last executing test programs: 89.362547ms ago: executing program 1 (id=2): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, 0x0, 0x0, 0x4, &(0x7f00000004c0)={{0x0, 0x0}}) syz_usb_connect(0x4, 0x5e, &(0x7f0000000000)=ANY=[@ANYRES64=r0, @ANYRES8=r1, @ANYRESDEC, @ANYRESHEX=r2], 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4e23, 0x3, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c) sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup(r5) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) write$tun(r4, &(0x7f0000000580)=ANY=[@ANYBLOB="0a00b3f00180c2000000aaaaaaaaaaaa86dd694fd2cd016821"], 0x1a2) ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004) r7 = getpgrp(r0) ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, r7, 0x5, 0x4002) 30.738779ms ago: executing program 0 (id=1): unshare(0x6020400) socket$inet6(0xa, 0x800000000000002, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10) listen(r1, 0x0) unshare(0x20000400) r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0xfffffffffffffffc, 0x923301) ioctl$EVIOCGRAB(r2, 0x40044590, 0x0) r3 = socket$vsock_stream(0x28, 0x1, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000001040), 0x400, 0x0) connect$vsock_stream(r3, &(0x7f0000000640)={0x28, 0x0, 0x2710, @local}, 0x10) recvmmsg(r3, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000005c0)=""/77, 0x4d}], 0x1}, 0x5}], 0x40000, 0x0, 0x0) shutdown(r3, 0x0) close(0x3) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket$unix(0x1, 0x2, 0x0) ioctl$BTRFS_IOC_DEV_INFO(r5, 0xd000941e, &(0x7f0000000040)={0x0, "447c24c31e7a12c614490a3e96aba669"}) ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000001480)={r6, 0x6, 0x0, [0x100, 0x40, 0x2, 0x6, 0x883], [0x1, 0x2, 0x9, 0x9, 0x0, 0x1, 0x99, 0x1, 0xff, 0x3, 0xbeb0, 0x78a3b732, 0x6, 0xfffffffffffffffe, 0x9, 0x3, 0x1032, 0x1, 0xfea, 0x4, 0xd08, 0xffffffffffffffff, 0xffffffff, 0x4e, 0x4, 0x1ff, 0x5, 0x2, 0x8000000000000000, 0x5, 0x5, 0x0, 0xff, 0x13, 0x0, 0x100000000, 0x4, 0x8, 0x10, 0x9, 0x3b0, 0x1, 0xfffffffffffffff9, 0x7, 0x5, 0x0, 0x3, 0x101, 0x7ff, 0x9, 0x29d, 0x6, 0xe, 0x38, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x4, 0x18df, 0x5626595a, 0x8, 0x5, 0xa, 0x6, 0x8001, 0x2, 0x2, 0x6fd, 0xdb, 0x2, 0x5, 0x8, 0xfffffffffffffff9, 0xc1, 0x29c, 0x6, 0x2, 0x3, 0x7ff, 0x8, 0xcc7, 0xf5a, 0xff, 0x5, 0x1, 0x4, 0x231, 0x9, 0xffffffffffffff81, 0x0, 0x3, 0x1, 0x3f88658f, 0x7f, 0x5, 0x538d, 0x0, 0x80, 0xcc, 0x3, 0x10000, 0x3ff000000000, 0x1, 0x6, 0x7fffffffffffffff, 0x5, 0x32a0, 0x7, 0x8, 0x8000000000000000, 0x7fffffffffffffff, 0x800, 0x6, 0x10001, 0x1, 0x1, 0xb7bb, 0x9, 0x4]}) bind$unix(r5, &(0x7f0000001400)=@abs={0x1, 0x0, 0x4e20}, 0x6e) sendmsg$netlink(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x48000}, 0x4040001) 12.314439ms ago: executing program 3 (id=4): r0 = socket$unix(0x1, 0x2, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r1) setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0xe, @remote}}, 0x0, 0x0, 0x46, 0x0, "2431d0edd9b36cb74d7df7671eacf04be3b08353efa3641776f56c7556fd3713097bd0072577bc6fefb4cdc9e94e420b0ea4fbc5b07a32056eff5e6c42784b46ddab72b1b8fc87f208ad6db80d8dfe25"}, 0xd8) r2 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000080)=ANY=[@ANYBLOB="0206e7001000000401"], 0x40) setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18) connect$inet6(r2, &(0x7f0000001940)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000001840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02020409100000000000004c"], 0x80}}, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000100)) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r5 = dup3(r4, r3, 0x0) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) r7 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_int(r7, 0x0, 0x13, 0x0, 0x0) ioctl$PPPIOCSFLAGS1(r6, 0x40047459, &(0x7f0000000080)=0x6100204) preadv(r6, &(0x7f0000000400)=[{&(0x7f0000000140)=""/161, 0xa1}], 0x1, 0x1, 0x1) r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r8, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000380)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@binder={0x73622a85, 0x100}, @fda={0x66646185, 0xa}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}, 0x1000}], 0x0, 0x0, 0x0}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) ptrace$getregset(0x4205, r1, 0x202, &(0x7f0000000080)={0x0}) close(r0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) 0s ago: executing program 2 (id=3): setfsgid(0xee01) (async) lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)) (async, rerun: 64) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (rerun: 64) openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x10d282, 0x0) (async) openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x20880, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.210' (ED25519) to