last executing test programs: 12.930032749s ago: executing program 1 (id=21): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_pidfd_open(r2, 0x0) setns(r3, 0x24020000) r4 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) fsmount(r4, 0x1, 0x0) 12.89318194s ago: executing program 1 (id=22): mkdir(&(0x7f00000001c0)='./file1\x00', 0xb) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) r0 = open(&(0x7f0000000040)='./file1\x00', 0x808400, 0x43) chdir(&(0x7f00000003c0)='./bus\x00') unlink(&(0x7f0000000140)='./file0\x00') mkdirat(r0, &(0x7f0000000340)='./file0\x00', 0x100) creat(&(0x7f0000000180)='./file0\x00', 0xa) 12.837323403s ago: executing program 1 (id=23): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000180)={0x1}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f7410262e66f36d0f330f09660f3a0cb90000a6752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x31}], 0x1, 0x4498bda7e2139f37, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x3, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000240)={[0x0, 0x5, 0x40, 0x40, 0x0, 0x3, 0x2004cb, 0x4000000000000000, 0x2, 0x3, 0x10, 0x1, 0xfffffffffffffffe, 0x2, 0x9, 0x1], 0x80a0000, 0x450}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 12.497658933s ago: executing program 1 (id=29): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901) mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) umount2(&(0x7f00000002c0)='./file0\x00', 0x9) 12.439571205s ago: executing program 1 (id=33): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x2000000) ioctl$sock_inet_udp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file2\x00', 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x141842, 0x8) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x80801, 0x60) lseek(r0, 0x0, 0x1) 12.322386129s ago: executing program 1 (id=34): mkdir(&(0x7f00000001c0)='./file1\x00', 0xb) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) r0 = open(&(0x7f0000000040)='./file1\x00', 0x808400, 0x43) chdir(&(0x7f00000003c0)='./bus\x00') unlink(&(0x7f0000000140)='./file0\x00') mkdirat(r0, &(0x7f0000000340)='./file0\x00', 0x100) mknod$loop(&(0x7f0000000240)='./file0\x00', 0x2000, 0x1) 12.27692446s ago: executing program 32 (id=34): mkdir(&(0x7f00000001c0)='./file1\x00', 0xb) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) r0 = open(&(0x7f0000000040)='./file1\x00', 0x808400, 0x43) chdir(&(0x7f00000003c0)='./bus\x00') unlink(&(0x7f0000000140)='./file0\x00') mkdirat(r0, &(0x7f0000000340)='./file0\x00', 0x100) mknod$loop(&(0x7f0000000240)='./file0\x00', 0x2000, 0x1) 4.165837808s ago: executing program 0 (id=99): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='debugfs\x00', 0x0, 0x0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) chroot(&(0x7f0000000100)='./file0\x00') chdir(&(0x7f0000000040)='./file0\x00') fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x2, 0x7fff0000}]}) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00') 4.139620879s ago: executing program 0 (id=100): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0x42, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000001c0)="b9800000c00f3235000400000f30440f20c03508000000440f22c036646665f36526f20f22a5430f01c566ba4000edc4a39979250b00000008b9800000c00f3235010000000f30f245ab48b800000000000000800f23c00f21f83500000b000f23f8c481e57dcd", 0x67}], 0x1, 0x10, 0x0, 0x0) sendmmsg$inet6(r2, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002ac0)=[{0x0}, {&(0x7f00000009c0)="0dc47bb802e4237688605498dc26aafb64f1899555a489a0c8748bc3943bdbc8752707e676dd33eeea3d8aaac12fe1d9a16225269a919245fa5512d21bb701b55b6141bf041b506878343ae8e931632fc35558a1394aab90df40f85c79cd2a0baa5eac363881db9ef7215a364dc715fb2c0e7b27fda0bf38c46ca994ed927c7f0d684e68856261d0bcc94f8ff974c5451895db815cee0fc884c56ed557d41241d60e40b3b515a99fd470df52f063b30d1f2123455f09e1fcb7351edf1f5d617b91103a2c6f4bb9762787c8cd2639474eaacf2db6103d1ee29286249e9bc455661ae6c8993c3d02b613201a6376e81ed6846da152688886cd6dd2525f822701c844d8e94d0bcc1e04be5bbdd25f20540616de670a6cb8bd8053e5b871087f4b399d84cfe8ecf19aa8a677283e4ff6fdeed08410f74f2632b7ee9a702365395cd9b63d1c30a2fba00f1a04f9a1e93907dc6ff177a4ea5de8eb069b9f09e8742574156c94ef0b216454341fe15dd9dcf3c3a7b2f71e910f6cff3e5e362d5bf601ee979662679ae263630a6acd7f6fde5c295c8764744bae09e7121e105d7d90fc3210e09a7348b5e51efbf37b8922dbd095e1f3d589e740711807b8c7a35a90d81167549a2ceefa25decabaffddc7579c1c5c31d148bc0ae06df2e19db4f0e086cb264193682558e22e5604463de267eb72f0fa46bcfc5919c88f5fb07ba0e5056d83353d4a2649b1e33069b5837795eb2fd95b4a6e0975af360cc6e510c549d904225c56e7938bf6dbfc99c33bf1d0ea164e31fd7bf444cee5b2ddc4b67dcded124e5a780716d2d368608428bf9e5bb910d6b4f9e6faaf0594c56c5448ccc0de15a1eaa97a880dd3704b5b337c3093708a669f01ea9494c12dc9bfe37599b5a468ebae986dfbc5fe573dc808f75c3dd0a250bcbcfcf82d285db91c3de9377193b88b9e46698f9b16821c4d06f98fe0bfc0876882d3bef445c55ef34ff4564ce77af48e2a0e0bc2df683961ee156a708b0420e27b97cdae33e94b744fec6f43d7a985ab9a56ab1dda9c3641719728b5269f6102c2ef56342166f4c5d99e11f5a9c18031aefbd2a5f8ed396fb2a1de53f2258ea67b9d54084569184e48d4e0d9117d3f1388b9bac2ebd6bdd4940b490c9783d450126624b26d886121375fff463705fc16cb3ab8f7fae205cc413b9f9ca37280eface08f9ca0413bb3e4aae7a023fee9c00204b319b3c3f0833fb46920c6f4f308f41533468e275603cd3cfc7bcc0d0e3588eddb2e3c68a4f1fe336c97a375edfba6e8932d7dedf1adec6e31b81786e06ded5ef7993d4262b2be26223f4d02a9034231c778861d1ebb57ef6eb455d52c1c588df423497ae53f5129d149108e2debacbc1d78c21dc7708e490b6c5e229a8349167a30113d5419f4becbcc6d3331ea1fe504b405edba479fee2725e73680fb760ba53c531c596f4efb7ae18b8ab556ba953b43be00a500120c31b7655a7929d36a9779e61023182b0f2c7cf66daf115c44c49a30ddb75b8884ebcfd8bdc467b838bf07e0c38ca85e1ac6eab927ff42d3c793d1bf8a42b648e120a40a26a8be39d2294180d0aaf0365c3fd3cffd59332f0b79624fc08ad59304fd4225e95149ef88a129218bc0193ebe0ce6911a3f0cb07c32a913ee4668a87c005aa9f2cf6502bcbb6796de721a6d8ac9eac9ed3bd954e80efd2d03aeb6fb8be70154eeed537dca3f9be9d27852388782de3fbb742d06ec21b650123ac8b5eade76b2fb3dc659a8821ccfffe6d068ea87db0fafdf577f4244a28eca5a91022c2f5f85f9d17754af811b37213bc1402ecfe7e66f9f02cf3400eb01b110a964a548615c7f19e064c6581aacf86193157d7cbcbb863df5c0a018ca62328472059b5303267b184a6707629e37671f29f2b139126f39c087570f6ce06dd588664770106fac3958ae3ea56d8cbef8f9f458273413c999cd245b8edb6faa981ff2c4163550500e10e2ede9ce65390d941ee0dd1094c6f93964b0143b0eb183adf8783e0543eb8e310a4769732d8c19bb87a44719a3cc2ae17c4691595ca8d19156c4542bede9b2ae3dde0701c2c01e86ee6b65acaef648f6e269b110cec240d5458e34024eec4df0fc1be11b5e1ef40339fb218182eb9ff6e3aeecd5ff09c1acd23e99a39e62ef1ccdb677db81e5f07d18b8256b7c612efc14a91b28083855dd92b0afe324bd128bf790c4574966e6f161d236ef58ef8a6bc69d823e1a387368efdd21eadbdf5609870c3bd02a08b74b7930d067c137576538306cbc678cf2aebf1719d72148ef353693fc4bbffcc745d762c1519bfa6190134479e92b8c64f80c0089de9a6d43c2a08ef307c180cdb14a02f1932bbdff1f6c26b183ff", 0x696}, {0x0}], 0x3}}], 0x2, 0x20000040) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.829470969s ago: executing program 4 (id=104): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1a1740, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, 0x0}) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$x86(r5, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$x86(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@rdmsr={0x66, 0x18, {0xd90}}], 0x18}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.678832133s ago: executing program 4 (id=105): mkdir(&(0x7f00000001c0)='./file1\x00', 0xb) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000003c0)='./bus\x00') mkdir(&(0x7f0000000300)='./bus\x00', 0x0) chdir(&(0x7f00000003c0)='./bus\x00') r0 = open(&(0x7f00000002c0)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) renameat(r0, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00') 3.670113143s ago: executing program 4 (id=106): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2}}, 0x50) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x8, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x101, 0xaec4, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x20000, 0xcb5e, 0x0, 0x5, 0x1], 0x0, 0x41981}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.571360157s ago: executing program 4 (id=107): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x40800) syz_clone(0x1000000, 