last executing test programs:

7m53.089223769s ago: executing program 2 (id=1763):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})

7m52.954733631s ago: executing program 2 (id=1767):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000380)=[@increfs_done, @register_looper, @release], 0x0, 0x0, 0x0})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000"])
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000003340), 0x40040, 0x0)
read$FUSE(r2, 0x0, 0x0)
openat$cgroup_pressure(r2, &(0x7f0000000080)='memory.pressure\x00', 0x2, 0x0)

7m52.836239313s ago: executing program 2 (id=1769):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/binder0\x00', 0x802, 0x0)
mount$binderfs(0x0, &(0x7f0000000280)='./binderfs\x00', 0x0, 0x2000063, &(0x7f0000000400)={[], [{@flag='dirsync'}]})
r1 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs2/binder-control\x00', 0x0, 0x0)
r2 = mmap$binder(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0x6)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0xac, 0x0, &(0x7f0000000540)=[@reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000180)={@flat=@weak_binder={0x77622a85, 0x1000, 0x2}, @fda={0x66646185, 0x4, 0x0, 0x36}, @ptr={0x70742a85, 0x1, &(0x7f0000000100)=""/113, 0x71, 0x0, 0x5}}, &(0x7f0000000200)={0x0, 0x18, 0x38}}, 0x1000}, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000340)={@fd={0x66642a85, 0x0, r1}, @fda={0x66646185, 0x9, 0x2, 0x21}, @ptr={0x70742a85, 0x1, &(0x7f0000000280)=""/154, 0x9a, 0x1, 0x4}}, &(0x7f00000003c0)={0x0, 0x18, 0x38}}, 0x400}, @release={0x40046306, 0x3}, @free_buffer={0x40086303, r2}], 0xcc, 0x0, &(0x7f0000000600)="aa6aaf98dec6b5e81f61150ecd09f2d1e5c11b80f4a700ca95c63898632c9bbc14a0754a9c6548cc8f27d73634eed8eef96736d332010052c0222df352c29fc57d15e1291c0fb4cfa41e8aa5e3b414bb22633ba102f3ee6b0d84971f138691ecfebc8c5beca82189676727ec0ede385498ed91397c731c211296a1ddb0b07728938e0e27c02c79cfaa29018ce34059f68d908416b8d65e21e3278865451f9dbd0d0a7c8f7428e622035916192138a49019a82df77903ff3d4ede64eadec01515e67a4b5b5d07b97727095d79"})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000500)={0x44, 0x0, &(0x7f0000000400)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffd}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)

7m52.769531444s ago: executing program 2 (id=1772):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x26e1, 0x0)
close(r0)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20002, 0x0)
write$cgroup_subtree(r0, 0x0, 0x9)

7m52.650512416s ago: executing program 2 (id=1774):
ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x48000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r3, 0x4068aea3, &(0x7f0000000000)={0xa3, 0x0, 0x0})
ioctl$KVM_SET_MSRS(r3, 0xc008aec1, &(0x7f00000001c0)=ANY=[]) (async)
ioctl$KVM_SET_MSRS(r3, 0xc008aec1, &(0x7f00000001c0)=ANY=[])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140)=0x10)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="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"/288]) (async)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="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"/288])
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000000000009900004000000000009ceed33326b70000000033378b0497bcff0000303c0d2ec816386b"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x2, 0x15, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2], 0x8080000, 0x1144}) (async)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x2, 0x15, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2], 0x8080000, 0x1144})
ioctl$KVM_RUN(r10, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x112})
ioctl$TUNATTACHFILTER(r11, 0x401054d5, &(0x7f00000000c0)={0x5, &(0x7f0000000180)=[{0x30, 0x0, 0x0, 0xfffff031}, {0x206, 0x0, 0x0, 0x100007}, {0xc8, 0x90, 0x1, 0x5}, {0x6, 0x40, 0x3, 0x6}, {0x9, 0x80, 0x9, 0x4}]})
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x4c}, {0x6}]}) (async)
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x4c}, {0x6}]})
r12 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_NAME(r12, 0x41007701, 0x0) (async)
ioctl$ASHMEM_SET_NAME(r12, 0x41007701, 0x0)
syz_clone3(&(0x7f0000000080)={0x4000011, 0x0, 0x0, 0x0, {0x8000011}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x8008770b, 0x0) (async)
ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x8008770b, 0x0)

7m52.200099793s ago: executing program 2 (id=1783):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1, 0x2, 0xffffffff, 0x0, 0x3fffffd}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x109100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000040)=0x2)
ioctl$TIOCL_GETKMSGREDIRECT(r3, 0x541c, &(0x7f0000000040))
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000140)={{0x1, 0x1, 0xfffffffc, 0x1}})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000008e02"])
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000240)={0x0, 0x7, 0x0, 0x0, 0xc354955c4b7aeb58})

7m37.16952567s ago: executing program 32 (id=1783):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1, 0x2, 0xffffffff, 0x0, 0x3fffffd}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x109100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000040)=0x2)
ioctl$TIOCL_GETKMSGREDIRECT(r3, 0x541c, &(0x7f0000000040))
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000140)={{0x1, 0x1, 0xfffffffc, 0x1}})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000008e02"])
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000240)={0x0, 0x7, 0x0, 0x0, 0xc354955c4b7aeb58})

4m50.765508933s ago: executing program 3 (id=3967):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x8}, {0x6}]})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/10, 0xa}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f00000002c0)})

4m49.829480007s ago: executing program 3 (id=3974):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
mkdirat$cgroup(r0, &(0x7f0000000080)='syz1\x00', 0x1ff)
r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x0, 0x1, 0x20010, r1, 0x0)
mmap(&(0x7f0000196000/0x1000)=nil, 0x1000, 0x0, 0x840000000000a132, r0, 0x17c8e000)
r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mmap(&(0x7f00003b3000/0x4000)=nil, 0x4000, 0x1000007, 0x13, r2, 0x0)
mmap(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x11, r2, 0x0)

4m49.731988779s ago: executing program 3 (id=3975):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 10)

4m49.184031676s ago: executing program 3 (id=3982):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x40, 0x0, 0x0, 0x3000000}, {0x6}]})

4m48.656150154s ago: executing program 3 (id=3984):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000b80)={'\x00', 0x8411})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9)
ioctl$TUNATTACHFILTER(r0, 0x400454cc, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0xa6780, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.procs\x00', 0x40083, 0x110)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x4, 0x2, 0xddcd1000, 0x2000, &(0x7f0000ff8000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x121400, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x1)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'gre0\x00', 0x112})
r6 = openat$incfs(r1, &(0x7f0000000300)='.pending_reads\x00', 0x1, 0x100)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r8 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$BLKPBSZGET(r8, 0x127b, &(0x7f0000000040))
ioctl$FS_IOC_RESVSP(r7, 0x40305829, &(0x7f0000000180)={0x0, 0x0, 0xbff9, 0x6})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x250a00, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r11, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000000000001000040"])
ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000100)={0x0, r7, 0x10, 0x9, 0x7, 0x8})
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f00000002c0)={0x8, &(0x7f0000000140)=[{0x28, 0x0, 0x0, 0xfffff018}, {0x6}, {0x81, 0x5, 0x9, 0xe}, {0x101, 0x0, 0x6, 0x65e}, {0x3800, 0x7, 0xff, 0x4}, {0xdaf0, 0x8, 0x44}, {0x578c, 0x5, 0x8, 0x7}, {0x8, 0x7, 0x3d, 0x2}]})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bond_slave_0\x00', 0x400})

4m48.379647789s ago: executing program 3 (id=3993):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3, 0x32, 0x0, 0x0)
ioctl$KVM_SET_TSS_ADDR(0xffffffffffffffff, 0xae47, 0xd000)

4m33.251223118s ago: executing program 33 (id=3993):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3, 0x32, 0x0, 0x0)
ioctl$KVM_SET_TSS_ADDR(0xffffffffffffffff, 0xae47, 0xd000)

4m18.735522648s ago: executing program 0 (id=4313):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x2, &(0x7f0000000140)=[{0xac, 0x0, 0x0, 0x7ffc1ffb}, {0x6, 0xc0, 0x4, 0x1}]})
mount$binderfs(0x0, &(0x7f00000000c0)='./binderfs\x00', &(0x7f0000000100), 0x0, &(0x7f00000001c0)={[{}]})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/custom1\x00', 0x0, 0x0)

4m17.816066702s ago: executing program 0 (id=4321):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1, 0x0, 0x100000000000000})

4m17.732106224s ago: executing program 0 (id=4323):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x141442, 0x0)
write$tcp_mem(r0, &(0x7f00000000c0)={0x1b58, 0x20, 0x8, 0x20, 0x5}, 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x400000400)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f00000002c0)={0x3f})
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
write$uinput_user_dev(r4, &(0x7f0000001740)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100]}, 0x45c)
write$cgroup_pid(r0, &(0x7f0000000000), 0x12)

4m17.240284641s ago: executing program 0 (id=4330):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x4, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f00000000c0), 0x2, 0x0)
r3 = openat$cgroup_procs(r1, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000180), 0x12)
write$cgroup_freezer_state(r2, &(0x7f0000000200)='THAWED\x00', 0x7)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000280)=ANY=[@ANYBLOB="3901000000000000064d564b00"/24])
ioctl$SIOCSIFHWADDR(r0, 0x5460, &(0x7f0000000540)={'veth0_macvtap\x00', @link_local})

4m17.072053093s ago: executing program 0 (id=4331):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f00000000c0)={0x0, 0xbf2, 0x0, 0x0, 0x50})
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x1, 0x8, 0x0, 0x20000000000000})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r3, 0x4068aea3, &(0x7f0000000000)={0x8f, 0x0, 0x6})
r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0xfffffffe)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r7, 0x4008ae9c, &(0x7f0000000000)={0x5c, 0x5, 0x46})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x44082, 0x0)
syz_clone3(&(0x7f0000001280)={0x10000, 0x0, 0x0, 0x0, {}, &(0x7f00000011c0), 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x8220200, &(0x7f0000002140)="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", 0x121, &(0x7f0000000200), &(0x7f0000002080), &(0x7f0000000540)="9707a2770d7afb481cea641172e275e8b454cffc2246854a42befc7aea4c94941ae0bfd8099c12c7ff06444082f877e34065e4bb3299b2b1d83042cf7d70cc0818ea811d7cfc39f736e562da814be9a77cff16c3bc69f7fe7d70fa54d3222e9ceb77c6559be13b37e5180fa0a3822293030d06bd450a01f17b41f02e6bafc12a8c432b6061c24210abc93a66b233204944a91bbb42d45b60e4025f5decca70a589c9bce0325e96268781e25227e49b41df14b92bff52cb7537a106f047e07f")
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r8, 0x40045564, 0x12)
write$uinput_user_dev(r8, &(0x7f00000025c0)={'syz0\x00', {}, 0x40, [0xfffff8c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x200000, 0xffffffff, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1000, 0x40000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x3, 0x0, 0x8, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x57470b45, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x2, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r9, &(0x7f0000000040)={0x2020}, 0x2020)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r10 = openat$kvm(0xffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r12, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
r13 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r13, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
ioctl$KVM_SET_MSRS(r12, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000fdff9004"])

4m15.99513179s ago: executing program 0 (id=4338):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x4b564d00, 0x4b564d00, 0x9}]})

4m0.935318928s ago: executing program 34 (id=4338):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x4b564d00, 0x4b564d00, 0x9}]})

1m55.45380201s ago: executing program 6 (id=5991):
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000040)={0x2c, 0x4, 0x0, {0x1, 0x6, 0x4, 0x0, [0x0, 0x0, 0x0, 0x0]}}, 0x2c)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r0=>0x0}, 0x2020)
write$FUSE_DIRENT(0xffffffffffffffff, &(0x7f00000020c0)={0x90, 0x0, r0, [{0x4, 0x9}, {0x3, 0x0, 0x1, 0xff0, '!'}, {0x5, 0x3, 0x0, 0x7}, {0x0, 0x8, 0x0, 0x80000001}, {0x1, 0x8, 0x0, 0x9}]}, 0x90)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x250, 0x0, 0x100000000006}]})
read$FUSE(0xffffffffffffffff, &(0x7f0000003200)={0x2020}, 0x2020)
ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, &(0x7f0000002180))

1m55.200021744s ago: executing program 6 (id=5993):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x109000, 0x0)
read$FUSE(r0, &(0x7f00000011c0)={0x2020}, 0x2020)

1m55.198937664s ago: executing program 6 (id=5994):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x109000, 0x0)
read$FUSE(r0, &(0x7f00000011c0)={0x2020}, 0x2020) (fail_nth: 2)

1m55.011148907s ago: executing program 6 (id=5995):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0x3c4, 0x0, 0x7}, {0x24a, 0x0, 0x8}]})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x8000000000000000, 0x100000000, 0x0, 0x20, 0x0, 0x0, 0x2004c9, 0x7000, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x4000000000000004, 0x2], 0xffff1000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
openat(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})

1m54.518663684s ago: executing program 6 (id=5998):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x20880, 0x0) (async)
openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000280)=0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) (async)
r3 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB='-'], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
write$binfmt_format(r3, &(0x7f0000000000)='0\x00', 0x2)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000080)='cgroup.max.descendants\x00', 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[], 0x9) (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x301640, 0x179)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_ro(r7, &(0x7f0000000080)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_subtree(r8, &(0x7f00000000c0)=ANY=[@ANYBLOB='-', @ANYRESDEC, @ANYRESDEC], 0x44) (async, rerun: 32)
ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000040)={0x2, r8}) (async, rerun: 32)
r9 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0xa, 0x2})
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r10, 0x0) (async, rerun: 32)
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x10}], 0x0, 0x0, 0x0}) (async, rerun: 32)
ioctl$TUNATTACHFILTER(r9, 0x401054d5, 0x0) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})

1m54.360186057s ago: executing program 6 (id=6000):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000100)={0x6000, 0x10000, 0xfffffffa, 0x0, 0x1ff})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000003c0)={0x0, 0x0, @pic={0x3, 0xcc, 0x1, 0x5, 0x2, 0x1, 0x1, 0xff, 0x5, 0x0, 0xe, 0x9, 0xa, 0x2, 0xd, 0x5}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x7, 0x6, 0x0, 0x100000000000180, 0x8000000000000001, 0x200, 0xf1, 0x1, 0x8000000000000, 0x9, 0x0, 0x8, 0x200000000000, 0xd, 0x3, 0x8], 0xd000, 0xfc44e3a907e54137})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000200))
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000000c0)={0x9})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000300)={[0x0, 0xfffffffffffffff9, 0x1, 0x3, 0x4, 0x10001, 0x0, 0x0, 0x4, 0x1, 0x2, 0xfffffffffffff001, 0x1, 0x5e78, 0xb, 0xffffffff], 0xdddd0000, 0xac003})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x10004, 0x5, 0x1000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
ioctl$ASHMEM_GET_NAME(r4, 0x81007702, &(0x7f00000001c0)=""/215)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r5, 0x4008af04, &(0x7f0000000740)=0xffffffffffffffff)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000600))
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000380)={0x0, 0x1, 0x0, 0x0, 0x0, 0x10000})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[0x3, 0x2, 0x80000001, 0x8000000000000001, 0xbb97, 0x988, 0x8, 0x7f, 0x4, 0x2, 0x7fffffffffffffff, 0x185, 0x7, 0x6, 0x7, 0x1], 0xeeef0000, 0x202})

1m39.283374345s ago: executing program 35 (id=6000):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000100)={0x6000, 0x10000, 0xfffffffa, 0x0, 0x1ff})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000003c0)={0x0, 0x0, @pic={0x3, 0xcc, 0x1, 0x5, 0x2, 0x1, 0x1, 0xff, 0x5, 0x0, 0xe, 0x9, 0xa, 0x2, 0xd, 0x5}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x7, 0x6, 0x0, 0x100000000000180, 0x8000000000000001, 0x200, 0xf1, 0x1, 0x8000000000000, 0x9, 0x0, 0x8, 0x200000000000, 0xd, 0x3, 0x8], 0xd000, 0xfc44e3a907e54137})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000200))
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000000c0)={0x9})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000300)={[0x0, 0xfffffffffffffff9, 0x1, 0x3, 0x4, 0x10001, 0x0, 0x0, 0x4, 0x1, 0x2, 0xfffffffffffff001, 0x1, 0x5e78, 0xb, 0xffffffff], 0xdddd0000, 0xac003})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x10004, 0x5, 0x1000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
ioctl$ASHMEM_GET_NAME(r4, 0x81007702, &(0x7f00000001c0)=""/215)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r5, 0x4008af04, &(0x7f0000000740)=0xffffffffffffffff)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000600))
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000380)={0x0, 0x1, 0x0, 0x0, 0x0, 0x10000})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[0x3, 0x2, 0x80000001, 0x8000000000000001, 0xbb97, 0x988, 0x8, 0x7f, 0x4, 0x2, 0x7fffffffffffffff, 0x185, 0x7, 0x6, 0x7, 0x1], 0xeeef0000, 0x202})

40.148494782s ago: executing program 5 (id=6900):
syz_clone(0x1200200, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x9280, 0x0)
ioctl$TIOCSSOFTCAR(r2, 0x5453, 0x0)
ioctl$TCGETS(r2, 0x5401, 0x0)
ioctl$TIOCGICOUNT(r1, 0x545d, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000100)={0xffff1000, 0x4000, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f00000001c0)={0x2000, 0x3000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000180)={0x2, 0x5834d4dbb6893c4c})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/pm_trace', 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r5, &(0x7f0000000040)=ANY=[@ANYBLOB='-'], 0x28)
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x298000, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000000), 0x12)
write$FUSE_NOTIFY_RESEND(r7, &(0x7f00000000c0)={0x14}, 0x14)
ioctl$BLKGETNRZONES(r6, 0x80041285, &(0x7f0000000080))

39.912467465s ago: executing program 5 (id=6903):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, 0xfffffffffffffffe)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})

39.763309228s ago: executing program 5 (id=6906):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xaece, 0x2)
read$FUSE(r4, &(0x7f0000000dc0)={0x2020}, 0x2020)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x4)
write$uinput_user_dev(r1, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x4, 0x0, 0x0, 0xf6, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xfffffffd, 0x3, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffff, 0xfffffffc, 0x0, 0x0, 0x80000, 0x0, 0x180d, 0x0, 0xae4d, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x101, 0x1, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42c, 0x0, 0x0, 0x400, 0x0, 0xed0, 0x4000000], [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3e8, 0xfffffffd, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0xf, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x101, 0xfffffffe]}, 0x45c)
prctl$PR_SET_TIMERSLACK(0x1d, 0x401)
ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000980)={'syz0\x00', {0xc, 0xc, 0x8ce, 0x8}, 0x28, [0x6, 0x9, 0x8f28, 0x987, 0xfffff5b6, 0x80000001, 0x9, 0x80000000, 0x200, 0x8001, 0x36c9, 0xec, 0x1, 0xfffffffb, 0x6, 0x1, 0x6, 0x5d9, 0x3, 0x0, 0x5, 0xb, 0x9, 0xc9e2, 0x9, 0x7, 0x3, 0xe, 0x8, 0x2aed2b6e, 0x46, 0x7f, 0x400, 0x8000, 0x2, 0x0, 0x3, 0x0, 0x7, 0xa4, 0x4, 0x3, 0x2, 0x6, 0xfffffff2, 0x6, 0x3, 0x7, 0x5, 0x200, 0x2, 0x0, 0x8, 0x10, 0x8, 0x1, 0x40, 0x80000001, 0x9, 0x6, 0x8, 0xcd2, 0x0, 0x5], [0xe9, 0xf, 0x1000, 0x5, 0xfff, 0x9, 0x346d353, 0x6, 0x2f, 0xff, 0x80000000, 0x7f, 0x7fff, 0x3, 0x80b, 0x1, 0x3d5, 0x10000, 0xffffff1f, 0x6, 0x7, 0x5, 0x3, 0x10, 0x3, 0x80000000, 0x5, 0x7, 0x4, 0x10, 0x3, 0xfffffff8, 0x4, 0x3, 0x3f1, 0x2, 0xc, 0x91, 0x30000000, 0xfffffff8, 0x4, 0x1ff, 0x2, 0x1c000, 0x5, 0x7, 0x80000001, 0x7, 0x3, 0x9, 0x22f5688b, 0xd6c, 0xf6e5, 0xdf, 0x6, 0x2, 0x2, 0xfffffff8, 0x4, 0xffff, 0xb, 0x1, 0x1, 0x7], [0x0, 0x48, 0x0, 0xa13e, 0x4, 0x3, 0x3, 0x9, 0x8, 0x4, 0x8000, 0x3, 0x5, 0x2, 0x9, 0x5, 0x6, 0x401, 0x800, 0x80000000, 0x0, 0xf, 0x9, 0x3, 0x0, 0x0, 0x8000, 0x7fff, 0x5, 0x5, 0x14580ffb, 0x6, 0x5, 0x1, 0x1, 0x80, 0x400, 0x8, 0xb0, 0x8, 0x9, 0x7, 0x6, 0x97af, 0x7, 0x3, 0x18000, 0x101, 0x3, 0x4, 0xae3, 0x4, 0x8, 0xec, 0x3a, 0x7, 0x186, 0x0, 0x38000000, 0x8b3, 0x9, 0x7, 0x9, 0x4], [0x200, 0x89, 0x0, 0x2, 0x1, 0x7f, 0xa, 0x3, 0x9, 0x6, 0x0, 0x4, 0x0, 0x3, 0x4d1d, 0x2, 0x6, 0x4, 0x5, 0x0, 0x9, 0xd, 0xff, 0x8, 0x4, 0x2, 0x0, 0xe6, 0x6, 0x81, 0xdbe, 0xffff34e6, 0x0, 0x3, 0x800, 0x8000, 0x7, 0x0, 0x376d, 0x3, 0x2, 0x1a, 0x8, 0xe, 0x7, 0x80, 0x2478e471, 0x2, 0x7, 0x4, 0x4, 0x1, 0x868, 0x8001, 0x8, 0xb, 0x8, 0xd, 0x80, 0x4, 0x1, 0x7, 0x8c, 0x6]}, 0x45c)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000b80)={'\x00', 0x8411})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9)
ioctl$TUNATTACHFILTER(r0, 0x400454cc, 0x0)

37.590145611s ago: executing program 5 (id=6906):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xaece, 0x2)
read$FUSE(r4, &(0x7f0000000dc0)={0x2020}, 0x2020)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x4)
write$uinput_user_dev(r1, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x4, 0x0, 0x0, 0xf6, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xfffffffd, 0x3, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffff, 0xfffffffc, 0x0, 0x0, 0x80000, 0x0, 0x180d, 0x0, 0xae4d, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x101, 0x1, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42c, 0x0, 0x0, 0x400, 0x0, 0xed0, 0x4000000], [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3e8, 0xfffffffd, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0xf, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x101, 0xfffffffe]}, 0x45c)
prctl$PR_SET_TIMERSLACK(0x1d, 0x401)
ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000980)={'syz0\x00', {0xc, 0xc, 0x8ce, 0x8}, 0x28, [0x6, 0x9, 0x8f28, 0x987, 0xfffff5b6, 0x80000001, 0x9, 0x80000000, 0x200, 0x8001, 0x36c9, 0xec, 0x1, 0xfffffffb, 0x6, 0x1, 0x6, 0x5d9, 0x3, 0x0, 0x5, 0xb, 0x9, 0xc9e2, 0x9, 0x7, 0x3, 0xe, 0x8, 0x2aed2b6e, 0x46, 0x7f, 0x400, 0x8000, 0x2, 0x0, 0x3, 0x0, 0x7, 0xa4, 0x4, 0x3, 0x2, 0x6, 0xfffffff2, 0x6, 0x3, 0x7, 0x5, 0x200, 0x2, 0x0, 0x8, 0x10, 0x8, 0x1, 0x40, 0x80000001, 0x9, 0x6, 0x8, 0xcd2, 0x0, 0x5], [0xe9, 0xf, 0x1000, 0x5, 0xfff, 0x9, 0x346d353, 0x6, 0x2f, 0xff, 0x80000000, 0x7f, 0x7fff, 0x3, 0x80b, 0x1, 0x3d5, 0x10000, 0xffffff1f, 0x6, 0x7, 0x5, 0x3, 0x10, 0x3, 0x80000000, 0x5, 0x7, 0x4, 0x10, 0x3, 0xfffffff8, 0x4, 0x3, 0x3f1, 0x2, 0xc, 0x91, 0x30000000, 0xfffffff8, 0x4, 0x1ff, 0x2, 0x1c000, 0x5, 0x7, 0x80000001, 0x7, 0x3, 0x9, 0x22f5688b, 0xd6c, 0xf6e5, 0xdf, 0x6, 0x2, 0x2, 0xfffffff8, 0x4, 0xffff, 0xb, 0x1, 0x1, 0x7], [0x0, 0x48, 0x0, 0xa13e, 0x4, 0x3, 0x3, 0x9, 0x8, 0x4, 0x8000, 0x3, 0x5, 0x2, 0x9, 0x5, 0x6, 0x401, 0x800, 0x80000000, 0x0, 0xf, 0x9, 0x3, 0x0, 0x0, 0x8000, 0x7fff, 0x5, 0x5, 0x14580ffb, 0x6, 0x5, 0x1, 0x1, 0x80, 0x400, 0x8, 0xb0, 0x8, 0x9, 0x7, 0x6, 0x97af, 0x7, 0x3, 0x18000, 0x101, 0x3, 0x4, 0xae3, 0x4, 0x8, 0xec, 0x3a, 0x7, 0x186, 0x0, 0x38000000, 0x8b3, 0x9, 0x7, 0x9, 0x4], [0x200, 0x89, 0x0, 0x2, 0x1, 0x7f, 0xa, 0x3, 0x9, 0x6, 0x0, 0x4, 0x0, 0x3, 0x4d1d, 0x2, 0x6, 0x4, 0x5, 0x0, 0x9, 0xd, 0xff, 0x8, 0x4, 0x2, 0x0, 0xe6, 0x6, 0x81, 0xdbe, 0xffff34e6, 0x0, 0x3, 0x800, 0x8000, 0x7, 0x0, 0x376d, 0x3, 0x2, 0x1a, 0x8, 0xe, 0x7, 0x80, 0x2478e471, 0x2, 0x7, 0x4, 0x4, 0x1, 0x868, 0x8001, 0x8, 0xb, 0x8, 0xd, 0x80, 0x4, 0x1, 0x7, 0x8c, 0x6]}, 0x45c)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000b80)={'\x00', 0x8411})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9)
ioctl$TUNATTACHFILTER(r0, 0x400454cc, 0x0)

37.195642877s ago: executing program 5 (id=6936):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
ioctl$RTC_WIE_OFF(r0, 0x7010)
ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f00000000c0))
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000001240), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x7, 0x3a, '\x00\x00\x00\x00\x00\x00\x00', 0x3a, '\\-%#!\\\\\'', 0x3a, './file0'}, 0x36)
openat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x81)

37.100704748s ago: executing program 5 (id=6937):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x24000, 0x0)
ioctl$BLKRRPART(r0, 0x125f, 0x0)
ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f0000000000)={0x401, 0x9})

36.852178171s ago: executing program 7 (id=6939):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x3fd, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000002f40)={'syz0\x00', {0x2, 0x1, 0x8, 0x3ff}, 0x1, [0x5, 0x5, 0xfc9b, 0x2, 0xd94, 0xb, 0xe54, 0x3, 0x10000, 0xa2, 0x5, 0x66b8, 0xe, 0xfffffff7, 0x6, 0x3, 0x3, 0x4413, 0x2, 0x3c02e2fd, 0x6, 0x0, 0xff, 0x8, 0x8, 0x8, 0x1, 0x7, 0x1, 0x2, 0x2, 0x8001, 0x1a, 0x75, 0x3, 0x5, 0x7, 0x800, 0x6, 0x80000001, 0x8f01, 0x0, 0x0, 0x5c3878dc, 0x80000000, 0x883f, 0x5, 0x7f, 0x4, 0x6, 0xfffffff5, 0x9, 0x9, 0x8000, 0x5, 0xfffffffe, 0x8000, 0x7ff, 0x43bd90b, 0x2, 0x9, 0x7, 0x3d, 0x8], [0x3, 0x0, 0x4, 0x6, 0xfffffff7, 0x3, 0x9, 0x1, 0x9, 0x1, 0x4, 0xb, 0x80000000, 0x0, 0x5, 0x2, 0x7, 0x7, 0xff, 0xf3ce, 0x2ca, 0x0, 0x6, 0x5, 0x2, 0x80000000, 0x4, 0x6, 0x0, 0x6, 0x8, 0x9, 0x4, 0xa, 0xa6b, 0x0, 0x5, 0x6, 0x0, 0xc, 0x9, 0x9, 0xd, 0x2, 0x4, 0x6, 0x5, 0x0, 0x6, 0x3, 0x10, 0x2, 0x4, 0x0, 0x7, 0x101, 0x8, 0x5, 0x8, 0x8, 0x5, 0x2, 0x5000, 0x8], [0x401, 0xffff, 0xb5a6, 0x1000, 0x3, 0x5, 0x4, 0x1, 0x88d2, 0x8, 0x97c, 0xff, 0x2, 0x0, 0xcfd, 0x4, 0x0, 0x38a, 0x7, 0x8a, 0x6, 0xfffffc1c, 0x101, 0xffe00, 0x3, 0x9, 0xd, 0x7e, 0x7, 0x922, 0x1, 0xe0, 0x400, 0x9, 0x2, 0x8, 0x6, 0x4, 0x2, 0x8, 0x7f7, 0x7788, 0xd, 0x9, 0x4, 0xb93, 0x9, 0x783fad4, 0x7, 0x0, 0x0, 0x4, 0x3, 0xe2f1, 0x40, 0x8, 0x2, 0x400, 0xfffffffd, 0x1200000, 0xffffffc5, 0xc6c, 0x3, 0x2], [0x3, 0x5, 0x2, 0x9, 0x10000, 0xe, 0xfffffeff, 0xd67, 0x80, 0x7ff, 0x2, 0x46901346, 0x8, 0xfcd, 0x9, 0x39c, 0xfffffff4, 0x4, 0x4, 0x4, 0x3, 0x40, 0x80000001, 0x40, 0x5, 0x0, 0x5, 0x7ff, 0x6, 0x401, 0x0, 0x0, 0x5, 0xb0, 0xe150, 0x10001, 0x2a, 0xffffffff, 0x5, 0x1ff, 0x7, 0xffff, 0x10001, 0x6, 0x8, 0xffff, 0x4, 0x9, 0x1, 0x9, 0x1, 0x7f, 0x4, 0x6, 0x0, 0x2, 0x3, 0xfffffff7, 0x9, 0x6, 0x2, 0xcee, 0x87, 0x65c2]}, 0x45c)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000080)=0x7)
close_range(r1, 0xffffffffffffffff, 0x0)