the list of known hosts. [ 22.399254][ T36] audit: type=1400 audit(1781523325.180:64): avc: denied { mounton } for pid=286 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 22.400410][ T286] cgroup: Unknown subsys name 'net' [ 22.422093][ T36] audit: type=1400 audit(1781523325.180:65): avc: denied { mount } for pid=286 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 22.449433][ T36] audit: type=1400 audit(1781523325.210:66): avc: denied { unmount } for pid=286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 22.449570][ T286] cgroup: Unknown subsys name 'devices' [ 22.574193][ T286] cgroup: Unknown subsys name 'hugetlb' [ 22.579948][ T286] cgroup: Unknown subsys name 'rlimit' [ 22.672488][ T36] audit: type=1400 audit(1781523325.460:67): avc: denied { setattr } for pid=286 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 22.692165][ T288] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 22.695710][ T36] audit: type=1400 audit(1781523325.460:68): avc: denied { mounton } for pid=286 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 22.730539][ T36] audit: type=1400 audit(1781523325.460:69): avc: denied { mount } for pid=286 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 22.735113][ T286] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 22.754502][ T36] audit: type=1400 audit(1781523325.500:70): avc: denied { relabelto } for pid=288 comm="mkswap" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 22.788669][ T36] audit: type=1400 audit(1781523325.500:71): avc: denied { write } for pid=288 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 22.814311][ T36] audit: type=1400 audit(1781523325.510:72): avc: denied { read } for pid=286 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 22.839989][ T36] audit: type=1400 audit(1781523325.510:73): avc: denied { open } for pid=286 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 23.741214][ T293] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.758954][ T293] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.766348][ T293] bridge_slave_0: entered allmulticast mode [ 23.774827][ T293] bridge_slave_0: entered promiscuous mode [ 23.781430][ T293] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.788569][ T293] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.796056][ T293] bridge_slave_1: entered allmulticast mode [ 23.802405][ T293] bridge_slave_1: entered promiscuous mode [ 23.934303][ T298] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.941376][ T298] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.948702][ T298] bridge_slave_0: entered allmulticast mode [ 23.955179][ T298] bridge_slave_0: entered promiscuous mode [ 23.961830][ T298] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.968941][ T298] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.976147][ T298] bridge_slave_1: entered allmulticast mode [ 23.982511][ T298] bridge_slave_1: entered promiscuous mode [ 23.998046][ T293] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.005133][ T293] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.012510][ T293] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.019660][ T293] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.070989][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.078235][ T299] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.085426][ T299] bridge_slave_0: entered allmulticast mode [ 24.091758][ T299] bridge_slave_0: entered promiscuous mode [ 24.101672][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.108795][ T299] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.115959][ T299] bridge_slave_1: entered allmulticast mode [ 24.122378][ T299] bridge_slave_1: entered promiscuous mode [ 24.129313][ T297] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.136506][ T297] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.143671][ T297] bridge_slave_0: entered allmulticast mode [ 24.149958][ T297] bridge_slave_0: entered promiscuous mode [ 24.160315][ T297] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.167530][ T297] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.174714][ T297] bridge_slave_1: entered allmulticast mode [ 24.181224][ T297] bridge_slave_1: entered promiscuous mode [ 24.284973][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.292310][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.318624][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.325726][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.356920][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.364052][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.416898][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.424026][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.437747][ T293] veth0_vlan: entered promiscuous mode [ 24.455106][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.462227][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.470184][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.477359][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.485909][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.493074][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.525843][ T293] veth1_macvtap: entered promiscuous mode [ 24.539051][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.546172][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.555162][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.562250][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.590646][ T298] veth0_vlan: entered promiscuous mode [ 24.613981][ T299] veth0_vlan: entered promiscuous mode [ 24.631736][ T297] veth0_vlan: entered promiscuous mode [ 24.643469][ T298] veth1_macvtap: entered promiscuous mode [ 24.656576][ T293] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 24.676983][ T297] veth1_macvtap: entered promiscuous mode [ 24.691667][ T299] veth1_macvtap: entered promiscuous mode [ 24.807080][ T322] rust_binder: Error while translating object. [ 24.807130][ C0] BUG: TASK stack guard page was hit at ffffc9000b7effd8 (stack is ffffc9000b7f0000..ffffc9000b7f8000) [ 24.807155][ C0] Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN PTI [ 24.807173][ C0] CPU: 0 UID: 0 PID: 322 Comm: syz.3.4 Not tainted syzkaller #0 471281939cd7bfdfff4c6b6074d5d68627c837ba [ 24.807194][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 24.807204][ C0] RIP: 0010:update_stack_state+0x115/0x4b0 [ 24.807247][ C0] Code: 4b 10 4c 89 7d b0 4c 01 f8 48 89 85 78 ff ff ff 48 8d 53 18 48 8d 43 28 48 8d 73 20 48 89 b5 60 ff ff ff 4c 89 f6 48 c1 ee 03 <48> 89 b5 40 ff ff ff 48 89 8d 70 ff ff ff 48 c1 e9 03 48 89 8d 48 [ 24.807261][ C0] RSP: 0018:ffffc9000b7effe0 EFLAGS: 00010a02 [ 24.807278][ C0] RAX: ffffc9000b7f0150 RBX: ffffc9000b7f0128 RCX: ffffc9000b7f0138 [ 24.807292][ C0] RDX: ffffc9000b7f0140 RSI: 1ffff920016fe026 RDI: ffffc9000b7f0180 [ 24.807305][ C0] RBP: ffffc9000b7f00a0 R08: ffffc9000b7f0101 R09: 0000000000000000 [ 24.807316][ C0] R10: ffffc9000b7f0128 R11: fffff520016fe031 R12: 0000000000000000 [ 24.807328][ C0] R13: dffffc0000000000 R14: ffffc9000b7f0130 R15: ffffc9000b7f0118 [ 24.807341][ C0] FS: 00007f88a75906c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 24.807357][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.807369][ C0] CR2: ffffc9000b7effd8 CR3: 0000000130e02000 CR4: 00000000003526b0 [ 24.807386][ C0] Call Trace: [ 24.807394][ C0] [ 24.807403][ C0] ? __unwind_start+0x216/0x410 [ 24.807426][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 24.807449][ C0] ? arch_stack_walk+0xf2/0x170 [ 24.807469][ C0] ? stack_trace_save+0xaa/0x100 [ 24.807487][ C0] ? __cfi_stack_trace_save+0x10/0x10 [ 24.807507][ C0] ? __asan_memset+0x39/0x50 [ 24.807524][ C0] ? save_stack+0x125/0x240 [ 24.807545][ C0] ? free_contig_range+0x260/0x260 [ 24.807563][ C0] ? __reset_page_owner+0x450/0x450 [ 24.807582][ C0] ? zone_page_state_add+0x43/0x90 [ 24.807605][ C0] ? kvm_sched_clock_read+0x15/0x30 [ 24.807624][ C0] ? sched_clock_noinstr+0xd/0x30 [ 24.807642][ C0] ? __set_page_owner+0x8e/0x600 [ 24.807662][ C0] ? __zone_watermark_ok+0x134/0x630 [ 24.807686][ C0] ? __cfi___set_page_owner+0x10/0x10 [ 24.807707][ C0] ? kasan_unpoison+0x4a/0x70 [ 24.807724][ C0] ? post_alloc_hook+0x37d/0x3b0 [ 24.807746][ C0] ? __cfi_post_alloc_hook+0x10/0x10 [ 24.807766][ C0] ? gfp_to_alloc_flags_cma+0x1c0/0x1c0 [ 24.807784][ C0] ? _raw_spin_trylock+0xb5/0x140 [ 24.807806][ C0] ? __cfi__raw_spin_trylock+0x10/0x10 [ 24.807829][ C0] ? prep_new_page+0x2d/0x190 [ 24.807857][ C0] ? get_page_from_freelist+0x496e/0x4a20 [ 24.807887][ C0] ? __alloc_pages_noprof+0x7e0/0x7e0 [ 24.807910][ C0] ? static_key_count+0x45/0x70 [ 24.807932][ C0] ? gfp_to_alloc_flags_cma+0x96/0x1c0 [ 24.807949][ C0] ? lruvec_init+0x231/0x280 [ 24.807968][ C0] ? __alloc_pages_noprof+0x35f/0x7e0 [ 24.807991][ C0] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 24.808014][ C0] ? unwind_get_return_address+0x51/0x90 [ 24.808035][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 24.808055][ C0] ? arch_stack_walk+0x10a/0x170 [ 24.808073][ C0] ? stack_trace_save+0xaa/0x100 [ 24.808092][ C0] ? stack_depot_save_flags+0x672/0x800 [ 24.808116][ C0] ? kasan_save_track+0x4f/0x80 [ 24.808135][ C0] ? kasan_save_track+0x3e/0x80 [ 24.808153][ C0] ? kasan_save_free_info+0x4a/0x60 [ 24.808168][ C0] ? __kasan_slab_free+0x5f/0x80 [ 24.808187][ C0] ? kfree+0x158/0x440 [ 24.808203][ C0] ? krealloc_noprof+0xfa/0x130 [ 