last executing test programs: 3.317102722s ago: executing program 1 (id=181): socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00') r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0) read$FUSE(r3, &(0x7f0000000200)={0x2020}, 0x2020) mount(&(0x7f0000000300), &(0x7f0000000040)='.\x00', &(0x7f0000000080)='devtmpfs\x00', 0x1208c9b, 0x0) pread64(r2, &(0x7f0000002240)=""/237, 0xed, 0x4eb) 3.186797339s ago: executing program 1 (id=183): bind$netlink(0xffffffffffffffff, 0x0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020}, 0x2020) ppoll(&(0x7f0000000200)=[{0xffffffffffffffff, 0x80}, {0xffffffffffffffff, 0x80}, {0xffffffffffffffff, 0x5bcd9c5d82c88d46}, {0xffffffffffffffff, 0x10}], 0x4, &(0x7f0000000340), 0x0, 0x0) 3.115591903s ago: executing program 1 (id=186): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFC_CMD_GET_TARGET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x40) syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r0) sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0100000000000000ffff1b00000008"], 0x1c}}, 0x0) 3.089261284s ago: executing program 1 (id=187): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x206bdf}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xfffffffffffffffe) sched_setscheduler(0x0, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r2, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4) 2.191962126s ago: executing program 1 (id=191): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_RELOAD_REGDB(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r4, 0x421, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xc35d4f6d52288271}, 0x200048c4) 1.471591007s ago: executing program 3 (id=201): socket$nl_netfilter(0x10, 0x3, 0xc) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000004c0), 0x14000, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) chdir(&(0x7f0000000100)='./file0\x00') write$P9_RSTAT(r1, &(0x7f0000000140)={0x43, 0x7d, 0x1, {0x0, 0x3c, 0x7, 0x8001, {0x0, 0x4, 0x7}, 0x80000, 0x5, 0xe4, 0x2, 0x3, '9p\x00', 0x3, '9p\x00', 0x0, '', 0x3, '9p\x00'}}, 0x43) fchmodat(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0xffffffff) 1.471417087s ago: executing program 3 (id=202): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x800, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x10, 0x0, &(0x7f0000000080)=[@dead_binder_done, @register_looper], 0x0, 0x0, 0x0}) 1.41556144s ago: executing program 3 (id=203): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)={0x28, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='n'}, @NL80211_ATTR_IE={0x4}]}, 0x28}}, 0x20004800) 1.41530131s ago: executing program 3 (id=204): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) ptrace$ARCH_SHSTK_DISABLE(0x1e, r1, 0x1, 0x5002) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb") ptrace$getregset(0x4205, 0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000000)=""/120, 0x78}) 1.213043451s ago: executing program 1 (id=207): syz_usb_connect(0x0, 0x62, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000fb5d7d086d04c308166b0102030109025000010000000009041f0000ff0100000a240104fca80201020724070500000518240815040004960d240601010302000100060006092403050503060581092403060102ef05050724040591"], 0x0) 513.915071ms ago: executing program 3 (id=211): creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000900), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0]) ppoll(&(0x7f0000000200)=[{r0, 0x10}], 0x1, &(0x7f0000000340), 0x0, 0x0) 421.145356ms ago: executing program 3 (id=213): r0 = syz_usb_connect$uac1(0x0, 0x96, &(0x7f0000000b40)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902840003010000000904000000010100000a2401000000020102072405000000000c24020106020604800e0509090401000001020000090401010101020000090501090800000000072501010000000904020000010200"], 0x0) syz_usb_control_io$uac1(r0, &(0x7f0000001100)={0x14, 0x0, &(0x7f0000001040)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0) syz_usb_control_io(r0, &(0x7f00000021c0)={0x2c, 0x0, &(0x7f00000002c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x44c}}, 0x0, 0x0, 0x0}, 0x0) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 420.730577ms ago: executing program 0 (id=214): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFC_CMD_GET_TARGET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x40) syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r0) sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0100000000000000ffff1b0000000800"], 0x1c}}, 0x0) 415.453347ms ago: executing program 0 (id=215): creat(0x0, 0xd931d3864d39dcdb) r0 = memfd_create(0x0, 0x0) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 394.873788ms ago: executing program 0 (id=216): r0 = socket(0x2, 0x3, 0x7f) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x52c) sendto$unix(r0, 0x0, 0x0, 0x404c004, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ftruncate(0xffffffffffffffff, 0xc17a) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@abs={0x0, 0x7, 0xd0000e0}, 0x6e) 365.464029ms ago: executing program 0 (id=217): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000540)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}, {@allow_other}, {@allow_other}]}}) 327.303051ms ago: executing program 0 (id=218): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000002c0)=""/100, 0x0, 0xeeef0000}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000b80)={0x2, 