36.714048114s ago: executing program 7 (id=6941):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040))
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x8000, 0x5, 0x7, 0x1, 0x9, 0x3, 0xbf, 0xb8, 0x3, 0xf, 0x5, 0x6}, {0x804, 0x5, 0x1, 0x5, 0x7, 0x2, 0xff, 0x5, 0x9, 0x4, 0xb, 0x7f, 0x3}, {0x4, 0x6, 0x38, 0x6, 0x84, 0x7, 0x0, 0x50, 0x2, 0x70, 0x3, 0xa, 0x400000000006}], 0xffffffff})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000200)={0x1, 0x0, [{0x585, 0x0, 0xff1}]})

36.374588589s ago: executing program 7 (id=6944):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7, 0x6832, 0xffffffffffffffff, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x1f00000000000000)

36.164611272s ago: executing program 7 (id=6948):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20, 0x1, 0x0, 0x0, 0xffffffff}}, 0x11c)
close(r0)
syz_clone3(&(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0}}, 0x58)
mount$binderfs(0x0, &(0x7f0000000400)='./binderfs\x00', 0x0, 0x10254ab, 0x0)

35.084114838s ago: executing program 7 (id=6955):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0xca800, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000140))
ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000001c0)=0x3)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r7, 0x4010ae67, &(0x7f0000000380)={0x1, 0x0, 0x1})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r7, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r4, 0x4020aeb2, &(0x7f0000000740)={0x0, 0x12c, @ioapic={0x1000, 0x8, 0x6, 0x3, 0x0, [{0x1, 0x3, 0x3, '\x00', 0x2}, {0x0, 0x5, 0x1, '\x00', 0x8}, {0x7, 0x2b, 0xf3, '\x00', 0x2}, {0x7, 0x2, 0x1c, '\x00', 0x7}, {0x0, 0x3, 0x4, '\x00', 0x58}, {0x80, 0x2, 0xb, '\x00', 0x9}, {0x2, 0x7, 0x5, '\x00', 0x2}, {0x0, 0x81, 0x4, '\x00', 0x22}, {0x9, 0x9, 0x6, '\x00', 0x7}, {0x3, 0x58, 0x81, '\x00', 0x1}, {0x9, 0x8, 0x1, '\x00', 0xfa}, {0x1, 0x7f, 0x2, '\x00', 0x81}, {0x2, 0x4, 0xff, '\x00', 0xa}, {0x7b, 0x1, 0x2, '\x00', 0x5}, {0x7f, 0x4, 0x6, '\x00', 0x6}, {0x1, 0x0, 0x9}, {0xa, 0x1, 0x0, '\x00', 0x7}, {0x80, 0x2, 0x4, '\x00', 0x1}, {0x82, 0x5, 0x6, '\x00', 0x2f}, {0x2, 0x8, 0x0, '\x00', 0xb}, {0x8, 0x41, 0xfe, '\x00', 0x6}, {0x1, 0x4, 0x8, '\x00', 0x8}, {0x0, 0x5, 0x2, '\x00', 0x3}, {0x1, 0x9, 0x6, '\x00', 0xc}]}})
r9 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_PHYS(r9, 0x4008556c, &(0x7f0000000080)='syz0\x00')

34.112205503s ago: executing program 7 (id=6962):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e0308003c5c980128876360864668f82ffdd569d2f630b5e033ff11edf1c5ffc733d2acb165fe588cd568cd1f31b87b68b00ad888ca"], 0xffdd) (fail_nth: 11)

21.857818089s ago: executing program 36 (id=6937):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x24000, 0x0)
ioctl$BLKRRPART(r0, 0x125f, 0x0)
ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f0000000000)={0x401, 0x9})

18.786820235s ago: executing program 37 (id=6962):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e0308003c5c980128876360864668f82ffdd569d2f630b5e033ff11edf1c5ffc733d2acb165fe588cd568cd1f31b87b68b00ad888ca"], 0xffdd) (fail_nth: 11)

2.077221589s ago: executing program 4 (id=7271):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000040)={0x200028, 0x26, 0x20000000, 0x12, 0x3, 0x400004f, 0x1100010, 0x2c, 0xffffffffffffffff})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x7, 0x6000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000007a80), 0x101000, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
ioctl$KVM_SET_CPUID2(r9, 0x4008ae90, &(0x7f0000000700)=ANY=[@ANYBLOB="010000000000000007"])
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000100)={0x1, 0x0, [{0x3b, 0x0, 0x3}]})
r10 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r10, 0x5000aea5, &(0x7f0000000080)=ANY=[])
r11 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r11, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="01aeef00000000009b02000000000000a200000000000000"])
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x3, 0x0, 0x0, 0x5, 0x0, 0x4002004c4, 0x1000], 0xeeee8000, 0x1144})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x10d603, 0x0)
r12 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r12, 0xaf01, 0x0)
ioctl$VHOST_VDPA_GET_VRING_NUM(r12, 0xc008af12, &(0x7f00000001c0))
close(0x3)

2.03216159s ago: executing program 9 (id=7272):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xffffffc1)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000002600)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80`4/\xe9\x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\x16\\n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x04;\xc5[\nja\xb9\'\xc9#\xfcx\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00B\x05\xd4\xea\xea\x7f=\xc6:\\N\xc3\xb7Vw\xc6\x9c\x96s\xaaHL\x96\xc72\n\x18Ynj\xceTS\xfbl\x0f\x9f8M\f\x89\xa1\xd2Hs`\x8bp\x8a\xc4%\xf8\x1d3\nV\x9a\xaf\x1f\xf96^\x93\xc1\xaf)\rg\x86\xd6\xea\xa9\x0f\x9a\xf1V\x1b\xbf\x8b\'-\xab\x8e\t7\xd3\xf7\xa9v\xfbY\xe6\x9b^d\x8c\xb1\xdd')
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000000300)='\x00\x00\x00\x06\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SET_DUMPABLE(0x4, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000003340), 0x40040, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140), 0x0, 0x0, 0x0})

1.970823061s ago: executing program 9 (id=7273):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
ioctl$AUTOFS_IOC_FAIL(r0, 0x40187542, 0x92)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000440), 0x22121, 0x0)
write$vga_arbiter(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="75fb6e6c6f636b20696f2b6d656d"], 0xe)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x4c3c2, 0x0)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x24)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000040)=0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000000)={0x0, 0x1, 0xff, 0x9})
close(r3)

1.860134312s ago: executing program 9 (id=7275):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x2, 0x0)
ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000400)={0x44, 0x0, &(0x7f0000000300)=[@reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x50, 0x0, &(0x7f0000000380)="e1c194c07314197567609163a955a737cfdca424e4fc4ea388b431c78b32749341c73f7b7c51446e6bbf7f1de6a8ca5eb7372e3b24ef390ae15b6574683711fa3caff8f4fb3d0ca15b91526634d34eb3"})

1.744427244s ago: executing program 8 (id=7277):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000040)=0x7)
r3 = openat$cgroup_ro(r2, &(0x7f0000000000)='cpu.stat\x00', 0x300, 0x0)
read$FUSE(r3, &(0x7f000001aa80)={0x2020}, 0x2020)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x54, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat=@weak_handle={0x77682a85, 0x1001, 0x3}, @fd={0x66642a85, 0x0, r1}, @ptr={0x70742a85, 0x0, &(0x7f0000000240), 0x0, 0x0, 0x31}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}, @release={0x40046306, 0x3}], 0x5a, 0x0, &(0x7f00000002c0)="1920ff09471b1099c7961fdcc405843a41a786d3ed8ebe8e80e4b4144e1cf51c728b926c80eb2a8e4f6b2dab5b6ac95dd16066dc703442a9132a8dd210e45df98d795a638622681df1cb222612051f612948409bc69ce5464f37"})

1.600370046s ago: executing program 9 (id=7278):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x3, 0x3, 0x2000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
write$uinput_user_dev(r2, &(0x7f0000000800)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb77b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x80000]}, 0x45c)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r2, 0x5501)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = openat$random(0xffffffffffffff9c, &(0x7f0000000940), 0x800, 0x0)
ioctl$RNDADDENTROPY(r4, 0x40085203, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000eb00"])
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0100000000000000014d564b00000000af"])
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x6e0}]})
openat$binderfs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r3, 0x4018aee2, &(0x7f0000000040)=@attr_irq_timer={0x0, 0x1, 0x0, &(0x7f0000000000)=0x1c})
mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r8, 0x0)

1.559687147s ago: executing program 8 (id=7279):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 11)

1.160799153s ago: executing program 8 (id=7281):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x7) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x7)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x3, 0x2dedad51, 0xffff, 0xcacb, 0xb, "e878388333f1dcc86164c09a6bfee68f39e6b6"})
read(r0, &(0x7f00000000c0)=""/113, 0x71) (async)
read(r0, &(0x7f00000000c0)=""/113, 0x71)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000140), 0x20080, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x4000010, r1, 0xc5937000)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x100)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CLEAR_DIRTY_LOG(r3, 0xc018aec0, &(0x7f00000005c0)={0x0, 0x240, 0x240, &(0x7f00000001c0)=[0x10000, 0x9, 0x2, 0x54f1, 0x1, 0x329, 0xc0, 0x4, 0x2, 0x5, 0xffffffff, 0xd4, 0x9ed, 0x4, 0x7, 0xa3, 0x4, 0x5f94, 0x3, 0x4, 0x4, 0x7ff, 0x8, 0x8, 0x3, 0x8001, 0xd, 0x5, 0x7f, 0x2, 0x7fffffffffffffff, 0x50d9, 0x0, 0x2, 0x8, 0x6, 0xfffffffffffffffd, 0x3, 0x1, 0x4, 0x5, 0x2d, 0x1, 0xe, 0x0, 0x7fffffff, 0x8, 0x7, 0x3, 0x9, 0x1, 0x8, 0xfffffffffffff800, 0x8000, 0x4, 0x1, 0x5, 0xf, 0xda, 0x2, 0x9, 0x4, 0x8, 0x9, 0x9, 0x533, 0x4, 0x1, 0xe, 0xffff, 0x2, 0x5, 0x0, 0x400, 0xde, 0x6, 0x9, 0x100000001, 0x8001, 0x2, 0xd6, 0x0, 0x4, 0x7ec2, 0x6, 0x6, 0xdeb, 0x5, 0x401, 0x1, 0x4, 0x1, 0x5, 0x10001, 0x8, 0xff, 0x6, 0x7, 0x6, 0x0, 0x8, 0xfffffffffffffffe, 0xc40, 0x5, 0x2, 0x1241, 0x6, 0x8000000000000000, 0x4, 0x2, 0xb, 0x7, 0x3, 0x1ff, 0x2, 0x1, 0x5, 0x5, 0x6, 0x2, 0x200, 0x7, 0x3, 0xffffffffffffffff, 0x7, 0x7, 0xfff, 0x2]})
ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000600)={0x5, 0x9, 0x9, 0x6, 0x17, "a875c8aa3bb59337ef3061dd790751072b5e22"})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000640)='./binderfs2/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x11, r4, 0x67b)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000680)={0x1fd, 0x1, 0x100000, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000680)={0x1fd, 0x1, 0x100000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000dc0)={0x138, 0x0, &(0x7f0000000c00)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000700)={@fda={0x66646185, 0x2, 0x1, 0x16}, @fda={0x66646185, 0x3, 0x2, 0x19}, @ptr={0x70742a85, 0x0, &(0x7f00000006c0)=""/52, 0x34, 0x2, 0x2e}}, &(0x7f0000000780)={0x0, 0x20, 0x40}}}, @increfs_done={0x40106308, 0x3}, @exit_looper, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x48, 0x18, &(0x7f00000007c0)={@flat=@handle={0x73682a85, 0x110a, 0x1}, @flat=@weak_handle={0x77682a85, 0x2100, 0x2}, @fd}, &(0x7f0000000840)={0x0, 0x18, 0x30}}}, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000900)={@fda={0x66646185, 0x3, 0x2, 0x38}, @ptr={0x70742a85, 0x1, &(0x7f0000000880)=""/107, 0x6b, 0x2, 0x17}, @fd={0x66642a85, 0x0, r1}}, &(0x7f0000000980)={0x0, 0x20, 0x48}}}, @exit_looper, @release, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000b40)={@ptr={0x70742a85, 0x1, &(0x7f00000009c0)=""/178, 0xb2, 0x0, 0x37}, @fd={0x66642a85, 0x0, r4}, @ptr={0x70742a85, 0x1, &(0x7f0000000a80)=""/171, 0xab, 0x1, 0x2}}, &(0x7f0000000bc0)={0x0, 0x28, 0x40}}}, @enter_looper], 0x61, 0x0, &(0x7f0000000d40)="8fc5d8a066903033cc3a350d86304f6a82092e104cd219ba4c768d9e6736e2e1e4995cd458df44b82079aa5cca08575ca2b9634368c7db398342b5b3d16eb2ff708967d8cbdb84bbf9123f421bc55d66752ceb15580b3bde45a5cfe4ceb940bf46"}) (async)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000dc0)={0x138, 0x0, &(0x7f0000000c00)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000700)={@fda={0x66646185, 0x2, 0x1, 0x16}, @fda={0x66646185, 0x3, 0x2, 0x19}, @ptr={0x70742a85, 0x0, &(0x7f00000006c0)=""/52, 0x34, 0x2, 0x2e}}, &(0x7f0000000780)={0x0, 0x20, 0x40}}}, @increfs_done={0x40106308, 0x3}, @exit_looper, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x48, 0x18, &(0x7f00000007c0)={@flat=@handle={0x73682a85, 0x110a, 0x1}, @flat=@weak_handle={0x77682a85, 0x2100, 0x2}, @fd}, &(0x7f0000000840)={0x0, 0x18, 0x30}}}, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000900)={@fda={0x66646185, 0x3, 0x2, 0x38}, @ptr={0x70742a85, 0x1, &(0x7f0000000880)=""/107, 0x6b, 0x2, 0x17}, @fd={0x66642a85, 0x0, r1}}, &(0x7f0000000980)={0x0, 0x20, 0x48}}}, @exit_looper, @release, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000b40)={@ptr={0x70742a85, 0x1, &(0x7f00000009c0)=""/178, 0xb2, 0x0, 0x37}, @fd={0x66642a85, 0x0, r4}, @ptr={0x70742a85, 0x1, &(0x7f0000000a80)=""/171, 0xab, 0x1, 0x2}}, &(0x7f0000000bc0)={0x0, 0x28, 0x40}}}, @enter_looper], 0x61, 0x0, &(0x7f0000000d40)="8fc5d8a066903033cc3a350d86304f6a82092e104cd219ba4c768d9e6736e2e1e4995cd458df44b82079aa5cca08575ca2b9634368c7db398342b5b3d16eb2ff708967d8cbdb84bbf9123f421bc55d66752ceb15580b3bde45a5cfe4ceb940bf46"})
openat$cgroup(r4, &(0x7f0000000e00)='syz0\x00', 0x200002, 0x0) (async)
r5 = openat$cgroup(r4, &(0x7f0000000e00)='syz0\x00', 0x200002, 0x0)
mkdirat$cgroup(r5, &(0x7f0000000e40)='syz1\x00', 0x1ff) (async)
mkdirat$cgroup(r5, &(0x7f0000000e40)='syz1\x00', 0x1ff)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r6, 0xc040aed5, &(0x7f0000000e80)={0x4000, 0x110000})
ioctl$KVM_CAP_MEMORY_FAULT_INFO(r3, 0x4068aea3, &(0x7f0000000ec0))
openat$cgroup_ro(r5, &(0x7f0000000f40)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0) (async)
r7 = openat$cgroup_ro(r5, &(0x7f0000000f40)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000f80)={0x3, 0x0, [{0x8c8, 0x0, 0x1ad}, {0x374, 0x0, 0x7}, {0x2c8, 0x0, 0xc}]})
ioctl$VT_RELDISP(r0, 0x5605)
ioctl$PIO_CMAP(r7, 0x4b71, &(0x7f0000000fc0)={0x6, 0xa8fc, 0xbb, 0x8000000000000001, 0x4, 0xffffffff})
ioctl$GIO_SCRNMAP(r6, 0x4b40, &(0x7f0000001000)=""/208)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000001100), 0x2, 0x0) (async)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000001100), 0x2, 0x0)
r8 = openat$null(0xffffffffffffff9c, &(0x7f0000001140), 0xa0, 0x0)
ioctl$KVM_KVMCLOCK_CTRL(r8, 0xaead)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001180)='./cgroup.cpu/syz1\x00', 0x1ff) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001180)='./cgroup.cpu/syz1\x00', 0x1ff)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)

1.076204594s ago: executing program 1 (id=7283):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f00009c5000/0x4000)=nil, 0x4000, 0x3, 0x28012, r0, 0x0)
mmap(&(0x7f00009c5000/0x1000)=nil, 0x1000, 0x3, 0x28012, r0, 0x100000000000000)

1.014449655s ago: executing program 9 (id=7284):
r0 = openat$rnullb(0xffffffffffffff9c, 0x0, 0x200, 0x0)
ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f0000000080)={0x2, 0x7})
ioctl$BLKIOOPT(r0, 0x1279, &(0x7f00000000c0))
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000800)='/sys/power/image_size', 0x141a82, 0x0)
write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000000), 0xa)
r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000033c0), 0x0, 0x0)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1e1243, 0x0)
ioctl$BLKRRPART(r3, 0x125f, 0x0)
read$FUSE(r2, 0x0, 0x0)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000002a40), 0x200, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
ioctl$BLKGETDISKSEQ(r6, 0x80081280, &(0x7f0000000140))
write$vga_arbiter(r6, &(0x7f0000000100)=@other={'lock', ' ', 'none'}, 0xa)
ioctl$BLKROSET(r5, 0x125d, &(0x7f0000000540)=0x10001)
ioctl$BLKRRPART(r4, 0x125f, 0x0)

952.184466ms ago: executing program 1 (id=7285):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.memory_spread_slab\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000500)=0xfffffffffffffffe, 0x12)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000034c0)='/sys/kernel/warn_count', 0x44201, 0x4)

937.943236ms ago: executing program 4 (id=7286):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x4100)

918.365126ms ago: executing program 1 (id=7287):
r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xffffffffffffffff)
ioctl$KDADDIO(r0, 0x4b34, 0x180)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x2000)
read(r1, &(0x7f0000000040)=""/95, 0x5f)

820.201038ms ago: executing program 9 (id=7288):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x100, 0x42)
r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000540)={0x2020}, 0x2020)
close(r0)
mount$binderfs(0x0, &(0x7f0000000300)='./binderfs\x00', 0x0, 0x100000, 0x0)
write$FUSE_LSEEK(r1, 0x0, 0x0)

770.192139ms ago: executing program 1 (id=7289):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x121400, 0x0)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000040)={0x9, 0x2c4c, 0x9, 0x0, 0x0, "0bcd28a5888e3f4f7773605f49ac5200e8f31b", 0x0, 0x9})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x400000400)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000d00))
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000080)={"e75be091fef784f733417b5d5d48063d", 0x0, 0x0, {0x6}, {0x0, 0x1}, 0x0, [0x8000000000000000, 0x4, 0xb, 0x5, 0xef80000000000000, 0x9, 0x4, 0xa, 0x2, 0x6d3221c4, 0x0, 0x5, 0x9, 0xc, 0x80000001, 0x2]})
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="01ffee060000000061050000000000000900000000000000"])
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs2/binder1\x00', 0x2, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="01000002000000009e00000000040800000000000014197f11f4ee4c3d23cbe246fe36bcb3e0b526c09afb81929e562c9ee0196c61e2eaf50e17d7967d9bc41e4d73f958975672fe8ce769fa12331a0168d3cc6ac3bcb0b40600437c844f4918a45f18a24f6202a9dcb40314e1dba3cba28b342c6c8b65d6db476d21123a0ff3ded41534aabc1768b569f8e80b18196fbd49a20f1cfbf89d0dbbc50099a3a85370c803b712827e8faef36d"])
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000008b04000000001b020300000001000000"])
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r10, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x2ff, 0x0, 0x3}]})
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000000)=0x20)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0x40305829, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x4})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000180)=0xe4a6})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

656.17309ms ago: executing program 4 (id=7290):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000006600), 0x0, 0x0) (async)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x36) (async, rerun: 32)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000180)="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") (rerun: 32)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x1, 0x3032, 0xffffffffffffffff, 0x1000) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1) (async)
syz_clone(0x80001000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$TUNGETDEVNETNS(r1, 0xff08, 0x0) (async)
r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0xffffffc1) (async, rerun: 64)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0) (async, rerun: 64)
ioctl$ASHMEM_SET_NAME(r2, 0x40087708, &(0x7f0000002600)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80`4/\xe9\x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\x16\\n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x04;\xc5[\nja\xb9\'\xc9#\xfcx\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00B\x05\xd4\xea\xea\x7f=\xc6:\\N\xc3\xb7Vw\xc6\x9c\x96s\xaaHL\x96\xc72\n\x18Ynj\xceTS\xfbl\x0f\x9f8M\f\x89\xa1\xd2Hs`\x8bp\x8a\xc4%\xf8\x1d3\nV\x9a\xaf\x1f\xf96^\x93\xc1\xaf)\rg\x86\xd6\xea\xa9\x0f\x9a\xf1V\x1b\xbf\x8b\'-\xab\x8e\t7\xd3\xf7\xa9v\xfbY\xe6\x9b^d\x8c\xb1\xdd') (async, rerun: 64)
ioctl$ASHMEM_SET_NAME(r2, 0x40087707, &(0x7f0000000300)='\x00\x00\x00\x06\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00') (async, rerun: 64)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000000)=ANY=[@ANYBLOB='dont\x00\x00\x00\x00\f_H'])

596.187811ms ago: executing program 8 (id=7291):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
read(r0, &(0x7f0000000080)=""/1, 0x1)
read(r0, &(0x7f00000002c0)=""/222, 0xde)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f00000000c0)={{0xfffffffffffffffa, 0x1, 0x2, 0x3, 0x93}, 0x3, 0x8, 'id1\x00', 'timer1\x00', 0x0, 0x7fff, 0x0, 0x8, 0xfffffff9})

595.718561ms ago: executing program 8 (id=7292):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
ioctl$NS_GET_NSTYPE(r1, 0xb703, 0x0) (fail_nth: 9)

274.695556ms ago: executing program 4 (id=7293):
syz_clone3(&(0x7f0000000080)={0x120296480, 0x0, 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0, 0x0, {0x0}}, 0x58)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0xff60afa851119876, 0x0)
read(r0, &(0x7f0000000080)=""/123, 0x7b)
mount$binderfs(0x0, &(0x7f0000000100)='./binderfs\x00', &(0x7f0000000140), 0x4800, &(0x7f0000000180)=ANY=[@ANYBLOB='defcontext='])

213.883057ms ago: executing program 8 (id=7294):
r0 = getpid()
r1 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000000730000400008000007"])
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="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"])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
read(r7, 0x0, 0x0)
write$cgroup_pid(r7, &(0x7f00000000c0)=r0, 0x12)

152.157188ms ago: executing program 4 (id=7295):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000002f40)={'syz0\x00', {0x2, 0x1, 0x1f, 0x3ff}, 0x1, [0x5, 0x5, 0xfc9b, 0x2, 0xd94, 0xb, 0xe54, 0x3, 0x10000, 0xa2, 0x5, 0x66b8, 0xe, 0xfffffff7, 0x6, 0x3, 0x3, 0x4413, 0x2, 0x3c02e2fd, 0x6, 0x0, 0xff, 0x8, 0x8, 0x8, 0x1, 0x7, 0x1, 0x2, 0x2, 0x8001, 0x1a, 0x75, 0x3, 0x5, 0x7, 0x800, 0x6, 0x80000001, 0x8f01, 0x0, 0x0, 0x5c3878dc, 0x80000000, 0x883f, 0x5, 0x7f, 0x4, 0x6, 0xfffffff5, 0x9, 0x9, 0x8000, 0x5, 0xfffffffe, 0x8000, 0x7ff, 0x43bd90b, 0x2, 0x9, 0x7, 0x3d, 0x8], [0x3, 0x0, 0x4, 0x6, 0xfffffff7, 0x3, 0x9, 0x1, 0x9, 0x1, 0x4, 0xb, 0x80000000, 0x0, 0x5, 0x2, 0x7, 0x7, 0xff, 0xf3ce, 0x2ca, 0x0, 0x6, 0x5, 0x2, 0x80000000, 0x4, 0x6, 0x0, 0x6, 0x8, 0x9, 0x4, 0xa, 0xa6b, 0x0, 0x5, 0x6, 0x0, 0xc, 0x9, 0x9, 0xd, 0x2, 0x4, 0x6, 0x5, 0x0, 0x6, 0x3, 0x10, 0x2, 0x4, 0x0, 0x7, 0x101, 0x8, 0x5, 0x8, 0x8, 0x5, 0x2, 0x5000, 0x8], [0x401, 0xffff, 0xb5a6, 0x1000, 0x3, 0x5, 0x4, 0x1, 0x88d2, 0x8, 0x97c, 0xff, 0x2, 0x0, 0xcfd, 0x4, 0x0, 0x38a, 0x7, 0x8a, 0x6, 0xfffffc1c, 0x101, 0xffe00, 0x3, 0x9, 0xd, 0x7e, 0x7, 0x922, 0x1, 0xe0, 0x400, 0x9, 0x2, 0x8, 0x6, 0x4, 0x2, 0x8, 0x7f7, 0x7788, 0xd, 0x9, 0x4, 0xb93, 0x9, 0x783fad4, 0x7, 0x0, 0x0, 0x4, 0x3, 0xe2f1, 0x40, 0x8, 0x2, 0x400, 0xfffffffd, 0x1200000, 0xffffffc5, 0xc6c, 0x3, 0x2], [0x3, 0x5, 0x2, 0x9, 0x10000, 0xe, 0xfffffeff, 0xd67, 0x80, 0x7ff, 0x2, 0x46901346, 0x8, 0xfcd, 0x9, 0x39c, 0xfffffff4, 0x4, 0x4, 0x4, 0x3, 0x40, 0x80000001, 0x40, 0x5, 0x0, 0x5, 0x7ff, 0x6, 0x401, 0x0, 0x0, 0x5, 0xb0, 0xe150, 0x10001, 0x2a, 0xffffffff, 0x5, 0x1ff, 0x7, 0xffff, 0x10001, 0x6, 0x8, 0xffff, 0x4, 0x9, 0x1, 0x9, 0x1, 0x7f, 0x4, 0x6, 0x0, 0x2, 0x3, 0xfffffff7, 0x9, 0x6, 0x2, 0xcee, 0x87, 0x65c2]}, 0x45c)

128.642909ms ago: executing program 1 (id=7296):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder1\x00', 0x2, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r2, 0x40046205, &(0x7f0000000140)=0x9)
close(r1)
syz_clone(0x80001000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_print_times', 0x40901, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000000000)={0x30, 0x5, 0x0, {0x0, 0x6, 0x9, 0xe42}}, 0x30)
ioctl$TUNGETDEVNETNS(r1, 0xff04, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)

66.296519ms ago: executing program 1 (id=7297):
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x3a1200, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCGRS485(r0, 0x542e, &(0x7f0000000100))
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000000040)={0x1, 0x1, 0x7})
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000080)={0x0, &(0x7f0000000100)})