24.808221][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel5alloc4kbox3BoxINtNtNtB4_3mem12maybe_uninit11MaybeUninitINtNtBN_6rbtree4NodemINtNtNtBN_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EEENtNtBL_9allocator7KmallocEEB2S_+0x114/0x360 [ 24.808271][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x16c0/0x2660 [ 24.808295][ C0] ? _RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x1715/0x5dd0 [ 24.808320][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCs2tVsXcF29le_11rust_binder10allocation10AllocationEBK_+0x1a/0xf0 [ 24.808351][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c54/0x9460 [ 24.808374][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3f8/0x29c0 [ 24.808396][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x18f8/0x4380 [ 24.808417][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 24.808446][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1231/0x5d80 [ 24.808471][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 24.808490][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 24.808509][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 24.808527][ C0] ? do_syscall_64+0x57/0xf0 [ 24.808549][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 24.808579][ C0] ? _RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x9a/0x180 [ 24.808604][ C0] ? kasan_save_free_info+0x4a/0x60 [ 24.808620][ C0] ? __kasan_slab_free+0x5f/0x80 [ 24.808639][ C0] ? kfree+0x158/0x440 [ 24.808654][ C0] ? krealloc_noprof+0xfa/0x130 [ 24.808672][ C0] ? krealloc_noprof+0xfa/0x130 [ 24.808690][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel5alloc4kbox3BoxINtNtNtB4_3mem12maybe_uninit11MaybeUninitINtNtBN_6rbtree4NodemINtNtNtBN_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EEENtNtBL_9allocator7KmallocEEB2S_+0x114/0x360 [ 24.808737][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel5alloc4kbox3BoxINtNtNtB4_3mem12maybe_uninit11MaybeUninitINtNtBN_6rbtree4NodemINtNtNtBN_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EEENtNtBL_9allocator7KmallocEEB2S_+0x10/0x10 [ 24.808783][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x413/0x580 [ 24.808818][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x10/0x10 [ 24.808858][ C0] ? __kasan_check_write+0x18/0x20 [ 24.808875][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.808897][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.808920][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x16c0/0x2660 [ 24.808949][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x10/0x10 [ 24.808979][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 24.809012][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.809029][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 24.809053][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x10/0x10 [ 24.809072][ C0] ? __kasan_check_write+0x18/0x20 [ 24.809083][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.809097][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.809112][ C0] ? _RINvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x6a9/0xc70 [ 24.809130][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.809141][ C0] ? _RINvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x5f4/0xc70 [ 24.809159][ C0] ? __cfi__RINvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x10/0x10 [ 24.809177][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 24.809195][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.809205][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 24.809224][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x10/0x10 [ 24.809242][ C0] ? __kasan_check_write+0x18/0x20 [ 24.809253][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.809267][ C0] ? _RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x30c/0x5dd0 [ 24.809284][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.809295][ C0] ? _RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x1715/0x5dd0 [ 24.809313][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.809328][ C0] ? __kernel_text_address+0x11/0x40 [ 24.809346][ C0] ? unwind_get_return_address+0x51/0x90 [ 24.809360][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 24.809376][ C0] ? __cfi__RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x10/0x10 [ 24.809393][ C0] ? stack_depot_save_flags+0x38/0x800 [ 24.809407][ C0] ? kasan_save_track+0x4f/0x80 [ 24.809419][ C0] ? kasan_save_track+0x4f/0x80 [ 24.809431][ C0] ? kasan_save_track+0x3e/0x80 [ 24.809442][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 24.809452][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 24.809465][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 24.809477][ C0] ? krealloc_noprof+0x8d/0x130 [ 24.809488][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process23insert_or_update_handle+0x51e/0x2c70 [ 24.809504][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB5_14AllocationView22transfer_binder_object+0x224/0xc10 [ 24.809523][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x4031/0x9460 [ 24.809538][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3f8/0x29c0 [ 24.809553][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x18f8/0x4380 [ 24.809566][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 24.809585][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1231/0x5d80 [ 24.809601][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 24.809613][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 24.809625][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 24.809636][ C0] ? do_syscall_64+0x57/0xf0 [ 24.809650][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 24.809668][ C0] ? __kasan_check_write+0x18/0x20 [ 24.809679][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.809693][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.809707][ C0] ? __kasan_check_write+0x18/0x20 [ 24.809718][ C0] ? _RNvMs5_NtCs1ewLyjEZ7Le_6kernel6bitmapNtB5_6Bitmap7set_bit+0xc1/0x260 [ 24.809733][ C0] ? __cfi__RNvMs5_NtCs1ewLyjEZ7Le_6kernel6bitmapNtB5_6Bitmap7set_bit+0x10/0x10 [ 24.809748][ C0] ? _raw_spin_unlock+0x45/0x60 [ 24.809763][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x181/0x2d0 [ 24.809782][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.809793][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0 [ 24.809812][ C0] ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10 [ 24.809839][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0 [ 24.809858][ C0] ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10 [ 24.809877][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process23insert_or_update_handle+0x17cc/0x2c70 [ 24.809893][ C0] ? desc_read+0x202/0x3e0 [ 24.809906][ C0] ? __kasan_check_write+0x18/0x20 [ 24.809916][ C0] ? desc_read+0x1ab/0x3e0 [ 24.809929][ C0] ? prb_first_seq+0x109/0x1d0 [ 24.809941][ C0] ? __cfi_prb_first_seq+0x10/0x10 [ 24.809953][ C0] ? __kasan_check_write+0x18/0x20 [ 24.809963][ C0] ? desc_read+0x1ab/0x3e0 [ 24.809975][ C0] ? __kasan_check_read+0x15/0x20 [ 24.809985][ C0] ? this_cpu_in_panic+0x56/0x90 [ 24.809998][ C0] ? _prb_read_valid+0x9f3/0xa80 [ 24.810011][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.810022][ C0] ? prb_read_valid+0x80/0x80 [ 24.810035][ C0] ? data_alloc+0x4d0/0x7e0 [ 24.810047][ C0] ? desc_read+0x202/0x3e0 [ 24.810058][ C0] ? __kasan_check_write+0x18/0x20 [ 24.810068][ C0] ? desc_read+0x1ab/0x3e0 [ 24.810081][ C0] ? prb_first_seq+0x109/0x1d0 [ 24.810093][ C0] ? __cfi_prb_first_seq+0x10/0x10 [ 24.810105][ C0] ? __kasan_check_write+0x18/0x20 [ 24.810115][ C0] ? desc_read+0x1ab/0x3e0 [ 24.810127][ C0] ? __kasan_check_read+0x15/0x20 [ 24.810137][ C0] ? this_cpu_in_panic+0x56/0x90 [ 24.810149][ C0] ? _prb_read_valid+0x9f3/0xa80 [ 24.810162][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 24.810177][ C0] ? prb_read_valid+0x80/0x80 [ 24.810189][ C0] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 24.810205][ C0] ? up+0x10a/0x1b0 [ 24.810216][ C0] ? __cfi_up+0x10/0x10 [ 24.810228][ C0] ? __kasan_check_write+0x18/0x20 [ 24.810238][ C0] ? _RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x9a/0x180 [ 24.810254][ C0] ? __cfi__RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x10/0x10 [ 24.810270][ C0] ? __cfi_llist_add_batch+0x10/0x10 [ 24.810282][ C0] ? console_unlock+0x247/0x2c0 [ 24.810296][ C0] ? __cfi_console_unlock+0x10/0x10 [ 24.810310][ C0] ? krealloc_noprof+0xfa/0x130 [ 24.810321][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5alloc20dangling_from_layout+0x11/0x20 [ 24.810338][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCs2tVsXcF29le_11rust_binder6thread18ScatterGatherStateEEB16_+0x396/0x820 [ 24.810359][ C0] ? irq_work_queue+0xc2/0x160 [ 24.810374][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCs2tVsXcF29le_11rust_binder6thread18ScatterGatherStateEEB16_+0x10/0x10 [ 24.810395][ C0] ? vprintk_emit+0x3e3/0x650 [ 24.810408][ C0] ? __cfi_vprintk_emit+0x10/0x10 [ 24.810422][ C0] ? _RINvMNtCs2tVsXcF29le_11rust_binder10allocationNtB3_10Allocation5writeyEB5_+0x47c/0x760 [ 24.810439][ C0] ? __cfi__RINvMNtCs2tVsXcF29le_11rust_binder10allocationNtB3_10Allocation5writeyEB5_+0x10/0x10 [ 24.810456][ C0] ? vprintk_default+0x2a/0x40 [ 24.810470][ C0] ? vprintk+0x93/0xa0 [ 24.810480][ C0] ? _printk+0xde/0x140 [ 24.810492][ C0] ? __cfi___check_object_size+0x10/0x10 [ 24.810504][ C0] ? __cfi__printk+0x10/0x10 [ 24.810516][ C0] ? _copy_from_user+0x87/0xa0 [ 24.810526][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCs2tVsXcF29le_11rust_binder10allocation10AllocationEBK_+0x1a/0xf0 [ 