0x0, 0xfffffd11, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) prctl$PR_SET_THP_DISABLE(0x29, 0x1) 3.026785074s ago: executing program 0 (id=112): openat$kvm(0xffffff9c, 0x0, 0x80800, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x2710, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000340)={0x5, 0x0, [{0x9a7, 0x0, 0x100}, {0xb65, 0x0, 0x4}, {0xb55, 0x0, 0x3}, {0x3f6, 0x0, 0x6}, {0x4b564d01, 0x0, 0x200}]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0xa, 0xf3bc, 0x0, 0x8000001000, 0x400, 0x4002004c4, 0x1000, 0x0, 0x97, 0x10, 0x0, 0x3, 0x4], 0xeeee8000, 0x140641}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.974917906s ago: executing program 4 (id=113): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000280)={'ipvlan1\x00', 0x400}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2c0800, 0x0) close(r2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)) ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'}) 2.849093859s ago: executing program 0 (id=115): sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00012a"], 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x40011) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000280)={[0x60000000004, 0x1000000000, 0x80000000000005, 0x41, 0x2000000, 0x0, 0x2004cb, 0xffffffffeffffffe, 0xa1d, 0x2, 0x5, 0x0, 0x3, 0x2, 0x2, 0xfffffffffffffffd], 0x10000, 0x202}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000400)=@x86={0x7f, 0xb, 0x0, 0x0, 0xe284, 0x4, 0x7, 0x3, 0x7c, 0x1, 0x5, 0x6, 0x0, 0x9, 0x4, 0x6, 0x3, 0x93, 0x3, '\x00', 0x6b, 0xfffffffffffffff9}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x0, 0x8080000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0xb000, 0xc, 0x0, 0xfc, 0x1, 0x0, 0x0, 0x3, 0x7}, {0x2000, 0x5000, 0x1f, 0xff, 0x7, 0x4, 0x4, 0xfd, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0xe, 0x0, 0x0, 0xfe, 0x1, 0x0, 0x8, 0xfc, 0x6, 0x10}, {0xeeee8000, 0x8000000, 0x10, 0x0, 0x4, 0x8, 0x0, 0x3, 0xfc, 0x3c}, {0x0, 0x0, 0xf, 0xfd, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x0, 0xa, 0xfe, 0x0, 0x0, 0x13}, {0x0, 0x3000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xca, 0x4, 0x0, 0x0, 0x3}, {0x80a0000}, {0xdddd1000}, 0xddf8fffb, 0x0, 0x10000, 0x50, 0x0, 0xf801, 0x0, [0x80000000, 0x0, 0x1]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.807767121s ago: executing program 4 (id=116): r0 = syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x44, 0x1, 0x1, 0x0, 0x0, 0x0, "", [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[{{0x9, 0x5, 0x81, 0x3, 0x10, 0x80, 0x3, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0}) socket(0x80000000000000a, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f00000000c0), 0x12) r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x1, 0x0) r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0) write$cgroup_subtree(r5, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5) ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000005700)=@vmx={0x0, 0x0, 0x2080, {0x2, 0x30000}}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) read$FUSE(r2, &(0x7f0000003b80)={0x2020}, 0x2020) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) 2.753303943s ago: executing program 0 (id=118): ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, 0x0) syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0x1, 0x81, {"0f22e5c744240060420000c744240233d8cecbc7442406000000000f011c24668f38896810c4027958b20000000064449966baf80cb83284af80ef66bafc0c66ed66baf80cb8cc07ff8aef66bafc0cb8d4000000ef48b8f8000000000000000f23c00f2135030009000f23f8450f2244"}}], 0x81}) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x3, 0x4002004c2, 0x7ff, 0x9, 0x6, 0x400, 0x80, 0x89, 0x0, 0x3, 0x8d], 0x100000, 0x2c08c6}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.644235266s ago: executing program 0 (id=120): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = syz_usb_connect$printer(0x2, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x7, 0x1, 0x3, 0x40, 0x4b8, 0x202, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0xfb, 0xb0, 0xc, "", [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x20}}}}}]}}]}}, 0x0) syz_usb_control_io$printer(r1, &(0x7f0000001100)={0x14, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io(r1, 0x0, 0x0) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x80000000) write$char_usb(r2, &(0x7f00000007c0)='\v', 0x1) syz_usb_ep_read(r1, 0x1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.386831816s ago: executing program 2 (id=133): memfd_create(&(0x7f00000000c0)=',\xea\xc9t\x8b\xb7\x04\x1d^s^\t5\xa1i\x01\x00\xd4\xd7\x02\x8dmbs\x0f3\x92\'\x94N\b\xe0m\xa4\x01\x00\xe5\x00\x00\x00\x00\x00-\xb3\x8d\xa1v\xe5\x8a0\x05\x00\xa4\xed\x94 \x15Y\x1f\xccY\xff\xb4\xa2\xa62:\xfa\xf9\xb7\x05q\xa4d\xda0y\xd3\xd6\x98\x9f\x11\n\xf44Q\xff\xff)\xb3|\x04\x00\x00\x80FD\xb8\xc2\x8a\x99Y\xf6:\xfeT\xa1', 0x4) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x100002, 0x69100f4f, 0xd, 0xe000, 0x10, 0x2, 0x0, 0x0, 0x80, 0x9}}, 0x50) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 582.825732ms ago: executing program 3 (id=136): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0xc03, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{0xfffe, 0x9, 0x0, 0x5}, 'syz0\x00', 0x15}) r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCGSID(r1, 0x5429, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_open_dev$evdev(&(0x7f0000000000), 0x2000088f, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r3) close_range(r2, 0xffffffffffffffff, 0x0) 552.465462ms ago: executing program 3 (id=137): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x1102}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) close(r1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0) writev(r0, &(0x7f0000000240)=[{&(0x7f0000000140)="89e7e6ac78dbd9b4b473e4c988ca", 0xfdef}], 0x1) 459.582456ms ago: executing program 2 (id=138): sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="180000001600010a"], 0x18}}, 0x0) memfd_create(&(0x7f00000002c0)='[\v\xdbX\xae[5\xa9\x90\xffc\x1f\x1a\xa9\xfd\xfa\xad\xd1md\xe7\xe2\x7f\x9b\xd5R\x10\xf3\xb6\xffT\xbf\xd1\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\x9fc\xda\xa9\x83r\xd8\x98\x00\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9r\xc3E\xf8\x92\xb7-\x0e\xcf|\x89\xc2tc\xc9d\x9eI\xbaVf\xd1fs\xd1w6\x8a\xe9_', 0x3) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x8, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 360.451459ms ago: executing program 3 (id=139): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, 0x0, 0x1) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000001c0)="b9800000c00f3235000400000f30440f20c03508000000440f22c036646665f36526f20f22a5430f01c566ba4000edc4a39979250b00000008b9800000c00f3235010000000f30f245ab48b800000000000000800f23c00f21f83500000b000f23f8c481e57dcd", 0x67}], 0x1, 0x10, 0x0, 0x0) capset(0x0, &(0x7f0000000040)={0x82, 0x2000004, 0x6, 0x8000, 0x600, 0x7}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 324.44885ms ago: executing program 2 (id=140): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) socket$inet6_udplite(0xa, 0x2, 0x88) socket$xdp(0x2c, 0x3, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}]}}) write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="150000006bffff", @ANYRES16=r1, @ANYRESHEX=r2], 0x15) 265.568521ms ago: executing program 3 (id=141): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x8e40, 0x0) close(r1) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r4 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r4, &(0x7f0000000380)="fad33075218151db00316f3a277f", 0xe, 0x6008092, &(0x7f0000000080)={0x11, 0x88a8, r3, 0x1, 0xda, 0x6, @remote}, 0x14) 252.401922ms ago: executing program 2 (id=142): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x401c5820, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 189.754144ms ago: executing program 3 (id=143): r0 = socket$inet_tcp(0x2, 0x1, 0x0) close(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0xd, @loopback, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x5, &(0x7f0000000100)=0x80000, 0x4) sendto$inet(r0, &(0x7f0000000900)="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", 0xffffff5d, 0x12, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25) shutdown(r1, 