0s ago: executing program 4 (id=7298):
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000040))
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000080)=0x2)
ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f00000000c0)={{r0}, "ad80e6bff3dad58590f77824facbca2a418d202a076c9990672e1453cd00358ae0897a5a9b16d260687a65651b1bb9266d27a56d963e75340d6be8837570d01cc524a199614a78591f8f74d08bd3fc9d1a82af3e137a1ebead8de32cdb3b7a51dfeca8711a172cf10da34cc8b28e3c5cb6fde0df152c116ed1cc19d644daef1191089ea3944cfc9e78f0a40438c6e43c7bb4938f4072325c5d48c7e5903b81b672392c0ee2315fb5060cf81dd2058be747ef74e382d6618a07111ac716852a417a8287cadf3cb35067467f645175a375175c1cab35c714760779514116a85c45e3accdfd209a09585bd98c7ddc3843771f9c16bfd40cbc2260930b257f90907f54676e5d1f22b52015e1689191f29025e1f1fb703d4ed29efe74843fc280f7d74ce0a01b38043f96470fe50214c42c59a03e4fb24f9d2ae016db5ba159310b693072fc2b16f832f750fd39228e38d1612806b8d37647f3b1794e0cfbd70afbeac988a35d2d61bfded4ae57d19ca3df7d0e6bde76c927e6a10017955a6dc0bd6c091fd20c53a208780a6503139e69fd92efd4902beafc6769e1b57fb248f27af0e027ae62c81e8dcdf8f4e5769cbfa715d2d6384e7865ad77f90985ef6d61128ab09fa724e474402d3cde6624e2ca082a3443d4ea3852bbc17c1cbfae4e8e0ed94a848b78061adf34611620e356539d79abcc24e144eb4398c1f11b0244cbe986620a3bbf71cd2a513ed27a18d29a59c65c5b60022221ac23c117050c8f9e654a64fe2096ba8f4a879af0066345f3c7ac55bac465cf28be533740d33332a68614f06770a7f30114dd842de59e3454d061e12114a48917ceb01047c979b610487ee10ec5abad4bcc84a8f27206c6a1353c78e9b3aacac6f2270de90125d1d22ec00689c57a8d9c884e1b667cb07527e72b93ae8d684ac8d616e4f2e978846e86c3b7906df276635586f955860b85458f94739065c1dde7dd3b5bdb21c1b2161186017a485265a556ba1b46d1387eaabec987907ebd51f5e211fa56b5abffd1dc9932d3e6683634f133b12020f87532cb8a8ede13cceb38763d7d29fcb11ed70a10b3d8db0712a4a049a4ba0fed07d0b33076d7edbd95d2583163599a919efddcd348e4263f3fd572136a407b568132137ca780aa555dce065200eb311c0ca238aa5923b8e5ffd880192cc3beb06b761ea6b1062645b3af2375719053652fc4d425c84f7e33c63e38e39179d85b6b47362a70dc7f03fa80e9caf82d313487bd78821d1904ecaf0a5d3936f2ec16e9fd2bcefe553b1517b87d9e2a7607d5e28190189d8fdaa3607cbf26141e1477b155cfaec96f63e3396914cfd405515d168130591d17ed93239cc6b2e9b3adbd6591941ff1e0f1127a4b4656d1b0a03ff93b16c7e85a9dd25f5a6eed77fd695315fc64cb6dc3fed1659d9ed2e931d369eaf023abb23c41dceb78066e31639f9870c6ecdde6eb26546cbf1c9a532aa97d4e1a5b63d01dfcd231d5009410c97e7d5ca62711171dce5e92fa96ee3029efcae5900b5e0132f9b06f3d03676921ce8770aa1be4767d04fdd04271420b48c6037b54fc81b0ecc59712de016247eca82500888b30812852a1547362fafb968568fad1919a2990733993450783baff9077274f69cd3de27ed3146d5d947a09251fbd70121c366ffd2e162c9501cb10153c2ab3e27139b23363bb2f2dd06edd97cb88fad4b0bd8e1b112f05eebdc1460c17fe4cbda842d0c2b75a15c3d39bebd87e8f94529aa8b65a7eaf029a61bc4d611666e067a97676c2e79a357153e06176eec19bbf1b5cdbb57434bb249728703d59ae7a84963b17fe1ec4c8b4614a522451ae824ced572f3e8bf9c27937e0256328270ce4e3f44fdb4ec714e7faeac5757d4e393f5ae4fd860592832e480f502165fcb11b9a3d14ffe4e8e67a809165d2ed5f7abacebd528517a1718c16fc1a35ced32e8573589eaa5b6a6a1064bce27e4722dc5bd415a7689176c787cc3b77ed079a0e4d381bd3e6d1079998086fec1c9c1960f9c3f0f5c77dac9587895838b99195db16c3235cb4b1de3aa107921e754401fed9abc1b8e5faa2f413be4947380312bf25458d3c92159119d0e7ebf37b94d577cfdac146bd71c2b74ffac58701c27cbb6351f0e4cc72362ca0c4d8c4234497f6f8043850192364595c8571f4d82844904a898bc0bfefde498bf89d7acd54daded3a1ae29ab21ba8a7a9d15f70f8ae342a13ecd4942b8d73f194be781645c633dd4cc3d91213aa836025ff854188a7ab305ad1ee3cfeba33056187ae2b90c55205ccdd67ef1ea5def55abe330fd43b44b58a1bae3a6f1d6bd0be041a69784e82f9255905570dc316bff202e3a5fdaed4aee72f1e305fa8c0db5b7f52a41d397a66c4e6b1583560e0b0001293e748c4634457040f5f298c01dd793d21e3b35e6915cc7b0e9f4c78fdf9de9f43a4475cc8c2e5ad414593a6d04ee0e55cfaf33d4a45a4ed60076255b999d8be67c6aa2e33f450cbc3f1ad1df1f4bca03eba7be328ed799c0ee12e29ecc2e6cd4ed004df77a6831b66cb4d5539129ca6209c0612319410717a6d2eef4cd074c3faa91cca09787157270e105377e5d1689ed769f1e35dd4af428c7f1ba71a0d6994997ca3dcae64a430079bb701a89e2c06f43da263acf6188d35804a6c7c87e88b73b6887dab698e5d49cb5b211509ffe0881acc50039afd0f86f9fb450f4eb05a4cebe91cc1286a46ca338f11965eae6a3b7ae132ca5d27078e9987dba55c40717903e84b241a9636af96c3c888b9166fc2cd407010202c2c60c94094d34d3ad08ec0f646c05b5655b455e31a04359cb72826752286043013ca6cf01f4d0298542d64a4122dd7522bdd27dbef3a10c7802188303dd02350184bdc66767a9a302bd7d3c9a4952faf5749ff01d40d4c08b4931014bd0252ae99c6756c9665073129b0dd221485fce44aabc6407c5b4f240ba3e67447072485c2fe2a3bc8678239e8bb0f25a8186cd2ec09afe1d5a36799abc8d2fc135cf1f9a5d24dd14cd9ffbd79998876b70c35a2247c3374d31c065f9560b16475a7b65c290f6573f2daf65970e9265ee663e06f812b046dfcd9bdc6d690132fc65994f18c5a64c6ef3785e3eff2e326118d9c3b63f638cc9d3d3cfa7c124e55ee08017285555575b92346fc2643fe01f5fa2bde568b7e251142d7579458cd53ef6c2950ad63776c931c071942a4d6fb1409b5227073732ddb7abc654c6156ef1ae71488ba513e089bff5cb4bec8e5fb8484d432bf41c7ee43efa7bc23ef363cef61003e4e93b2fd0bb29c8fbcfbffe8e7a2bfa3e43d7d45ab774a542c1cee2777b9735cfbad018fda5509a6eab5d22a7897c2f887601c2c208507c0f4549e281321a46bb41a339ca4bc70a669b0a85a92a67868c4f32776f3e97020597fbbba1ac78db01f435b804547eff0f8a23acadce70eed6a3952dd69d4438530dadb19accb0332fc0046ab880a3342605343efce3b0dd5091811766f8d538cd81d9556c307a62960e430a5491525b87e22aabbf157965ecc40a0768ac313277441004e0580f73b555086b334600321948041ea1517d6601ae0f288f2f1ba7154bd9609b56130bca10a0b4ed327bb3dee4049a213258d5b38411506914515cc777c09561bb4a1009378826cb1912a883ae4e57d0d3ac765e29486dcf1414f53b7d361126efbe2c36e412d9c92be1fae8180c100454f1b9f3a1388f0b9eb2c89c872f6000a9bf7eb3453d68296cab533a8c81e32bd32d10bb5b31c17a9f0b5254989c5656cf545123f3a5fbddbfb1aa9e126a1c04007bbd85be583d7db846bfba4ef2671c2017cd1eb84752b34ec0e2c303ff08332199dff4cabe21c5eef93ef1b434f573cc034b3a746f96e406f4add1660945c52f8b9ca95a45913c15f74bb293f971063b7a3cf5e21c4a351812c8400aa9ff6b1f5f0786659ce739ce236d9b1a7a00843ba1952ca8fa7e1c088e5aa6447d3a79751ac94b2e9d6988c002227402ca637ba14a802a08dc6de29e8413c00657e0f503783078c11ada3af88e8bee10838d4e9269b74c95a0129e9086a92088ece851c141e5346e17ef9074f135c1fe86fdbe769d7c5f0682c14f0069fdb52be6e8a94dedea72d0c322a724e76e922df04fda3cd611faf68a027ca467062214972ad081c99394fac800b35265f36b6df5e1979c364a7856d655e2cd52b56b187199f1984f9f43207a0a5a04cbcf270de6803b4e6855209704896d8cf960dafb39de20db538f9a6cecded47c09fa44cc21aaf23e0a8c91de1249e6bb1506d6d53fa740772a50e08b0ff3e7795165d6eebb44cb1c538fc88ad05467dd034972d05977e43418f127aebf6176f1405bdc8099ea6bf3d7b1d78f38f2fadb1c89059fad8a78f40636453410451914d0fb58d10b383904762d86802d4d203b2aa8d3f22f25decbf96b655cbe3042ba379bf4f9e9883f65cd0cf6d42205220b28d01ac698a730164b51017057ecd6a05c317476c148a3f45df721fbf68f3bb9cc6b1ce085c02387b2353b42635a169199a3835925bd1a8eae0078a7d3912c944d4e0c777df936895529ecb0e5e1f49496ef3c9b797143b01702e58188a4760658055ca9f11254685e23b152597e2879df4ef977528fad742c76834068c99e8626a70dafe926aa6dfc904ae91c8f022c7bd055c93d5bc75744480927ddc341a85b1569d5f7ee6565fb475987ac9643611cf4fda6c6cd43e77f53669644a4676b9f12c1e5c55f19f690810b1d207508f127ce1cfe11b3c6f230fc18627f465d2bdd110601d17658980cfc932268661c44a8c6c34ef3b4607f6126135fdada38d014dde0723363fd592e183a943dabc5242e9cd2e52913497a96755addde3a8a5ab41d37cc56b64b1c25d6b83cd53187c945ba7b9f6ed3538c3effcadb5502ea9c3aba2c6f41777f5b74e36e8f9763061dc90e4d93753c6fd306b42f6e7234e25e924b1b238322be319a8ad2a9a32fc85e74ea334df9cc4e2b7a591a3b54d622907f016290a222117708c0714b411b1c047a9115029081c2e1b774e7203fff5d55e2e6e8c6632ef416f68868843237c80d7883224f56323ccebb1bdf5d1019233cc1f6f03784e6a896761abf527519207065e3dfe390b79d2482225f1d6706301df8fea45ba5512af0431187285567bfae91b300c2469c93ab27d4876476d0441f8d1a961cc5d7e9797188d4d3c051cc792cf05d795c9f57d50a06a773873887e2ae343c806fa10850b0dcaa6a22f74e5b560cee42048fbbc24aab57e689f66cb27119adaac54c9f4cf7a35b890b97bc22382fb315f881dc4c686bb79194b96f2eede4d4e63ba552ba240725875a49d53f8f06c2dc6b26171c28bc85c938dee995c990cbb80d1c540160b59c7d966a68bc34035a884ebcb1bf77806744dc6db06953860992fbc60a180aa424cc023493f3451e816137a6de0c19db09f128a93d2012d42d1461aa9b9bf26c6d38dc3992028bba6d42c7325bd50dfa5a281c149f46187293c8093b249ab5cd0b7cac6933abed4dc7e1b76da86f394c3965ec970f1bc4fb89f7b0ac028ef2815b33fbba3160148bc15ce908be69ccd71e187728bc6b8beed623d87695e7561523c8e98f2aaeb0ca334d333694394cc93e29b180232c6d5c0ebfb95d28c7bfddcdbf4da53a14783467a05e25cc01720b0335634367d10018a2e779f5da0b64a300f53c5ade9ecbc0c9fefa8420e9307ee503c1e4a3895cc7d31893b6423cf3e1f85afabfa82e5044"})
ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f00000010c0))
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000001140)={0x1, 0x6, 0x10, &(0x7f0000001100)=""/16})
ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000001180))
ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000001200)=ANY=[@ANYBLOB="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"])
ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r0, 0x4038ae7a, &(0x7f0000003300)={0x2, 0x2f0, &(0x7f0000002240)="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", &(0x7f0000003240)="28f78b466b3af90efdebfa910a2f34c50cbd14f74d65c10b1f7b3c453b4a8ec7be9482d5f475583e47368edab4a2f8f78bd8e3733ca6d19e4307c3ed406cdd41dc87fb076bf6cbea601f791c3f8e1525621c730ad20acb7cd71ab790c0376fb042a195aa0db38d653671c4418656a5ddffd83d27593412bfdb5e2b2e77db1b3bc909988d7b09", 0x1000, 0x86})
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000003340), 0x278081, 0x0)
ioctl$PPPIOCSDEBUG(r2, 0x40047440, &(0x7f0000003380)=0xe9)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r1)
r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000033c0), 0x0, 0x0)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000003400)={0x4, 0x7ff})
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000003480)={0x6, &(0x7f0000003440)=[{0x4, 0x4, 0x1, 0x9}, {0xe, 0x7, 0xa, 0xf2e2}, {0xf1c, 0x2, 0x1, 0x2}, {0x7, 0x6, 0x8, 0x9}, {0x3df8, 0x0, 0x3, 0xfffffffb}, {0x1, 0x46, 0x0, 0xc55}]})
read$FUSE(r2, &(0x7f00000034c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f0000005500)={0x60, 0xfffffffffffffff5, r4, {{0x5, 0x0, 0x4, 0x9, 0x40f5, 0x5, 0x4, 0x7}}}, 0x60)
ioctl$BTRFS_IOC_GET_FEATURES(r3, 0x80189439, &(0x7f0000005580))
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f00000055c0))
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000005600)={0x5, 0x700000000000000, 0x7f})
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
write$cgroup_pressure(r3, &(0x7f0000005640)={'full', 0x20, 0x4, 0x20, 0xca}, 0x2f)
r5 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000005680), 0x2, 0x0)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r5, 0xf504, 0x0)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000006840))
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r2, 0x4018aee3, &(0x7f0000005740)=@attr_irq_timer={0x0, 0x1, 0x0, &(0x7f0000005700)=0x14})
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000005780)=<r6=>0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000005840)={{r0}, r6, 0x4, @inherit={0x80, &(0x7f00000057c0)=ANY=[@ANYBLOB="01000000000000000700000000000000070000000000060000000000000000000000000007000000000000000700000000000000df0a00c8aaeb439f56ddf3431110a6cafdde00000000003f00000000000000fc040000000000000772000000000000740000000000000005000000000000000900"/128]}, @name="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"})

kernel console output (not intermixed with test programs):

