_bhb_loop+0x35/0x90
[  190.988768][ T7419]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  190.988790][ T7419] RIP: 0033:0x7f708078e929
[  190.988806][ T7419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.988821][ T7419] RSP: 002b:00007f7081676038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  190.988842][ T7419] RAX: ffffffffffffffda RBX: 00007f70809b5fa0 RCX: 00007f708078e929
[  190.988856][ T7419] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  190.988869][ T7419] RBP: 00007f7081676090 R08: 0000000000000000 R09: 0000000000000000
[  190.988881][ T7419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.988893][ T7419] R13: 0000000000000000 R14: 00007f70809b5fa0 R15: 00007ffcd5be7af8
[  190.988912][ T7419]  </TASK>
[  191.050203][   T36] audit: type=1400 audit(1750362803.619:46971): avc:  denied  { read write } for  pid=6449 comm="syz-executor" name="loop6" dev="devtmpfs" ino=55 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  191.060211][ T7427] binder: Bad value for 'stats'
[  191.119427][   T36] audit: type=1400 audit(1750362803.619:46972): avc:  denied  { read write open } for  pid=6449 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=55 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  191.474329][   T36] audit: type=1400 audit(1750362803.619:46973): avc:  denied  { ioctl } for  pid=6449 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=55 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  191.520166][   T36] audit: type=1400 audit(1750362803.669:46974): avc:  denied  { read write } for  pid=4770 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  191.628483][ T7437] audit: audit_backlog=65 > audit_backlog_limit=64
[  191.637862][   T36] audit: type=1400 audit(1750362803.669:46975): avc:  denied  { read write open } for  pid=4770 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  191.666279][ T7437] audit: audit_lost=288 audit_rate_limit=0 audit_backlog_limit=64
[  191.680414][ T7440] audit: audit_backlog=65 > audit_backlog_limit=64
[  191.687071][ T7440] audit: audit_lost=289 audit_rate_limit=0 audit_backlog_limit=64
[  191.697179][ T7440] rust_binder: Write failure EFAULT in pid:725
[  191.768036][ T7437] kvm: user requested TSC rate below hardware speed
[  191.803465][ T7442] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 112, limit: 128, size: 18446744073709551585)
[  191.803492][ T7442] rust_binder: Error while translating object.
[  191.828513][ T7442] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  191.834774][ T7442] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1121
[  191.975659][ T7449] kvm: kvm [7448]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x7fffffffffffffff
[  192.199050][ T7457] FAULT_INJECTION: forcing a failure.
[  192.199050][ T7457] name failslab, interval 1, probability 0, space 0, times 0
[  192.217948][ T7457] CPU: 0 UID: 0 PID: 7457 Comm: syz.6.2161 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  192.217978][ T7457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.217990][ T7457] Call Trace:
[  192.217996][ T7457]  <TASK>
[  192.218003][ T7457]  __dump_stack+0x21/0x30
[  192.218026][ T7457]  dump_stack_lvl+0x10c/0x190
[  192.218044][ T7457]  ? __cfi_dump_stack_lvl+0x10/0x10
[  192.218064][ T7457]  dump_stack+0x19/0x20
[  192.218081][ T7457]  should_fail_ex+0x3d9/0x530
[  192.218100][ T7457]  should_failslab+0xac/0x100
[  192.218121][ T7457]  kmem_cache_alloc_noprof+0x42/0x3a0
[  192.218139][ T7457]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  192.218161][ T7457]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  192.218182][ T7457]  ? mutex_unlock+0x8b/0x240
[  192.218200][ T7457]  kvm_mmu_topup_memory_cache+0x24/0x30
[  192.218221][ T7457]  kvm_mmu_load+0xa2/0x28a0
[  192.218238][ T7457]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  192.218257][ T7457]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  192.218277][ T7457]  vcpu_run+0x4bb3/0x7260
[  192.218302][ T7457]  ? signal_pending+0xc0/0xc0