0x1) 138.679626ms ago: executing program 2 (id=144): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c3) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r1, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2}}, 0x50) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x2c) syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$XFS_IOC_PATH_TO_HANDLE(r2, 0xc0385869, 0x0) 26.75645ms ago: executing program 2 (id=145): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = socket$inet(0xa, 0x801, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) close(0x3) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000087c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0x0, r2, {0x7, 0x29, 0x0, 0xffffffff85010014, 0x4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5}}, 0x50) openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b) syz_fuse_handle_req(r1, &(0x7f00000042c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fe00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x40000000000, {0x0, 0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000002140)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 0s ago: executing program 3 (id=146): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0xa}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000800)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0x2c}, @flat=@weak_binder={0x77622a85, 0x10a}, @fda={0x66646185, 0x9, 0x0, 0x400000000000000}}, &(0x7f0000000240)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.81' (ED25519) to the list of known hosts. [ 24.222728][ T36] audit: type=1400 audit(1779785961.030:64): avc: denied { mounton } for pid=286 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 24.223821][ T286] cgroup: Unknown subsys name 'net' [ 24.245392][ T36] audit: type=1400 audit(1779785961.030:65): avc: denied { mount } for pid=286 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 24.272711][ T36] audit: type=1400 audit(1779785961.070:66): avc: denied { unmount } for pid=286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 24.272900][ T286] cgroup: Unknown subsys name 'devices' [ 24.398115][ T286] cgroup: Unknown subsys name 'hugetlb' [ 24.403735][ T286] cgroup: Unknown subsys name 'rlimit' [ 24.516495][ T36] audit: type=1400 audit(1779785961.330:67): avc: denied { setattr } for pid=286 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 24.539672][ T36] audit: type=1400 audit(1779785961.330:68): avc: denied { mounton } for pid=286 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 24.564442][ T36] audit: type=1400 audit(1779785961.330:69): avc: denied { mount } for pid=286 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 24.573445][ T288] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 24.596364][ T36] audit: type=1400 audit(1779785961.410:70): avc: denied { relabelto } for pid=288 comm="mkswap" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 24.621938][ T36] audit: type=1400 audit(1779785961.410:71): avc: denied { write } for pid=288 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 24.656253][ T36] audit: type=1400 audit(1779785961.470:72): avc: denied { read } for pid=286 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 24.681838][ T36] audit: type=1400 audit(1779785961.470:73): avc: denied { open } for pid=286 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 24.682083][ T286] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 25.440007][ T293] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.453112][ T293] bridge0: port 1(bridge_slave_0) entered disabled state [ 25.460317][ T293] bridge_slave_0: entered allmulticast mode [ 25.466888][ T293] bridge_slave_0: entered promiscuous mode [ 25.475629][ T293] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.482924][ T293] bridge0: port 2(bridge_slave_1) entered disabled state [ 25.490040][ T293] bridge_slave_1: entered allmulticast mode [ 25.496296][ T293] bridge_slave_1: entered promiscuous mode [ 25.596588][ T298] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.603666][ T298] bridge0: port 1(bridge_slave_0) entered disabled state [ 25.610985][ T298] bridge_slave_0: entered allmulticast mode [ 25.617394][ T298] bridge_slave_0: entered promiscuous mode [ 25.623814][ T298] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.630878][ T298] bridge0: port 2(bridge_slave_1) entered disabled state [ 25.637959][ T298] bridge_slave_1: entered allmulticast mode [ 25.644115][ T298] bridge_slave_1: entered promiscuous mode [ 25.699942][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.707149][ T299] bridge0: port 1(bridge_slave_0) entered disabled state [ 25.714195][ T299] bridge_slave_0: entered allmulticast mode [ 25.720671][ T299] bridge_slave_0: entered promiscuous mode [ 25.728741][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.735868][ T299] bridge0: port 2(bridge_slave_1) entered disabled state [ 25.743042][ T299] bridge_slave_1: entered allmulticast mode [ 25.749228][ T299] bridge_slave_1: entered promiscuous mode [ 25.826978][ T297] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.834043][ T297] bridge0: port 1(bridge_slave_0) entered disabled state [ 25.841188][ T297] bridge_slave_0: entered allmulticast mode [ 25.847408][ T297] bridge_slave_0: entered promiscuous mode [ 25.856739][ T297] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.863782][ T297] bridge0: port 2(bridge_slave_1) entered disabled state [ 25.870859][ T297] bridge_slave_1: entered allmulticast mode [ 25.877185][ T297] bridge_slave_1: entered promiscuous mode [ 25.917061][ T293] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.924128][ T293] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.931419][ T293] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.938461][ T293] bridge0: port 1(bridge_slave_0) entered forwarding state [ 25.976869][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.983936][ T299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.991232][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.998273][ T299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.026486][ T298] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.033549][ T298] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.040853][ T298] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.047902][ T298] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.066557][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 26.073807][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 26.081423][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 26.088580][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 26.096947][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 26.104299][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 26.117877][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.124935][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.141210][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.148294][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.170078][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.177146][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.184788][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.191852][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.236906][ T299] veth0_vlan: entered promiscuous mode [ 26.259944][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.267029][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.274726][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.281792][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.290028][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.297072][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.304825][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.311863][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.329390][ T293] veth0_vlan: entered promiscuous mode [ 26.351180][ T299] veth1_macvtap: entered promiscuous mode [ 26.367259][ T298] veth0_vlan: entered promiscuous mode [ 26.373958][ T293] veth1_macvtap: entered promiscuous mode [ 26.402764][ T297] veth0_vlan: entered promiscuous mode [ 26.417856][ T298] veth1_macvtap: entered promiscuous mode [ 26.434077][ T299] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 26.458961][ T297] veth1_macvtap: entered promiscuous mode [ 26.736293][ T45] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 26.857910][ T334] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 26.886253][ T45] usb 2-1: Using ep0 maxpacket: 8 [ 26.892935][ T45] usb 2-1: config 0 interface 0 altsetting 45 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 26.895416][ T336] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 26.904408][ T45] usb 2-1: config 0 interface 0 altsetting 45 has 1 endpoint descriptor, different from the interface descriptor's value: 7 [ 26.935397][ T45] usb 2-1: config 0 interface 0 has no altsetting 0 [ 26.942609][ T45] usb 2-1: New USB device found, idVendor=28bd, idProduct=0935, bcdDevice= 0.00 [ 26.958739][ T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 26.969620][ T45] usb 2-1: config 0 descriptor?? [ 27.386951][ T45] input: HID 28bd:0935 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:28BD:0935.0001/input/input4 [ 27.406442][ T45] uclogic 0003:28BD:0935.0001: input,hidraw0: USB HID v0.08 Mouse [HID 28bd:0935] on usb-dummy_hcd.1-1/input0 [ 27.625684][ T45] usb 2-1: USB disconnect, device number 2 [ 27.845454][ T350] kvm: user requested TSC rate below hardware speed [ 27.853985][ T350] kvm: vcpu 2: requested 148514 ns lapic timer period limited to 200000 ns [ 27.862642][ T350] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer. [ 28.000788][ T355] process 'syz.0.13' launched './file0' with NULL argv: empty string added [ 29.141453][ T402] kvm: pic: single mode not supported [ 29.141473][ T402] kvm: pic: level sensitive irq not supported [ 29.424174][ T411] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.437505][ T411] bridge0: port 1(bridge_slave_0) entered disabled state [ 29.444610][ T411] bridge_slave_0: entered allmulticast mode [ 29.451555][ T411] bridge_slave_0: entered promiscuous mode [ 29.458303][ T411] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.465351][ T411] bridge0: port 2(bridge_slave_1) entered disabled state [ 29.472573][ T411] bridge_slave_1: entered allmulticast mode [ 29.479267][ T411] bridge_slave_1: entered promiscuous mode [ 29.559122][ T411] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.566227][ T411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 29.573538][ T411] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.580600][ T411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 29.602403][ T310] bridge0: port 1(bridge_slave_0) entered disabled state [ 29.613751][ T310] bridge0: port 2(bridge_slave_1) entered disabled state [ 29.638509][ T36] kauditd_printk_skb: 75 callbacks suppressed [ 29.638526][ T36] audit: type=1400 audit(1779785966.450:149): avc: denied { read write } for pid=419 comm="syz.3.38" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 29.661529][ T309] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.669518][ T36] audit: type=1400 audit(1779785966.450:150): avc: denied { open } for pid=419 comm="syz.3.38" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 29.675866][ T309] bridge0: port 1(bridge_slave_0) entered forwarding state [ 29.677154][ T309] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.714339][ T309] bridge0: port 2(bridge_slave_1) entered forwarding state [ 29.740496][ T36] audit: type=1400 audit(1779785966.550:151): avc: denied { append } for pid=426 comm="syz.0.40" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 29.762666][ T411] veth0_vlan: entered promiscuous mode [ 29.774397][ T411] veth1_macvtap: entered promiscuous mode [ 29.955201][ T36] audit: type=1400 audit(1779785966.760:152): avc: denied { setopt } for pid=431 comm="syz.2.41" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 30.155831][ T36] audit: type=1400 audit(1779785966.960:153): avc: denied { append } for pid=439 comm="syz.4.44" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 30.236223][ T45] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 30.324325][ T445] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 30.387586][ T45] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 30.400995][ T45] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 30.411667][ T45] usb 3-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 30.421474][ T45] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 30.430747][ T45] usb 3-1: config 0 descriptor?? [ 31.239058][ T45] hid-led 0003:27B8:01ED.0002: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.2-1/input0 [ 31.254715][ T45] hid-led 0003:27B8:01ED.0002: ThingM blink(1) v1 initialized [ 31.445967][ T10] usb 3-1: USB disconnect, device number 2 [ 32.042549][ T36] audit: type=1400 audit(1779785968.850:154): avc: denied { setopt } for pid=465 comm="syz.2.52" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 32.062506][ T36] audit: type=1400 audit(1779785968.870:155): avc: denied { ioctl } for pid=465 comm="syz.2.52" path="socket:[4772]" dev="sockfs" ino=4772 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 32.087776][ T36] audit: type=1400 audit(1779785968.870:156): avc: denied { write } for pid=465 comm="syz.2.52" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 32.202616][ T36] audit: type=1400 audit(1779785969.010:157): avc: denied { execute } for pid=472 comm="syz.2.55" name=8001 dev="tmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 32.224359][ T36] audit: type=1400 audit(1779785969.010:158): avc: denied { execute_no_trans } for pid=472 comm="syz.2.55" path=2F31352F8001 dev="tmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 32.271772][ T475] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3089888063 (3089888063 ns) > initial count (2126324423 ns). Using initial count to start timer. [ 33.747517][ T31] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 33.906175][ T31] usb 5-1: Using ep0 maxpacket: 16 [ 33.917098][ T31] usb 5-1: unable to get BOS descriptor or descriptor too short [ 33.925511][ T31] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 127, changing to 7 [ 33.946340][ T31] usb 5-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40 [ 33.960513][ T31] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 33.968814][ T31] usb 5-1: Product: syz [ 33.973032][ T31] usb 5-1: Manufacturer: syz [ 33.978410][ T31] usb 5-1: SerialNumber: syz [ 34.189298][ T31] usb 5-1: Audio class v2/v3 interfaces need an interface association [ 34.206345][ T31] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 34.608318][ T31] usb 5-1: 2:1 : bogus bTerminalLink 6 [ 34.828740][ T31] usb 5-1: USB disconnect, device number 2 [ 35.369099][ T36] kauditd_printk_skb: 16 callbacks suppressed [ 35.369117][ T36] audit: type=1400 audit(1779785972.180:175): avc: denied { create } for pid=543 comm="syz.4.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 35.398159][ T36] audit: type=1400 audit(1779785972.200:176): avc: denied { setopt } for pid=543 comm="syz.4.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 35.432732][ T36] audit: type=1400 audit(1779785972.200:177): avc: denied { write } for pid=543 comm="syz.4.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 35.457013][ T36] audit: type=1400 audit(1779785972.200:178): avc: denied { create } for pid=543 comm="syz.4.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 35.477565][ T36] audit: type=1400 audit(1779785972.200:179): avc: denied { write } for pid=543 comm="syz.4.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 35.497668][ T36] audit: type=1400 audit(1779785972.210:180): avc: denied { nlmsg_write } for pid=543 comm="syz.4.