ad+0x7f/0x90
[  564.360668][T18310]  x64_sys_call+0x2638/0x2ee0
[  564.360689][T18310]  do_syscall_64+0x58/0xf0
[  564.360710][T18310]  ? clear_bhb_loop+0x35/0x90
[  564.360734][T18310]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  564.360755][T18310] RIP: 0033:0x7fd29398d33c
[  564.360772][T18310] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  564.360787][T18310] RSP: 002b:00007fd29471b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  564.360809][T18310] RAX: ffffffffffffffda RBX: 00007fd293bb5fa0 RCX: 00007fd29398d33c
[  564.360823][T18310] RDX: 000000000000000f RSI: 00007fd29471b0a0 RDI: 0000000000000003
[  564.360835][T18310] RBP: 00007fd29471b090 R08: 0000000000000000 R09: 0000000000000000
[  564.360847][T18310] R10: 0000000000000079 R11: 0000000000000246 R12: 0000000000000002
[  564.360859][T18310] R13: 0000000000000001 R14: 00007fd293bb5fa0 R15: 00007ffc59d50748
[  564.360873][T18310]  </TASK>
[  564.647079][   T36] audit: type=1400 audit(1750305998.400:89886): avc:  denied  { ioctl } for  pid=18296 comm="syz.4.6605" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xaec1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  564.672210][   T36] audit: type=1400 audit(1750305998.400:89887): avc:  denied  { read } for  pid=18302 comm="syz.5.6608" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  564.735615][   T36] audit: type=1400 audit(1750305998.400:89888): avc:  denied  { read open } for  pid=18302 comm="syz.5.6608" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  564.774352][   T36] audit: type=1400 audit(1750305998.400:89889): avc:  denied  { ioctl } for  pid=18298 comm="syz.7.6606" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xf50e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  564.828387][   T36] audit: type=1400 audit(1750305998.400:89890): avc:  denied  { read } for  pid=18296 comm="syz.4.6605" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  564.853267][   T36] audit: type=1400 audit(1750305998.400:89891): avc:  denied  { read open } for  pid=18296 comm="syz.4.6605" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  565.010557][T18322] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  565.135405][T18325] binder: Bad value for 'max'
[  565.159856][T18324] binder: Bad value for 'max'
[  565.189809][T18331] syz.7.6617: vmalloc error: size 4096, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz7,mems_allowed=0
[  565.221228][T18331] CPU: 1 UID: 0 PID: 18331 Comm: syz.7.6617 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  565.221271][T18331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  565.221286][T18331] Call Trace:
[  565.221293][T18331]  <TASK>
[  565.221302][T18331]  __dump_stack+0x21/0x30
[  565.221340][T18331]  dump_stack_lvl+0x10c/0x190
[  565.221371][T18331]  ? __cfi_dump_stack_lvl+0x10/0x10
[  565.221393][T18331]  ? _raw_spin_unlock_irqrestore+0x4a/0x70
[  565.221421][T18331]  dump_stack+0x19/0x20
[  565.221442][T18331]  warn_alloc+0x1bc/0x2a0
[  565.221463][T18331]  ? __cfi_warn_alloc+0x10/0x10
[  565.221482][T18331]  ? __kasan_kmalloc+0x96/0xb0
[  565.221510][T18331]  ? __kmalloc_node_noprof+0x1b1/0x450
[  565.221533][T18331]  __vmalloc_node_range_noprof+0x10d0/0x1420
[  565.221559][T18331]  ? __cfi___vmalloc_node_range_noprof+0x10/0x10
[  565.221579][T18331]  ? __kasan_check_write+0x18/0x20
[  565.221598][T18331]  ? kobject_put+0x1cc/0x2a0
[  565.221619][T18331]  ? class_find_device+0x2f3/0x360
[  565.221644][T18331]  ? n_tty_open+0x38/0x1d0
[  565.221666][T18331]  vzalloc_noprof+0xfd/0x1d0
[  565.221682][T18331]  ? n_tty_open+0x38/0x1d0
[  565.221701][T18331]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[  565.221724][T18331]  ? __cfi_vzalloc_noprof+0x10/0x10
[  565.221743][T18331]  n_tty_open+0x38/0x1d0
[  565.221763][T18331]  tty_ldisc_setup+0xe8/0x390
[  565.221790][T18331]  tty_init_dev+0x28b/0x4f0
[  565.221808][T18331]  tty_open+0xb1c/0x1100
[  565.221830][T18331]  ? __cfi_tty_open+0x10/0x10
[  565.221849][T18331]  ? selinux_file_open+0x457/0x610
[  565.221877][T18331]  chrdev_open+0x4db/0x5f0
[  565.221901][T18331]  ? __cfi_chrdev_open+0x10/0x10
[  565.221923][T18331]  ? bpf_lsm_file_open+0xd/0x20
[  565.221945][T18331]  ? __cfi_chrdev_open+0x10/0x10
[  565.221967][T18331]  do_dentry_open+0x978/0x1510
[  565.221997][T18331]  vfs_open+0x86/0x230
[  565.222012][T18331]  ? __cfi_vfs_open+0x10/0x10
[  565.222027][T18331]  ? inode_owner_or_capable+0xf1/0x1b0
[  565.222063][T18331]  ? may_open+0x398/0x430
[  565.222089][T18331]  path_openat+0x2b6c/0x34b0
[  565.222118][T18331]  ? kasan_save_alloc_info+0x40/0x50
[  565.222138][T18331]  ? getname_flags+0xc6/0x710
[  565.222160][T18331]  ? do_sys_openat2+0xcb/0x1c0
[  565.222177][T18331]  ? __x64_sys_openat+0x13a/0x170
[  565.222195][T18331]  ? do_filp_open+0x3e0/0x3e0
[  565.222221][T18331]  do_filp_open+0x1c6/0x3e0
[  565.222246][T18331]  ? __cfi_do_filp_open+0x10/0x10
[  565.222274][T18331]  ? alloc_fd+0x4e7/0x5a0
[  565.222296][T18331]  do_sys_openat2+0x12c/0x1c0
[  565.222311][T18331]  ? fput+0x1a5/0x240
[  565.222333][T18331]  ? do_sys_open+0x100/0x100
[  565.222349][T18331]  ? ksys_write+0x1ef/0x250
[  565.222372][T18331]  ? __cfi_ksys_write+0x10/0x10
[  565.222396][T18331]  __x64_sys_openat+0x13a/0x170
[  565.222415][T18331]  x64_sys_call+0xe69/0x2ee0
[  565.222438][T18331]  do_syscall_64+0x58/0xf0
[  565.222460][T18331]  ? clear_bhb_loop+0x35/0x90
[  565.222486][T18331]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  565.222511][T18331] RIP: 0033:0x7f94bf38e929
[  565.222530][T18331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.222547][T18331] RSP: 002b:00007f94c0282038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  565.222573][T18331] RAX: ffffffffffffffda RBX: 00007f94bf5b5fa0 RCX: 00007f94bf38e929
[  565.222588][T18331] RDX: 000000000004b301 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[  565.222602][T18331] RBP: 00007f94c0282090 R08: 0000000000000000 R09: 0000000000000000
[  565.222614][T18331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  565.222625][T18331] R13: 0000000000000001 R14: 00007f94bf5b5fa0 R15: 00007ffe384a29e8
[  565.222640][T18331]  </TASK>
[  565.223106][T18331] Mem-Info:
[  565.593398][T18331] active_anon:7666 inactive_anon:0 isolated_anon:0
[  565.593398][T18331]  active_file:22861 inactive_file:2430 isolated_file:0
[  565.593398][T18331]  unevictable:0 dirty:18 writeback:11
[  565.593398][T18331]  slab_reclaimable:7590 slab_unreclaimable:70472
[  565.593398][T18331]  mapped:25260 shmem:165 pagetables:826
[  565.593398][T18331]  sec_pagetables:3 bounce:0
[  565.593398][T18331]  kernel_misc_reclaimable:0
[  565.593398][T18331]  free:1524217 free_pcp:4653 free_cma:0
[  565.638966][T18331] Node 0 active_anon:30644kB inactive_anon:0kB active_file:91444kB inactive_file:9728kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:101020kB dirty:88kB writeback:0kB shmem:660kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4608kB pagetables:3380kB sec_pagetables:12kB all_unreclaimable? no
[  565.670973][T18331] DMA32 free:2952148kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2966004kB mlocked:0kB bounce:0kB free_pcp:13856kB local_pcp:7064kB free_cma:0kB
[  565.701746][T18331] lowmem_reserve[]: 0 3921 3921
[  565.706754][T18331] Normal free:3144672kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:30644kB inactive_anon:0kB active_file:91444kB inactive_file:9728kB unevictable:0kB writepending:88kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:4800kB local_pcp:2584kB free_cma:0kB
[  565.738146][T18331] lowmem_reserve[]: 0 0 0
[  565.742610][T18331] DMA32: 3*4kB (M) 1*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (UM) 4*2048kB (M) 717*4096kB (M) = 2952148kB
[  565.796690][T18331] Normal: 462*4kB (UM) 422*8kB (UME) 772*16kB (UME) 610*32kB (UME) 569*64kB (UME) 246*128kB (UME) 84*256kB (UME) 47*512kB (ME) 23*1024kB (UME) 5*2048kB (M) 724*4096kB (UM) = 3149864kB
[  565.831779][T18331] 25454 total pagecache pages
[  565.836550][T18331] 0 pages in swap cache
[  565.862454][T18331] Free swap  = 124996kB
[  565.871687][T18331] Total swap = 124996kB
[  565.875905][T18331] 2097051 pages RAM
[  565.879826][T18331] 0 pages HighMem/MovableOnly
[  565.885865][T18331] 351520 pages reserved
[  565.891800][T18331] 0 pages cma reserved
[  565.897824][T18331] Memory allocations:
[  565.902944][T18331]          0 B        0 init/main.c:1370 func:do_initcalls
[  565.922534][T18331]          0 B        0 init/do_mounts.c:186 func:mount_root_generic
[  565.937582][T18331]          0 B        0 init/do_mounts.c:158 func:do_mount_root
[  565.955893][T18331]          0 B        0 init/do_mounts.c:352 func:mount_nodev_root
[  565.964672][T18331]          0 B        0 init/do_mounts_rd.c:241 func:rd_load_image
[  565.974767][T18331]          0 B        0 init/do_mounts_rd.c:72 func:identify_ramdisk_image
[  565.991404][T18331]          0 B        0 init/initramfs.c:507 func:unpack_to_rootfs
[  566.007810][T18331]          0 B        0 init/initramfs.c:508 func:unpack_to_rootfs
[  566.016738][T18331]          0 B        0 init/initramfs.c:509 func:unpack_to_rootfs
[  566.026410][T18331]          0 B        0 init/initramfs.c:101 func:find_link
[  566.034584][T18331] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  566.380095][T18356] FAULT_INJECTION: forcing a failure.
[  566.380095][T18356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  566.404815][T18356] CPU: 1 UID: 0 PID: 18356 Comm: syz.7.6627 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  566.404860][T18356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  566.404875][T18356] Call Trace:
[  566.404882][T18356]  <TASK>
[  566.404892][T18356]  __dump_stack+0x21/0x30
[  566.404929][T18356]  dump_stack_lvl+0x10c/0x190
[  566.404950][T18356]  ? __cfi_dump_stack_lvl+0x10/0x10
[  566.404972][T18356]  dump_stack+0x19/0x20
[  566.404991][T18356]  should_fail_ex+0x3d9/0x530
[  566.405014][T18356]  should_fail+0xf/0x20
[  566.405030][T18356]  should_fail_usercopy+0x1e/0x30
[  566.405050][T18356]  _copy_from_user+0x22/0xb0
[  566.405073][T18356]  _RNvMs2_NtCshgDM7dBCdno_11rust_binder6threadNtB5_6Thread10write_read+0x438/0x96a0
[  566.405118][T18356]  ? __cfi__RNvMs2_NtCshgDM7dBCdno_11rust_binder6threadNtB5_6Thread10write_read+0x10/0x10
[  566.405162][T18356]  ? is_bpf_text_address+0x17b/0x1a0
[  566.405191][T18356]  ? kernel_text_address+0xa9/0xe0
[  566.405211][T18356]  ? __kernel_text_address+0x11/0x40
[  566.405229][T18356]  ? unwind_get_return_address+0x51/0x90
[  566.405248][T18356]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[  566.405273][T18356]  ? arch_stack_walk+0x10b/0x170
[  566.405300][T18356]  ? stack_trace_save+0x9d/0xe0
[  566.405336][T18356]  ? stack_depot_save_flags+0x38/0x800
[  566.405361][T18356]  ? kasan_save_stack+0x4d/0x60
[  566.405387][T18356]  ? kasan_save_stack+0x3e/0x60
[  566.405409][T18356]  ? __kasan_record_aux_stack+0xb2/0xd0
[  566.405429][T18356]  ? kasan_record_aux_stack_noalloc+0xf/0x20
[  566.405448][T18356]  ? __call_rcu_common+0xcc/0x6f0
[  566.405472][T18356]  ? call_rcu+0x14/0x20
[  566.405495][T18356]  ? is_bpf_text_address+0x17b/0x1a0
[  566.405520][T18356]  ? kernel_text_address+0xa9/0xe0
[  566.405540][T18356]  ? __kernel_text_address+0x11/0x40
[  566.405560][T18356]  ? unwind_get_return_address+0x51/0x90
[  566.405577][T18356]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[  566.405598][T18356]  ? arch_stack_walk+0x10b/0x170
[  566.405626][T18356]  ? is_bpf_text_address+0x17b/0x1a0
[  566.405650][T18356]  ? kernel_text_address+0xa9/0xe0
[  566.405668][T18356]  ? __kernel_text_address+0x11/0x40
[  566.405685][T18356]  ? unwind_get_return_address+0x51/0x90
[  566.405700][T18356]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[  566.405720][T18356]  ? arch_stack_walk+0x10b/0x170
[  566.405742][T18356]  ? stack_depot_save_flags+0x38/0x800
[  566.405760][T18356]  ? kasan_save_alloc_info+0x40/0x50
[  566.405778][T18356]  ? kasan_save_track+0x4f/0x80
[  566.405799][T18356]  ? kasan_save_track+0x3e/0x80
[  566.405822][T18356]  ? kasan_save_alloc_info+0x40/0x50
[  566.405841][T18356]  ? __kasan_kmalloc+0x96/0xb0
[  566.405866][T18356]  ? __kmalloc_node_track_caller_noprof+0x1ad/0x440
[  566.405890][T18356]  ? krealloc_noprof+0x8d/0x130
[  566.405915][T18356]  ? rust_helper_krealloc+0x33/0xd0
[  566.405935][T18356]  ? _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0xaf/0x100
[  566.405962][T18356]  ? _RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process18get_current_thread+0x715/0x1440
[  566.405997][T18356]  ? _RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x1a9/0x2c20
[  566.406019][T18356]  ? _RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0xa0/0x100
[  566.406045][T18356]  ? __se_sys_ioctl+0x132/0x1b0
[  566.406069][T18356]  ? __x64_sys_ioctl+0x7f/0xa0
[  566.406093][T18356]  ? x64_sys_call+0x1878/0x2ee0
[  566.406115][T18356]  ? do_syscall_64+0x58/0xf0
[  566.406138][T18356]  ? entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  566.406168][T18356]  ? __kasan_kmalloc+0x96/0xb0
[  566.406190][T18356]  ? kasan_save_alloc_info+0x40/0x50
[  566.406209][T18356]  ? __kasan_kmalloc+0x96/0xb0
[  566.406233][T18356]  ? __kmalloc_node_track_caller_noprof+0x1ad/0x440
[  566.406256][T18356]  ? __kasan_check_write+0x18/0x20
[  566.406276][T18356]  ? _raw_spin_lock+0x8c/0x120
[  566.406299][T18356]  ? __cfi__raw_spin_lock+0x10/0x10
[  566.406330][T18356]  ? __asan_memset+0x39/0x50
[  566.406349][T18356]  ? _raw_spin_unlock+0x45/0x60
[  566.406369][T18356]  ? rust_helper_spin_unlock+0x19/0x30
[  566.406388][T18356]  ? _RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process18get_current_thread+0xdfc/0x1440
[  566.406427][T18356]  ? __cfi__RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process18get_current_thread+0x10/0x10
[  566.406460][T18356]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  566.406481][T18356]  ? common_lsm_audit+0x148c/0x1860
[  566.406500][T18356]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  566.406519][T18356]  ? __kasan_slab_free+0x6a/0x80
[  566.406542][T18356]  ? kmem_cache_free+0x1c1/0x4c0
[  566.406564][T18356]  ? avc_node_kill+0x29e/0x2f0
[  566.406584][T18356]  ? slow_avc_audit+0x18d/0x1f0
[  566.406601][T18356]  _RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x411/0x2c20
[  566.406626][T18356]  ? avc_denied+0x112/0x180
[  566.406643][T18356]  ? avc_has_extended_perms+0x895/0xdd0
[  566.406661][T18356]  ? avc_has_extended_perms+0x91a/0xdd0
[  566.406680][T18356]  ? __cfi__RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x10/0x10
[  566.406701][T18356]  ? do_vfs_ioctl+0xeda/0x1e30
[  566.406721][T18356]  ? arch_stack_walk+0x10b/0x170
[  566.406742][T18356]  ? __ia32_compat_sys_ioctl+0x850/0x850
[  566.406765][T18356]  ? _parse_integer+0x2e/0x40
[  566.406786][T18356]  ? ioctl_has_perm+0x384/0x4d0
[  566.406813][T18356]  ? has_cap_mac_admin+0xd0/0xd0
[  566.406840][T18356]  ? proc_fail_nth_write+0x17e/0x210
[  566.406860][T18356]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  566.406878][T18356]  ? selinux_file_ioctl+0x6e0/0x1360
[  566.406902][T18356]  ? vfs_write+0x8ba/0xe80
[  566.406923][T18356]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  566.406948][T18356]  ? __cfi_vfs_write+0x10/0x10
[  566.406969][T18356]  ? __kasan_check_write+0x18/0x20
[  566.406990][T18356]  ? mutex_unlock+0x8b/0x240
[  566.407019][T18356]  ? __cfi_mutex_unlock+0x10/0x10
[  566.407046][T18356]  ? __fget_files+0x2c5/0x340
[  566.407073][T18356]  ? __fget_files+0x2c5/0x340
[  566.407098][T18356]  _RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0xa0/0x100
[  566.407123][T18356]  ? __se_sys_ioctl+0x114/0x1b0
[  566.407146][T18356]  ? __cfi__RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0x10/0x10
[  566.407171][T18356]  __se_sys_ioctl+0x132/0x1b0
[  566.407194][T18356]  __x64_sys_ioctl+0x7f/0xa0
[  566.407218][T18356]  x64_sys_call+0x1878/0x2ee0
[  566.407243][T18356]  do_syscall_64+0x58/0xf0
[  566.407264][T18356]  ? clear_bhb_loop+0x35/0x90
[  566.407289][T18356]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  566.407322][T18356] RIP: 0033:0x7f94bf38e929
[  566.407342][T18356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.407358][T18356] RSP: 002b:00007f94c0282038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  566.407384][T18356] RAX: ffffffffffffffda RBX: 00007f94bf5b5fa0 RCX: 00007f94bf38e929
[  566.407399][T18356] RDX: 0000200000000100 RSI: 00000000c0306201 RDI: 0000000000000003
[  566.407412][T18356] RBP: 00007f94c0282090 R08: 0000000000000000 R09: 0000000000000000
[  566.407424][T18356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  566.407436][T18356] R13: 0000000000000000 R14: 00007f94bf5b5fa0 R15: 00007ffe384a29e8
[  566.407453][T18356]  </TASK>
[  567.489993][T18375] SELinux: ebitmap: truncated map
[  567.543096][T18375] SELinux: failed to load policy
[  568.302447][T18402] input: syz0 as /devices/virtual/input/input420
[  568.366444][T18403] rust_binder: Error while translating object.
[  568.366483][T18403] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  568.393376][T18403] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:313
[  568.552869][T17116] cgroup: fork rejected by pids controller in /syz7
[  568.718112][ T2723] bridge_slave_1: left allmulticast mode
[  568.724106][ T2723] bridge_slave_1: left promiscuous mode
[  568.750164][ T2723] bridge0: port 2(bridge_slave_1) entered disabled state
[  568.761370][ T2723] bridge_slave_0: left allmulticast mode
[  568.767179][ T2723] bridge_slave_0: left promiscuous mode
[  568.800157][ T2723] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.065113][   T36] kauditd_printk_skb: 383 callbacks suppressed
[  569.065134][   T36] audit: type=1400 audit(1750306003.370:90275): avc:  denied  { read } for  pid=18421 comm="syz.1.6652" name="binder0" dev="binder" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  569.104466][ T2723] veth1_macvtap: left promiscuous mode
[  569.125839][ T2723] veth0_vlan: left promiscuous mode
[  569.145251][   T36] audit: type=1400 audit(1750306003.390:90276): avc:  denied  { read } for  pid=18424 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  569.230146][   T36] audit: type=1400 audit(1750306003.390:90277): avc:  denied  { read open } for  pid=18424 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  569.280437][T18431] rust_binder: Write failure EINVAL in pid:1229
[  569.306348][   T36] audit: type=1400 audit(1750306003.410:90279): avc:  denied  { read open } for  pid=18421 comm="syz.1.6652" path="/dev/binderfs/binder0" dev="binder" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  569.341723][   T36] audit: type=1400 audit(1750306003.410:90280): avc:  denied  { ioctl } for  pid=18421 comm="syz.1.6652" path="/dev/binderfs/binder0" dev="binder" ino=139 ioctlcmd=0x6208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  569.369030][   T36] audit: type=1400 audit(1750306003.420:90281): avc:  denied  { read } for  pid=18423 comm="syz.5.6653" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  569.430119][   T36] audit: type=1400 audit(1750306003.420:90282): avc:  denied  { read open } for  pid=18423 comm="syz.5.6653" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  569.454468][   T36] audit: type=1400 audit(1750306003.420:90283): avc:  denied  { read write } for  pid=18421 comm="syz.1.6652" name="fuse" dev="devtmpfs" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  569.485474][   T36] audit: type=1400 audit(1750306003.420:90284): avc:  denied  { read write open } for  pid=18421 comm="syz.1.6652" path="/dev/fuse" dev="devtmpfs" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  569.540109][   T36] audit: type=1400 audit(1750306003.390:90278): avc:  denied  { mounton } for  pid=18424 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  569.646500][T18424] bridge0: port 1(bridge_slave_0) entered blocking state
[  569.660058][T18424] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.699993][T18424] bridge_slave_0: entered allmulticast mode
[  569.706516][T18424] bridge_slave_0: entered promiscuous mode
[  569.715605][T18424] bridge0: port 2(bridge_slave_1) entered blocking state
[  569.722734][T18424] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.729832][T18424] bridge_slave_1: entered allmulticast mode
[  569.736479][T18424] bridge_slave_1: entered promiscuous mode
[  569.738791][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.789948][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.822528][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.839729][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.850121][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.861535][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.880127][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.891079][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.910108][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.917726][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.933537][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.943179][T18424] bridge0: port 2(bridge_slave_1) entered blocking state
[  569.950275][T18424] bridge0: port 2(bridge_slave_1) entered forwarding state
[  569.957622][T18424] bridge0: port 1(bridge_slave_0) entered blocking state
[  569.964842][T18424] bridge0: port 1(bridge_slave_0) entered forwarding state
[  569.972229][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.979653][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.988547][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  569.996015][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.009908][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.026874][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.039133][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.046724][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.055322][ T2723] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.062597][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.070640][ T2723] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.072767][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.085293][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.098912][ T2723] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.106030][ T2723] bridge0: port 1(bridge_slave_0) entered forwarding state
[  570.110796][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.121524][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.131740][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.148936][ T2723] bridge0: port 2(bridge_slave_1) entered blocking state
[  570.150126][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.156088][ T2723] bridge0: port 2(bridge_slave_1) entered forwarding state
[  570.164969][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.199664][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.220582][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.228265][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.240175][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.248065][  T525] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  570.265295][  T525] hid-generic 0000:0000:0000.0023: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  570.323969][T18424] veth0_vlan: entered promiscuous mode
[  570.412990][T18424] veth1_macvtap: entered promiscuous mode
[  571.082022][T18481] input: syz1 as /devices/virtual/input/input422
[  571.096704][T18483] FAULT_INJECTION: forcing a failure.
[  571.096704][T18483] name failslab, interval 1, probability 0, space 0, times 0
[  571.110202][T18483] CPU: 0 UID: 0 PID: 18483 Comm: syz.5.6671 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  571.110236][T18483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  571.110249][T18483] Call Trace:
[  571.110257][T18483]  <TASK>
[  571.110265][T18483]  __dump_stack+0x21/0x30
[  571.110298][T18483]  dump_stack_lvl+0x10c/0x190
[  571.110318][T18483]  ? __cfi_dump_stack_lvl+0x10/0x10
[  571.110339][T18483]  dump_stack+0x19/0x20
[  571.110358][T18483]  should_fail_ex+0x3d9/0x530
[  571.110393][T18483]  should_failslab+0xac/0x100
[  571.110421][T18483]  kmem_cache_alloc_noprof+0x42/0x3a0
[  571.110443][T18483]  ? security_inode_alloc+0x51/0x200
[  571.110466][T18483]  security_inode_alloc+0x51/0x200
[  571.110487][T18483]  inode_init_always_gfp+0x756/0x9e0
[  571.110513][T18483]  ? __cfi_proc_alloc_inode+0x10/0x10
[  571.110533][T18483]  alloc_inode+0xc5/0x270
[  571.110557][T18483]  new_inode+0x25/0x1e0
[  571.110581][T18483]  proc_pid_make_inode+0x25/0x140
[  571.110604][T18483]  proc_pident_instantiate+0x6d/0x2c0
[  571.110628][T18483]  proc_pident_lookup+0x1c7/0x270
[  571.110652][T18483]  proc_tid_base_lookup+0x2f/0x40
[  571.110670][T18483]  __lookup_slow+0x2d4/0x400
[  571.110695][T18483]  ? lookup_one_len+0x2f0/0x2f0
[  571.110718][T18483]  ? down_read+0x79/0xe0
[  571.110740][T18483]  lookup_slow+0x57/0x80
[  571.110764][T18483]  link_path_walk+0x990/0xec0
[  571.110787][T18483]  path_openat+0x281/0x34b0
[  571.110814][T18483]  ? kasan_save_alloc_info+0x40/0x50
[  571.110834][T18483]  ? getname_flags+0xc6/0x710
[  571.110858][T18483]  ? do_sys_openat2+0xcb/0x1c0
[  571.110879][T18483]  ? __x64_sys_openat+0x13a/0x170
[  571.110900][T18483]  ? do_filp_open+0x3e0/0x3e0
[  571.110930][T18483]  do_filp_open+0x1c6/0x3e0
[  571.110958][T18483]  ? __cfi_do_filp_open+0x10/0x10
[  571.110984][T18483]  ? __cfi_kfree_link+0x10/0x10
[  571.111003][T18483]  ? alloc_fd+0x4e7/0x5a0
[  571.111027][T18483]  do_sys_openat2+0x12c/0x1c0
[  571.111044][T18483]  ? fput+0x1a5/0x240
[  571.111068][T18483]  ? do_sys_open+0x100/0x100
[  571.111083][T18483]  ? ksys_write+0x1ef/0x250
[  571.111104][T18483]  ? __cfi_ksys_write+0x10/0x10
[  571.111125][T18483]  __x64_sys_openat+0x13a/0x170
[  571.111144][T18483]  x64_sys_call+0xe69/0x2ee0
[  571.111167][T18483]  do_syscall_64+0x58/0xf0
[  571.111189][T18483]  ? clear_bhb_loop+0x35/0x90
[  571.111214][T18483]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  571.111237][T18483] RIP: 0033:0x7f13f9b8e929
[  571.111255][T18483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  571.111271][T18483] RSP: 002b:00007f13faa51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  571.111294][T18483] RAX: ffffffffffffffda RBX: 00007f13f9db5fa0 RCX: 00007f13f9b8e929
[  571.111308][T18483] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  571.111321][T18483] RBP: 00007f13faa51090 R08: 0000000000000000 R09: 0000000000000000
[  571.111333][T18483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  571.111345][T18483] R13: 0000000000000001 R14: 00007f13f9db5fa0 R15: 00007ffefe057488
[  571.111360][T18483]  </TASK>
[  571.711913][T18494] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 1
[  571.719760][T18494] rust_binder: Write failure EINVAL in pid:1493
[  571.917978][T18501] FAULT_INJECTION: forcing a failure.
[  571.917978][T18501] name failslab, interval 1, probability 0, space 0, times 0
[  571.971556][T18501] CPU: 1 UID: 0 PID: 18501 Comm: syz.5.6678 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  571.971599][T18501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  571.971614][T18501] Call Trace:
[  571.971621][T18501]  <TASK>
[  571.971631][T18501]  __dump_stack+0x21/0x30
[  571.971668][T18501]  dump_stack_lvl+0x10c/0x190
[  571.971691][T18501]  ? __cfi_dump_stack_lvl+0x10/0x10
[  571.971715][T18501]  ? skb_put+0x112/0x1f0
[  571.971741][T18501]  dump_stack+0x19/0x20
[  571.971760][T18501]  should_fail_ex+0x3d9/0x530
[  571.971783][T18501]  should_failslab+0xac/0x100
[  571.971811][T18501]  __kmalloc_node_track_caller_noprof+0x68/0x440
[  571.971834][T18501]  ? sidtab_sid2str_get+0x139/0x370
[  571.971863][T18501]  kmemdup_noprof+0x31/0x80
[  571.971886][T18501]  sidtab_sid2str_get+0x139/0x370
[  571.971911][T18501]  security_sid_to_context_core+0x30d/0x5d0
[  571.971935][T18501]  security_sid_to_context+0x2e/0x50
[  571.971956][T18501]  avc_audit_post_callback+0x198/0x780
[  571.971977][T18501]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  571.971995][T18501]  ? __cfi_audit_log_format+0x10/0x10
[  571.972029][T18501]  ? audit_log_untrustedstring+0xea/0x100
[  571.972049][T18501]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  571.972069][T18501]  common_lsm_audit+0x147a/0x1860
[  571.972089][T18501]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  571.972107][T18501]  ? __cfi_common_lsm_audit+0x10/0x10
[  571.972125][T18501]  ? __kasan_slab_free+0x6a/0x80
[  571.972148][T18501]  ? kmem_cache_free+0x1c1/0x4c0
[  571.972168][T18501]  ? avc_node_kill+0x29e/0x2f0
[  571.972187][T18501]  slow_avc_audit+0x18d/0x1f0
[  571.972204][T18501]  ? __cfi_slow_avc_audit+0x10/0x10
[  571.972221][T18501]  ? avc_denied+0x112/0x180
[  571.972240][T18501]  avc_has_extended_perms+0x895/0xdd0
[  571.972259][T18501]  ? __cfi_avc_has_extended_perms+0x10/0x10
[  571.972279][T18501]  ? unwind_get_return_address+0x51/0x90
[  571.972300][T18501]  ? arch_stack_walk+0x10b/0x170
[  571.972328][T18501]  ? _parse_integer+0x2e/0x40
[  571.972349][T18501]  ioctl_has_perm+0x384/0x4d0
[  571.972376][T18501]  ? has_cap_mac_admin+0xd0/0xd0
[  571.972401][T18501]  ? proc_fail_nth_write+0x17e/0x210
[  571.972420][T18501]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  571.972440][T18501]  selinux_file_ioctl+0x6e0/0x1360
[  571.972467][T18501]  ? vfs_write+0x8ba/0xe80
[  571.972490][T18501]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  571.972515][T18501]  ? __cfi_vfs_write+0x10/0x10
[  571.972535][T18501]  ? __kasan_check_write+0x18/0x20
[  571.972554][T18501]  ? mutex_unlock+0x8b/0x240
[  571.972582][T18501]  ? __cfi_mutex_unlock+0x10/0x10
[  571.972607][T18501]  ? __fget_files+0x2c5/0x340
[  571.972635][T18501]  ? __fget_files+0x2c5/0x340
[  571.972661][T18501]  security_file_ioctl+0x58/0xd0
[  571.972685][T18501]  __se_sys_ioctl+0x53/0x1b0
[  571.972710][T18501]  __x64_sys_ioctl+0x7f/0xa0
[  571.972733][T18501]  x64_sys_call+0x1878/0x2ee0
[  571.972755][T18501]  do_syscall_64+0x58/0xf0
[  571.972777][T18501]  ? clear_bhb_loop+0x35/0x90
[  571.972805][T18501]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  571.972831][T18501] RIP: 0033:0x7f13f9b8e929
[  571.972850][T18501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  571.972865][T18501] RSP: 002b:00007f13faa51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  571.972890][T18501] RAX: ffffffffffffffda RBX: 00007f13f9db5fa0 RCX: 00007f13f9b8e929