[  192.218319][ T7457]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  192.218337][ T7457]  ? __kasan_check_write+0x18/0x20
[  192.218354][ T7457]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  192.218379][ T7457]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  192.218398][ T7457]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  192.218421][ T7457]  ? __kasan_check_write+0x18/0x20
[  192.218438][ T7457]  ? mutex_lock_killable+0x92/0x1c0
[  192.218457][ T7457]  kvm_vcpu_ioctl+0x96f/0xee0
[  192.218485][ T7457]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  192.218506][ T7457]  ? __cfi_vfs_write+0x10/0x10
[  192.218524][ T7457]  ? __kasan_check_write+0x18/0x20
[  192.218541][ T7457]  ? mutex_unlock+0x8b/0x240
[  192.218556][ T7457]  ? __cfi_mutex_unlock+0x10/0x10
[  192.218571][ T7457]  ? __fget_files+0x2c5/0x340
[  192.218594][ T7457]  ? __fget_files+0x2c5/0x340
[  192.218615][ T7457]  ? bpf_lsm_file_ioctl+0xd/0x20
[  192.218633][ T7457]  ? security_file_ioctl+0x34/0xd0
[  192.218654][ T7457]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  192.218673][ T7457]  __se_sys_ioctl+0x132/0x1b0
[  192.218694][ T7457]  __x64_sys_ioctl+0x7f/0xa0
[  192.218714][ T7457]  x64_sys_call+0x1878/0x2ee0
[  192.218737][ T7457]  do_syscall_64+0x58/0xf0
[  192.218756][ T7457]  ? clear_bhb_loop+0x35/0x90
[  192.218778][ T7457]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  192.218799][ T7457] RIP: 0033:0x7fd4fdb8e929
[  192.218813][ T7457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.218827][ T7457] RSP: 002b:00007fd4fea39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  192.218846][ T7457] RAX: ffffffffffffffda RBX: 00007fd4fddb5fa0 RCX: 00007fd4fdb8e929
[  192.218858][ T7457] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  192.218869][ T7457] RBP: 00007fd4fea39090 R08: 0000000000000000 R09: 0000000000000000
[  192.218881][ T7457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.218892][ T7457] R13: 0000000000000000 R14: 00007fd4fddb5fa0 R15: 00007fff10f66348
[  192.218906][ T7457]  </TASK>
[  192.773281][ T7471] FAULT_INJECTION: forcing a failure.
[  192.773281][ T7471] name failslab, interval 1, probability 0, space 0, times 0
[  192.808980][ T7476] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  192.842866][ T7471] CPU: 1 UID: 0 PID: 7471 Comm: syz.6.2165 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  192.842895][ T7471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.842905][ T7471] Call Trace:
[  192.842910][ T7471]  <TASK>
[  192.842917][ T7471]  __dump_stack+0x21/0x30
[  192.842940][ T7471]  dump_stack_lvl+0x10c/0x190
[  192.842957][ T7471]  ? __cfi_dump_stack_lvl+0x10/0x10
[  192.842974][ T7471]  dump_stack+0x19/0x20
[  192.842991][ T7471]  should_fail_ex+0x3d9/0x530
[  192.843008][ T7471]  should_failslab+0xac/0x100
[  192.843029][ T7471]  kmem_cache_alloc_noprof+0x42/0x3a0
[  192.843047][ T7471]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  192.843069][ T7471]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  192.843090][ T7471]  ? mutex_unlock+0x8b/0x240
[  192.843108][ T7471]  kvm_mmu_topup_memory_cache+0x24/0x30
[  192.843128][ T7471]  kvm_mmu_load+0xa2/0x28a0
[  192.843146][ T7471]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  192.843167][ T7471]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  192.843188][ T7471]  vcpu_run+0x4bb3/0x7260
[  192.843226][ T7471]  ? signal_pending+0xc0/0xc0
[  192.843244][ T7471]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  192.843264][ T7471]  ? __kasan_check_write+0x18/0x20
[  192.843282][ T7471]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  192.843307][ T7471]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  192.843328][ T7471]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  192.843351][ T7471]  ? __kasan_check_write+0x18/0x20
[  192.843370][ T7471]  ? mutex_lock_killable+0x92/0x1c0
[  192.843389][ T7471]  kvm_vcpu_ioctl+0x96f/0xee0
[  192.843411][ T7471]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  192.843432][ T7471]  ? __cfi_vfs_write+0x10/0x10