24.810544][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c47/0x9460 [ 24.810560][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c54/0x9460 [ 24.810583][ C0] ? __cfi__RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x10/0x10 [ 24.810631][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.810648][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.810662][ C0] ? __kasan_check_write+0x18/0x20 [ 24.810673][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 24.810687][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 24.810706][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.810725][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.810741][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.810755][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 24.810772][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.810788][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.810802][ C0] ? __kasan_check_write+0x18/0x20 [ 24.810812][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 24.810827][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 24.810849][ C0] ? __kasan_check_write+0x18/0x20 [ 24.810859][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 24.810873][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 24.810889][ C0] ? stack_depot_save_flags+0x399/0x800 [ 24.810904][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3f8/0x29c0 [ 24.810921][ C0] ? __cfi__RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x10/0x10 [ 24.810938][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 24.810948][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 24.810960][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 24.810973][ C0] ? _RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1U_EEBS_+0x10e/0x720 [ 24.811000][ C0] ? __asan_memset+0x39/0x50 [ 24.811011][ C0] ? _RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1U_EEBS_+0x2c5/0x720 [ 24.811037][ C0] ? __cfi__RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1U_EEBS_+0x10/0x10 [ 24.811063][ C0] ? avc_has_perm_noaudit+0x2bd/0x360 [ 24.811076][ C0] ? avc_has_perm+0x1ec/0x240 [ 24.811088][ C0] ? avc_has_perm+0x211/0x240 [ 24.811100][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x85/0x1e0 [ 24.811113][ C0] ? __cfi__RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x10/0x10 [ 24.811127][ C0] ? __kasan_check_write+0x18/0x20 [ 24.811138][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.811152][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.811166][ C0] ? selinux_binder_transaction+0x165/0x1d0 [ 24.811181][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x18f8/0x4380 [ 24.811195][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0xc7a/0x2660 [ 24.811213][ C0] ? __cfi__RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x10/0x10 [ 24.811236][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.811251][ C0] ? __kasan_check_write+0x18/0x20 [ 24.811262][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 24.811289][ C0] ? __cfi__RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x10/0x10 [ 24.811329][ C0] ? __asan_memset+0x39/0x50 [ 24.811342][ C0] ? save_stack+0x150/0x240 [ 24.811355][ C0] ? free_contig_range+0x260/0x260 [ 24.811366][ C0] ? __reset_page_owner+0x450/0x450 [ 24.811381][ C0] ? __kasan_check_write+0x18/0x20 [ 24.811391][ C0] ? __update_page_owner_handle+0x318/0x370 [ 24.811408][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.811424][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.811438][ C0] ? __kernel_text_address+0x11/0x40 [ 24.811453][ C0] ? unwind_get_return_address+0x51/0x90 [ 24.811467][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 24.811480][ C0] ? arch_stack_walk+0x10a/0x170 [ 24.811492][ C0] ? stack_depot_save_flags+0x38/0x800 [ 24.811507][ C0] ? kasan_save_track+0x4f/0x80 [ 24.811519][ C0] ? kasan_save_track+0x3e/0x80 [ 24.811532][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 24.811547][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 24.811566][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 24.811584][ C0] ? krealloc_noprof+0x8d/0x130 [ 24.811603][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x920/0x1aa0 [ 24.811623][ C0] ? _RNvMs6_NtCs1ewLyjEZ7Le_6kernel4listINtB5_4ListINtCs2tVsXcF29le_11rust_binder7DTRWrapDNtBL_13DeliverToReadEL_EE12insert_innerBL_+0x43a/0x6c0 [ 24.811646][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 24.811659][ C0] ? __cfi__RNvMs6_NtCs1ewLyjEZ7Le_6kernel4listINtB5_4ListINtCs2tVsXcF29le_11rust_binder7DTRWrapDNtBL_13DeliverToReadEL_EE12insert_innerBL_+0x10/0x10 [ 24.811682][ C0] ? __kasan_check_write+0x18/0x20 [ 24.811693][ C0] ? _RNvMs0_NtCs2tVsXcF29le_11rust_binder4nodeNtB5_4Node28incr_refcount_allow_zero2one+0x502/0xee0 [ 24.811712][ C0] ? __kasan_check_write+0x18/0x20 [ 24.811722][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.811736][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.811751][ C0] ? _raw_spin_unlock+0x45/0x60 [ 24.811765][ C0] ? _RNvMs0_NtCs2tVsXcF29le_11rust_binder7processNtB5_12ProcessInner24new_node_ref_with_thread+0x5ec/0x950 [ 24.811785][ C0] ? __cfi__RNvMs0_NtCs2tVsXcF29le_11rust_binder7processNtB5_12ProcessInner24new_node_ref_with_thread+0x10/0x10 [ 24.811803][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreeyINtNtNtB7_4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1d_4node4NodeEEE9raw_entryB1d_+0x403/0x500 [ 24.811823][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreeyINtNtNtB7_4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1d_4node4NodeEEE9raw_entryB1d_+0x10/0x10 [ 24.811850][ C0] ? __kasan_check_write+0x18/0x20 [ 24.811860][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.811874][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.811889][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x11f1/0x1aa0 [ 24.811905][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.811916][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 24.811931][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x127e/0x1aa0 [ 24.811949][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x10/0x10 [ 24.811977][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreelINtNtNtB7_4sync3arc3ArcNtNtCs2tVsXcF29le_11rust_binder6thread6ThreadEE9raw_entryB1e_+0x416/0x580 [ 24.812017][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreelINtNtNtB7_4sync3arc3ArcNtNtCs2tVsXcF29le_11rust_binder6thread6ThreadEE9raw_entryB1e_+0x10/0x10 [ 24.812054][ C0] ? __kasan_check_write+0x18/0x20 [ 24.812070][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.812092][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.812115][ C0] ? _raw_spin_unlock+0x45/0x60 [ 24.812138][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 24.812162][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process18get_current_thread+0x1008/0x1c70 [ 24.812193][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 24.812218][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process18get_current_thread+0x10/0x10 [ 24.812248][ C0] ? avc_has_perm_noaudit+0x26c/0x360 [ 24.812266][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.812283][ C0] ? __kasan_check_write+0x18/0x20 [ 24.812301][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0x155/0x4a0 [ 24.812334][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0x10/0x10 [ 24.812367][ C0] ? avc_has_perm+0x155/0x240 [ 24.812388][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x85/0x1e0 [ 24.812411][ C0] ? __cfi__RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x10/0x10 [ 24.812430][ C0] ? __kasan_check_write+0x18/0x20 [ 24.812448][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.812470][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.812492][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process14set_as_manager+0xb14/0x1030 [ 24.812520][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.812530][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process14set_as_manager+0xd14/0x1030 [ 24.812549][ C0] ? __kernel_text_address+0x11/0x40 [ 24.812565][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process14set_as_manager+0x10/0x10 [ 24.812584][ C0] ? stack_trace_save+0xaa/0x100 [ 24.812597][ C0] ? __kasan_check_write+0x18/0x20 [ 24.812608][ C0] ? _raw_spin_lock+0x92/0x120 [ 24.812622][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.812637][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x11db/0x5d80 [ 24.812653][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.812663][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1231/0x5d80 [ 24.812679][ C0] ? _raw_spin_trylock+0xb5/0x140 [ 24.812694][ C0] ? _raw_spin_unlock+0x45/0x60 [ 24.812708][ C0] ? call_rcu_nocb+0x6d7/0xc80 [ 24.812724][ C0] ? __cfi__RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x10/0x10 [ 24.812741][ C0] ? swake_up_one_online_ipi+0x30/0x30 [ 24.812757][ C0] ? __cfi_mt_free_rcu+0x10/0x10 [ 24.812773][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.812789][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.812803][ C0] ? __kernel_text_address+0x11/0x40 [ 24.812818][ C0] ? __kasan_check_write+0x18/0x20 [ 24.812829][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 24.812852][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 24.812867][ C0] ? stack_trace_save+0xaa/0x100 [ 24.812880][ C0] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 24.812895][ C0] ? stack_depot_save_flags+0x399/0x800 [ 24.812910][ C0] ? kasan_save_track+0x4f/0x80 [ 24.812922][ C0] ? kasan_save_track+0x3e/0x80 [ 