[  571.972904][T18501] RDX: 0000000000000000 RSI: 0000000040087543 RDI: 0000000000000003
[  571.972916][T18501] RBP: 00007f13faa51090 R08: 0000000000000000 R09: 0000000000000000
[  571.972928][T18501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  571.972940][T18501] R13: 0000000000000000 R14: 00007f13f9db5fa0 R15: 00007ffefe057488
[  571.972957][T18501]  </TASK>
[  572.634301][T18512] binder: Unknown parameter 'dont_hash'
[  573.136901][T18531] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  573.333001][T18534] binder: Bad value for 'stats'
[  573.396985][T18540] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1239
[  574.013022][T18573] geneve1: tun_chr_ioctl cmd 1074025672
[  574.030744][T18575] FAULT_INJECTION: forcing a failure.
[  574.030744][T18575] name failslab, interval 1, probability 0, space 0, times 0
[  574.043512][T18575] CPU: 1 UID: 0 PID: 18575 Comm: syz.7.6706 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  574.043548][T18575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  574.043561][T18575] Call Trace:
[  574.043568][T18575]  <TASK>
[  574.043576][T18575]  __dump_stack+0x21/0x30
[  574.043611][T18575]  dump_stack_lvl+0x10c/0x190
[  574.043634][T18575]  ? __cfi_dump_stack_lvl+0x10/0x10
[  574.043658][T18575]  ? pointer+0xdd0/0xdd0
[  574.043680][T18575]  dump_stack+0x19/0x20
[  574.043700][T18575]  should_fail_ex+0x3d9/0x530
[  574.043722][T18575]  should_failslab+0xac/0x100
[  574.043748][T18575]  __kmalloc_node_track_caller_noprof+0x68/0x440
[  574.043774][T18575]  ? sidtab_sid2str_get+0x139/0x370
[  574.043802][T18575]  kmemdup_noprof+0x31/0x80
[  574.043824][T18575]  sidtab_sid2str_get+0x139/0x370
[  574.043846][T18575]  security_sid_to_context_core+0x30d/0x5d0
[  574.043868][T18575]  security_sid_to_context+0x2e/0x50
[  574.043888][T18575]  avc_audit_post_callback+0x107/0x780
[  574.043908][T18575]  ? audit_log_format+0xdb/0x140
[  574.043928][T18575]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  574.043948][T18575]  ? __cfi_audit_log_format+0x10/0x10
[  574.043966][T18575]  ? audit_log_untrustedstring+0xea/0x100
[  574.043985][T18575]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  574.044005][T18575]  common_lsm_audit+0x147a/0x1860
[  574.044024][T18575]  ? _raw_spin_unlock_irqrestore+0x4a/0x70
[  574.044051][T18575]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  574.044071][T18575]  ? __cfi_common_lsm_audit+0x10/0x10
[  574.044090][T18575]  ? avc_denied+0x112/0x180
[  574.044121][T18575]  slow_avc_audit+0x18d/0x1f0
[  574.044139][T18575]  ? __cfi_slow_avc_audit+0x10/0x10
[  574.044159][T18575]  ? avc_has_perm_noaudit+0x21c/0x360
[  574.044178][T18575]  avc_has_perm+0x1cd/0x220
[  574.044195][T18575]  ? __cfi_avc_has_perm+0x10/0x10
[  574.044214][T18575]  ? __kasan_check_write+0x18/0x20
[  574.044234][T18575]  ? proc_fail_nth_write+0x17e/0x210
[  574.044253][T18575]  selinux_mmap_file+0x1f3/0x320
[  574.044276][T18575]  ? __cfi_selinux_mmap_file+0x10/0x10
[  574.044298][T18575]  ? vfs_write+0x8ba/0xe80
[  574.044319][T18575]  security_mmap_file+0x2af/0x350
[  574.044342][T18575]  vm_mmap_pgoff+0x11d/0x4e0
[  574.044361][T18575]  ? __cfi_vm_mmap_pgoff+0x10/0x10
[  574.044382][T18575]  ? __fget_files+0x2c5/0x340
[  574.044412][T18575]  ksys_mmap_pgoff+0x166/0x1e0
[  574.044436][T18575]  __x64_sys_mmap+0x121/0x140
[  574.044460][T18575]  x64_sys_call+0x13bf/0x2ee0
[  574.044483][T18575]  do_syscall_64+0x58/0xf0
[  574.044506][T18575]  ? clear_bhb_loop+0x35/0x90
[  574.044533][T18575]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  574.044560][T18575] RIP: 0033:0x7fdeda78e929
[  574.044578][T18575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.044595][T18575] RSP: 002b:00007fdedb669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  574.044620][T18575] RAX: ffffffffffffffda RBX: 00007fdeda9b5fa0 RCX: 00007fdeda78e929
[  574.044634][T18575] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000701000
[  574.044647][T18575] RBP: 00007fdedb669090 R08: 0000000000000003 R09: 0000000000000000
[  574.044659][T18575] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
[  574.044671][T18575] R13: 0000000000000000 R14: 00007fdeda9b5fa0 R15: 00007ffdfda14988
[  574.044687][T18575]  </TASK>
[  574.384825][T18573] geneve1: ignored: set checksum enabled
[  574.390603][   T36] kauditd_printk_skb: 511 callbacks suppressed
[  574.390623][   T36] audit: type=1400 audit(1750306008.420:90796): avc:  denied  { read } for  pid=18572 comm="syz.5.6705" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  574.420098][   T36] audit: type=1400 audit(1750306008.420:90797): avc:  denied  { read open } for  pid=18572 comm="syz.5.6705" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  574.443938][   T36] audit: type=1400 audit(1750306008.420:90798): avc:  denied  { ioctl } for  pid=18572 comm="syz.5.6705" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  574.469226][   T36] audit: type=1400 audit(1750306008.690:90799): avc:  denied  { read write } for  pid=18572 comm="syz.5.6705" name="uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  574.493694][   T36] audit: type=1400 audit(1750306008.690:90800): avc:  denied  { read write open } for  pid=18572 comm="syz.5.6705" path="/dev/uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  574.519270][   T36] audit: type=1400 audit(1750306008.730:90801): avc:  denied  { read write } for  pid=18424 comm="syz-executor" name="loop7" dev="devtmpfs" ino=56 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.543775][   T36] audit: type=1400 audit(1750306008.730:90802): avc:  denied  { read write open } for  pid=18424 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=56 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.569398][   T36] audit: type=1400 audit(1750306008.760:90803): avc:  denied  { ioctl } for  pid=18424 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=56 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.595463][   T36] audit: type=1400 audit(1750306008.780:90804): avc:  denied  { read open } for  pid=18576 comm="syz.1.6707" path="net:[4026532452]" dev="nsfs" ino=4026532452 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  574.619410][   T36] audit: type=1400 audit(1750306008.810:90805): avc:  denied  { ioctl } for  pid=18576 comm="syz.1.6707" path="net:[4026532452]" dev="nsfs" ino=4026532452 ioctlcmd=0xb709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  574.659941][T18578] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1521
[  574.906002][T18596] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  574.954207][T18596] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  575.132960][T18605] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:357
[  575.140645][T18603] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[  575.170085][T18603] rust_binder: Error while translating object.
[  575.192627][T18603] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  575.248528][T18603] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1263
[  575.821530][T18633] binder: Bad value for 'defcontext'
[  576.161282][T18651] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1539
[  576.350166][T18665] FAULT_INJECTION: forcing a failure.
[  576.350166][T18665] name failslab, interval 1, probability 0, space 0, times 0
[  576.411839][T18665] CPU: 1 UID: 0 PID: 18665 Comm: syz.5.6744 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  576.411877][T18665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  576.411890][T18665] Call Trace:
[  576.411897][T18665]  <TASK>
[  576.411905][T18665]  __dump_stack+0x21/0x30
[  576.411937][T18665]  dump_stack_lvl+0x10c/0x190
[  576.411959][T18665]  ? __cfi_dump_stack_lvl+0x10/0x10
[  576.411982][T18665]  dump_stack+0x19/0x20
[  576.412001][T18665]  should_fail_ex+0x3d9/0x530
[  576.412023][T18665]  should_failslab+0xac/0x100
[  576.412047][T18665]  kmem_cache_alloc_noprof+0x42/0x3a0
[  576.412068][T18665]  ? security_inode_alloc+0x51/0x200
[  576.412091][T18665]  security_inode_alloc+0x51/0x200
[  576.412113][T18665]  inode_init_always_gfp+0x756/0x9e0
[  576.412139][T18665]  ? __cfi_proc_alloc_inode+0x10/0x10
[  576.412158][T18665]  alloc_inode+0xc5/0x270
[  576.412182][T18665]  new_inode+0x25/0x1e0
[  576.412206][T18665]  proc_pid_make_inode+0x25/0x140
[  576.412227][T18665]  proc_pident_instantiate+0x6d/0x2c0
[  576.412251][T18665]  proc_pident_lookup+0x1c7/0x270
[  576.412276][T18665]  proc_tgid_base_lookup+0x2f/0x40
[  576.412299][T18665]  __lookup_slow+0x2d4/0x400
[  576.412326][T18665]  ? lookup_one_len+0x2f0/0x2f0
[  576.412350][T18665]  ? down_read+0x79/0xe0
[  576.412373][T18665]  lookup_slow+0x57/0x80
[  576.412427][T18665]  link_path_walk+0x990/0xec0
[  576.412450][T18665]  path_openat+0x281/0x34b0
[  576.412476][T18665]  ? kasan_save_alloc_info+0x40/0x50
[  576.412494][T18665]  ? getname_flags+0xc6/0x710
[  576.412514][T18665]  ? do_sys_openat2+0xcb/0x1c0
[  576.412532][T18665]  ? __x64_sys_openat+0x13a/0x170
[  576.412549][T18665]  ? do_filp_open+0x3e0/0x3e0
[  576.412574][T18665]  do_filp_open+0x1c6/0x3e0
[  576.412597][T18665]  ? __cfi_do_filp_open+0x10/0x10
[  576.412624][T18665]  ? __cfi_kfree_link+0x10/0x10
[  576.412643][T18665]  ? alloc_fd+0x4e7/0x5a0
[  576.412668][T18665]  do_sys_openat2+0x12c/0x1c0
[  576.412686][T18665]  ? fput+0x1a5/0x240
[  576.412710][T18665]  ? do_sys_open+0x100/0x100
[  576.412728][T18665]  ? ksys_write+0x1ef/0x250
[  576.412751][T18665]  ? __cfi_ksys_write+0x10/0x10
[  576.412774][T18665]  __x64_sys_openat+0x13a/0x170
[  576.412793][T18665]  x64_sys_call+0xe69/0x2ee0
[  576.412817][T18665]  do_syscall_64+0x58/0xf0
[  576.412840][T18665]  ? clear_bhb_loop+0x35/0x90
[  576.412865][T18665]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  576.412889][T18665] RIP: 0033:0x7f13f9b8e929
[  576.412905][T18665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.412921][T18665] RSP: 002b:00007f13faa51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  576.412945][T18665] RAX: ffffffffffffffda RBX: 00007f13f9db5fa0 RCX: 00007f13f9b8e929
[  576.412961][T18665] RDX: 0000000000000200 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  576.412976][T18665] RBP: 00007f13faa51090 R08: 0000000000000000 R09: 0000000000000000
[  576.412990][T18665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  576.413004][T18665] R13: 0000000000000001 R14: 00007f13f9db5fa0 R15: 00007ffefe057488
[  576.413021][T18665]  </TASK>
[  576.808826][T18677] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  577.081648][ T2723] bridge_slave_1: left allmulticast mode
[  577.087470][ T2723] bridge_slave_1: left promiscuous mode
[  577.130133][ T2723] bridge0: port 2(bridge_slave_1) entered disabled state
[  577.170803][ T2723] bridge_slave_0: left allmulticast mode
[  577.198453][ T2723] bridge_slave_0: left promiscuous mode
[  577.214335][ T2723] bridge0: port 1(bridge_slave_0) entered disabled state
[  577.429317][ T2723] veth1_macvtap: left promiscuous mode
[  577.434965][ T2723] veth0_vlan: left promiscuous mode
[  577.742670][T18700] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.757400][T18700] bridge0: port 1(bridge_slave_0) entered disabled state
[  577.792897][T18700] bridge_slave_0: entered allmulticast mode
[  577.819630][T18700] bridge_slave_0: entered promiscuous mode
[  577.831649][T18700] bridge0: port 2(bridge_slave_1) entered blocking state
[  577.852814][T18700] bridge0: port 2(bridge_slave_1) entered disabled state
[  577.870091][T18700] bridge_slave_1: entered allmulticast mode
[  577.881339][T18700] bridge_slave_1: entered promiscuous mode
[  577.988288][T18722] rust_binder: Write failure EFAULT in pid:386
[  578.188124][T18730] FAULT_INJECTION: forcing a failure.
[  578.188124][T18730] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  578.240042][T18730] CPU: 0 UID: 0 PID: 18730 Comm: syz.7.6769 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  578.240084][T18730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  578.240097][T18730] Call Trace:
[  578.240104][T18730]  <TASK>
[  578.240113][T18730]  __dump_stack+0x21/0x30
[  578.240153][T18730]  dump_stack_lvl+0x10c/0x190
[  578.240173][T18730]  ? __cfi_dump_stack_lvl+0x10/0x10
[  578.240194][T18730]  ? kasan_save_track+0x4f/0x80
[  578.240220][T18730]  ? kasan_save_alloc_info+0x40/0x50
[  578.240245][T18730]  ? __kasan_slab_alloc+0x73/0x90
[  578.240270][T18730]  ? kmem_cache_alloc_noprof+0x131/0x3a0
[  578.240292][T18730]  ? inode_init_always_gfp+0x756/0x9e0
[  578.240317][T18730]  dump_stack+0x19/0x20
[  578.240342][T18730]  should_fail_ex+0x3d9/0x530
[  578.240363][T18730]  should_fail_alloc_page+0xeb/0x110
[  578.240387][T18730]  __alloc_pages_noprof+0x19d/0x6c0
[  578.240406][T18730]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  578.240428][T18730]  ? __kasan_check_write+0x18/0x20
[  578.240449][T18730]  ? lockref_get+0x127/0x1b0
[  578.240477][T18730]  ? __kasan_check_write+0x18/0x20
[  578.240496][T18730]  get_free_pages_noprof+0x14/0x40
[  578.240514][T18730]  selinux_genfs_get_sid+0x63/0x2d0
[  578.240534][T18730]  ? kmem_cache_alloc_noprof+0x154/0x3a0
[  578.240555][T18730]  inode_doinit_with_dentry+0x7f0/0xdd0
[  578.240572][T18730]  ? ktime_get_coarse_real_ts64+0x11f/0x140
[  578.240595][T18730]  ? sb_finish_set_opts+0xa00/0xa00
[  578.240613][T18730]  ? __cfi_inode_set_ctime_current+0x10/0x10
[  578.240634][T18730]  selinux_d_instantiate+0x2b/0x40
[  578.240655][T18730]  security_d_instantiate+0xb5/0xf0
[  578.240676][T18730]  d_splice_alias+0x71/0x3a0
[  578.240697][T18730]  proc_lookup_de+0x298/0x300
[  578.240717][T18730]  proc_tgid_net_lookup+0x66/0x100
[  578.240737][T18730]  path_openat+0x12fe/0x34b0
[  578.240766][T18730]  ? do_filp_open+0x3e0/0x3e0
[  578.240793][T18730]  do_filp_open+0x1c6/0x3e0
[  578.240817][T18730]  ? __cfi_do_filp_open+0x10/0x10
[  578.240847][T18730]  ? __cfi_kfree_link+0x10/0x10
[  578.240867][T18730]  ? alloc_fd+0x4e7/0x5a0
[  578.240892][T18730]  do_sys_openat2+0x12c/0x1c0
[  578.240908][T18730]  ? fput+0x1a5/0x240
[  578.240933][T18730]  ? do_sys_open+0x100/0x100
[  578.240979][T18730]  ? ksys_write+0x1ef/0x250
[  578.240999][T18730]  ? __cfi_ksys_write+0x10/0x10
[  578.241022][T18730]  __x64_sys_openat+0x13a/0x170
[  578.241042][T18730]  x64_sys_call+0xe69/0x2ee0
[  578.241066][T18730]  do_syscall_64+0x58/0xf0
[  578.241090][T18730]  ? clear_bhb_loop+0x35/0x90
[  578.241116][T18730]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  578.241149][T18730] RIP: 0033:0x7fdeda78e929
[  578.241165][T18730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.241183][T18730] RSP: 002b:00007fdedb669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  578.241207][T18730] RAX: ffffffffffffffda RBX: 00007fdeda9b5fa0 RCX: 00007fdeda78e929
[  578.241222][T18730] RDX: 0000000000002000 RSI: 0000200000000340 RDI: ffffffffffffff9c
[  578.241237][T18730] RBP: 00007fdedb669090 R08: 0000000000000000 R09: 0000000000000000
[  578.241250][T18730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  578.241262][T18730] R13: 0000000000000000 R14: 00007fdeda9b5fa0 R15: 00007ffdfda14988
[  578.241279][T18730]  </TASK>
[  578.626781][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  578.633931][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  578.660746][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  578.667874][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  579.064090][T18700] veth0_vlan: entered promiscuous mode
[  579.176820][T18700] veth1_macvtap: entered promiscuous mode
[  579.228430][T18755] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  579.231350][T18754] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  579.253091][T18756] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  579.259950][T18755] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  579.409366][   T36] kauditd_printk_skb: 580 callbacks suppressed
[  579.409392][   T36] audit: type=1400 audit(1750306013.710:91384): avc:  denied  { read } for  pid=18760 comm="syz.4.6778" name="binder1" dev="binder" ino=161 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  579.472095][   T36] audit: type=1400 audit(1750306013.720:91385): avc:  denied  { mounton } for  pid=18700 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=434 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  579.534359][   T36] audit: type=1400 audit(1750306013.720:91386): avc:  denied  { mounton } for  pid=18700 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=435 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  579.609578][T18769] FAULT_INJECTION: forcing a failure.
[  579.609578][T18769] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  579.631263][   T36] audit: type=1400 audit(1750306013.720:91387): avc:  denied  { mount } for  pid=18700 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  579.682964][T18769] CPU: 1 UID: 0 PID: 18769 Comm: syz.1.6782 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  579.683003][T18769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  579.683016][T18769] Call Trace:
[  579.683022][T18769]  <TASK>
[  579.683031][T18769]  __dump_stack+0x21/0x30
[  579.683061][T18769]  dump_stack_lvl+0x10c/0x190
[  579.683081][T18769]  ? __cfi_dump_stack_lvl+0x10/0x10
[  579.683103][T18769]  dump_stack+0x19/0x20
[  579.683123][T18769]  should_fail_ex+0x3d9/0x530
[  579.683147][T18769]  should_fail+0xf/0x20
[  579.683166][T18769]  should_fail_usercopy+0x1e/0x30
[  579.683188][T18769]  _copy_to_user+0x24/0xa0
[  579.683213][T18769]  simple_read_from_buffer+0xed/0x160
[  579.683240][T18769]  proc_fail_nth_read+0x19e/0x210
[  579.683259][T18769]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  579.683276][T18769]  ? bpf_lsm_file_permission+0xd/0x20
[  579.683298][T18769]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  579.683316][T18769]  vfs_read+0x278/0xb60
[  579.683349][T18769]  ? __cfi_do_mmap+0x10/0x10
[  579.683370][T18769]  ? __cfi_down_write_killable+0x10/0x10
[  579.683392][T18769]  ? __cfi_vfs_read+0x10/0x10
[  579.683411][T18769]  ? __kasan_check_write+0x18/0x20
[  579.683431][T18769]  ? mutex_lock+0x92/0x1c0
[  579.683456][T18769]  ? __cfi_mutex_lock+0x10/0x10
[  579.683481][T18769]  ? __fget_files+0x2c5/0x340
[  579.683508][T18769]  ksys_read+0x141/0x250
[  579.683530][T18769]  ? xfd_validate_state+0x68/0x150
[  579.683553][T18769]  ? __cfi_ksys_read+0x10/0x10
[  579.683574][T18769]  ? __kasan_check_read+0x15/0x20
[  579.683593][T18769]  __x64_sys_read+0x7f/0x90
[  579.683612][T18769]  x64_sys_call+0x2638/0x2ee0
[  579.683635][T18769]  do_syscall_64+0x58/0xf0
[  579.683656][T18769]  ? clear_bhb_loop+0x35/0x90
[  579.683681][T18769]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  579.683704][T18769] RIP: 0033:0x7fd29398d33c
[  579.683720][T18769] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  579.683736][T18769] RSP: 002b:00007fd29471b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  579.683759][T18769] RAX: ffffffffffffffda RBX: 00007fd293bb5fa0 RCX: 00007fd29398d33c
[  579.683774][T18769] RDX: 000000000000000f RSI: 00007fd29471b0a0 RDI: 0000000000000003
[  579.683788][T18769] RBP: 00007fd29471b090 R08: 0000000000000000 R09: 0000000000000000
[  579.683801][T18769] R10: 0000000000000032 R11: 0000000000000246 R12: 0000000000000002
[  579.683813][T18769] R13: 0000000000000001 R14: 00007fd293bb5fa0 R15: 00007ffc59d50748
[  579.683829][T18769]  </TASK>
[  579.701759][   T36] audit: type=1400 audit(1750306013.720:91388): avc:  denied  { mounton } for  pid=18700 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  579.833658][T18778] binder: Unknown parameter 'dont_hash'
[  579.949481][   T36] audit: type=1400 audit(1750306013.720:91389): avc:  denied  { mount } for  pid=18700 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  580.066090][T18782] FAULT_INJECTION: forcing a failure.
[  580.066090][T18782] name failslab, interval 1, probability 0, space 0, times 0
[  580.078916][   T36] audit: type=1400 audit(1750306013.750:91390): avc:  denied  { read open } for  pid=18760 comm="syz.4.6778" path="/dev/binderfs/binder1" dev="binder" ino=161 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  580.078999][T18782] CPU: 0 UID: 0 PID: 18782 Comm: syz.5.6786 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  580.079028][T18782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  580.079039][T18782] Call Trace:
[  580.079045][T18782]  <TASK>
[  580.079053][T18782]  __dump_stack+0x21/0x30
[  580.079095][T18782]  dump_stack_lvl+0x10c/0x190
[  580.079114][T18782]  ? __cfi_dump_stack_lvl+0x10/0x10
[  580.079136][T18782]  dump_stack+0x19/0x20
[  580.079155][T18782]  should_fail_ex+0x3d9/0x530
[  580.079176][T18782]  should_failslab+0xac/0x100
[  580.079199][T18782]  __kmalloc_noprof+0x69/0x450
[  580.079220][T18782]  ? security_tun_dev_alloc_security+0x51/0x270
[  580.079244][T18782]  security_tun_dev_alloc_security+0x51/0x270
[  580.079266][T18782]  tun_net_init+0x7b/0x400
[  580.079287][T18782]  register_netdevice+0x404/0x19d0
[  580.079307][T18782]  ? kasan_save_alloc_info+0x40/0x50
[  580.079326][T18782]  ? __cfi_register_netdevice+0x10/0x10
[  580.079344][T18782]  ? alloc_netdev_mqs+0xd44/0x13e0
[  580.079365][T18782]  tun_set_iff+0x83a/0xee0
[  580.079383][T18782]  __tun_chr_ioctl+0x810/0x1f10
[  580.079402][T18782]  ? __kasan_check_write+0x18/0x20
[  580.079421][T18782]  ? tun_flow_create+0x410/0x410
[  580.079438][T18782]  ? __fget_files+0x2c5/0x340
[  580.079462][T18782]  ? __fget_files+0x2c5/0x340
[  580.079484][T18782]  tun_chr_ioctl+0x2e/0x40
[  580.079501][T18782]  ? __cfi_tun_chr_ioctl+0x10/0x10
[  580.079518][T18782]  __se_sys_ioctl+0x132/0x1b0
[  580.079541][T18782]  __x64_sys_ioctl+0x7f/0xa0
[  580.079562][T18782]  x64_sys_call+0x1878/0x2ee0
[  580.079584][T18782]  do_syscall_64+0x58/0xf0
[  580.079605][T18782]  ? clear_bhb_loop+0x35/0x90
[  580.079628][T18782]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  580.079651][T18782] RIP: 0033:0x7fa978d8e929
[  580.079667][T18782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.079683][T18782] RSP: 002b:00007fa979b1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  580.079705][T18782] RAX: ffffffffffffffda RBX: 00007fa978fb5fa0 RCX: 00007fa978d8e929
[  580.079719][T18782] RDX: 0000200000000000 RSI: 00000000400454ca RDI: 0000000000000003
[  580.079731][T18782] RBP: 00007fa979b1a090 R08: 0000000000000000 R09: 0000000000000000
[  580.079743][T18782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  580.079755][T18782] R13: 0000000000000000 R14: 00007fa978fb5fa0 R15: 00007ffc5a1efff8
[  580.079770][T18782]  </TASK>
[  580.370424][   T36] audit: type=1400 audit(1750306013.770:91391): avc:  denied  { read write } for  pid=18700 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  580.434456][   T36] audit: type=1400 audit(1750306013.780:91392): avc:  denied  { read write } for  pid=17246 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  580.451579][T18789] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:12
[  580.469493][T18788] rust_binder: Write failure EINVAL in pid:12
[  580.496394][   T36] audit: type=1400 audit(1750306013.780:91393): avc:  denied  { read write open } for  pid=17246 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  580.795975][T18797] input: syz0 as /devices/virtual/input/input427
[  580.861567][T18801] binder: Unknown parameter 'dont_hash'
[  581.197949][T18816] FAULT_INJECTION: forcing a failure.
[  581.197949][T18816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  581.211469][T18816] CPU: 1 UID: 0 PID: 18816 Comm: syz.4.6800 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  581.211519][T18816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  581.211532][T18816] Call Trace:
[  581.211539][T18816]  <TASK>
[  581.211547][T18816]  __dump_stack+0x21/0x30
[  581.211580][T18816]  dump_stack_lvl+0x10c/0x190
[  581.211599][T18816]  ? __cfi_dump_stack_lvl+0x10/0x10
[  581.211619][T18816]  dump_stack+0x19/0x20
[  581.211636][T18816]  should_fail_ex+0x3d9/0x530
[  581.211658][T18816]  should_fail+0xf/0x20
[  581.211674][T18816]  should_fail_usercopy+0x1e/0x30
[  581.211693][T18816]  _copy_to_user+0x24/0xa0
[  581.211717][T18816]  simple_read_from_buffer+0xed/0x160
[  581.211747][T18816]  proc_fail_nth_read+0x19e/0x210
[  581.211767][T18816]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  581.211785][T18816]  ? bpf_lsm_file_permission+0xd/0x20
[  581.211807][T18816]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  581.211823][T18816]  vfs_read+0x278/0xb60
[  581.211843][T18816]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  581.211868][T18816]  ? __cfi_vfs_read+0x10/0x10
[  581.211887][T18816]  ? __kasan_check_write+0x18/0x20
[  581.211908][T18816]  ? mutex_lock+0x92/0x1c0
[  581.211935][T18816]  ? __cfi_mutex_lock+0x10/0x10
[  581.211961][T18816]  ? __fget_files+0x2c5/0x340
[  581.211988][T18816]  ksys_read+0x141/0x250
[  581.212008][T18816]  ? __cfi_ksys_read+0x10/0x10
[  581.212029][T18816]  ? __kasan_check_read+0x15/0x20
[  581.212064][T18816]  __x64_sys_read+0x7f/0x90
[  581.212085][T18816]  x64_sys_call+0x2638/0x2ee0
[  581.212108][T18816]  do_syscall_64+0x58/0xf0
[  581.212133][T18816]  ? clear_bhb_loop+0x35/0x90
[  581.212162][T18816]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  581.212188][T18816] RIP: 0033:0x7f634bd8d33c
[  581.212207][T18816] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  581.212224][T18816] RSP: 002b:00007f634cc6e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  581.212250][T18816] RAX: ffffffffffffffda RBX: 00007f634bfb5fa0 RCX: 00007f634bd8d33c
[  581.212266][T18816] RDX: 000000000000000f RSI: 00007f634cc6e0a0 RDI: 0000000000000005
[  581.212280][T18816] RBP: 00007f634cc6e090 R08: 0000000000000000 R09: 0000000000000000
[  581.212294][T18816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  581.212307][T18816] R13: 0000000000000000 R14: 00007f634bfb5fa0 R15: 00007ffffae6a778
[  581.212324][T18816]  </TASK>
[  581.645218][T18825] rust_binder: Write failure EINVAL in pid:88
[  581.871066][T18831] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  582.198070][T18847] rust_binder: Error while translating object.
[  582.198141][T18847] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  582.227631][T18847] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:92
[  582.460076][T18859] serio: Serial port ttynull
[  582.671893][T18873] binder: Unknown parameter '00000000000000000000003'
[  582.718899][T18873] binder: Unknown parameter '00000000000000000000003'
[  582.740252][T18874] input: syz0 as /devices/virtual/input/input429
[  582.823093][T18878] rust_binder: Failed to allocate buffer. len:152, is_oneway:false
[  583.284892][T18901] rust_binder: Failed to allocate buffer. len:4294966472, is_oneway:false
[  583.947324][T18942] serio: Serial port ttynull
[  584.024204][T18948] input: syz1 as /devices/virtual/input/input431
[  584.054222][T18947] kvm: vcpu 512: requested lapic timer restore with starting count register 0x390=1531215282 (3062430564 ns) > initial count (1473793136 ns). Using initial count to start timer.
[  584.180414][T18951] binder: Bad value for 'max'
[  584.228867][T18955] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:453
[  584.363600][T18959] FAULT_INJECTION: forcing a failure.
[  584.363600][T18959] name failslab, interval 1, probability 0, space 0, times 0
[  584.410045][T18959] CPU: 1 UID: 0 PID: 18959 Comm: syz.7.6854 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  584.410095][T18959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  584.410110][T18959] Call Trace:
[  584.410118][T18959]  <TASK>
[  584.410128][T18959]  __dump_stack+0x21/0x30
[  584.410163][T18959]  dump_stack_lvl+0x10c/0x190
[  584.410183][T18959]  ? __cfi_dump_stack_lvl+0x10/0x10
[  584.410217][T18959]  dump_stack+0x19/0x20
[  584.410237][T18959]  should_fail_ex+0x3d9/0x530
[  584.410261][T18959]  should_failslab+0xac/0x100
[  584.410288][T18959]  __kmalloc_node_track_caller_noprof+0x68/0x440
[  584.410315][T18959]  ? rust_helper_krealloc+0x33/0xd0
[  584.410338][T18959]  krealloc_noprof+0x8d/0x130
[  584.410363][T18959]  rust_helper_krealloc+0x33/0xd0
[  584.410381][T18959]  ? _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0x91/0x100
[  584.410412][T18959]  _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0xaf/0x100
[  584.410439][T18959]  _RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process8get_node+0x399/0x12e0
[  584.410489][T18959]  ? _raw_spin_lock+0x8c/0x120
[  584.410518][T18959]  ? _raw_spin_unlock+0x45/0x60
[  584.410541][T18959]  ? rust_helper_spin_unlock+0x19/0x30
[  584.410562][T18959]  ? _RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process18get_current_thread+0xdfc/0x1440
[  584.410596][T18959]  ? __cfi__RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process8get_node+0x10/0x10
[  584.410630][T18959]  _RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process14set_as_manager+0x1c2/0xa60
[  584.410663][T18959]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  584.410685][T18959]  ? common_lsm_audit+0x148c/0x1860
[  584.410703][T18959]  ? __cfi__RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process14set_as_manager+0x10/0x10
[  584.410738][T18959]  ? __kasan_slab_free+0x6a/0x80
[  584.410766][T18959]  ? kmem_cache_free+0x1c1/0x4c0
[  584.410787][T18959]  ? avc_node_kill+0x29e/0x2f0
[  584.410807][T18959]  ? __kasan_check_write+0x18/0x20
[  584.410828][T18959]  _RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x135a/0x2c20
[  584.410852][T18959]  ? avc_denied+0x112/0x180
[  584.410870][T18959]  ? avc_has_extended_perms+0x895/0xdd0
[  584.410889][T18959]  ? avc_has_extended_perms+0x91a/0xdd0
[  584.410910][T18959]  ? __cfi__RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x10/0x10
[  584.410936][T18959]  ? do_vfs_ioctl+0xeda/0x1e30
[  584.410961][T18959]  ? arch_stack_walk+0x10b/0x170
[  584.410986][T18959]  ? __ia32_compat_sys_ioctl+0x850/0x850
[  584.411012][T18959]  ? _parse_integer+0x2e/0x40
[  584.411033][T18959]  ? ioctl_has_perm+0x384/0x4d0
[  584.411058][T18959]  ? has_cap_mac_admin+0xd0/0xd0
[  584.411083][T18959]  ? proc_fail_nth_write+0x17e/0x210
[  584.411104][T18959]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  584.411121][T18959]  ? selinux_file_ioctl+0x6e0/0x1360
[  584.411146][T18959]  ? vfs_write+0x8ba/0xe80
[  584.411167][T18959]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  584.411192][T18959]  ? __cfi_vfs_write+0x10/0x10
[  584.411224][T18959]  ? __kasan_check_write+0x18/0x20