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 35.540003][ T36] audit: type=1400 audit(1779785972.350:181): avc: denied { create } for pid=549 comm="syz.4.84" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 35.612186][ T550] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer. [ 35.667353][ T550] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3482940618 (6965881236 ns) > initial count (504378442 ns). Using initial count to start timer. [ 36.728980][ T309] bridge_slave_1: left allmulticast mode [ 36.734682][ T309] bridge_slave_1: left promiscuous mode [ 36.756340][ T309] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.786355][ T309] bridge_slave_0: left allmulticast mode [ 36.793809][ T309] bridge_slave_0: left promiscuous mode [ 36.806432][ T309] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.887862][ T36] audit: type=1400 audit(1779785973.700:182): avc: denied { relabelfrom } for pid=557 comm="syz.0.87" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 36.926185][ T36] audit: type=1400 audit(1779785973.700:183): avc: denied { relabelto } for pid=557 comm="syz.0.87" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 36.976164][ T309] veth1_macvtap: left promiscuous mode [ 36.981758][ T309] veth0_vlan: left promiscuous mode [ 37.023771][ T36] audit: type=1400 audit(1779785973.830:184): avc: denied { name_bind } for pid=564 comm="syz.4.89" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 37.027173][ T566] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 37.600607][ T604] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3659427032 (29275416256 ns) > initial count (200000 ns). Using initial count to start timer. [ 38.173521][ T619] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 38.173620][ T619] rust_binder: 618:619 transaction to 0 failed: ENOENT [ 38.606167][ T10] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 38.727715][ T639] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 38.777259][ T10] usb 3-1: config 42 has an invalid interface number: 23 but max is 0 [ 38.785516][ T10] usb 3-1: config 42 has no interface number 0 [ 38.792252][ T10] usb 3-1: config 42 interface 23 has no altsetting 0 [ 38.809546][ T10] usb 3-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice=dc.c2 [ 38.822949][ T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 38.831686][ T10] usb 3-1: Product: syz [ 38.836018][ T10] usb 3-1: Manufacturer: syz [ 38.840681][ T10] usb 3-1: SerialNumber: syz [ 39.018755][ T45] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 39.049930][ T10] ftdi_sio 3-1:42.23: FTDI USB Serial Device converter detected [ 39.058854][ T10] ftdi_sio ttyUSB0: unknown device type: 0xdcc2 [ 39.066068][ T10] usb 3-1: USB disconnect, device number 3 [ 39.072554][ T10] ftdi_sio 3-1:42.23: device disconnected [ 39.156189][ T31] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 39.177276][ T45] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 128, changing to 11 [ 39.188474][ T45] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18 [ 39.202185][ T45] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 39.211279][ T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 39.219286][ T45] usb 5-1: SerialNumber: syz [ 39.310054][ T31] usb 1-1: New USB device found, idVendor=04b8, idProduct=0202, bcdDevice= 0.40 [ 39.319250][ T31] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 39.327276][ T31] usb 1-1: Product: syz [ 39.331473][ T31] usb 1-1: Manufacturer: syz [ 39.336074][ T31] usb 1-1: SerialNumber: syz [ 39.745680][ T31] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x04B8 pid 0x0202 [ 40.942408][ T696] input: syz0 as /devices/virtual/input/input5 [ 40.958522][ T36] kauditd_printk_skb: 11 callbacks suppressed [ 40.958539][ T36] audit: type=1400 audit(1779785977.770:196): avc: denied { read } for pid=95 comm="acpid" name="event3" dev="devtmpfs" ino=465 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 41.000015][ T36] audit: type=1400 audit(1779785977.800:197): avc: denied { open } for pid=95 comm="acpid" path=2F6465762F696E7075742F6576656E7433202864656C6574656429 dev="devtmpfs" ino=465 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 41.029340][ T36] audit: type=1400 audit(1779785977.800:198): avc: denied { ioctl } for pid=95 comm="acpid" path=2F6465762F696E7075742F6576656E7433202864656C6574656429 dev="devtmpfs" ino=465 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 41.042934][ T698] tipc: Started in network mode [ 41.057967][ T36] audit: type=1400 audit(1779785977.810:199): avc: denied { ioctl } for pid=697 comm="syz.3.137" path="socket:[8377]" dev="sockfs" ino=8377 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 41.064374][ T698] tipc: Node identity 629e7648fbf6, cluster identity 4711 [ 41.099255][ T698] tipc: Enabled bearer , priority 0 [ 41.128471][ T697] tipc: Resetting bearer [ 41.141567][ T697] tipc: Disabling bearer [ 41.280717][ T706] 9pnet: p9_errstr2errno: server reported unknown error 0x00000000 [ 41.295923][ T709] syzkaller0: entered promiscuous mode [ 41.301749][ T709] syzkaller0: entered allmulticast mode [ 41.562949][ T36] audit: type=1400 audit(1779785978.370:200): avc: denied { write } for pid=723 comm="syz.3.146" name="binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 41.563540][ C0] BUG: TASK stack guard page was hit at ffffc90001167fb8 (stack is ffffc90001168000..ffffc90001170000) [ 41.563564][ C0] Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN PTI [ 41.563582][ C0] CPU: 0 UID: 0 PID: 724 Comm: syz.3.146 Not tainted syzkaller #0 abd407d91653e73ff3b9de718fd37c0b8ddb7a3a [ 41.563608][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 41.563618][ C0] RIP: 0010:update_stack_state+0xf4/0x4b0 [ 41.563646][ C0] Code: 84 c0 0f 85 89 03 00 00 41 c6 06 01 b8 a8 00 00 00 49 89 d7 eb 05 b8 10 00 00 00 4c 8d 73 08 48 8d 4b 10 4c 89 7d b0 4c 01 f8 <48> 89 85 78 ff ff ff 48 8d 53 18 48 8d 43 28 48 8d 73 20 48 89 b5 [ 41.563659][ C0] RSP: 0018:ffffc90001167fc0 EFLAGS: 00010282 [ 41.563675][ C0] RAX: ffffc90001168220 RBX: ffffc90001168188 RCX: ffffc90001168198 [ 41.563689][ C0] RDX: ffffc90001168210 RSI: ffffc90001168210 RDI: ffffc900011681e0 [ 41.563701][ C0] RBP: ffffc90001168080 R08: ffffc90001168101 R09: 0000000000000000 [ 41.563713][ C0] R10: ffffc90001168188 R11: fffff5200022d03d R12: 0000000000000000 [ 41.563724][ C0] R13: dffffc0000000000 R14: ffffc90001168190 R15: ffffc90001168210 [ 41.563737][ C0] FS: 00007f2a622956c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 41.563752][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.563764][ C0] CR2: ffffc90001167fb8 CR3: 000000010c668000 CR4: 00000000003526b0 [ 41.563781][ C0] Call Trace: [ 41.563789][ C0] [ 41.563797][ C0] ? unwind_next_frame+0x3c1/0x750 [ 41.563820][ C0] ? __unwind_start+0x34c/0x410 [ 41.563840][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 41.563861][ C0] ? arch_stack_walk+0xf2/0x170 [ 41.563878][ C0] ? arch_stack_walk+0xf2/0x170 [ 41.563894][ C0] ? stack_trace_save+0xaa/0x100 [ 41.563912][ C0] ? __cfi_stack_trace_save+0x10/0x10 [ 41.563931][ C0] ? __asan_memset+0x39/0x50 [ 41.563948][ C0] ? save_stack+0x125/0x240 [ 41.563967][ C0] ? free_contig_range+0x260/0x260 [ 41.563984][ C0] ? __reset_page_owner+0x450/0x450 [ 41.564003][ C0] ? zone_page_state_add+0x43/0x90 [ 41.564024][ C0] ? kvm_sched_clock_read+0x15/0x30 [ 41.564045][ C0] ? sched_clock_noinstr+0xd/0x30 [ 41.564064][ C0] ? __set_page_owner+0x8e/0x600 [ 41.564084][ C0] ? __zone_watermark_ok+0x134/0x630 [ 41.564106][ C0] ? __cfi___set_page_owner+0x10/0x10 [ 41.564126][ C0] ? kasan_unpoison+0x4a/0x70 [ 41.564142][ C0] ? post_alloc_hook+0x37d/0x3b0 [ 41.564163][ C0] ? __cfi_post_alloc_hook+0x10/0x10 [ 41.564183][ C0] ? gfp_to_alloc_flags_cma+0x1c0/0x1c0 [ 41.564199][ C0] ? _raw_spin_trylock+0xb5/0x140 [ 41.564216][ C0] ? __cfi__raw_spin_trylock+0x10/0x10 [ 41.564232][ C0] ? prep_new_page+0x2d/0x190 [ 41.564252][ C0] ? get_page_from_freelist+0x496e/0x4a20 [ 41.564280][ C0] ? __alloc_pages_noprof+0x7e0/0x7e0 [ 41.564302][ C0] ? static_key_count+0x45/0x70 [ 41.564322][ C0] ? gfp_to_alloc_flags_cma+0x96/0x1c0 [ 41.564339][ C0] ? lruvec_init+0x261/0x280 [ 41.564357][ C0] ? __alloc_pages_noprof+0x35f/0x7e0 [ 41.564379][ C0] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 41.564400][ C0] ? unwind_get_return_address+0x51/0x90 [ 41.564421][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 41.564449][ C0] ? arch_stack_walk+0x10a/0x170 [ 41.564466][ C0] ? stack_trace_save+0xaa/0x100 [ 41.564485][ C0] ? stack_depot_save_flags+0x672/0x800 [ 41.564503][ C0] ? kasan_save_track+0x4f/0x80 [ 41.564521][ C0] ? kasan_save_track+0x3e/0x80 [ 41.564538][ C0] ? kasan_save_free_info+0x4a/0x60 [ 41.564560][ C0] ? __kasan_slab_free+0x5f/0x80 [ 41.564579][ C0] ? kfree+0x158/0x440 [ 41.564593][ C0] ? krealloc_noprof+0xfa/0x130 [ 41.564610][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel5alloc4kbox3BoxINtNtNtB4_3mem12maybe_uninit11MaybeUninitINtNtBN_6rbtree4NodemINtNtNtBN_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EEENtNtBL_9allocator7KmallocEEB2S_+0x114/0x360 [ 41.564660][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x16c0/0x2660 [ 41.564686][ C0] ? _RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x1715/0x5dd0 [ 41.564714][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCs2tVsXcF29le_11rust_binder10allocation10AllocationEBK_+0x1a/0xf0 [ 41.564747][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c54/0x9460 [ 41.564773][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3d0/0x28d0 [ 41.564798][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x1b97/0x3e50 [ 41.564821][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 41.564843][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1192/0x5c20 [ 41.564861][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 41.564881][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 41.564898][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 41.564915][ C0] ? do_syscall_64+0x57/0xf0 [ 41.564931][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 41.564954][ C0] ? _RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x9a/0x180 [ 41.564982][ C0] ? kasan_save_free_info+0x4a/0x60 [ 41.565004][ C0] ? __kasan_slab_free+0x5f/0x80 [ 41.565022][ C0] ? kfree+0x158/0x440 [ 41.565037][ C0] ? krealloc_noprof+0xfa/0x130 [ 41.565054][ C0] ? krealloc_noprof+0xfa/0x130 [ 41.565071][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel5alloc4kbox3BoxINtNtNtB4_3mem12maybe_uninit11MaybeUninitINtNtBN_6rbtree4NodemINtNtNtBN_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EEENtNtBL_9allocator7KmallocEEB2S_+0x114/0x360 [ 41.565119][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel5alloc4kbox3BoxINtNtNtB4_3mem12maybe_uninit11MaybeUninitINtNtBN_6rbtree4NodemINtNtNtBN_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EEENtNtBL_9allocator7KmallocEEB2S_+0x10/0x10 [ 41.565167][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x413/0x580 [ 41.565203][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x10/0x10 [ 41.565240][ C0] ? __kasan_check_write+0x18/0x20 [ 41.565256][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.565271][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.565288][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x16c0/0x2660 [ 41.565317][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x10/0x10 [ 41.565347][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 41.565370][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.565386][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 41.565408][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x10/0x10 [ 41.565438][ C0] ? __kasan_check_write+0x18/0x20 [ 41.565454][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.565470][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.565486][ C0] ? _RINvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x6a9/0xc70 [ 41.565515][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.565531][ C0] ? _RINvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x5f4/0xc70 [ 41.565561][ C0] ? __cfi__RINvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x10/0x10 [ 41.565590][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 41.565612][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.565628][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ef/0x3d0 [ 41.565650][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x10/0x10 [ 41.565674][ C0] ? __kasan_check_write+0x18/0x20 [ 41.565690][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.565706][ C0] ? _RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x30c/0x5dd0 [ 41.565734][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.565750][ C0] ? _RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x1715/0x5dd0 [ 41.565780][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.565805][ C0] ? __cfi__RNvXs_NtCs2tVsXcF29le_11rust_binder10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x10/0x10 [ 41.565833][ C0] ? stack_depot_save_flags+0x399/0x800 [ 41.565849][ C0] ? kasan_save_track+0x4f/0x80 [ 41.565867][ C0] ? kasan_save_track+0x4f/0x80 [ 41.565884][ C0] ? kasan_save_track+0x3e/0x80 [ 41.565901][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 41.565924][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 41.565942][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 41.565960][ C0] ? krealloc_noprof+0x8d/0x130 [ 41.565977][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process23insert_or_update_handle+0x51e/0x2c70 [ 41.566004][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder10allocationNtB5_14AllocationView22transfer_binder_object+0x224/0xc10 [ 41.566033][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x4031/0x9460 [ 41.566058][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3d0/0x28d0 [ 41.566083][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x1b97/0x3e50 [ 41.566106][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 41.566128][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1192/0x5c20 [ 41.566147][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 41.566164][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 41.566182][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 41.566198][ C0] ? do_syscall_64+0x57/0xf0 [ 41.566213][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 41.566234][ C0] ? __kasan_check_write+0x18/0x20 [ 41.566250][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.566265][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.566281][ C0] ? __kasan_check_write+0x18/0x20 [ 41.566297][ C0] ? _RNvMs5_NtCs1ewLyjEZ7Le_6kernel6bitmapNtB5_6Bitmap7set_bit+0xc1/0x260 [ 41.566322][ C0] ? __cfi__RNvMs5_NtCs1ewLyjEZ7Le_6kernel6bitmapNtB5_6Bitmap7set_bit+0x10/0x10 [ 41.566348][ C0] ? _raw_spin_unlock+0x45/0x60 [ 41.566364][ C0] ? _RNvMs0_NtCs2tVsXcF29le_11rust_binder4nodeNtB5_4Node16insert_node_info+0x3e0/0x500 [ 41.566391][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x10/0x10 [ 41.566433][ C0] ? __kasan_check_write+0x18/0x20 [ 41.566449][ C0] ? mutex_unlock+0x90/0x240 [ 41.566468][ C0] ? __cfi_mutex_unlock+0x10/0x10 [ 41.566488][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 41.566510][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process23insert_or_update_handle+0x17cc/0x2c70 [ 41.566540][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process23insert_or_update_handle+0x10/0x10 [ 41.566567][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.566591][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.566614][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.566637][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.566658][ C0] ? __kernel_text_address+0x11/0x40 [ 41.566679][ C0] ? __kasan_check_write+0x18/0x20 [ 41.566695][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 41.566711][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 41.566729][ C0] ? stack_trace_save+0xaa/0x100 [ 41.566747][ C0] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 41.566764][ C0] ? stack_depot_save_flags+0x399/0x800 [ 41.566782][ C0] ? kasan_save_track+0x4f/0x80 [ 41.566799][ C0] ? kasan_save_track+0x3e/0x80 [ 41.566816][ C0] ? kasan_save_free_info+0x4a/0x60 [ 41.566838][ C0] ? __kasan_slab_free+0x5f/0x80 [ 41.566856][ C0] ? kfree+0x158/0x440 [ 41.566871][ C0] ? krealloc_noprof+0xfa/0x130 [ 41.566887][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCs2tVsXcF29le_11rust_binder6thread18ScatterGatherStateEEB16_+0x371/0x820 [ 41.566920][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c18/0x9460 [ 41.566946][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3d0/0x28d0 [ 41.566971][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x1b97/0x3e50 [ 41.566994][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 41.567016][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1192/0x5c20 [ 41.567034][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 41.567052][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 41.567070][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 41.567086][ C0] ? do_syscall_64+0x57/0xf0 [ 41.567101][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 41.567124][ C0] ? __kasan_slab_free+0x6a/0x80 [ 41.567143][ C0] ? kfree+0x158/0x440 [ 41.567157][ C0] ? krealloc_noprof+0xfa/0x130 [ 41.567174][ C0] ? krealloc_noprof+0xfa/0x130 [ 41.567191][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5alloc20dangling_from_layout+0x11/0x20 [ 41.567216][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCs2tVsXcF29le_11rust_binder6thread18ScatterGatherStateEEB16_+0x396/0x820 [ 41.567249][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCs2tVsXcF29le_11rust_binder6thread18ScatterGatherStateEEB16_+0x10/0x10 [ 41.567281][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.567297][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.567313][ C0] ? _RINvMNtCs2tVsXcF29le_11rust_binder10allocationNtB3_10Allocation5writeyEB5_+0x47c/0x760 [ 41.567341][ C0] ? _RNvMNtCs2tVsXcF29le_11rust_binder10allocationNtB2_10Allocation9copy_into+0x5dc/0x710 [ 41.567368][ C0] ? check_stack_object+0x12b/0x150 [ 41.567385][ C0] ? __check_object_size+0xe0/0x830 [ 41.567402][ C0] ? __cfi___check_object_size+0x10/0x10 [ 41.567419][ C0] ? __kasan_check_write+0x18/0x20 [ 41.567441][ C0] ? _copy_from_user+0x87/0xa0 [ 41.567460][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCs2tVsXcF29le_11rust_binder10allocation10AllocationEBK_+0x1a/0xf0 [ 41.567490][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c47/0x9460 [ 41.567516][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x7c54/0x9460 [ 41.567552][ C0] ? __cfi__RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread21copy_transaction_data+0x10/0x10 [ 41.567621][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.567644][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.567665][ C0] ? __kernel_text_address+0x11/0x40 [ 41.567686][ C0] ? unwind_get_return_address+0x51/0x90 [ 41.567706][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 41.567727][ C0] ? stack_depot_save_flags+0x38/0x800 [ 41.567744][ C0] ? kasan_save_track+0x4f/0x80 [ 41.567761][ C0] ? kasan_save_track+0x3e/0x80 [ 41.567779][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 41.567801][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 41.567819][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 41.567837][ C0] ? krealloc_noprof+0x8d/0x130 [ 41.567853][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process23insert_or_update_handle+0x51e/0x2c70 [ 41.567880][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x7c0/0x2660 [ 41.567905][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1a91/0xa690 [ 41.567927][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1192/0x5c20 [ 41.567945][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 41.567963][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 41.567982][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 41.567997][ C0] ? do_syscall_64+0x57/0xf0 [ 41.568012][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 41.568033][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.568049][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.568065][ C0] ? __kasan_check_write+0x18/0x20 [ 41.568080][ C0] ? _RNvMs5_NtCs1ewLyjEZ7Le_6kernel6bitmapNtB5_6Bitmap7set_bit+0xc1/0x260 [ 41.568106][ C0] ? _raw_spin_unlock+0x45/0x60 [ 41.568123][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCs2tVsXcF29le_11rust_binder7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x10/0x10 [ 41.568159][ C0] ? __kasan_check_write+0x18/0x20 [ 41.568175][ C0] ? mutex_unlock+0x90/0x240 [ 41.568194][ C0] ? __cfi_mutex_unlock+0x10/0x10 [ 41.568214][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 41.568239][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.568262][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.568283][ C0] ? __kasan_check_write+0x18/0x20 [ 41.568299][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 41.568315][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 41.568333][ C0] ? stack_depot_save_flags+0x399/0x800 [ 41.568350][ C0] ? _RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x3d0/0x28d0 [ 41.568377][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 41.568393][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 41.568413][ C0] ? __cfi__RNvMs_NtCs2tVsXcF29le_11rust_binder11transactionNtB4_11Transaction3new+0x10/0x10 [ 41.568446][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 41.568469][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 41.568488][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 41.568506][ C0] ? _RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1U_EEBS_+0x10e/0x720 [ 41.568548][ C0] ? __asan_memset+0x39/0x50 [ 41.568564][ C0] ? _RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1U_EEBS_+0x2c5/0x720 [ 41.568604][ C0] ? __cfi__RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1U_EEBS_+0x10/0x10 [ 41.568645][ C0] ? avc_has_perm_noaudit+0x28a/0x360 [ 41.568665][ C0] ? avc_has_perm+0x155/0x240 [ 41.568683][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x85/0x1e0 [ 41.568707][ C0] ? __cfi__RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x10/0x10 [ 41.568731][ C0] ? __kasan_check_write+0x18/0x20 [ 41.568747][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.568763][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.568779][ C0] ? selinux_binder_transaction+0x165/0x1d0 [ 41.568800][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x1b97/0x3e50 [ 41.568823][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 41.568847][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process10update_ref+0x10/0x10 [ 41.568875][ C0] ? __cfi__RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread11transaction+0x10/0x10 [ 41.568911][ C0] ? __kasan_check_write+0x18/0x20 [ 41.568927][ C0] ? _RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x1271/0xa690 [ 41.568960][ C0] ? __cfi__RNvMs2_NtCs2tVsXcF29le_11rust_binder6threadNtB5_6Thread5write+0x10/0x10 [ 41.569016][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.569039][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.569061][ C0] ? __kernel_text_address+0x11/0x40 [ 41.569081][ C0] ? unwind_get_return_address+0x51/0x90 [ 41.569101][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 41.569120][ C0] ? arch_stack_walk+0x10a/0x170 [ 41.569138][ C0] ? stack_depot_save_flags+0x38/0x800 [ 41.569156][ C0] ? kasan_save_track+0x4f/0x80 [ 41.569173][ C0] ? kasan_save_track+0x3e/0x80 [ 41.569190][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 41.569213][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 41.569231][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 41.569248][ C0] ? krealloc_noprof+0x8d/0x130 [ 41.569265][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x920/0x1aa0 [ 41.569292][ C0] ? _RNvMs6_NtCs1ewLyjEZ7Le_6kernel4listINtB5_4ListINtCs2tVsXcF29le_11rust_binder7DTRWrapDNtBL_13DeliverToReadEL_EE12insert_innerBL_+0x43a/0x6c0 [ 41.569320][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 41.569339][ C0] ? __cfi__RNvMs6_NtCs1ewLyjEZ7Le_6kernel4listINtB5_4ListINtCs2tVsXcF29le_11rust_binder7DTRWrapDNtBL_13DeliverToReadEL_EE12insert_innerBL_+0x10/0x10 [ 41.569368][ C0] ? __kasan_check_write+0x18/0x20 [ 41.569384][ C0] ? _RNvMs0_NtCs2tVsXcF29le_11rust_binder4nodeNtB5_4Node28incr_refcount_allow_zero2one+0x502/0xee0 [ 41.569415][ C0] ? __kasan_check_write+0x18/0x20 [ 41.569436][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.569451][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.569468][ C0] ? _raw_spin_unlock+0x45/0x60 [ 41.569484][ C0] ? _RNvMs0_NtCs2tVsXcF29le_11rust_binder7processNtB5_12ProcessInner24new_node_ref_with_thread+0x5ec/0x950 [ 41.569514][ C0] ? __cfi__RNvMs0_NtCs2tVsXcF29le_11rust_binder7processNtB5_12ProcessInner24new_node_ref_with_thread+0x10/0x10 [ 41.569544][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreeyINtNtNtB7_4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1d_4node4NodeEEE9raw_entryB1d_+0x403/0x500 [ 41.569576][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreeyINtNtNtB7_4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1d_4node4NodeEEE9raw_entryB1d_+0x10/0x10 [ 41.569608][ C0] ? __kasan_check_write+0x18/0x20 [ 41.569624][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.569640][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.569655][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x11f1/0x1aa0 [ 