24.812934][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 24.812943][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 24.812956][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 24.812968][ C0] ? krealloc_noprof+0x8d/0x130 [ 24.812979][ C0] ? kvrealloc_noprof+0x59/0x120 [ 24.812989][ C0] ? _RNvCs2tVsXcF29le_11rust_binder16rust_binder_mmap+0x78b/0x11f0 [ 24.813005][ C0] ? mmap_region+0x1579/0x1d60 [ 24.813016][ C0] ? do_mmap+0xb85/0x13c0 [ 24.813025][ C0] ? vm_mmap_pgoff+0x36e/0x4b0 [ 24.813038][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 24.813053][ C0] ? kernel_text_address+0xa9/0xe0 [ 24.813068][ C0] ? __kernel_text_address+0x11/0x40 [ 24.813082][ C0] ? unwind_get_return_address+0x51/0x90 [ 24.813096][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 24.813108][ C0] ? arch_stack_walk+0x10a/0x170 [ 24.813121][ C0] ? __kasan_check_read+0x15/0x20 [ 24.813131][ C0] ? resched_curr+0xb0/0x440 [ 24.813141][ C0] ? __cfi_cgroup_rstat_updated+0x10/0x10 [ 24.813154][ C0] ? __cfi_resched_curr+0x10/0x10 [ 24.813164][ C0] ? __kasan_record_aux_stack+0xb2/0xd0 [ 24.813174][ C0] ? kvm_sched_clock_read+0x15/0x30 [ 24.813187][ C0] ? update_curr+0xf8/0x9e0 [ 24.813198][ C0] ? __cfi___update_load_avg_cfs_rq+0x10/0x10 [ 24.813214][ C0] ? xfd_validate_state+0x68/0x140 [ 24.813229][ C0] ? save_fpregs_to_fpstate+0x196/0x220 [ 24.813243][ C0] ? __kasan_check_write+0x18/0x20 [ 24.813253][ C0] ? __switch_to+0xc4f/0x1300 [ 24.813263][ C0] ? __cfi_sched_clock_cpu+0x10/0x10 [ 24.813279][ C0] ? __cfi___switch_to+0x10/0x10 [ 24.813288][ C0] ? psi_task_switch+0xad/0xa10 [ 24.813303][ C0] ? _raw_spin_unlock+0x45/0x60 [ 24.813317][ C0] ? finish_task_switch+0x139/0x760 [ 24.813332][ C0] ? __switch_to_asm+0x3d/0x70 [ 24.813347][ C0] ? __schedule+0x14d6/0x2100 [ 24.813358][ C0] ? __sched_text_start+0x10/0x10 [ 24.813368][ C0] ? __kasan_check_write+0x18/0x20 [ 24.813378][ C0] ? resched_curr+0x119/0x440 [ 24.813397][ C0] ? __cfi_resched_curr+0x10/0x10 [ 24.813408][ C0] ? avc_has_extended_perms+0x80b/0xe70 [ 24.813420][ C0] ? __asan_memcpy+0x5a/0x80 [ 24.813431][ C0] ? avc_has_extended_perms+0x969/0xe70 [ 24.813444][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 24.813459][ C0] ? do_vfs_ioctl+0x182d/0x2010 [ 24.813472][ C0] ? preempt_schedule_thunk+0x1a/0x40 [ 24.813484][ C0] ? __ia32_compat_sys_ioctl+0x920/0x920 [ 24.813498][ C0] ? try_to_wake_up+0x11f0/0x1fa0 [ 24.813512][ C0] ? __cfi_try_to_wake_up+0x10/0x10 [ 24.813528][ C0] ? ioctl_has_perm+0x39a/0x500 [ 24.813538][ C0] ? has_cap_mac_admin+0xd0/0xd0 [ 24.813549][ C0] ? file_mmap_ok+0x147/0x1a0 [ 24.813560][ C0] ? userfaultfd_unmap_complete+0x29f/0x320 [ 24.813573][ C0] ? selinux_file_ioctl+0x732/0x1480 [ 24.813584][ C0] ? __cfi_userfaultfd_unmap_complete+0x10/0x10 [ 24.813597][ C0] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 24.813607][ C0] ? do_futex+0x37d/0x510 [ 24.813622][ C0] ? __cfi_do_futex+0x10/0x10 [ 24.813637][ C0] ? vm_mmap_pgoff+0x153/0x4b0 [ 24.813648][ C0] ? __fget_files+0x2c5/0x340 [ 24.813661][ C0] ? bpf_lsm_file_ioctl+0xd/0x20 [ 24.813675][ C0] ? security_file_ioctl+0x3e/0x110 [ 24.813691][ C0] ? __cfi__RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x10/0x10 [ 24.813707][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 24.813720][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 24.813733][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 24.813744][ C0] ? do_syscall_64+0x57/0xf0 [ 24.813759][ C0] ? clear_bhb_loop+0x50/0xa0 [ 24.813770][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 24.813788][ C0] [ 24.813792][ C0] Modules linked in: [ 24.813803][ C0] ---[ end trace 0000000000000000 ]--- [ 24.813809][ C0] RIP: 0010:update_stack_state+0x115/0x4b0 [ 24.813826][ C0] Code: 4b 10 4c 89 7d b0 4c 01 f8 48 89 85 78 ff ff ff 48 8d 53 18 48 8d 43 28 48 8d 73 20 48 89 b5 60 ff ff ff 4c 89 f6 48 c1 ee 03 <48> 89 b5 40 ff ff ff 48 89 8d 70 ff ff ff 48 c1 e9 03 48 89 8d 48 [ 24.813843][ C0] RSP: 0018:ffffc9000b7effe0 EFLAGS: 00010a02 [ 24.813853][ C0] RAX: ffffc9000b7f0150 RBX: ffffc9000b7f0128 RCX: ffffc9000b7f0138 [ 24.813861][ C0] RDX: ffffc9000b7f0140 RSI: 1ffff920016fe026 RDI: ffffc9000b7f0180 [ 24.813869][ C0] RBP: ffffc9000b7f00a0 R08: ffffc9000b7f0101 R09: 0000000000000000 [ 24.813877][ C0] R10: ffffc9000b7f0128 R11: fffff520016fe031 R12: 0000000000000000 [ 24.813885][ C0] R13: dffffc0000000000 R14: ffffc9000b7f0130 R15: ffffc9000b7f0118 [ 24.813893][ C0] FS: 00007f88a75906c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 24.813903][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.813911][ C0] CR2: ffffc9000b7effd8 CR3: 0000000130e02000 CR4: 00000000003526b0 [ 24.813924][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 24.814267][ C0] Kernel Offset: disabled