[  192.843452][ T7471]  ? __kasan_check_write+0x18/0x20
[  192.843469][ T7471]  ? mutex_unlock+0x8b/0x240
[  192.843482][ T7471]  ? __cfi_mutex_unlock+0x10/0x10
[  192.843497][ T7471]  ? __fget_files+0x2c5/0x340
[  192.843520][ T7471]  ? __fget_files+0x2c5/0x340
[  192.843544][ T7471]  ? bpf_lsm_file_ioctl+0xd/0x20
[  192.843562][ T7471]  ? security_file_ioctl+0x34/0xd0
[  192.843583][ T7471]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  192.843603][ T7471]  __se_sys_ioctl+0x132/0x1b0
[  192.843625][ T7471]  __x64_sys_ioctl+0x7f/0xa0
[  192.843645][ T7471]  x64_sys_call+0x1878/0x2ee0
[  192.843666][ T7471]  do_syscall_64+0x58/0xf0
[  192.843686][ T7471]  ? clear_bhb_loop+0x35/0x90
[  192.843709][ T7471]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  192.843732][ T7471] RIP: 0033:0x7fd4fdb8e929
[  192.843748][ T7471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.843763][ T7471] RSP: 002b:00007fd4fea39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  192.843784][ T7471] RAX: ffffffffffffffda RBX: 00007fd4fddb5fa0 RCX: 00007fd4fdb8e929
[  192.843798][ T7471] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  192.843810][ T7471] RBP: 00007fd4fea39090 R08: 0000000000000000 R09: 0000000000000000
[  192.843823][ T7471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  192.843835][ T7471] R13: 0000000000000000 R14: 00007fd4fddb5fa0 R15: 00007fff10f66348
[  192.843849][ T7471]  </TASK>
[  193.314409][ T7486] rust_binder: Read failure Err(EAGAIN) in pid:1140
[  193.552279][ T7492] FAULT_INJECTION: forcing a failure.
[  193.552279][ T7492] name failslab, interval 1, probability 0, space 0, times 0
[  193.614028][ T7492] CPU: 0 UID: 0 PID: 7492 Comm: syz.4.2173 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  193.614058][ T7492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.614069][ T7492] Call Trace:
[  193.614075][ T7492]  <TASK>
[  193.614084][ T7492]  __dump_stack+0x21/0x30
[  193.614108][ T7492]  dump_stack_lvl+0x10c/0x190
[  193.614128][ T7492]  ? __cfi_dump_stack_lvl+0x10/0x10
[  193.614148][ T7492]  dump_stack+0x19/0x20
[  193.614176][ T7492]  should_fail_ex+0x3d9/0x530
[  193.614196][ T7492]  should_failslab+0xac/0x100
[  193.614220][ T7492]  kmem_cache_alloc_noprof+0x42/0x3a0
[  193.614239][ T7492]  ? __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  193.614260][ T7492]  __kvm_mmu_topup_memory_cache+0x1eb/0x860
[  193.614282][ T7492]  ? mutex_unlock+0x8b/0x240
[  193.614299][ T7492]  kvm_mmu_topup_memory_cache+0x24/0x30
[  193.614318][ T7492]  kvm_mmu_load+0xa2/0x28a0
[  193.614335][ T7492]  ? kvm_hv_setup_tsc_page+0x5ee/0xa70
[  193.614356][ T7492]  ? kvm_apic_has_interrupt+0x79b/0x7b0
[  193.614376][ T7492]  vcpu_run+0x4bb3/0x7260
[  193.614406][ T7492]  ? signal_pending+0xc0/0xc0
[  193.614429][ T7492]  ? vmx_set_nmi_mask+0x13f/0x2a0
[  193.614447][ T7492]  ? __kasan_check_write+0x18/0x20
[  193.614465][ T7492]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xc80/0x13c0
[  193.614490][ T7492]  kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0
[  193.614511][ T7492]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  193.614531][ T7492]  ? __kasan_check_write+0x18/0x20
[  193.614546][ T7492]  ? mutex_lock_killable+0x92/0x1c0
[  193.614563][ T7492]  kvm_vcpu_ioctl+0x96f/0xee0
[  193.614585][ T7492]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  193.614606][ T7492]  ? __cfi_vfs_write+0x10/0x10
[  193.614625][ T7492]  ? __kasan_check_write+0x18/0x20
[  193.614643][ T7492]  ? mutex_unlock+0x8b/0x240
[  193.614659][ T7492]  ? __cfi_mutex_unlock+0x10/0x10
[  193.614675][ T7492]  ? __fget_files+0x2c5/0x340
[  193.614698][ T7492]  ? __fget_files+0x2c5/0x340
[  193.614719][ T7492]  ? bpf_lsm_file_ioctl+0xd/0x20
[  193.614737][ T7492]  ? security_file_ioctl+0x34/0xd0
[  193.614759][ T7492]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[  193.614780][ T7492]  __se_sys_ioctl+0x132/0x1b0
[  193.614802][ T7492]  __x64_sys_ioctl+0x7f/0xa0
[  193.614823][ T7492]  x64_sys_call+0x1878/0x2ee0
[  193.614843][ T7492]  do_syscall_64+0x58/0xf0