[  584.411246][T18959]  ? mutex_unlock+0x8b/0x240
[  584.411275][T18959]  ? __cfi_mutex_unlock+0x10/0x10
[  584.411300][T18959]  ? __fget_files+0x2c5/0x340
[  584.411326][T18959]  ? __fget_files+0x2c5/0x340
[  584.411349][T18959]  _RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0xa0/0x100
[  584.411380][T18959]  ? __se_sys_ioctl+0x114/0x1b0
[  584.411405][T18959]  ? __cfi__RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0x10/0x10
[  584.411431][T18959]  __se_sys_ioctl+0x132/0x1b0
[  584.411453][T18959]  __x64_sys_ioctl+0x7f/0xa0
[  584.411475][T18959]  x64_sys_call+0x1878/0x2ee0
[  584.411500][T18959]  do_syscall_64+0x58/0xf0
[  584.411523][T18959]  ? clear_bhb_loop+0x35/0x90
[  584.411549][T18959]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  584.411573][T18959] RIP: 0033:0x7fdeda78e929
[  584.411591][T18959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  584.411608][T18959] RSP: 002b:00007fdedb669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  584.411632][T18959] RAX: ffffffffffffffda RBX: 00007fdeda9b5fa0 RCX: 00007fdeda78e929
[  584.411647][T18959] RDX: 0000200000000080 RSI: 000000004018620d RDI: 0000000000000003
[  584.411661][T18959] RBP: 00007fdedb669090 R08: 0000000000000000 R09: 0000000000000000
[  584.411674][T18959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  584.411686][T18959] R13: 0000000000000000 R14: 00007fdeda9b5fa0 R15: 00007ffdfda14988
[  584.411702][T18959]  </TASK>
[  584.412159][   T36] kauditd_printk_skb: 652 callbacks suppressed
[  584.412174][   T36] audit: type=1400 audit(1750306018.720:92044): avc:  denied  { read open } for  pid=18961 comm="syz.1.6855" path="/dev/binderfs/binder0" dev="binder" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  584.420478][T18962] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  584.426524][   T36] audit: type=1400 audit(1750306018.720:92045): avc:  denied  { ioctl } for  pid=18961 comm="syz.1.6855" path="/dev/binderfs/binder0" dev="binder" ino=22 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  584.773165][T18972] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1363
[  584.794662][   T36] audit: type=1400 audit(1750306018.720:92046): avc:  denied  { set_context_mgr } for  pid=18961 comm="syz.1.6855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  584.890928][T18973] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  584.903202][   T36] audit: type=1400 audit(1750306018.720:92047): avc:  denied  { ioctl } for  pid=18961 comm="syz.1.6855" path="/dev/binderfs/binder0" dev="binder" ino=22 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  584.998242][   T36] audit: type=1400 audit(1750306018.720:92048): avc:  denied  { call } for  pid=18961 comm="syz.1.6855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  585.040061][   T36] audit: type=1400 audit(1750306018.770:92049): avc:  denied  { read write } for  pid=18700 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.112163][   T36] audit: type=1400 audit(1750306018.770:92050): avc:  denied  { read write open } for  pid=18700 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.186911][T18981] audit: audit_backlog=65 > audit_backlog_limit=64
[  585.193582][   T36] audit: type=1400 audit(1750306018.770:92051): avc:  denied  { ioctl } for  pid=18700 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=54 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.193623][   T36] audit: type=1400 audit(1750306018.780:92052): avc:  denied  { read write } for  pid=18424 comm="syz-executor" name="loop7" dev="devtmpfs" ino=56 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.458936][T18991] FAULT_INJECTION: forcing a failure.
[  585.458936][T18991] name failslab, interval 1, probability 0, space 0, times 0
[  585.471899][T18991] CPU: 1 UID: 0 PID: 18991 Comm: syz.5.6867 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  585.471938][T18991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  585.471952][T18991] Call Trace:
[  585.471958][T18991]  <TASK>
[  585.471967][T18991]  __dump_stack+0x21/0x30
[  585.472001][T18991]  dump_stack_lvl+0x10c/0x190
[  585.472022][T18991]  ? __cfi_dump_stack_lvl+0x10/0x10
[  585.472045][T18991]  dump_stack+0x19/0x20
[  585.472064][T18991]  should_fail_ex+0x3d9/0x530
[  585.472087][T18991]  should_failslab+0xac/0x100
[  585.472115][T18991]  __kmalloc_cache_noprof+0x41/0x3c0
[  585.472139][T18991]  ? audit_log_d_path+0xc8/0x2a0
[  585.472160][T18991]  audit_log_d_path+0xc8/0x2a0
[  585.472178][T18991]  audit_log_d_path_exe+0x46/0x80
[  585.472196][T18991]  audit_log_task+0x20a/0x2f0
[  585.472222][T18991]  ? __kasan_slab_free+0x6a/0x80
[  585.472257][T18991]  ? audit_core_dumps+0x120/0x120
[  585.472280][T18991]  ? _raw_spin_lock_irq+0x8d/0x120
[  585.472307][T18991]  ? __cfi_migrate_enable+0x10/0x10
[  585.472334][T18991]  audit_seccomp+0x84/0x170
[  585.472358][T18991]  __seccomp_filter+0xaad/0x1a70
[  585.472382][T18991]  ? prctl_set_seccomp+0x80/0x80
[  585.472404][T18991]  ? __cfi_vfs_write+0x10/0x10
[  585.472427][T18991]  ? __secure_computing+0x2b0/0x2b0
[  585.472451][T18991]  ? __kasan_check_read+0x15/0x20
[  585.472468][T18991]  ? static_key_count+0x45/0x70
[  585.472491][T18991]  ? __x64_sys_prctl+0xf0/0xf0
[  585.472514][T18991]  __secure_computing+0xef/0x2b0
[  585.472536][T18991]  syscall_trace_enter+0xaf/0x170
[  585.472564][T18991]  do_syscall_64+0x38/0xf0
[  585.472585][T18991]  ? clear_bhb_loop+0x35/0x90
[  585.472613][T18991]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  585.472638][T18991] RIP: 0033:0x7fa978d8d33c
[  585.472659][T18991] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  585.472677][T18991] RSP: 002b:00007fa979b1a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  585.472702][T18991] RAX: ffffffffffffffda RBX: 00007fa978fb5fa0 RCX: 00007fa978d8d33c
[  585.472717][T18991] RDX: 000000000000000f RSI: 00007fa979b1a0a0 RDI: 0000000000000003
[  585.472729][T18991] RBP: 00007fa979b1a090 R08: 0000000000000000 R09: 0000000000000000
[  585.472743][T18991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  585.472756][T18991] R13: 0000000000000000 R14: 00007fa978fb5fa0 R15: 00007ffc5a1efff8
[  585.472772][T18991]  </TASK>
[  585.566658][T18994] Bluetooth: hci0: Frame reassembly failed (-90)
[  585.691033][T18995] rust_binder: Write failure EINVAL in pid:1371
[  585.769975][   T46] Bluetooth: hci0: Frame reassembly failed (-84)
[  585.808768][T19001] binder: Bad value for 'stats'
[  585.924403][T19004] random: crng reseeded on system resumption
[  585.996991][T19004] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  586.090922][T19009] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  586.091246][T19009] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  586.098039][T19009] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  586.113312][T19013] FAULT_INJECTION: forcing a failure.
[  586.113312][T19013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  586.115719][T19009] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  586.135147][T19013] CPU: 0 UID: 0 PID: 19013 Comm: syz.1.6874 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  586.135198][T19013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  586.135212][T19013] Call Trace:
[  586.135221][T19013]  <TASK>
[  586.135230][T19013]  __dump_stack+0x21/0x30
[  586.135266][T19013]  dump_stack_lvl+0x10c/0x190
[  586.135286][T19013]  ? __cfi_dump_stack_lvl+0x10/0x10
[  586.135307][T19013]  ? vsnprintf+0x7b4/0x1aa0
[  586.135330][T19013]  ? __asan_memcpy+0x5a/0x80
[  586.135352][T19013]  dump_stack+0x19/0x20
[  586.135371][T19013]  should_fail_ex+0x3d9/0x530
[  586.135396][T19013]  should_fail+0xf/0x20
[  586.135415][T19013]  should_fail_usercopy+0x1e/0x30
[  586.135437][T19013]  _copy_from_user+0x22/0xb0
[  586.135461][T19013]  kstrtouint_from_user+0xc2/0x150
[  586.135481][T19013]  ? __cfi_kstrtouint_from_user+0x10/0x10
[  586.135500][T19013]  ? selinux_file_permission+0x309/0xb30
[  586.135528][T19013]  ? __cfi_selinux_file_permission+0x10/0x10
[  586.135556][T19013]  proc_fail_nth_write+0x89/0x210
[  586.135576][T19013]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  586.135595][T19013]  ? bpf_lsm_file_permission+0xd/0x20
[  586.135616][T19013]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  586.135633][T19013]  vfs_write+0x3c0/0xe80
[  586.135656][T19013]  ? __cfi_vfs_write+0x10/0x10
[  586.135675][T19013]  ? __kasan_check_write+0x18/0x20
[  586.135694][T19013]  ? mutex_lock+0x92/0x1c0
[  586.135720][T19013]  ? __cfi_mutex_lock+0x10/0x10
[  586.135747][T19013]  ? __fget_files+0x2c5/0x340
[  586.135776][T19013]  ksys_write+0x141/0x250
[  586.135798][T19013]  ? __cfi_ksys_write+0x10/0x10
[  586.135818][T19013]  ? __kasan_check_read+0x15/0x20
[  586.135837][T19013]  __x64_sys_write+0x7f/0x90
[  586.135858][T19013]  x64_sys_call+0x271c/0x2ee0
[  586.135881][T19013]  do_syscall_64+0x58/0xf0
[  586.135905][T19013]  ? clear_bhb_loop+0x35/0x90
[  586.135932][T19013]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  586.135957][T19013] RIP: 0033:0x7fd29398d3df
[  586.135976][T19013] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  586.135992][T19013] RSP: 002b:00007fd29471b030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  586.136014][T19013] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd29398d3df
[  586.136027][T19013] RDX: 0000000000000001 RSI: 00007fd29471b0a0 RDI: 0000000000000003
[  586.136039][T19013] RBP: 00007fd29471b090 R08: 0000000000000000 R09: 0000000000000000
[  586.136052][T19013] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  586.136063][T19013] R13: 0000000000000001 R14: 00007fd293bb5fa0 R15: 00007ffc59d50748
[  586.136079][T19013]  </TASK>
[  586.459438][T19020] input: syz1 as /devices/virtual/input/input433
[  586.522047][T19018] kvm: user requested TSC rate below hardware speed
[  586.703317][   T46] Bluetooth: hci1: Frame reassembly failed (-84)
[  586.710750][T19032] Bluetooth: hci1: Frame reassembly failed (-84)
[  586.842011][T19037] FAULT_INJECTION: forcing a failure.
[  586.842011][T19037] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  586.855511][T19037] CPU: 1 UID: 0 PID: 19037 Comm: syz.7.6884 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  586.855558][T19037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  586.855573][T19037] Call Trace:
[  586.855581][T19037]  <TASK>
[  586.855589][T19037]  __dump_stack+0x21/0x30
[  586.855626][T19037]  dump_stack_lvl+0x10c/0x190
[  586.855648][T19037]  ? __cfi_dump_stack_lvl+0x10/0x10
[  586.855674][T19037]  dump_stack+0x19/0x20
[  586.855695][T19037]  should_fail_ex+0x3d9/0x530
[  586.855720][T19037]  should_fail+0xf/0x20
[  586.855738][T19037]  should_fail_usercopy+0x1e/0x30
[  586.855758][T19037]  _copy_to_user+0x24/0xa0
[  586.855782][T19037]  simple_read_from_buffer+0xed/0x160
[  586.855811][T19037]  proc_fail_nth_read+0x19e/0x210
[  586.855830][T19037]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  586.855847][T19037]  ? bpf_lsm_file_permission+0xd/0x20
[  586.855871][T19037]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  586.855889][T19037]  vfs_read+0x278/0xb60
[  586.855913][T19037]  ? __cfi_do_mmap+0x10/0x10
[  586.855933][T19037]  ? __cfi_down_write_killable+0x10/0x10
[  586.855955][T19037]  ? __cfi_vfs_read+0x10/0x10
[  586.855985][T19037]  ? __kasan_check_write+0x18/0x20
[  586.856007][T19037]  ? mutex_lock+0x92/0x1c0
[  586.856034][T19037]  ? __cfi_mutex_lock+0x10/0x10
[  586.856061][T19037]  ? __fget_files+0x2c5/0x340
[  586.856090][T19037]  ksys_read+0x141/0x250
[  586.856109][T19037]  ? __cfi_ksys_read+0x10/0x10
[  586.856129][T19037]  ? __kasan_check_read+0x15/0x20
[  586.856148][T19037]  __x64_sys_read+0x7f/0x90
[  586.856168][T19037]  x64_sys_call+0x2638/0x2ee0
[  586.856192][T19037]  do_syscall_64+0x58/0xf0
[  586.856215][T19037]  ? clear_bhb_loop+0x35/0x90
[  586.856240][T19037]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  586.856267][T19037] RIP: 0033:0x7fdeda78d33c
[  586.856286][T19037] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  586.856304][T19037] RSP: 002b:00007fdedb669030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  586.856330][T19037] RAX: ffffffffffffffda RBX: 00007fdeda9b5fa0 RCX: 00007fdeda78d33c
[  586.856344][T19037] RDX: 000000000000000f RSI: 00007fdedb6690a0 RDI: 0000000000000004
[  586.856357][T19037] RBP: 00007fdedb669090 R08: 0000000000000000 R09: 0000000000000000
[  586.856370][T19037] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000002
[  586.856382][T19037] R13: 0000000000000000 R14: 00007fdeda9b5fa0 R15: 00007ffdfda14988
[  586.856398][T19037]  </TASK>
[  587.397926][T19046] binder: Bad value for 'stats'
[  587.539389][T19055] input: syz0 as /devices/virtual/input/input434
[  587.621618][T19057] binder: Unknown parameter 'dont_hash'
[  587.628772][T19058] binder: Unknown parameter 'dont_hash'
[  587.636954][  T584] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  587.762243][T19064] FAULT_INJECTION: forcing a failure.
[  587.762243][T19064] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  587.794761][T19064] CPU: 0 UID: 0 PID: 19064 Comm: syz.4.6893 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  587.794813][T19064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  587.794826][T19064] Call Trace:
[  587.794833][T19064]  <TASK>
[  587.794841][T19064]  __dump_stack+0x21/0x30
[  587.794877][T19064]  dump_stack_lvl+0x10c/0x190
[  587.794898][T19064]  ? __cfi_dump_stack_lvl+0x10/0x10
[  587.794937][T19064]  dump_stack+0x19/0x20
[  587.794957][T19064]  should_fail_ex+0x3d9/0x530
[  587.794981][T19064]  should_fail+0xf/0x20
[  587.794998][T19064]  should_fail_usercopy+0x1e/0x30
[  587.795019][T19064]  _copy_to_user+0x24/0xa0
[  587.795044][T19064]  simple_read_from_buffer+0xed/0x160
[  587.795074][T19064]  proc_fail_nth_read+0x19e/0x210
[  587.795095][T19064]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  587.795114][T19064]  ? bpf_lsm_file_permission+0xd/0x20
[  587.795138][T19064]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  587.795155][T19064]  vfs_read+0x278/0xb60
[  587.795176][T19064]  ? __cfi_do_mmap+0x10/0x10
[  587.795198][T19064]  ? __cfi_down_write_killable+0x10/0x10
[  587.795220][T19064]  ? __cfi_vfs_read+0x10/0x10
[  587.795240][T19064]  ? __kasan_check_write+0x18/0x20
[  587.795260][T19064]  ? mutex_lock+0x92/0x1c0
[  587.795286][T19064]  ? __cfi_mutex_lock+0x10/0x10
[  587.795312][T19064]  ? __fget_files+0x2c5/0x340
[  587.795342][T19064]  ksys_read+0x141/0x250
[  587.795363][T19064]  ? __cfi_ksys_read+0x10/0x10
[  587.795383][T19064]  ? __kasan_check_read+0x15/0x20
[  587.795402][T19064]  __x64_sys_read+0x7f/0x90
[  587.795424][T19064]  x64_sys_call+0x2638/0x2ee0
[  587.795447][T19064]  do_syscall_64+0x58/0xf0
[  587.795469][T19064]  ? clear_bhb_loop+0x35/0x90
[  587.795495][T19064]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  587.795517][T19064] RIP: 0033:0x7f634bd8d33c
[  587.795535][T19064] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  587.795551][T19064] RSP: 002b:00007f634cc6e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  587.795576][T19064] RAX: ffffffffffffffda RBX: 00007f634bfb5fa0 RCX: 00007f634bd8d33c
[  587.795591][T19064] RDX: 000000000000000f RSI: 00007f634cc6e0a0 RDI: 0000000000000004
[  587.795604][T19064] RBP: 00007f634cc6e090 R08: 0000000000000000 R09: 0000000000000000
[  587.795616][T19064] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000002
[  587.795628][T19064] R13: 0000000000000000 R14: 00007f634bfb5fa0 R15: 00007ffffae6a778
[  587.795642][T19064]  </TASK>
[  588.128673][T19069] rust_binder: Read failure Err(EAGAIN) in pid:465
[  588.221287][T19072] rust_binder: Write failure EFAULT in pid:467
[  588.313174][T19072] kvm: apic: phys broadcast and lowest prio
[  588.552171][   T13] bridge_slave_1: left allmulticast mode
[  588.558018][   T13] bridge_slave_1: left promiscuous mode
[  588.582995][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.613249][   T13] bridge_slave_0: left allmulticast mode
[  588.618994][   T13] bridge_slave_0: left promiscuous mode
[  588.643695][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.750080][  T585] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  588.756418][   T53] Bluetooth: hci1: command 0x1003 tx timeout
[  588.830148][   T13] veth1_macvtap: left promiscuous mode
[  588.835767][   T13] veth0_vlan: left promiscuous mode
[  588.976851][T19100] random: crng reseeded on system resumption
[  589.322634][T19096] bridge0: port 1(bridge_slave_0) entered blocking state
[  589.347741][T19096] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.360182][T19096] bridge_slave_0: entered allmulticast mode
[  589.367758][T19096] bridge_slave_0: entered promiscuous mode
[  589.376776][T19096] bridge0: port 2(bridge_slave_1) entered blocking state
[  589.384174][T19096] bridge0: port 2(bridge_slave_1) entered disabled state
[  589.392993][T19096] bridge_slave_1: entered allmulticast mode
[  589.399510][T19096] bridge_slave_1: entered promiscuous mode
[  589.422495][   T36] kauditd_printk_skb: 492 callbacks suppressed
[  589.422514][   T36] audit: type=1400 audit(1750306023.730:92543): avc:  denied  { sys_module } for  pid=19096 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  589.453148][   T36] audit: type=1400 audit(1750306023.730:92544): avc:  denied  { sys_module } for  pid=19096 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  589.511398][   T36] audit: type=1400 audit(1750306023.790:92545): avc:  denied  { sys_module } for  pid=19096 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  589.547208][   T36] audit: type=1400 audit(1750306023.790:92546): avc:  denied  { sys_module } for  pid=19096 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  589.581551][   T36] audit: type=1400 audit(1750306023.790:92547): avc:  denied  { read } for  pid=19111 comm="syz.4.6914" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  589.660070][   T36] audit: type=1400 audit(1750306023.790:92548): avc:  denied  { read open } for  pid=19111 comm="syz.4.6914" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  589.703108][T19096] bridge0: port 2(bridge_slave_1) entered blocking state
[  589.710268][T19096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  589.717629][T19096] bridge0: port 1(bridge_slave_0) entered blocking state
[  589.724736][T19096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  589.750740][   T36] audit: type=1400 audit(1750306023.790:92549): avc:  denied  { ioctl } for  pid=19111 comm="syz.4.6914" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  589.790312][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.797014][   T36] audit: type=1400 audit(1750306023.810:92550): avc:  denied  { read write } for  pid=19111 comm="syz.4.6914" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  589.821493][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  589.868566][   T36] audit: type=1400 audit(1750306023.810:92551): avc:  denied  { read write open } for  pid=19111 comm="syz.4.6914" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  589.940231][   T36] audit: type=1400 audit(1750306023.810:92552): avc:  denied  { ioctl } for  pid=19111 comm="syz.4.6914" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  589.987947][T19136] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  590.019980][T19136] binder: Bad value for 'defcontext'
[  590.066774][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  590.073950][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  590.101929][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  590.109056][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  590.118549][T19139] rust_binder: Write failure EFAULT in pid:485
[  590.360815][T19096] veth0_vlan: entered promiscuous mode
[  590.394373][T19146] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  590.440136][T19146] SELinux: failed to load policy
[  590.498720][T19096] veth1_macvtap: entered promiscuous mode
[  590.799118][T19163] input: syz0 as /devices/virtual/input/input436
[  590.822497][T19163] tun0: tun_chr_ioctl cmd 1074025676
[  590.829811][T19163] tun0: owner set to 0
[  591.539695][T19182] input: syz1 as /devices/virtual/input/input437
[  591.732648][T19186] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  591.972362][T19194] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1418
[  592.201105][T19200] kvm: apic: phys broadcast and lowest prio
[  592.290890][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.300802][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.310070][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.317567][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.332903][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.350958][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.358499][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.390124][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.397615][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.420070][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.427546][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.440061][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.448092][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.462681][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.464438][T19211] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:509
[  592.479880][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.500265][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.509152][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.518258][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.527481][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.551443][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.559251][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.588091][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.596813][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.616567][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.620474][T19215] FAULT_INJECTION: forcing a failure.
[  592.620474][T19215] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  592.625647][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.646616][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.654918][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.663272][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.672000][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.679651][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.695648][T19215] CPU: 1 UID: 0 PID: 19215 Comm: syz.1.6951 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  592.695686][T19215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  592.695699][T19215] Call Trace:
[  592.695706][T19215]  <TASK>
[  592.695715][T19215]  __dump_stack+0x21/0x30
[  592.695749][T19215]  dump_stack_lvl+0x10c/0x190
[  592.695772][T19215]  ? __cfi_dump_stack_lvl+0x10/0x10
[  592.695796][T19215]  ? __kasan_check_write+0x18/0x20
[  592.695820][T19215]  dump_stack+0x19/0x20
[  592.695842][T19215]  should_fail_ex+0x3d9/0x530
[  592.695865][T19215]  should_fail_alloc_page+0xeb/0x110
[  592.695890][T19215]  __alloc_pages_noprof+0x19d/0x6c0
[  592.695911][T19215]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  592.695930][T19215]  ? __folio_batch_add_and_move+0x2ab/0x370
[  592.695960][T19215]  ? __cfi_lru_add+0x10/0x10
[  592.695985][T19215]  ? __kasan_check_write+0x18/0x20
[  592.696005][T19215]  ? _raw_spin_lock+0x8c/0x120
[  592.696030][T19215]  ? __cfi__raw_spin_lock+0x10/0x10
[  592.696061][T19215]  __folio_alloc_noprof+0x14/0x80
[  592.696079][T19215]  shmem_alloc_and_add_folio+0x452/0x1050
[  592.696109][T19215]  ? put_swap_device+0x130/0x130
[  592.696134][T19215]  ? shmem_huge_global_enabled+0x2da/0x360
[  592.696159][T19215]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  592.696185][T19215]  shmem_get_folio_gfp+0x5f0/0x1380
[  592.696212][T19215]  ? shmem_get_folio+0xc0/0xc0
[  592.696235][T19215]  ? __cfi_folio_unlock+0x10/0x10
[  592.696263][T19215]  ? __kasan_check_write+0x18/0x20
[  592.696283][T19215]  ? noop_dirty_folio+0x81/0xa0
[  592.696304][T19215]  shmem_fallocate+0x8e8/0xcd0
[  592.696325][T19215]  ? __cfi_shmem_fallocate+0x10/0x10
[  592.696344][T19215]  ? __cfi_selinux_file_permission+0x10/0x10
[  592.696373][T19215]  ? avc_compute_av+0x443/0x770
[  592.696393][T19215]  vfs_fallocate+0x513/0x600
[  592.696418][T19215]  do_vfs_ioctl+0x1b3b/0x1e30
[  592.696444][T19215]  ? arch_stack_walk+0x10b/0x170
[  592.696471][T19215]  ? __ia32_compat_sys_ioctl+0x850/0x850
[  592.696498][T19215]  ? _parse_integer+0x2e/0x40
[  592.696521][T19215]  ? ioctl_has_perm+0x384/0x4d0
[  592.696549][T19215]  ? has_cap_mac_admin+0xd0/0xd0
[  592.696576][T19215]  ? proc_fail_nth_write+0x17e/0x210
[  592.696597][T19215]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  592.696616][T19215]  ? selinux_file_ioctl+0x6e0/0x1360
[  592.696641][T19215]  ? vfs_write+0x8ba/0xe80
[  592.696663][T19215]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  592.696689][T19215]  ? __cfi_vfs_write+0x10/0x10
[  592.696710][T19215]  ? __kasan_check_write+0x18/0x20
[  592.696731][T19215]  ? mutex_unlock+0x8b/0x240
[  592.696758][T19215]  ? __cfi_mutex_unlock+0x10/0x10
[  592.696783][T19215]  ? __fget_files+0x2c5/0x340
[  592.696810][T19215]  ? __fget_files+0x2c5/0x340
[  592.696834][T19215]  ? bpf_lsm_file_ioctl+0xd/0x20
[  592.696855][T19215]  ? security_file_ioctl+0x34/0xd0
[  592.696881][T19215]  __se_sys_ioctl+0x9f/0x1b0
[  592.696905][T19215]  __x64_sys_ioctl+0x7f/0xa0
[  592.696930][T19215]  x64_sys_call+0x1878/0x2ee0
[  592.696955][T19215]  do_syscall_64+0x58/0xf0
[  592.696979][T19215]  ? clear_bhb_loop+0x35/0x90
[  592.697007][T19215]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  592.697034][T19215] RIP: 0033:0x7fd29398e929
[  592.697061][T19215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.697079][T19215] RSP: 002b:00007fd29471b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  592.697104][T19215] RAX: ffffffffffffffda RBX: 00007fd293bb5fa0 RCX: 00007fd29398e929
[  592.697119][T19215] RDX: 0000200000000300 RSI: 000000004030582a RDI: 0000000000000003
[  592.697134][T19215] RBP: 00007fd29471b090 R08: 0000000000000000 R09: 0000000000000000
[  592.697147][T19215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  592.697160][T19215] R13: 0000000000000000 R14: 00007fd293bb5fa0 R15: 00007ffc59d50748
[  592.697176][T19215]  </TASK>
[  592.700296][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  592.987712][T19220] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  593.001766][   T10] hid-generic 0001:0000:0000.0024: unknown main item tag 0x0
[  593.130242][   T10] hid-generic 0001:0000:0000.0024: hidraw0: <UNKNOWN> HID vffffff.ff Device [syz0] on syz0
[  593.584893][T19235] fido_id[19235]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  593.694316][T19239] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  593.694361][T19239] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1434
[  593.913721][   T13] Bluetooth: hci0: Frame reassembly failed (-84)
[  594.431211][   T36] kauditd_printk_skb: 2166 callbacks suppressed
[  594.431235][   T36] audit: type=1400 audit(1750306028.740:94719): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  594.481780][T19096] audit: audit_backlog=65 > audit_backlog_limit=64
[  594.482041][T18424] audit: audit_backlog=65 > audit_backlog_limit=64
[  594.494917][T18424] audit: audit_lost=1272 audit_rate_limit=0 audit_backlog_limit=64
[  594.494939][T19096] audit: audit_lost=1273 audit_rate_limit=0 audit_backlog_limit=64
[  594.504300][T18424] audit: backlog limit exceeded
[  594.517736][T18424] audit: audit_backlog=65 > audit_backlog_limit=64
[  594.525056][   T36] audit: type=1400 audit(1750306028.740:94720): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  594.527194][T19096] audit: backlog limit exceeded
[  594.548658][T18424] audit: audit_lost=1274 audit_rate_limit=0 audit_backlog_limit=64
[  594.839900][T19254] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[  595.950349][  T585] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  595.956615][   T53] Bluetooth: hci0: command 0x1003 tx timeout
[  596.170695][T19275] input: syz1 as /devices/virtual/input/input439
[  597.552543][T19319] can0: slcan on ptm0.
[  597.592022][T19319] input: syz1 as /devices/virtual/input/input440
[  597.641136][T19321] rust_binder: Error while translating object.
[  597.641172][T19321] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  597.654186][T19321] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1464
[  597.892895][T19322] can0 (unregistered): slcan off ptm0.
[  599.052676][T19353] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  599.440090][   T36] kauditd_printk_skb: 5266 callbacks suppressed
[  599.440118][   T36] audit: type=1400 audit(1750306033.740:99918): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  599.533086][T19096] audit: audit_backlog=65 > audit_backlog_limit=64
[  599.534484][   T36] audit: type=1400 audit(1750306033.740:99919): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  599.539687][T19096] audit: audit_lost=1298 audit_rate_limit=0 audit_backlog_limit=64
[  599.571582][T18424] audit: audit_backlog=65 > audit_backlog_limit=64
[  599.578213][T18424] audit: audit_lost=1299 audit_rate_limit=0 audit_backlog_limit=64
[  599.588269][T19361] audit: audit_backlog=65 > audit_backlog_limit=64
[  599.596593][T19361] audit: audit_lost=1300 audit_rate_limit=0 audit_backlog_limit=64
[  599.601347][T17246] audit: audit_backlog=65 > audit_backlog_limit=64
[  599.604644][T18424] audit: backlog limit exceeded
[  600.383013][T19384] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  600.683025][T19389] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  601.240728][T19403] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  601.277618][T19403] rust_binder: Error while translating object.
[  601.295528][T19403] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  601.312931][T19403] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:1495
[  601.692025][T19411] rust_binder: Error while translating object.
[  601.720115][T19411] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  601.726475][T19411] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:1501
[  601.882262][T19415] input: syz1 as /devices/virtual/input/input441
[  602.560967][T19433] tap1: tun_chr_ioctl cmd 1074025677
[  602.566396][T19433] tap1: linktype set to 776