41.569683][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.569698][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 41.569719][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x127e/0x1aa0 [ 41.569748][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process8get_node+0x10/0x10 [ 41.569776][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreelINtNtNtB7_4sync3arc3ArcNtNtCs2tVsXcF29le_11rust_binder6thread6ThreadEE9raw_entryB1e_+0x416/0x580 [ 41.569806][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreelINtNtNtB7_4sync3arc3ArcNtNtCs2tVsXcF29le_11rust_binder6thread6ThreadEE9raw_entryB1e_+0x10/0x10 [ 41.569835][ C0] ? __kasan_check_write+0x18/0x20 [ 41.569851][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.569866][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.569883][ C0] ? _raw_spin_unlock+0x45/0x60 [ 41.569899][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 41.569920][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process18get_current_thread+0x1008/0x1c70 [ 41.569946][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process18get_current_thread+0x10/0x10 [ 41.569969][ C0] ? avc_has_perm_noaudit+0x26c/0x360 [ 41.569987][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.570003][ C0] ? __kasan_check_write+0x18/0x20 [ 41.570018][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0x155/0x4a0 [ 41.570051][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCs2tVsXcF29le_11rust_binder7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0x10/0x10 [ 41.570082][ C0] ? avc_has_perm+0x155/0x240 [ 41.570100][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x85/0x1e0 [ 41.570123][ C0] ? __cfi__RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x10/0x10 [ 41.570147][ C0] ? __kasan_check_write+0x18/0x20 [ 41.570163][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.570179][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.570195][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process14set_as_manager+0xb14/0x1030 [ 41.570218][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.570234][ C0] ? _RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process14set_as_manager+0xd14/0x1030 [ 41.570256][ C0] ? __kernel_text_address+0x11/0x40 [ 41.570278][ C0] ? __cfi__RNvMs4_NtCs2tVsXcF29le_11rust_binder7processNtB5_7Process14set_as_manager+0x10/0x10 [ 41.570301][ C0] ? stack_trace_save+0xaa/0x100 [ 41.570320][ C0] ? __kasan_check_write+0x18/0x20 [ 41.570335][ C0] ? _raw_spin_lock+0x92/0x120 [ 41.570351][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 41.570367][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x113c/0x5c20 [ 41.570386][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.570402][ C0] ? _RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x1192/0x5c20 [ 41.570420][ C0] ? _raw_spin_trylock+0xb5/0x140 [ 41.570444][ C0] ? _raw_spin_unlock+0x45/0x60 [ 41.570460][ C0] ? call_rcu_nocb+0x6d7/0xc80 [ 41.570482][ C0] ? __cfi__RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x10/0x10 [ 41.570502][ C0] ? swake_up_one_online_ipi+0x30/0x30 [ 41.570525][ C0] ? __cfi_mt_free_rcu+0x10/0x10 [ 41.570543][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.570566][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.570587][ C0] ? __kernel_text_address+0x11/0x40 [ 41.570608][ C0] ? unwind_get_return_address+0x51/0x90 [ 41.570628][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 41.570647][ C0] ? arch_stack_walk+0x10a/0x170 [ 41.570664][ C0] ? stack_trace_save+0xaa/0x100 [ 41.570683][ C0] ? stack_depot_save_flags+0x38/0x800 [ 41.570700][ C0] ? kasan_save_track+0x4f/0x80 [ 41.570718][ C0] ? kasan_save_track+0x3e/0x80 [ 41.570734][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 41.570757][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 41.570775][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 41.570793][ C0] ? krealloc_noprof+0x8d/0x130 [ 41.570810][ C0] ? kvrealloc_noprof+0x59/0x120 [ 41.570825][ C0] ? _RNvCs2tVsXcF29le_11rust_binder16rust_binder_mmap+0x78b/0x11f0 [ 41.570843][ C0] ? mmap_region+0x1579/0x1d60 [ 41.570859][ C0] ? do_mmap+0xb85/0x13c0 [ 41.570874][ C0] ? vm_mmap_pgoff+0x36e/0x4b0 [ 41.570892][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 41.570915][ C0] ? kernel_text_address+0xa9/0xe0 [ 41.570936][ C0] ? __kernel_text_address+0x11/0x40 [ 41.570957][ C0] ? unwind_get_return_address+0x51/0x90 [ 41.570977][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 41.570996][ C0] ? arch_stack_walk+0x10a/0x170 [ 41.571014][ C0] ? cgroup_rstat_updated+0x141/0x810 [ 41.571034][ C0] ? __cfi_cgroup_rstat_updated+0x10/0x10 [ 41.571052][ C0] ? kasan_save_stack+0x4d/0x60 [ 41.571069][ C0] ? kasan_save_stack+0x3e/0x60 [ 41.571086][ C0] ? __kasan_record_aux_stack+0xb2/0xd0 [ 41.571108][ C0] ? __call_rcu_common+0xd7/0x720 [ 41.571126][ C0] ? call_rcu+0x14/0x20 [ 41.571144][ C0] ? update_curr+0xf8/0x9e0 [ 41.571160][ C0] ? __cfi___update_load_avg_cfs_rq+0x10/0x10 [ 41.571183][ C0] ? xfd_validate_state+0x68/0x140 [ 41.571205][ C0] ? save_fpregs_to_fpstate+0x196/0x220 [ 41.571225][ C0] ? __kasan_check_write+0x18/0x20 [ 41.571240][ C0] ? __switch_to+0xc4f/0x1300 [ 41.571263][ C0] ? __cfi_sched_clock_cpu+0x10/0x10 [ 41.571286][ C0] ? __cfi___switch_to+0x10/0x10 [ 41.571308][ C0] ? psi_task_switch+0xad/0xa10 [ 41.571329][ C0] ? _raw_spin_unlock+0x45/0x60 [ 41.571345][ C0] ? finish_task_switch+0x139/0x760 [ 41.571365][ C0] ? __switch_to_asm+0x3d/0x70 [ 41.571380][ C0] ? __schedule+0x14d6/0x2100 [ 41.571399][ C0] ? __sched_text_start+0x10/0x10 [ 41.571418][ C0] ? avc_has_extended_perms+0x80b/0xe70 [ 41.571442][ C0] ? __asan_memcpy+0x5a/0x80 [ 41.571458][ C0] ? avc_has_extended_perms+0x969/0xe70 [ 41.571478][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 41.571500][ C0] ? do_vfs_ioctl+0x182d/0x2010 [ 41.571518][ C0] ? preempt_schedule_thunk+0x1a/0x40 [ 41.571537][ C0] ? __ia32_compat_sys_ioctl+0x920/0x920 [ 41.571557][ C0] ? try_to_wake_up+0x11f0/0x1fa0 [ 41.571577][ C0] ? __cfi_try_to_wake_up+0x10/0x10 [ 41.571597][ C0] ? ioctl_has_perm+0x39a/0x500 [ 41.571613][ C0] ? has_cap_mac_admin+0xd0/0xd0 [ 41.571629][ C0] ? file_mmap_ok+0x147/0x1a0 [ 41.571645][ C0] ? userfaultfd_unmap_complete+0x29f/0x320 [ 41.571664][ C0] ? selinux_file_ioctl+0x732/0x1480 [ 41.571686][ C0] ? __cfi_userfaultfd_unmap_complete+0x10/0x10 [ 41.571704][ C0] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 41.571728][ C0] ? do_futex+0x37d/0x510 [ 41.571749][ C0] ? __cfi_do_futex+0x10/0x10 [ 41.571770][ C0] ? vm_mmap_pgoff+0x153/0x4b0 [ 41.571786][ C0] ? __fget_files+0x2c5/0x340 [ 41.571805][ C0] ? bpf_lsm_file_ioctl+0xd/0x20 [ 41.571825][ C0] ? security_file_ioctl+0x3e/0x110 [ 41.571847][ C0] ? __cfi__RNvCs2tVsXcF29le_11rust_binder17rust_binder_ioctl+0x10/0x10 [ 41.571866][ C0] ? __se_sys_ioctl+0x132/0x1b0 [ 41.571885][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 41.571903][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 41.571919][ C0] ? do_syscall_64+0x57/0xf0 [ 41.571935][ C0] ? clear_bhb_loop+0x50/0xa0 [ 41.571953][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 41.571973][ C0] [ 41.571979][ C0] Modules linked in: [ 41.571991][ C0] ---[ end trace 0000000000000000 ]--- [ 41.571999][ C0] RIP: 0010:update_stack_state+0xf4/0x4b0 [ 41.572021][ C0] Code: 84 c0 0f 85 89 03 00 00 41 c6 06 01 b8 a8 00 00 00 49 89 d7 eb 05 b8 10 00 00 00 4c 8d 73 08 48 8d 4b 10 4c 89 7d b0 4c 01 f8 <48> 89 85 78 ff ff ff 48 8d 53 18 48 8d 43 28 48 8d 73 20 48 89 b5 [ 41.572033][ C0] RSP: 0018:ffffc90001167fc0 EFLAGS: 00010282 [ 41.572047][ C0] RAX: ffffc90001168220 RBX: ffffc90001168188 RCX: ffffc90001168198 [ 41.572059][ C0] RDX: ffffc90001168210 RSI: ffffc90001168210 RDI: ffffc900011681e0 [ 41.572071][ C0] RBP: ffffc90001168080 R08: ffffc90001168101 R09: 0000000000000000 [ 41.572082][ C0] R10: ffffc90001168188 R11: fffff5200022d03d R12: 0000000000000000 [ 41.572094][ C0] R13: dffffc0000000000 R14: ffffc90001168190 R15: ffffc90001168210 [ 41.572106][ C0] FS: 00007f2a622956c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 41.572121][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.572133][ C0] CR2: ffffc90001167fb8 CR3: 000000010c668000 CR4: 00000000003526b0 [ 41.572151][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 41.585748][ C0] Kernel Offset: disabled