[  193.614863][ T7492]  ? clear_bhb_loop+0x35/0x90
[  193.614887][ T7492]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  193.614910][ T7492] RIP: 0033:0x7f5b8b98e929
[  193.614925][ T7492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.614941][ T7492] RSP: 002b:00007f5b8c783038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  193.614961][ T7492] RAX: ffffffffffffffda RBX: 00007f5b8bbb5fa0 RCX: 00007f5b8b98e929
[  193.614975][ T7492] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  193.614987][ T7492] RBP: 00007f5b8c783090 R08: 0000000000000000 R09: 0000000000000000
[  193.614997][ T7492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.615007][ T7492] R13: 0000000000000000 R14: 00007f5b8bbb5fa0 R15: 00007fff09f49eb8
[  193.615020][ T7492]  </TASK>
[  194.039277][ T7516] rust_binder: Write failure EFAULT in pid:1149
[  195.878782][ T7715] syz.4.2253: attempt to access beyond end of device
[  195.878782][ T7715] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  195.919940][   T36] kauditd_printk_skb: 794 callbacks suppressed
[  195.919955][   T36] audit: type=1400 audit(1750362808.589:47750): avc:  denied  { read } for  pid=7717 comm="syz.4.2254" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[  195.948980][   T36] audit: type=1400 audit(1750362808.589:47751): avc:  denied  { attach_queue } for  pid=7717 comm="syz.4.2254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=0
[  195.969005][   T36] audit: type=1400 audit(1750362808.589:47752): avc:  denied  { attach_queue } for  pid=7717 comm="syz.4.2254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=0
[  195.989029][   T36] audit: type=1400 audit(1750362808.589:47753): avc:  denied  { mounton } for  pid=7717 comm="syz.4.2254" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  196.055821][   T36] audit: type=1400 audit(1750362808.719:47754): avc:  denied  { read write } for  pid=4203 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  196.081027][   T36] audit: type=1400 audit(1750362808.739:47755): avc:  denied  { read } for  pid=7720 comm="syz.4.2255" name="binder0" dev="binder" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0
[  196.105164][   T36] audit: type=1400 audit(1750362808.739:47756): avc:  denied  { read } for  pid=7720 comm="syz.4.2255" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[  196.130664][   T36] audit: type=1400 audit(1750362808.749:47757): avc:  denied  { read write } for  pid=4203 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  196.156106][   T36] audit: type=1400 audit(1750362808.769:47758): avc:  denied  { read } for  pid=7725 comm="syz.4.2256" name="binder0" dev="binder" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0
[  196.180765][   T36] audit: type=1400 audit(1750362808.789:47759): avc:  denied  { read write } for  pid=4203 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  197.427705][ T7896] binfmt_misc: register: failed to install interpreter file ./cgroup
[  200.068118][ T8176] tap0: tun_chr_ioctl cmd 1074812118
[  200.928478][   T36] kauditd_printk_skb: 3092 callbacks suppressed
[  200.928495][   T36] audit: type=1400 audit(1750362813.599:50852): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  200.960588][   T36] audit: type=1400 audit(1750362813.599:50853): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  200.978302][ T4770] audit: audit_backlog=65 > audit_backlog_limit=64
[  200.984687][ T8258] audit: audit_backlog=65 > audit_backlog_limit=64
[  200.990896][ T8256] audit: audit_backlog=65 > audit_backlog_limit=64
[  200.997232][ T8258] audit: audit_lost=296 audit_rate_limit=0 audit_backlog_limit=64
[  201.003346][ T4770] audit: audit_lost=297 audit_rate_limit=0 audit_backlog_limit=64
[  201.011345][ T8258] audit: backlog limit exceeded
[  201.023987][ T8256] audit: audit_lost=298 audit_rate_limit=0 audit_backlog_limit=64
[  201.024002][   T36] audit: type=1400 audit(1750362813.599:50854): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  201.498949][ T8291] FAULT_INJECTION: forcing a failure.