[  602.929877][T19442] input: syz1 as /devices/virtual/input/input442
[  602.946478][T19442] input: failed to attach handler leds to device input442, error: -6
[  603.129680][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.180179][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.201300][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.209030][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.240267][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.250062][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.260752][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.268497][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.277055][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.285389][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.293772][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.302236][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.309777][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.324358][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.336960][  T525] hid-generic 009C:0008:0003.0025: unknown main item tag 0x0
[  603.355571][  T525] hid-generic 009C:0008:0003.0025: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  603.577011][T19455] fido_id[19455]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  604.070733][T19468] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  604.100895][T19470] input: syz1 as /devices/virtual/input/input443
[  604.410713][   T46] Bluetooth: hci0: Frame reassembly failed (-84)
[  604.423980][T19473] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  604.450170][   T36] kauditd_printk_skb: 4954 callbacks suppressed
[  604.450195][   T36] audit: type=1400 audit(1750306038.750:104856): avc:  denied  { setattr } for  pid=19096 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  604.509547][T19096] audit: audit_backlog=65 > audit_backlog_limit=64
[  604.510595][T18424] audit: audit_backlog=65 > audit_backlog_limit=64
[  604.528286][T18424] audit: audit_lost=1307 audit_rate_limit=0 audit_backlog_limit=64
[  604.536569][T19096] audit: audit_lost=1308 audit_rate_limit=0 audit_backlog_limit=64
[  604.544940][   T36] audit: type=1400 audit(1750306038.760:104857): avc:  denied  { setattr } for  pid=19096 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  604.545158][T18424] audit: backlog limit exceeded
[  604.572696][T19096] audit: backlog limit exceeded
[  604.580580][T19096] audit: audit_backlog=65 > audit_backlog_limit=64
[  604.587123][T19096] audit: audit_lost=1309 audit_rate_limit=0 audit_backlog_limit=64
[  605.073570][T19487] binder: Unknown parameter 'dont_hash'
[  605.361268][T19491] FAULT_INJECTION: forcing a failure.
[  605.361268][T19491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  605.389429][T19491] CPU: 1 UID: 0 PID: 19491 Comm: syz.4.7047 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  605.389474][T19491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  605.389487][T19491] Call Trace:
[  605.389494][T19491]  <TASK>
[  605.389504][T19491]  __dump_stack+0x21/0x30
[  605.389539][T19491]  dump_stack_lvl+0x10c/0x190
[  605.389560][T19491]  ? __cfi_dump_stack_lvl+0x10/0x10
[  605.389585][T19491]  dump_stack+0x19/0x20
[  605.389608][T19491]  should_fail_ex+0x3d9/0x530
[  605.389633][T19491]  should_fail+0xf/0x20
[  605.389651][T19491]  should_fail_usercopy+0x1e/0x30
[  605.389672][T19491]  _copy_from_user+0x22/0xb0
[  605.389697][T19491]  memdup_user+0x81/0x180
[  605.389718][T19491]  ? strndup_user+0x40/0xd0
[  605.389737][T19491]  strndup_user+0x6c/0xd0
[  605.389757][T19491]  prctl_set_vma+0x129/0x590
[  605.389782][T19491]  ? prctl_get_mdwe+0x120/0x120
[  605.389806][T19491]  ? __kasan_check_read+0x15/0x20
[  605.389828][T19491]  ? static_key_count+0x45/0x70
[  605.389849][T19491]  ? security_task_prctl+0x20b/0x230
[  605.389871][T19491]  __se_sys_prctl+0x4c1/0x1460
[  605.389894][T19491]  ? __x64_sys_prctl+0xf0/0xf0
[  605.389917][T19491]  __x64_sys_prctl+0xc3/0xf0
[  605.389938][T19491]  x64_sys_call+0x2614/0x2ee0
[  605.389964][T19491]  do_syscall_64+0x58/0xf0
[  605.389994][T19491]  ? clear_bhb_loop+0x35/0x90
[  605.390020][T19491]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  605.390043][T19491] RIP: 0033:0x7f634bd8e929
[  605.390061][T19491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.390077][T19491] RSP: 002b:00007f634cc6e038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  605.390103][T19491] RAX: ffffffffffffffda RBX: 00007f634bfb5fa0 RCX: 00007f634bd8e929
[  605.390119][T19491] RDX: 0000200000ffb000 RSI: 0000000000000000 RDI: 0000000053564d41
[  605.390133][T19491] RBP: 00007f634cc6e090 R08: 0000200000000040 R09: 0000000000000000
[  605.390146][T19491] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  605.390161][T19491] R13: 0000000000000000 R14: 00007f634bfb5fa0 R15: 00007ffffae6a778
[  605.390176][T19491]  </TASK>
[  606.430064][  T585] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  606.531518][T19502] binder: Unknown parameter 'coyBLV§"i5ŽÝ”ÃùÒntext'
[  606.685015][   T46] bridge_slave_1: left allmulticast mode
[  606.691134][   T46] bridge_slave_1: left promiscuous mode
[  606.697004][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  606.720686][   T46] bridge_slave_0: left allmulticast mode
[  606.726462][   T46] bridge_slave_0: left promiscuous mode
[  606.750223][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  606.924817][   T46] veth1_macvtap: left promiscuous mode
[  606.940868][   T46] veth0_vlan: left promiscuous mode
[  607.024948][T19513] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION duplicate cookie
[  607.041299][T19513] rust_binder: Write failure EINVAL in pid:1543
[  607.195971][T19505] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.209902][T19505] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.217384][T19505] bridge_slave_0: entered allmulticast mode
[  607.224080][T19505] bridge_slave_0: entered promiscuous mode
[  607.232283][T19505] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.239543][T19505] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.270079][T19505] bridge_slave_1: entered allmulticast mode
[  607.276738][T19505] bridge_slave_1: entered promiscuous mode
[  607.442626][T19524] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1548
[  607.612225][T19505] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.628556][T19505] bridge0: port 2(bridge_slave_1) entered forwarding state
[  607.635938][T19505] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.643018][T19505] bridge0: port 1(bridge_slave_0) entered forwarding state
[  607.653465][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.661686][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.780872][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.788234][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  607.818793][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.826053][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  607.954660][T19505] veth0_vlan: entered promiscuous mode
[  607.965475][T19531] rust_binder: Error while translating object.
[  607.965518][T19531] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  607.984874][T19531] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:1552
[  608.029647][T19505] veth1_macvtap: entered promiscuous mode
[  608.251064][T19533] SELinux:  Context system_u:object_r:restorecond_exec_t:s0 is not valid (left unmapped).
[  608.292485][T19533] input: syz0 as /devices/virtual/input/input446
[  608.317591][T19533] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:2
[  608.562782][   T46] bridge_slave_1: left allmulticast mode
[  608.610387][   T46] bridge_slave_1: left promiscuous mode
[  608.630231][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.652668][T19539] SELinux: failed to load policy
[  608.658677][   T46] bridge_slave_0: left allmulticast mode
[  608.670371][   T46] bridge_slave_0: left promiscuous mode
[  608.686263][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  608.865642][   T46] veth1_macvtap: left promiscuous mode
[  608.874474][   T46] veth0_vlan: left promiscuous mode
[  608.942708][T19552] syz.4.7067: attempt to access beyond end of device
[  608.942708][T19552] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  609.091969][T19535] bridge0: port 1(bridge_slave_0) entered blocking state
[  609.102175][T19535] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.109295][T19535] bridge_slave_0: entered allmulticast mode
[  609.130584][T19535] bridge_slave_0: entered promiscuous mode
[  609.157577][T19535] bridge0: port 2(bridge_slave_1) entered blocking state
[  609.180653][T19535] bridge0: port 2(bridge_slave_1) entered disabled state
[  609.201317][T19535] bridge_slave_1: entered allmulticast mode
[  609.207913][T19535] bridge_slave_1: entered promiscuous mode
[  609.447383][T19535] bridge0: port 2(bridge_slave_1) entered blocking state
[  609.454701][T19535] bridge0: port 2(bridge_slave_1) entered forwarding state
[  609.462069][T19535] bridge0: port 1(bridge_slave_0) entered blocking state
[  609.469208][T19535] bridge0: port 1(bridge_slave_0) entered forwarding state
[  609.476648][   T36] kauditd_printk_skb: 4741 callbacks suppressed
[  609.476684][   T36] audit: type=1400 audit(1750306043.770:109404): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.580057][   T36] audit: type=1400 audit(1750306043.770:109405): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.659586][   T36] audit: type=1400 audit(1750306043.770:109406): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.724163][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.731925][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  609.760071][   T36] audit: type=1400 audit(1750306043.770:109407): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.799550][   T36] audit: type=1400 audit(1750306043.770:109408): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.800584][T19568] syz.4.7071: attempt to access beyond end of device
[  609.800584][T19568] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  609.831314][   T36] audit: type=1400 audit(1750306043.770:109409): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.869682][   T36] audit: type=1400 audit(1750306043.770:109410): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.908393][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  609.915635][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  609.925796][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  609.933005][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  609.950392][   T36] audit: type=1400 audit(1750306043.790:109411): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  609.978648][   T36] audit: type=1400 audit(1750306043.820:109412): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  610.006100][   T36] audit: type=1400 audit(1750306043.820:109413): avc:  denied  { setattr } for  pid=18424 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  610.034666][  T292] bridge_slave_1: left allmulticast mode
[  610.040702][  T292] bridge_slave_1: left promiscuous mode
[  610.046360][  T292] bridge0: port 2(bridge_slave_1) entered disabled state
[  610.054297][  T292] bridge_slave_0: left allmulticast mode
[  610.059967][  T292] bridge_slave_0: left promiscuous mode
[  610.066532][  T292] bridge0: port 1(bridge_slave_0) entered disabled state
[  610.126772][T19572] kvm: kvm [19571]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010004) = 0x3
[  610.188267][  T292] veth1_macvtap: left promiscuous mode
[  610.196005][  T292] veth0_vlan: left promiscuous mode
[  610.374387][T19570] bridge0: port 1(bridge_slave_0) entered blocking state
[  610.400485][T19570] bridge0: port 1(bridge_slave_0) entered disabled state
[  610.423500][T19570] bridge_slave_0: entered allmulticast mode
[  610.430644][T19577] kvm: user requested TSC rate below hardware speed
[  610.439191][T19570] bridge_slave_0: entered promiscuous mode
[  610.472677][T19570] bridge0: port 2(bridge_slave_1) entered blocking state
[  610.479903][T19570] bridge0: port 2(bridge_slave_1) entered disabled state
[  610.528595][T19570] bridge_slave_1: entered allmulticast mode
[  610.536134][T19570] bridge_slave_1: entered promiscuous mode
[  610.559355][T19581] SELinux: security_context_str_to_sid () failed with errno=-22
[  610.754816][T19535] veth0_vlan: entered promiscuous mode
[  610.913588][T19535] veth1_macvtap: entered promiscuous mode
[  610.936469][T19589] rust_binder: Got transaction with invalid offset.
[  610.936546][T19589] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  610.984734][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  610.991321][T19589] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:25
[  610.994297][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  611.065328][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  611.072496][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  611.115970][T19592] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  611.277229][T19570] veth0_vlan: entered promiscuous mode
[  611.394785][T19570] veth1_macvtap: entered promiscuous mode
[  611.431554][T19601] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  611.668313][T19610] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:2
[  611.856254][T19615] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  611.899630][T19615] SELinux: failed to load policy
[  611.926198][T19617] rust_binder: Failed to allocate buffer. len:16, is_oneway:false
[  611.942293][T19619] FAULT_INJECTION: forcing a failure.
[  611.942293][T19619] name failslab, interval 1, probability 0, space 0, times 0
[  611.976269][T19619] CPU: 0 UID: 0 PID: 19619 Comm: syz.4.7091 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  611.976315][T19619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  611.976330][T19619] Call Trace:
[  611.976337][T19619]  <TASK>
[  611.976347][T19619]  __dump_stack+0x21/0x30
[  611.976384][T19619]  dump_stack_lvl+0x10c/0x190
[  611.976404][T19619]  ? __cfi_dump_stack_lvl+0x10/0x10
[  611.976427][T19619]  dump_stack+0x19/0x20
[  611.976447][T19619]  should_fail_ex+0x3d9/0x530
[  611.976470][T19619]  should_failslab+0xac/0x100
[  611.976499][T19619]  kmem_cache_alloc_lru_noprof+0x45/0x3a0
[  611.976526][T19619]  ? __d_alloc+0x42/0x8e0
[  611.976549][T19619]  __d_alloc+0x42/0x8e0
[  611.976568][T19619]  d_alloc_pseudo+0x23/0xc0
[  611.976587][T19619]  alloc_file_pseudo_noaccount+0xce/0x300
[  611.976617][T19619]  ? _atomic_dec_and_lock+0x98/0x120
[  611.976642][T19619]  ? __cfi_alloc_file_pseudo_noaccount+0x10/0x10
[  611.976669][T19619]  ? __cfi_bd_prepare_to_claim+0x10/0x10
[  611.976699][T19619]  bdev_file_open_by_dev+0x17e/0x240
[  611.976725][T19619]  disk_scan_partitions+0x1c5/0x2d0
[  611.976747][T19619]  blkdev_common_ioctl+0x17e3/0x2660
[  611.976765][T19619]  ? blkdev_bszset+0x220/0x220
[  611.976783][T19619]  ? has_cap_mac_admin+0xd0/0xd0
[  611.976810][T19619]  ? proc_fail_nth_write+0x17e/0x210
[  611.976830][T19619]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  611.976847][T19619]  ? selinux_file_ioctl+0x6e0/0x1360
[  611.976872][T19619]  ? vfs_write+0x8ba/0xe80
[  611.976891][T19619]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  611.976918][T19619]  ? __cfi_vfs_write+0x10/0x10
[  611.976939][T19619]  ? __kasan_check_write+0x18/0x20
[  611.976958][T19619]  ? mutex_unlock+0x8b/0x240
[  611.976987][T19619]  ? __cfi_mutex_unlock+0x10/0x10
[  611.977013][T19619]  ? __fget_files+0x2c5/0x340
[  611.977039][T19619]  blkdev_ioctl+0x484/0x680
[  611.977068][T19619]  ? __cfi_blkdev_ioctl+0x10/0x10
[  611.977086][T19619]  ? bpf_lsm_file_ioctl+0xd/0x20
[  611.977109][T19619]  ? security_file_ioctl+0x34/0xd0
[  611.977135][T19619]  ? __cfi_blkdev_ioctl+0x10/0x10
[  611.977153][T19619]  __se_sys_ioctl+0x132/0x1b0
[  611.977180][T19619]  __x64_sys_ioctl+0x7f/0xa0
[  611.977205][T19619]  x64_sys_call+0x1878/0x2ee0
[  611.977230][T19619]  do_syscall_64+0x58/0xf0
[  611.977252][T19619]  ? clear_bhb_loop+0x35/0x90
[  611.977284][T19619]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  611.977308][T19619] RIP: 0033:0x7f634bd8e929
[  611.977327][T19619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  611.977344][T19619] RSP: 002b:00007f634cc6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  611.977371][T19619] RAX: ffffffffffffffda RBX: 00007f634bfb5fa0 RCX: 00007f634bd8e929
[  611.977387][T19619] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000003
[  611.977400][T19619] RBP: 00007f634cc6e090 R08: 0000000000000000 R09: 0000000000000000
[  611.977414][T19619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  611.977426][T19619] R13: 0000000000000000 R14: 00007f634bfb5fa0 R15: 00007ffffae6a778
[  611.977443][T19619]  </TASK>
[  612.390168][T18740] Bluetooth: hci0: Frame reassembly failed (-84)
[  612.527364][T19629] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  612.567610][T19634] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  612.620176][T19634] SELinux: failed to load policy
[  612.643156][T19637] FAULT_INJECTION: forcing a failure.
[  612.643156][T19637] name failslab, interval 1, probability 0, space 0, times 0
[  612.684430][T19637] CPU: 1 UID: 0 PID: 19637 Comm: syz.8.7100 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  612.684481][T19637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  612.684494][T19637] Call Trace:
[  612.684501][T19637]  <TASK>
[  612.684511][T19637]  __dump_stack+0x21/0x30
[  612.684547][T19637]  dump_stack_lvl+0x10c/0x190
[  612.684570][T19637]  ? __cfi_dump_stack_lvl+0x10/0x10
[  612.684594][T19637]  dump_stack+0x19/0x20
[  612.684615][T19637]  should_fail_ex+0x3d9/0x530
[  612.684640][T19637]  should_failslab+0xac/0x100
[  612.684668][T19637]  kmem_cache_alloc_lru_noprof+0x45/0x3a0
[  612.684691][T19637]  ? __d_alloc+0x42/0x8e0
[  612.684711][T19637]  __d_alloc+0x42/0x8e0
[  612.684730][T19637]  d_alloc_pseudo+0x23/0xc0
[  612.684747][T19637]  alloc_file_pseudo_noaccount+0xce/0x300
[  612.684775][T19637]  ? _atomic_dec_and_lock+0x98/0x120
[  612.684797][T19637]  ? __cfi_alloc_file_pseudo_noaccount+0x10/0x10
[  612.684823][T19637]  ? __cfi_bd_prepare_to_claim+0x10/0x10
[  612.684851][T19637]  bdev_file_open_by_dev+0x17e/0x240
[  612.684876][T19637]  disk_scan_partitions+0x1c5/0x2d0
[  612.684898][T19637]  blkdev_common_ioctl+0x17e3/0x2660
[  612.684918][T19637]  ? blkdev_bszset+0x220/0x220
[  612.684935][T19637]  ? has_cap_mac_admin+0xd0/0xd0
[  612.684963][T19637]  ? proc_fail_nth_write+0x17e/0x210
[  612.684982][T19637]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  612.685000][T19637]  ? selinux_file_ioctl+0x6e0/0x1360
[  612.685026][T19637]  ? vfs_write+0x8ba/0xe80
[  612.685056][T19637]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  612.685079][T19637]  ? __cfi_vfs_write+0x10/0x10
[  612.685099][T19637]  ? __kasan_check_write+0x18/0x20
[  612.685118][T19637]  ? mutex_unlock+0x8b/0x240
[  612.685147][T19637]  ? __cfi_mutex_unlock+0x10/0x10
[  612.685171][T19637]  ? __fget_files+0x2c5/0x340
[  612.685197][T19637]  blkdev_ioctl+0x484/0x680
[  612.685212][T19637]  ? __cfi_blkdev_ioctl+0x10/0x10
[  612.685228][T19637]  ? bpf_lsm_file_ioctl+0xd/0x20
[  612.685247][T19637]  ? security_file_ioctl+0x34/0xd0
[  612.685269][T19637]  ? __cfi_blkdev_ioctl+0x10/0x10
[  612.685284][T19637]  __se_sys_ioctl+0x132/0x1b0
[  612.685307][T19637]  __x64_sys_ioctl+0x7f/0xa0
[  612.685327][T19637]  x64_sys_call+0x1878/0x2ee0
[  612.685351][T19637]  do_syscall_64+0x58/0xf0
[  612.685373][T19637]  ? clear_bhb_loop+0x35/0x90
[  612.685399][T19637]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  612.685424][T19637] RIP: 0033:0x7f426e58e929
[  612.685443][T19637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  612.685465][T19637] RSP: 002b:00007f426f3fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  612.685490][T19637] RAX: ffffffffffffffda RBX: 00007f426e7b5fa0 RCX: 00007f426e58e929
[  612.685505][T19637] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000003
[  612.685518][T19637] RBP: 00007f426f3fd090 R08: 0000000000000000 R09: 0000000000000000
[  612.685529][T19637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  612.685541][T19637] R13: 0000000000000000 R14: 00007f426e7b5fa0 R15: 00007ffca51d7f88
[  612.685557][T19637]  </TASK>
[  613.151412][T19641] SELinux: failed to load policy
[  613.662212][T19666] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:15
[  613.718525][T19669] binder: Unknown parameter 'sgclpbel'
[  613.749485][T19668] binder: Unknown parameter 'sgclpbel'
[  613.787964][T19668] SELinux: ebitmap: truncated map
[  613.796414][T19668] SELinux: failed to load policy
[  614.003342][T19679] SELinux: security_context_str_to_sid () failed with errno=-22
[  614.072739][T19681] input: syz1 as /devices/virtual/input/input448
[  614.100091][T19683] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  614.256617][T19690] FAULT_INJECTION: forcing a failure.
[  614.256617][T19690] name failslab, interval 1, probability 0, space 0, times 0
[  614.270471][T19690] CPU: 1 UID: 0 PID: 19690 Comm: syz.8.7121 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  614.270514][T19690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  614.270527][T19690] Call Trace:
[  614.270535][T19690]  <TASK>
[  614.270543][T19690]  __dump_stack+0x21/0x30
[  614.270578][T19690]  dump_stack_lvl+0x10c/0x190
[  614.270598][T19690]  ? __cfi_dump_stack_lvl+0x10/0x10
[  614.270620][T19690]  ? pointer+0xdd0/0xdd0
[  614.270642][T19690]  dump_stack+0x19/0x20
[  614.270661][T19690]  should_fail_ex+0x3d9/0x530
[  614.270683][T19690]  should_failslab+0xac/0x100
[  614.270711][T19690]  __kmalloc_node_track_caller_noprof+0x68/0x440
[  614.270735][T19690]  ? sidtab_sid2str_get+0x139/0x370
[  614.270762][T19690]  kmemdup_noprof+0x31/0x80
[  614.270783][T19690]  sidtab_sid2str_get+0x139/0x370
[  614.270807][T19690]  security_sid_to_context_core+0x30d/0x5d0
[  614.270827][T19690]  security_sid_to_context+0x2e/0x50
[  614.270845][T19690]  avc_audit_post_callback+0x107/0x780
[  614.270867][T19690]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  614.270887][T19690]  ? audit_log_untrustedstring+0xea/0x100
[  614.270908][T19690]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  614.270929][T19690]  common_lsm_audit+0x147a/0x1860
[  614.270950][T19690]  ? _raw_spin_unlock_irqrestore+0x4a/0x70
[  614.270976][T19690]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  614.270994][T19690]  ? __cfi_common_lsm_audit+0x10/0x10
[  614.271012][T19690]  ? avc_denied+0x112/0x180
[  614.271032][T19690]  slow_avc_audit+0x18d/0x1f0
[  614.271049][T19690]  ? __cfi_slow_avc_audit+0x10/0x10
[  614.271068][T19690]  ? kasan_save_track+0x3e/0x80
[  614.271095][T19690]  ? avc_has_perm_noaudit+0x21c/0x360
[  614.271116][T19690]  avc_has_perm+0x1cd/0x220
[  614.271146][T19690]  ? __cfi_avc_has_perm+0x10/0x10
[  614.271164][T19690]  selinux_mount+0x39a/0x4e0
[  614.271185][T19690]  ? __cfi_selinux_mount+0x10/0x10
[  614.271207][T19690]  security_sb_mount+0x72/0x100
[  614.271229][T19690]  path_mount+0xca/0x1050
[  614.271253][T19690]  ? putname+0x113/0x150
[  614.271278][T19690]  __se_sys_mount+0x2bd/0x480
[  614.271301][T19690]  ? ksys_write+0x1ef/0x250
[  614.271324][T19690]  ? __x64_sys_mount+0xf0/0xf0
[  614.271346][T19690]  __x64_sys_mount+0xc3/0xf0
[  614.271366][T19690]  x64_sys_call+0x2021/0x2ee0
[  614.271389][T19690]  do_syscall_64+0x58/0xf0
[  614.271411][T19690]  ? clear_bhb_loop+0x35/0x90
[  614.271436][T19690]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  614.271459][T19690] RIP: 0033:0x7f426e58e929
[  614.271476][T19690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  614.271491][T19690] RSP: 002b:00007f426f3fd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  614.271515][T19690] RAX: ffffffffffffffda RBX: 00007f426e7b5fa0 RCX: 00007f426e58e929
[  614.271528][T19690] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000000
[  614.271540][T19690] RBP: 00007f426f3fd090 R08: 0000000000000000 R09: 0000000000000000
[  614.271552][T19690] R10: 0000000002010860 R11: 0000000000000246 R12: 0000000000000002
[  614.271564][T19690] R13: 0000000000000001 R14: 00007f426e7b5fa0 R15: 00007ffca51d7f88
[  614.271580][T19690]  </TASK>
[  614.605278][   T36] kauditd_printk_skb: 587 callbacks suppressed
[  614.605304][   T36] audit: type=1400 audit(1750306048.910:110001): avc:  denied  { read write } for  pid=17246 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  614.614392][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  614.752338][   T36] audit: type=1400 audit(1750306048.910:110002): avc:  denied  { read write open } for  pid=17246 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  614.782056][   T36] audit: type=1400 audit(1750306048.910:110003): avc:  denied  { ioctl } for  pid=17246 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  614.810108][   T36] audit: type=1400 audit(1750306048.990:110004): avc:  denied  { read } for  pid=19691 comm="syz.4.7123" name="ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  614.833182][   T36] audit: type=1400 audit(1750306048.990:110005): avc:  denied  { read open } for  pid=19691 comm="syz.4.7123" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  614.858303][   T36] audit: type=1400 audit(1750306048.990:110006): avc:  denied  { ioctl } for  pid=19691 comm="syz.4.7123" path="/dev/ashmem" dev="devtmpfs" ino=201 ioctlcmd=0x7703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  614.884372][   T36] audit: type=1400 audit(1750306048.990:110007): avc:  denied  { map } for  pid=19691 comm="syz.4.7123" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  614.908153][   T36] audit: type=1400 audit(1750306048.990:110008): avc:  denied  { read } for  pid=19691 comm="syz.4.7123" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  614.931965][   T36] audit: type=1400 audit(1750306048.990:110009): avc:  denied  { read } for  pid=19691 comm="syz.4.7123" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  614.955367][   T36] audit: type=1400 audit(1750306048.990:110010): avc:  denied  { read open } for  pid=19691 comm="syz.4.7123" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  615.196899][T19711] input: syz1 as /devices/virtual/input/input450
[  615.292035][T19716] SELinux:  policydb magic number 0x7379732f does not match expected magic number 0xf97cff8c
[  615.308202][T19716] SELinux: failed to load policy
[  615.582440][T19731] rust_binder: Write failure EINVAL in pid:16
[  615.728686][T19738] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:728
[  615.952230][T19742] random: crng reseeded on system resumption
[  616.162362][T19752] FAULT_INJECTION: forcing a failure.
[  616.162362][T19752] name failslab, interval 1, probability 0, space 0, times 0
[  616.191076][T19752] CPU: 1 UID: 0 PID: 19752 Comm: syz.1.7145 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  616.191113][T19752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  616.191126][T19752] Call Trace:
[  616.191133][T19752]  <TASK>
[  616.191142][T19752]  __dump_stack+0x21/0x30
[  616.191176][T19752]  dump_stack_lvl+0x10c/0x190
[  616.191216][T19752]  ? __cfi_dump_stack_lvl+0x10/0x10
[  616.191240][T19752]  dump_stack+0x19/0x20
[  616.191260][T19752]  should_fail_ex+0x3d9/0x530
[  616.191284][T19752]  should_failslab+0xac/0x100
[  616.191312][T19752]  kmem_cache_alloc_lru_noprof+0x45/0x3a0
[  616.191337][T19752]  ? proc_alloc_inode+0x48/0x150
[  616.191360][T19752]  proc_alloc_inode+0x48/0x150
[  616.191380][T19752]  ? __cfi_proc_alloc_inode+0x10/0x10
[  616.191399][T19752]  alloc_inode+0x7a/0x270
[  616.191427][T19752]  new_inode+0x25/0x1e0
[  616.191450][T19752]  proc_pid_make_inode+0x25/0x140
[  616.191472][T19752]  proc_pident_instantiate+0x6d/0x2c0
[  616.191496][T19752]  proc_pident_lookup+0x1c7/0x270
[  616.191518][T19752]  proc_tgid_base_lookup+0x2f/0x40
[  616.191541][T19752]  __lookup_slow+0x2d4/0x400
[  616.191568][T19752]  ? lookup_one_len+0x2f0/0x2f0
[  616.191593][T19752]  ? down_read+0x79/0xe0
[  616.191616][T19752]  lookup_slow+0x57/0x80
[  616.191640][T19752]  link_path_walk+0x990/0xec0
[  616.191662][T19752]  path_openat+0x281/0x34b0
[  616.191689][T19752]  ? kasan_save_alloc_info+0x40/0x50
[  616.191707][T19752]  ? getname_flags+0xc6/0x710
[  616.191728][T19752]  ? do_sys_openat2+0xcb/0x1c0
[  616.191746][T19752]  ? __x64_sys_openat+0x13a/0x170
[  616.191765][T19752]  ? do_filp_open+0x3e0/0x3e0
[  616.191790][T19752]  do_filp_open+0x1c6/0x3e0
[  616.191814][T19752]  ? __cfi_do_filp_open+0x10/0x10
[  616.191841][T19752]  ? __cfi_kfree_link+0x10/0x10
[  616.191863][T19752]  ? alloc_fd+0x4e7/0x5a0
[  616.191889][T19752]  do_sys_openat2+0x12c/0x1c0
[  616.191906][T19752]  ? fput+0x1a5/0x240
[  616.191931][T19752]  ? do_sys_open+0x100/0x100
[  616.191946][T19752]  ? ksys_write+0x1ef/0x250
[  616.191965][T19752]  ? __cfi_ksys_write+0x10/0x10
[  616.191983][T19752]  __x64_sys_openat+0x13a/0x170
[  616.192000][T19752]  x64_sys_call+0xe69/0x2ee0
[  616.192024][T19752]  do_syscall_64+0x58/0xf0
[  616.192049][T19752]  ? clear_bhb_loop+0x35/0x90
[  616.192078][T19752]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  616.192103][T19752] RIP: 0033:0x7f519218e929
[  616.192120][T19752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  616.192136][T19752] RSP: 002b:00007f51907f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  616.192160][T19752] RAX: ffffffffffffffda RBX: 00007f51923b5fa0 RCX: 00007f519218e929
[  616.192175][T19752] RDX: 0000000000040040 RSI: 0000200000003340 RDI: ffffffffffffff9c
[  616.192205][T19752] RBP: 00007f51907f7090 R08: 0000000000000000 R09: 0000000000000000
[  616.192219][T19752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  616.192232][T19752] R13: 0000000000000000 R14: 00007f51923b5fa0 R15: 00007ffc104f54c8
[  616.192250][T19752]  </TASK>
[  616.211745][T19754] rust_binder: Error while translating object.
[  616.362912][T19758] rust_binder: Failed to claim space for a BINDER_TYPE_PTR. (offset: 128, limit: 144, size: 255)
[  616.368316][T19754] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM }
[  616.383051][T19758] rust_binder: Error while translating object.
[  616.400271][T19754] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:80
[  616.404178][T19758] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  616.546976][T19758] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:26
[  616.679254][T19768] rust_binder: Failed to allocate buffer. len:136, is_oneway:false
[  617.236169][T19789] kvm: Disabled LAPIC found during irq injection
[  617.529501][T19802] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:50
[  617.540571][T19804] rust_binder: Write failure EINVAL in pid:38
[  617.688602][T19812] FAULT_INJECTION: forcing a failure.
[  617.688602][T19812] name failslab, interval 1, probability 0, space 0, times 0
[  617.730180][T19812] CPU: 0 UID: 0 PID: 19812 Comm: syz.8.7169 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  617.730226][T19812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  617.730239][T19812] Call Trace:
[  617.730247][T19812]  <TASK>
[  617.730256][T19812]  __dump_stack+0x21/0x30
[  617.730292][T19812]  dump_stack_lvl+0x10c/0x190
[  617.730313][T19812]  ? __cfi_dump_stack_lvl+0x10/0x10
[  617.730333][T19812]  ? avc_perm_nonode+0x101/0x1b0
[  617.730364][T19812]  dump_stack+0x19/0x20
[  617.730384][T19812]  should_fail_ex+0x3d9/0x530
[  617.730407][T19812]  should_failslab+0xac/0x100
[  617.730435][T19812]  kmem_cache_alloc_noprof+0x42/0x3a0
[  617.730458][T19812]  ? proc_reg_open+0x21b/0x640
[  617.730482][T19812]  proc_reg_open+0x21b/0x640
[  617.730499][T19812]  ? __cfi_proc_reg_open+0x10/0x10
[  617.730516][T19812]  do_dentry_open+0x978/0x1510
[  617.730542][T19812]  vfs_open+0x86/0x230
[  617.730556][T19812]  ? __cfi_vfs_open+0x10/0x10
[  617.730569][T19812]  ? may_open+0x352/0x430
[  617.730592][T19812]  path_openat+0x2b6c/0x34b0
[  617.730620][T19812]  ? do_filp_open+0x3e0/0x3e0
[  617.730643][T19812]  do_filp_open+0x1c6/0x3e0
[  617.730663][T19812]  ? __cfi_do_filp_open+0x10/0x10
[  617.730685][T19812]  ? alloc_fd+0x4e7/0x5a0
[  617.730707][T19812]  do_sys_openat2+0x12c/0x1c0
[  617.730723][T19812]  ? fput+0x1a5/0x240
[  617.730748][T19812]  ? do_sys_open+0x100/0x100
[  617.730762][T19812]  ? ksys_write+0x1ef/0x250
[  617.730789][T19812]  ? __cfi_ksys_write+0x10/0x10
[  617.730807][T19812]  __x64_sys_openat+0x13a/0x170
[  617.730823][T19812]  x64_sys_call+0xe69/0x2ee0
[  617.730843][T19812]  do_syscall_64+0x58/0xf0
[  617.730863][T19812]  ? clear_bhb_loop+0x35/0x90
[  617.730886][T19812]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  617.730906][T19812] RIP: 0033:0x7f426e58e929
[  617.730924][T19812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  617.730939][T19812] RSP: 002b:00007f426f3fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  617.730965][T19812] RAX: ffffffffffffffda RBX: 00007f426e7b5fa0 RCX: 00007f426e58e929
[  617.730979][T19812] RDX: 0000000000000000 RSI: 00002000000023c0 RDI: ffffffffffffff9c
[  617.730992][T19812] RBP: 00007f426f3fd090 R08: 0000000000000000 R09: 0000000000000000
[  617.731004][T19812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  617.731016][T19812] R13: 0000000000000001 R14: 00007f426e7b5fa0 R15: 00007ffca51d7f88
[  617.731030][T19812]  </TASK>
[  618.633030][T19842] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  618.966345][T19857] rust_binder: Write failure EFAULT in pid:766
[  619.043604][T19861] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  619.232466][T19867] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:48
[  619.642790][   T36] kauditd_printk_skb: 796 callbacks suppressed
[  619.642813][   T36] audit: type=1400 audit(1750306053.950:110805): avc:  denied  { mounton } for  pid=19886 comm="syz.9.7194" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  619.690679][T19888] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  619.725946][T19890] audit: audit_lost=1376 audit_rate_limit=0 audit_backlog_limit=64
[  619.741252][T19888] SELinux: failed to load policy
[  619.758944][T19890] audit: out of memory in audit_log_start
[  619.802680][   T36] audit: type=1400 audit(1750306054.000:110806): avc:  denied  { load_policy } for  pid=19886 comm="syz.9.7194" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  619.890038][   T36] audit: type=1400 audit(1750306054.020:110807): avc:  denied  { read write } for  pid=19889 comm="syz.8.7195" name="binder1" dev="binder" ino=80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  619.970264][   T36] audit: type=1400 audit(1750306054.020:110808): avc:  denied  { read write open } for  pid=19889 comm="syz.8.7195" path="/dev/binderfs/binder1" dev="binder" ino=80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  620.013580][T19901] rust_binder: Write failure EFAULT in pid:104
[  620.016408][T19901] rust_binder: Write failure EINVAL in pid:104
[  620.035281][T19899] SELinux: failed to load policy
[  620.094599][   T36] audit: type=1400 audit(1750306054.030:110809): avc:  denied  { map } for  pid=19889 comm="syz.8.7195" path="/dev/binderfs/binder1" dev="binder" ino=80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  620.191256][   T36] audit: type=1400 audit(1750306054.040:110810): avc:  denied  { read write } for  pid=19891 comm="syz.1.7196" name="uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  620.280124][   T36] audit: type=1400 audit(1750306054.040:110811): avc:  denied  { read write open } for  pid=19891 comm="syz.1.7196" path="/dev/uinput" dev="devtmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  620.364146][   T36] audit: type=1400 audit(1750306054.040:110812): avc:  denied  { read } for  pid=19891 comm="syz.1.7196" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  620.811114][T19931] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  620.827095][T19929] __vm_enough_memory: pid: 19929, comm: syz.8.7209, bytes: 281474976845824 not enough memory for the allocation
[  620.851955][T19935] FAULT_INJECTION: forcing a failure.
[  620.851955][T19935] name failslab, interval 1, probability 0, space 0, times 0
[  620.868350][T19929] SELinux: security_context_str_to_sid () failed with errno=-22
[  620.892047][T19935] CPU: 0 UID: 0 PID: 19935 Comm: syz.4.7210 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  620.892091][T19935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  620.892104][T19935] Call Trace:
[  620.892112][T19935]  <TASK>
[  620.892121][T19935]  __dump_stack+0x21/0x30
[  620.892155][T19935]  dump_stack_lvl+0x10c/0x190
[  620.892177][T19935]  ? __cfi_dump_stack_lvl+0x10/0x10
[  620.892201][T19935]  ? __kasan_check_write+0x18/0x20
[  620.892226][T19935]  ? _raw_spin_lock+0x8c/0x120
[  620.892253][T19935]  dump_stack+0x19/0x20
[  620.892273][T19935]  should_fail_ex+0x3d9/0x530
[  620.892295][T19935]  should_failslab+0xac/0x100
[  620.892318][T19935]  kmem_cache_alloc_noprof+0x42/0x3a0
[  620.892338][T19935]  ? radix_tree_node_alloc+0x95/0x400
[  620.892365][T19935]  radix_tree_node_alloc+0x95/0x400
[  620.892387][T19935]  idr_get_free+0x2b2/0xac0
[  620.892411][T19935]  idr_alloc+0x174/0x2a0
[  620.892429][T19935]  ? ppp_dev_configure+0x366/0xb10
[  620.892452][T19935]  ? __cfi_idr_alloc+0x10/0x10
[  620.892469][T19935]  ? mutex_lock+0x92/0x1c0
[  620.892498][T19935]  ? radix_tree_lookup+0x283/0x2a0
[  620.892524][T19935]  ppp_dev_configure+0x652/0xb10
[  620.892546][T19935]  ppp_ioctl+0x69a/0x16b0
[  620.892565][T19935]  ? __fget_files+0x2c5/0x340
[  620.892591][T19935]  ? __cfi_ppp_ioctl+0x10/0x10
[  620.892611][T19935]  ? __fget_files+0x2c5/0x340
[  620.892633][T19935]  ? bpf_lsm_file_ioctl+0xd/0x20
[  620.892656][T19935]  ? security_file_ioctl+0x34/0xd0
[  620.892685][T19935]  ? __cfi_ppp_ioctl+0x10/0x10
[  620.892706][T19935]  __se_sys_ioctl+0x132/0x1b0
[  620.892732][T19935]  __x64_sys_ioctl+0x7f/0xa0
[  620.892755][T19935]  x64_sys_call+0x1878/0x2ee0
[  620.892789][T19935]  do_syscall_64+0x58/0xf0
[  620.892811][T19935]  ? clear_bhb_loop+0x35/0x90
[  620.892837][T19935]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  620.892864][T19935] RIP: 0033:0x7f634bd8e929
[  620.892884][T19935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  620.892901][T19935] RSP: 002b:00007f634cc6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  620.892925][T19935] RAX: ffffffffffffffda RBX: 00007f634bfb5fa0 RCX: 00007f634bd8e929
[  620.892939][T19935] RDX: 0000200000000080 RSI: 00000000c004743e RDI: 0000000000000003
[  620.892952][T19935] RBP: 00007f634cc6e090 R08: 0000000000000000 R09: 0000000000000000
[  620.892964][T19935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  620.892977][T19935] R13: 0000000000000000 R14: 00007f634bfb5fa0 R15: 00007ffffae6a778
[  620.892992][T19935]  </TASK>
[  621.242510][T19941] FAULT_INJECTION: forcing a failure.
[  621.242510][T19941] name failslab, interval 1, probability 0, space 0, times 0
[  621.315384][T19941] CPU: 1 UID: 0 PID: 19941 Comm: syz.9.7213 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  621.315436][T19941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  621.315450][T19941] Call Trace:
[  621.315456][T19941]  <TASK>
[  621.315465][T19941]  __dump_stack+0x21/0x30
[  621.315502][T19941]  dump_stack_lvl+0x10c/0x190
[  621.315523][T19941]  ? __cfi_dump_stack_lvl+0x10/0x10
[  621.315543][T19941]  dump_stack+0x19/0x20
[  621.315561][T19941]  should_fail_ex+0x3d9/0x530
[  621.315587][T19941]  should_failslab+0xac/0x100
[  621.315612][T19941]  __kmalloc_noprof+0x69/0x450
[  621.315632][T19941]  ? sel_write_validatetrans+0x29c/0x600
[  621.315649][T19941]  sel_write_validatetrans+0x29c/0x600
[  621.315661][T19941]  ? __cfi_sel_write_validatetrans+0x10/0x10
[  621.315677][T19941]  ? proc_fail_nth_write+0x17e/0x210
[  621.315691][T19941]  ? bpf_lsm_file_permission+0xd/0x20
[  621.315706][T19941]  ? __cfi_sel_write_validatetrans+0x10/0x10
[  621.315718][T19941]  vfs_write+0x3c0/0xe80
[  621.315734][T19941]  ? __cfi_vfs_write+0x10/0x10
[  621.315750][T19941]  ? __kasan_check_write+0x18/0x20
[  621.315763][T19941]  ? mutex_lock+0x92/0x1c0
[  621.315781][T19941]  ? __cfi_mutex_lock+0x10/0x10
[  621.315798][T19941]  ? __fget_files+0x2c5/0x340
[  621.315816][T19941]  ksys_write+0x141/0x250
[  621.315829][T19941]  ? __cfi_ksys_write+0x10/0x10
[  621.315843][T19941]  ? __kasan_check_read+0x15/0x20
[  621.315855][T19941]  __x64_sys_write+0x7f/0x90
[  621.315869][T19941]  x64_sys_call+0x271c/0x2ee0
[  621.315885][T19941]  do_syscall_64+0x58/0xf0
[  621.315900][T19941]  ? clear_bhb_loop+0x35/0x90
[  621.315919][T19941]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  621.315935][T19941] RIP: 0033:0x7fafc6d8e929
[  621.315949][T19941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  621.315959][T19941] RSP: 002b:00007fafc53f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  621.315976][T19941] RAX: ffffffffffffffda RBX: 00007fafc6fb5fa0 RCX: 00007fafc6d8e929
[  621.315985][T19941] RDX: 0000000000000084 RSI: 0000200000002500 RDI: 0000000000000003
[  621.316003][T19941] RBP: 00007fafc53f7090 R08: 0000000000000000 R09: 0000000000000000
[  621.316011][T19941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  621.316019][T19941] R13: 0000000000000000 R14: 00007fafc6fb5fa0 R15: 00007ffd8cad1e38
[  621.316028][T19941]  </TASK>
[  621.754117][T19961] FAULT_INJECTION: forcing a failure.
[  621.754117][T19961] name failslab, interval 1, probability 0, space 0, times 0
[  621.832587][T19961] CPU: 1 UID: 0 PID: 19961 Comm: syz.9.7219 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  621.832623][T19961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  621.832636][T19961] Call Trace:
[  621.832643][T19961]  <TASK>
[  621.832652][T19961]  __dump_stack+0x21/0x30
[  621.832682][T19961]  dump_stack_lvl+0x10c/0x190
[  621.832702][T19961]  ? __cfi_dump_stack_lvl+0x10/0x10
[  621.832724][T19961]  dump_stack+0x19/0x20
[  621.832743][T19961]  should_fail_ex+0x3d9/0x530
[  621.832766][T19961]  should_failslab+0xac/0x100
[  621.832791][T19961]  __kmalloc_node_track_caller_noprof+0x68/0x440
[  621.832816][T19961]  ? rust_helper_krealloc+0x33/0xd0
[  621.832839][T19961]  krealloc_noprof+0x8d/0x130
[  621.832865][T19961]  rust_helper_krealloc+0x33/0xd0
[  621.832882][T19961]  ? _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0x91/0x100
[  621.832926][T19961]  _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0xaf/0x100
[  621.832951][T19961]  _RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process18get_current_thread+0x715/0x1440
[  621.832998][T19961]  ? kmem_cache_free+0x1c1/0x4c0
[  621.833020][T19961]  ? __cfi__RNvMs3_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process18get_current_thread+0x10/0x10
[  621.833056][T19961]  ? audit_log_end+0x1f1/0x240
[  621.833076][T19961]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  621.833097][T19961]  ? common_lsm_audit+0x148c/0x1860
[  621.833114][T19961]  ? __cfi_avc_audit_post_callback+0x10/0x10
[  621.833144][T19961]  ? __kasan_slab_free+0x6a/0x80
[  621.833169][T19961]  ? kmem_cache_free+0x1c1/0x4c0
[  621.833188][T19961]  ? avc_node_kill+0x29e/0x2f0
[  621.833208][T19961]  ? slow_avc_audit+0x18d/0x1f0
[  621.833228][T19961]  _RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x1a9/0x2c20
[  621.833253][T19961]  ? avc_denied+0x112/0x180
[  621.833271][T19961]  ? avc_has_extended_perms+0x895/0xdd0
[  621.833289][T19961]  ? avc_has_extended_perms+0x91a/0xdd0
[  621.833307][T19961]  ? __cfi__RNvMs5_NtCshgDM7dBCdno_11rust_binder7processNtB5_7Process5ioctl+0x10/0x10
[  621.833331][T19961]  ? do_vfs_ioctl+0xeda/0x1e30
[  621.833357][T19961]  ? arch_stack_walk+0x10b/0x170
[  621.833383][T19961]  ? __ia32_compat_sys_ioctl+0x850/0x850
[  621.833410][T19961]  ? _parse_integer+0x2e/0x40
[  621.833431][T19961]  ? ioctl_has_perm+0x384/0x4d0
[  621.833458][T19961]  ? has_cap_mac_admin+0xd0/0xd0
[  621.833483][T19961]  ? proc_fail_nth_write+0x17e/0x210
[  621.833502][T19961]  ? __cfi_proc_fail_nth_write+0x10/0x10
[  621.833523][T19961]  ? selinux_file_ioctl+0x6e0/0x1360
[  621.833548][T19961]  ? vfs_write+0x8ba/0xe80
[  621.833569][T19961]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  621.833594][T19961]  ? __cfi_vfs_write+0x10/0x10
[  621.833621][T19961]  ? __kasan_check_write+0x18/0x20
[  621.833640][T19961]  ? mutex_unlock+0x8b/0x240
[  621.833669][T19961]  ? __cfi_mutex_unlock+0x10/0x10
[  621.833696][T19961]  ? __fget_files+0x2c5/0x340
[  621.833720][T19961]  ? __fget_files+0x2c5/0x340
[  621.833743][T19961]  _RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0xa0/0x100
[  621.833768][T19961]  ? __se_sys_ioctl+0x114/0x1b0
[  621.833791][T19961]  ? __cfi__RNvCshgDM7dBCdno_11rust_binder26rust_binder_unlocked_ioctl+0x10/0x10
[  621.833817][T19961]  __se_sys_ioctl+0x132/0x1b0
[  621.833840][T19961]  __x64_sys_ioctl+0x7f/0xa0
[  621.833866][T19961]  x64_sys_call+0x1878/0x2ee0
[  621.833900][T19961]  do_syscall_64+0x58/0xf0
[  621.833922][T19961]  ? clear_bhb_loop+0x35/0x90
[  621.833948][T19961]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  621.833972][T19961] RIP: 0033:0x7fafc6d8e929
[  621.833988][T19961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  621.834005][T19961] RSP: 002b:00007fafc53f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  621.834028][T19961] RAX: ffffffffffffffda RBX: 00007fafc6fb5fa0 RCX: 00007fafc6d8e929
[  621.834041][T19961] RDX: 0000200000000100 RSI: 00000000c0306201 RDI: 0000000000000003
[  621.834055][T19961] RBP: 00007fafc53f7090 R08: 0000000000000000 R09: 0000000000000000
[  621.834067][T19961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  621.834080][T19961] R13: 0000000000000000 R14: 00007fafc6fb5fa0 R15: 00007ffd8cad1e38
[  621.834095][T19961]  </TASK>
[  622.292962][T19962] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:120
[  622.293015][T19962] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  622.302845][T19962] rust_binder: Read failure Err(EFAULT) in pid:120
[  622.717530][T19985] SELinux:  policydb string length -1660944376 does not match expected length 8
[  622.780097][T19985] SELinux: failed to load policy
[  623.049148][T19996] rust_binder: Failed to allocate buffer. len:128, is_oneway:false
[  623.250890][T20007] rust_binder: Error while translating object.
[  623.250931][T20007] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  623.257227][T20007] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:797
[  623.708322][T20021] SELinux: ebitmap: truncated map
[  623.789812][T20021] SELinux: failed to load policy
[  623.960420][T20031] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  624.006153][T20036] rust_binder: Read failure Err(EAGAIN) in pid:108
[  624.273634][T20045] SELinux: security_context_str_to_sid (syte) failed with errno=-22
[  624.483533][   T46] Bluetooth: hci0: Frame reassembly failed (-84)
[  624.724621][   T36] kauditd_printk_skb: 546 callbacks suppressed
[  624.724645][   T36] audit: type=1400 audit(1750306059.030:111359): avc:  denied  { read write } for  pid=17246 comm="syz-executor" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  624.804104][   T36] audit: type=1400 audit(1750306059.080:111360): avc:  denied  { read write open } for  pid=17246 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  624.846291][T20065] SELinux: security_context_str_to_sid (sytem_uÝGй) failed with errno=-22
[  624.890384][   T36] audit: type=1400 audit(1750306059.080:111361): avc:  denied  { ioctl } for  pid=17246 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=53 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  624.978011][   T36] audit: type=1400 audit(1750306059.150:111362): avc:  denied  { remount } for  pid=20064 comm="syz.4.7253" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  625.025036][T20069] input: syz1 as /devices/virtual/input/input455
[  625.034929][   T36] audit: type=1400 audit(1750306059.180:111363): avc:  denied  { read } for  pid=20064 comm="syz.4.7253" name="binder1" dev="binder" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  625.105317][   T36] audit: type=1400 audit(1750306059.180:111364): avc:  denied  { read open } for  pid=20064 comm="syz.4.7253" path="/dev/binderfs/binder1" dev="binder" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  625.185397][   T36] audit: type=1400 audit(1750306059.180:111365): avc:  denied  { ioctl } for  pid=20064 comm="syz.4.7253" path="/dev/binderfs/binder1" dev="binder" ino=20 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  625.244886][   T36] audit: type=1400 audit(1750306059.190:111366): avc:  denied  { read write } for  pid=19505 comm="syz-executor" name="loop8" dev="devtmpfs" ino=57 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  625.278593][T20078] binder: Unknown parameter 'dont_measure'
[  625.306373][   T36] audit: type=1400 audit(1750306059.190:111367): avc:  denied  { read write open } for  pid=19505 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=57 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  625.354914][   T36] audit: type=1400 audit(1750306059.190:111368): avc:  denied  { ioctl } for  pid=19505 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=57 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  625.663639][T20093] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  625.872039][T20102] input: syz0 as /devices/virtual/input/input456
[  626.125355][T20118] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:165
[  626.317225][T20128] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:167
[  626.426263][T20135] FAULT_INJECTION: forcing a failure.
[  626.426263][T20135] name failslab, interval 1, probability 0, space 0, times 0
[  626.448984][T20138] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:133
[  626.449192][T20135] CPU: 1 UID: 0 PID: 20135 Comm: syz.8.7274 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  626.449217][T20135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  626.449225][T20135] Call Trace:
[  626.449230][T20135]  <TASK>
[  626.449236][T20135]  __dump_stack+0x21/0x30
[  626.449261][T20135]  dump_stack_lvl+0x10c/0x190
[  626.449275][T20135]  ? __cfi_dump_stack_lvl+0x10/0x10
[  626.449290][T20135]  dump_stack+0x19/0x20
[  626.449301][T20135]  should_fail_ex+0x3d9/0x530
[  626.449319][T20135]  should_failslab+0xac/0x100
[  626.449337][T20135]  __kmalloc_noprof+0x69/0x450
[  626.449351][T20135]  ? sel_write_validatetrans+0x29c/0x600
[  626.449366][T20135]  sel_write_validatetrans+0x29c/0x600
[  626.449379][T20135]  ? __cfi_sel_write_validatetrans+0x10/0x10
[  626.449390][T20135]  ? proc_fail_nth_write+0x17e/0x210
[  626.449405][T20135]  ? bpf_lsm_file_permission+0xd/0x20
[  626.449420][T20135]  ? __cfi_sel_write_validatetrans+0x10/0x10
[  626.449432][T20135]  vfs_write+0x3c0/0xe80
[  626.449447][T20135]  ? __cfi_vfs_write+0x10/0x10
[  626.449460][T20135]  ? __kasan_check_write+0x18/0x20
[  626.449472][T20135]  ? mutex_lock+0x92/0x1c0
[  626.449491][T20135]  ? __cfi_mutex_lock+0x10/0x10
[  626.449507][T20135]  ? __fget_files+0x2c5/0x340
[  626.449525][T20135]  ksys_write+0x141/0x250
[  626.449538][T20135]  ? __cfi_ksys_write+0x10/0x10
[  626.449552][T20135]  ? __kasan_check_read+0x15/0x20
[  626.449564][T20135]  __x64_sys_write+0x7f/0x90
[  626.449577][T20135]  x64_sys_call+0x271c/0x2ee0
[  626.449593][T20135]  do_syscall_64+0x58/0xf0
[  626.449608][T20135]  ? clear_bhb_loop+0x35/0x90
[  626.449628][T20135]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  626.449643][T20135] RIP: 0033:0x7f426e58e929
[  626.449657][T20135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  626.449668][T20135] RSP: 002b:00007f426f3fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  626.449684][T20135] RAX: ffffffffffffffda RBX: 00007f426e7b5fa0 RCX: 00007f426e58e929
[  626.449693][T20135] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  626.449701][T20135] RBP: 00007f426f3fd090 R08: 0000000000000000 R09: 0000000000000000
[  626.449709][T20135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  626.449716][T20135] R13: 0000000000000000 R14: 00007f426e7b5fa0 R15: 00007ffca51d7f88
[  626.449726][T20135]  </TASK>
[  626.510304][  T585] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  626.513724][   T53] Bluetooth: hci0: command 0x1003 tx timeout
[  626.595699][T20142] rust_binder: Error while translating object.
[  626.715243][T20142] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  626.721944][T20142] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:173
[  626.723195][T20144] input: syz1 as /devices/virtual/input/input457
[  626.802368][T20146] random: crng reseeded on system resumption
[  626.833790][T20148] FAULT_INJECTION: forcing a failure.
[  626.833790][T20148] name failslab, interval 1, probability 0, space 0, times 0
[  626.847129][T20148] CPU: 0 UID: 0 PID: 20148 Comm: syz.1.7280 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  626.847170][T20148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  626.847183][T20148] Call Trace:
[  626.847191][T20148]  <TASK>
[  626.847200][T20148]  __dump_stack+0x21/0x30
[  626.847233][T20148]  dump_stack_lvl+0x10c/0x190
[  626.847254][T20148]  ? __cfi_dump_stack_lvl+0x10/0x10
[  626.847278][T20148]  dump_stack+0x19/0x20
[  626.847297][T20148]  should_fail_ex+0x3d9/0x530
[  626.847321][T20148]  should_failslab+0xac/0x100
[  626.847347][T20148]  kmem_cache_alloc_lru_noprof+0x45/0x3a0
[  626.847371][T20148]  ? proc_alloc_inode+0x48/0x150
[  626.847394][T20148]  proc_alloc_inode+0x48/0x150
[  626.847414][T20148]  ? __cfi_proc_alloc_inode+0x10/0x10
[  626.847434][T20148]  alloc_inode+0x7a/0x270
[  626.847462][T20148]  new_inode+0x25/0x1e0
[  626.847488][T20148]  proc_pid_make_inode+0x25/0x140
[  626.847512][T20148]  proc_pident_instantiate+0x6d/0x2c0
[  626.847537][T20148]  proc_pident_lookup+0x1c7/0x270
[  626.847563][T20148]  proc_tgid_base_lookup+0x2f/0x40
[  626.847587][T20148]  __lookup_slow+0x2d4/0x400
[  626.847613][T20148]  ? lookup_one_len+0x2f0/0x2f0
[  626.847637][T20148]  ? down_read+0x79/0xe0
[  626.847661][T20148]  lookup_slow+0x57/0x80
[  626.847683][T20148]  link_path_walk+0x990/0xec0
[  626.847704][T20148]  path_openat+0x281/0x34b0
[  626.847732][T20148]  ? kasan_save_alloc_info+0x40/0x50
[  626.847751][T20148]  ? getname_flags+0xc6/0x710
[  626.847773][T20148]  ? do_sys_openat2+0xcb/0x1c0
[  626.847791][T20148]  ? __x64_sys_openat+0x13a/0x170
[  626.847811][T20148]  ? do_filp_open+0x3e0/0x3e0
[  626.847857][T20148]  do_filp_open+0x1c6/0x3e0
[  626.847883][T20148]  ? __cfi_do_filp_open+0x10/0x10
[  626.847911][T20148]  ? __cfi_kfree_link+0x10/0x10
[  626.847930][T20148]  ? alloc_fd+0x4e7/0x5a0
[  626.847955][T20148]  do_sys_openat2+0x12c/0x1c0
[  626.847972][T20148]  ? fput+0x1a5/0x240
[  626.847998][T20148]  ? do_sys_open+0x100/0x100
[  626.848015][T20148]  ? ksys_write+0x1ef/0x250
[  626.848036][T20148]  ? __cfi_ksys_write+0x10/0x10
[  626.848059][T20148]  __x64_sys_openat+0x13a/0x170
[  626.848078][T20148]  x64_sys_call+0xe69/0x2ee0
[  626.848101][T20148]  do_syscall_64+0x58/0xf0
[  626.848125][T20148]  ? clear_bhb_loop+0x35/0x90
[  626.848153][T20148]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  626.848178][T20148] RIP: 0033:0x7f519218e929
[  626.848197][T20148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  626.848214][T20148] RSP: 002b:00007f51907f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  626.848239][T20148] RAX: ffffffffffffffda RBX: 00007f51923b5fa0 RCX: 00007f519218e929
[  626.848255][T20148] RDX: 0000000000040040 RSI: 0000200000003340 RDI: ffffffffffffff9c
[  626.848269][T20148] RBP: 00007f51907f7090 R08: 0000000000000000 R09: 0000000000000000
[  626.848283][T20148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  626.848295][T20148] R13: 0000000000000000 R14: 00007f51923b5fa0 R15: 00007ffc104f54c8
[  626.848311][T20148]  </TASK>
[  627.513486][T20164] SELinux: ebitmap: truncated map
[  627.525821][T20164] SELinux: failed to load policy
[  627.555299][T20168] random: crng reseeded on system resumption
[  627.753537][T20180] FAULT_INJECTION: forcing a failure.
[  627.753537][T20180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  627.767172][T20180] CPU: 0 UID: 0 PID: 20180 Comm: syz.8.7292 Not tainted 6.12.23-syzkaller-g30b14cdad458 #0 c708c6bafa1314b3e84c64b9f03b67766970ebbd
[  627.767213][T20180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  627.767226][T20180] Call Trace:
[  627.767234][T20180]  <TASK>
[  627.767241][T20180]  __dump_stack+0x21/0x30
[  627.767275][T20180]  dump_stack_lvl+0x10c/0x190
[  627.767294][T20180]  ? __cfi_dump_stack_lvl+0x10/0x10
[  627.767314][T20180]  dump_stack+0x19/0x20
[  627.767342][T20180]  should_fail_ex+0x3d9/0x530
[  627.767364][T20180]  should_fail+0xf/0x20
[  627.767379][T20180]  should_fail_usercopy+0x1e/0x30
[  627.767399][T20180]  _copy_to_user+0x24/0xa0
[  627.767424][T20180]  simple_read_from_buffer+0xed/0x160
[  627.767453][T20180]  proc_fail_nth_read+0x19e/0x210
[  627.767472][T20180]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  627.767489][T20180]  ? bpf_lsm_file_permission+0xd/0x20
[  627.767510][T20180]  ? __cfi_proc_fail_nth_read+0x10/0x10
[  627.767526][T20180]  vfs_read+0x278/0xb60
[  627.767547][T20180]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  627.767574][T20180]  ? __cfi_vfs_read+0x10/0x10
[  627.767593][T20180]  ? __kasan_check_write+0x18/0x20
[  627.767614][T20180]  ? mutex_lock+0x92/0x1c0
[  627.767643][T20180]  ? __cfi_mutex_lock+0x10/0x10
[  627.767668][T20180]  ? __fget_files+0x2c5/0x340
[  627.767695][T20180]  ksys_read+0x141/0x250
[  627.767715][T20180]  ? __cfi_ksys_read+0x10/0x10
[  627.767735][T20180]  ? __kasan_check_read+0x15/0x20
[  627.767754][T20180]  __x64_sys_read+0x7f/0x90
[  627.767775][T20180]  x64_sys_call+0x2638/0x2ee0
[  627.767798][T20180]  do_syscall_64+0x58/0xf0
[  627.767821][T20180]  ? clear_bhb_loop+0x35/0x90
[  627.767849][T20180]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[  627.767875][T20180] RIP: 0033:0x7f426e58d33c
[  627.767894][T20180] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  627.767910][T20180] RSP: 002b:00007f426f3fd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  627.767934][T20180] RAX: ffffffffffffffda RBX: 00007f426e7b5fa0 RCX: 00007f426e58d33c
[  627.767949][T20180] RDX: 000000000000000f RSI: 00007f426f3fd0a0 RDI: 0000000000000005
[  627.767962][T20180] RBP: 00007f426f3fd090 R08: 0000000000000000 R09: 0000000000000000
[  627.767974][T20180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  627.767987][T20180] R13: 0000000000000000 R14: 00007f426e7b5fa0 R15: 00007ffca51d7f88
[  627.768011][T20180]  </TASK>
[  628.067688][T20185] SELinux: security_context_str_to_sid () failed with errno=-22
[  628.166068][T20190] input: syz1 as /devices/virtual/input/input458
Connection to 10.128.0.92 closed by remote host.
[  628.338638][T20195] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  628.741240][   T46] bridge_slave_1: left allmulticast mode
[  628.746944][   T46] bridge_slave_1: left promiscuous mode
[  628.752650][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  628.760283][   T46] bridge_slave_0: left allmulticast mode
[  628.766138][   T46] bridge_slave_0: left promiscuous mode
[  628.771775][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  628.971020][   T46] veth1_macvtap: left promiscuous mode
[  628.976635][   T46] veth0_vlan: left promiscuous mode
[  629.971610][   T46] bridge_slave_1: left allmulticast mode
[  629.977329][   T46] bridge_slave_1: left promiscuous mode
[  629.983077][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.990663][   T46] bridge_slave_0: left allmulticast mode
[  629.996309][   T46] bridge_slave_0: left promiscuous mode
[  630.002035][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.009584][   T46] bridge_slave_1: left allmulticast mode
[  630.015282][   T46] bridge_slave_1: left promiscuous mode
[  630.021111][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  630.028658][   T46] bridge_slave_0: left allmulticast mode
[  630.034409][   T46] bridge_slave_0: left promiscuous mode
[  630.040158][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.047780][   T46] bridge_slave_1: left allmulticast mode
[  630.053553][   T46] bridge_slave_1: left promiscuous mode
[  630.059260][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  630.066741][   T46] bridge_slave_0: left allmulticast mode
[  630.072458][   T46] bridge_slave_0: left promiscuous mode
[  630.078290][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.595979][T20197] sd 0:0:1:0: [sda] Synchronizing SCSI cache
[  630.603585][T20197] ACPI: PM: Preparing to enter system sleep state S5
[  630.611941][T20197] kvm: exiting hardware virtualization
[  630.617555][T20197] reboot: Power down
[  630.622696][   T46] veth1_macvtap: left promiscuous mode
[  630.628236][   T46] veth0_vlan: left promiscuous mode
[  630.635417][   T46] veth1_macvtap: left promiscuous mode
[  630.641204][   T46] veth0_vlan: left promiscuous mode
serialport: VM disconnected.