[  201.498949][ T8291] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  201.521026][ T8291] CPU: 1 UID: 0 PID: 8291 Comm: syz.6.2460 Not tainted 6.12.23-syzkaller-gf9fbc66f8444 #0 b8de21ba31122219d6c6778e419c74a11adc861d
[  201.521054][ T8291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  201.521066][ T8291] Call Trace:
[  201.521073][ T8291]  <TASK>
[  201.521081][ T8291]  __dump_stack+0x21/0x30
[  201.521106][ T8291]  dump_stack_lvl+0x10c/0x190
[  201.521125][ T8291]  ? __cfi_dump_stack_lvl+0x10/0x10
[  201.521145][ T8291]  dump_stack+0x19/0x20
[  201.521162][ T8291]  should_fail_ex+0x3d9/0x530
[  201.521181][ T8291]  should_fail+0xf/0x20
[  201.521197][ T8291]  should_fail_usercopy+0x1e/0x30
[  201.521216][ T8291]  _copy_to_user+0x24/0xa0
[  201.521238][ T8291]  simple_read_from_buffer+0xed/0x160
[  201.521263][ T8291]  proc_fail_nth_read+0x19e/0x210
[  201.521280][ T8291]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  201.521297][ T8291]  ? bpf_lsm_file_permission+0xd/0x20
[  201.521314][ T8291]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  201.521331][ T8291]  vfs_read+0x278/0xb60
[  201.521351][ T8291]  ? __cfi_vfs_read+0x10/0x10
[  201.521369][ T8291]  ? __kasan_check_write+0x18/0x20
[  201.521388][ T8291]  ? mutex_lock+0x92/0x1c0
[  201.521405][ T8291]  ? __cfi_mutex_lock+0x10/0x10
[  201.521420][ T8291]  ? __fget_files+0x2c5/0x340
[  201.521442][ T8291]  ksys_read+0x141/0x250
[  201.521461][ T8291]  ? __cfi_ksys_read+0x10/0x10
[  201.521480][ T8291]  ? fdget+0x189/0x1f0
[  201.521501][ T8291]  ? __kasan_check_read+0x15/0x20
[  201.521518][ T8291]  __x64_sys_read+0x7f/0x90
[  201.521537][ T8291]  x64_sys_call+0x2638/0x2ee0
[  201.521558][ T8291]  do_syscall_64+0x58/0xf0
[  201.521579][ T8291]  ? clear_bhb_loop+0x35/0x90
[  201.521602][ T8291]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  201.521633][ T8291] RIP: 0033:0x7fd4fdb8d33c
[  201.521649][ T8291] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  201.521664][ T8291] RSP: 002b:00007fd4fea18030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  201.521683][ T8291] RAX: ffffffffffffffda RBX: 00007fd4fddb6080 RCX: 00007fd4fdb8d33c
[  201.521698][ T8291] RDX: 000000000000000f RSI: 00007fd4fea180a0 RDI: 0000000000000003
[  201.521709][ T8291] RBP: 00007fd4fea18090 R08: 0000000000000000 R09: 0000000000000000
[  201.521720][ T8291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.521732][ T8291] R13: 0000000000000000 R14: 00007fd4fddb6080 R15: 00007fff10f66348
[  201.521746][ T8291]  </TASK>
[  205.938731][   T36] kauditd_printk_skb: 6687 callbacks suppressed
[  205.938748][   T36] audit: type=1400 audit(1750362818.609:57513): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  205.988470][ T8625] audit: audit_backlog=65 > audit_backlog_limit=64
[  205.988757][   T36] audit: type=1400 audit(1750362818.609:57514): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  205.996065][ T4770] audit: audit_backlog=65 > audit_backlog_limit=64
[  206.018332][   T36] audit: type=1400 audit(1750362818.609:57515): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  206.027915][ T8625] audit: audit_lost=308 audit_rate_limit=0 audit_backlog_limit=64
[  206.051627][   T36] audit: type=1400 audit(1750362818.609:57516): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  206.056868][ T4770] audit: audit_lost=309 audit_rate_limit=0 audit_backlog_limit=64
[  206.087181][ T8625] audit: backlog limit exceeded
[  206.088058][   T36] audit: type=1400 audit(1750362818.609:57517): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  207.087870][ T8721] kernel profiling enabled (shift: 8)
[  209.683038][ T8881] binfmt_misc: register: failed to install interpreter file ./cgroup.cpu/cpuset.cpus
[  210.948881][   T36] kauditd_printk_skb: 4954 callbacks suppressed
[  210.948898][   T36] audit: type=1400 audit(1750362823.619:62414): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  210.992443][   T36] audit: type=1400 audit(1750362823.619:62415): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  211.012609][ T4770] audit: audit_backlog=65 > audit_backlog_limit=64
[  211.018735][ T8968] audit: audit_backlog=65 > audit_backlog_limit=64
[  211.029356][   T36] audit: type=1400 audit(1750362823.619:62416): avc:  denied  { setattr } for  pid=4770 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[  211.039462][ T4770] audit: audit_lost=329 audit_rate_limit=0 audit_backlog_limit=64
[  211.052701][ T8968] audit: audit_lost=330 audit_rate_limit=0 audit_backlog_limit=64
[  211.069180][ T8970] audit: audit_backlog=65 > audit_backlog_limit=64
[  211.075916][ T8970] audit: audit_lost=331 audit_rate_limit=0 audit_backlog_limit=64
[  211.084756][ T4770] audit: backlog limit exceeded
[  213.206528][ T9054] serio: Serial port ttynull
[  214.629002][   T13] bridge_slave_1: left allmulticast mode
[  214.634661][   T13] bridge_slave_1: left promiscuous mode
[  214.640400][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.647970][   T13] bridge_slave_0: left allmulticast mode
[  214.653605][   T13] bridge_slave_0: left promiscuous mode
[  214.659333][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.848598][   T13] veth1_macvtap: left promiscuous mode
[  214.854142][   T13] veth0_vlan: left promiscuous mode
[  215.854778][ T9126] cgroup: fork rejected by pids controller in /syz4
[  216.557481][   T36] kauditd_printk_skb: 5535 callbacks suppressed
[  216.557499][   T36] audit: type=1400 audit(1750362829.219:67950): avc:  denied  { execmem } for  pid=9129 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[  216.583441][   T36] audit: type=1400 audit(1750362829.229:67951): avc:  denied  { read } for  pid=9130 comm="syz.6.2764" name="binder1" dev="binder" ino=59 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0
[  216.609242][   T36] audit: type=1400 audit(1750362829.239:67952): avc:  denied  { read } for  pid=9130 comm="syz.6.2764" name="binder1" dev="binder" ino=59 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0
[  216.632077][   T36] audit: type=1400 audit(1750362829.239:67953): avc:  denied  { read } for  pid=9130 comm="syz.6.2764" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[  216.654834][   T36] audit: type=1400 audit(1750362829.239:67954): avc:  denied  { read write } for  pid=9131 comm="syz.2.2765" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[  216.678279][   T36] audit: type=1326 audit(1750362829.249:67955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9131 comm="syz.2.2765" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f708078e929 code=0x0
[  216.701229][   T36] audit: type=1400 audit(1750362829.279:67956): avc:  denied  { read write } for  pid=6449 comm="syz-executor" name="loop6" dev="devtmpfs" ino=55 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  216.725491][   T36] audit: type=1400 audit(1750362829.299:67957): avc:  denied  { read } for  pid=9131 comm="syz.2.2765" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[  216.800350][   T36] audit: type=1400 audit(1750362829.469:67958): avc:  denied  { execmem } for  pid=9136 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[  216.823407][   T36] audit: type=1400 audit(1750362829.469:67959): avc:  denied  { execmem } for  pid=9137 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[  216.951224][   T13] bridge_slave_1: left allmulticast mode
[  216.956919][   T13] bridge_slave_1: left promiscuous mode
[  216.962614][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.971704][   T13] bridge_slave_0: left allmulticast mode
[  216.977428][   T13] bridge_slave_0: left promiscuous mode
[  216.984009][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.238750][   T13] veth1_macvtap: left promiscuous mode
[  217.244254][   T13] veth0_vlan: left promiscuous mode
[  218.159035][   T13] bridge_slave_1: left allmulticast mode
[  218.164684][   T13] bridge_slave_1: left promiscuous mode
[  218.170370][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.177747][   T13] bridge_slave_0: left allmulticast mode
[  218.183483][   T13] bridge_slave_0: left promiscuous mode
[  218.189115][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.196607][   T13] bridge_slave_1: left allmulticast mode
[  218.202302][   T13] bridge_slave_1: left promiscuous mode
[  218.207906][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.215284][   T13] bridge_slave_0: left allmulticast mode
[  218.221019][   T13] bridge_slave_0: left promiscuous mode
[  218.226626][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.609078][   T13] veth1_macvtap: left promiscuous mode
[  218.614591][   T13] veth0_vlan: left promiscuous mode
[  218.620066][   T13] veth1_macvtap: left promiscuous mode
[  218.625558][   T13] veth0_vlan: left promiscuous mode