0x0, [{0x70000, 0x59, &(0x7f0000000340)=""/89}, {0x0, 0x17, &(0x7f00000003c0)=""/23}]}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000009c0)=""/251, 0x0, 0x4}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000100)=0x1) ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000200)=0x0) 326.713381ms ago: executing program 0 (id=219): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) ptrace$ARCH_SHSTK_DISABLE(0x1e, r1, 0x1, 0x5002) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb") ptrace$getregset(0x4205, 0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000000)=""/120, 0x78}) 249.060826ms ago: executing program 2 (id=220): r0 = socket$inet(0x2, 0x2, 0x0) getsockopt$inet_opts(r0, 0x0, 0xd, 0x0, &(0x7f0000000000)) 248.918366ms ago: executing program 2 (id=221): creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000900), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) ppoll(&(0x7f0000000200)=[{r0, 0x10}], 0x1, &(0x7f0000000340), 0x0, 0x0) 248.750516ms ago: executing program 2 (id=222): mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) symlink(&(0x7f0000000080)='./file0/../file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00') write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1, {0x7, 0x28, 0x7fffffff, 0x400000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0xffffffec}}, 0x50) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r2, 0xffffffffffffffff, 0x0) 196.585209ms ago: executing program 2 (id=223): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x2b, 0x13, 0x0, 0x2, 0xb, 0x63, 0x5, 0x2, 0x1}) 10.96549ms ago: executing program 2 (id=224): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFC_CMD_GET_TARGET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x40) syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r0) sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0100000000000000ffff1b0000000800"], 0x1c}}, 0x0) 0s ago: executing program 2 (id=225): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x8c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x40, 0x8, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @remote}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}]}]}]}, 0x8c}}, 0x0) 0s ago: executing program 2 (id=226): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x20, 0x0, &(0x7f0000000200)=[@increfs={0x40046304, 0x1}, @acquire, @request_death], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@handle={0x73682a85, 0x101}, @flat=@binder={0x73622a85, 0x100, 0x3, 0xf0}, @flat=@binder={0x73622a85, 0x0, 0x3}}, &(0x7f0000000180)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.114' (ED25519) to the list of known hosts. [ 32.480848][ T36] audit: type=1400 audit(1770819443.240:64): avc: denied { mounton } for pid=283 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 32.482021][ T283] cgroup: Unknown subsys name 'net' [ 32.503550][ T36] audit: type=1400 audit(1770819443.240:65): avc: denied { mount } for pid=283 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 32.530847][ T36] audit: type=1400 audit(1770819443.270:66): avc: denied { unmount } for pid=283 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 32.531046][ T283] cgroup: Unknown subsys name 'devices' [ 32.717961][ T283] cgroup: Unknown subsys name 'hugetlb' [ 32.723581][ T283] cgroup: Unknown subsys name 'rlimit' [ 32.821091][ T36] audit: type=1400 audit(1770819443.580:67): avc: denied { setattr } for pid=283 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 32.844307][ T36] audit: type=1400 audit(1770819443.580:68): avc: denied { mounton } for pid=283 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 32.852681][ T285] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 32.869211][ T36] audit: type=1400 audit(1770819443.580:69): avc: denied { mount } for pid=283 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 32.900751][ T36] audit: type=1400 audit(1770819443.640:70): avc: denied { relabelto } for pid=285 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 32.904949][ T283] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 32.926337][ T36] audit: type=1400 audit(1770819443.640:71): avc: denied { write } for pid=285 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 32.960805][ T36] audit: type=1400 audit(1770819443.670:72): avc: denied { read } for pid=283 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 32.986606][ T36] audit: type=1400 audit(1770819443.670:73): avc: denied { open } for pid=283 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 33.851886][ T293] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.858957][ T293] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.866143][ T293] bridge_slave_0: entered allmulticast mode [ 33.872544][ T293] bridge_slave_0: entered promiscuous mode [ 33.886965][ T291] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.894027][ T291] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.901259][ T291] bridge_slave_0: entered allmulticast mode [ 33.907651][ T291] bridge_slave_0: entered promiscuous mode [ 33.914139][ T291] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.921253][ T291] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.928345][ T291] bridge_slave_1: entered allmulticast mode [ 33.934701][ T291] bridge_slave_1: entered promiscuous mode [ 33.940792][ T293] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.947867][ T293] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.954919][ T293] bridge_slave_1: entered allmulticast mode [ 33.961371][ T293] bridge_slave_1: entered promiscuous mode [ 33.991361][ T290] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.998577][ T290] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.005638][ T290] bridge_slave_0: entered allmulticast mode [ 34.011946][ T290] bridge_slave_0: entered promiscuous mode [ 34.024526][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.031914][ T290] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.039246][ T290] bridge_slave_1: entered allmulticast mode [ 34.045418][ T290] bridge_slave_1: entered promiscuous mode [ 34.113217][ T292] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.120307][ T292] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.127399][ T292] bridge_slave_0: entered allmulticast mode [ 34.133614][ T292] bridge_slave_0: entered promiscuous mode [ 34.140416][ T292] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.147598][ T292] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.154670][ T292] bridge_slave_1: entered allmulticast mode [ 34.161274][ T292] bridge_slave_1: entered promiscuous mode [ 34.290827][ T293] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.297900][ T293] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.305199][ T293] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.312248][ T293] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.336423][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.343482][ T290] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.350776][ T290] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.357811][ T290] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.368524][ T291] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.375571][ T291] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.382868][ T291] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.389909][ T291] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.412439][ T292] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.419516][ T292] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.426809][ T292] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.433829][ T292] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.471241][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.478635][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.486016][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.493397][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.501477][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.509080][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.516523][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.523768][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.548846][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.555915][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.563464][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.570598][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.579044][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.586132][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.593582][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.600649][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.617984][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.625025][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.637456][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.644508][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.664446][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.671523][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.679575][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.686621][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.724938][ T291] veth0_vlan: entered promiscuous mode [ 34.743958][ T291] veth1_macvtap: entered promiscuous mode [ 34.757725][ T292] veth0_vlan: entered promiscuous mode [ 34.767019][ T290] veth0_vlan: entered promiscuous mode [ 34.789879][ T293] veth0_vlan: entered promiscuous mode [ 34.799252][ T290] veth1_macvtap: entered promiscuous mode [ 34.817532][ T292] veth1_macvtap: entered promiscuous mode [ 34.828979][ T291] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 34.848640][ T293] veth1_macvtap: entered promiscuous mode [ 34.989138][ T350] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 35.140609][ T364] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 35.169297][ T370] process 'syz.2.17' launched './file1' with NULL argv: empty string added [ 35.237282][ T65] usb 2-1: new full-speed USB device number 2 using dummy_hcd [ 35.554239][ T388] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 35.567422][ T65] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 35.585114][ T65] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 205, setting to 64 [ 35.596959][ T65] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 35.610086][ T65] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 35.619350][ T65] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 35.629034][ T65] usb 2-1: config 0 descriptor?? [ 35.641309][ T346] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 35.697295][ T393] netlink: 12 bytes leftover after parsing attributes in process `syz.3.26'. [ 35.797061][ T405] kvm: kvm [404]: vcpu0, guest rIP: 0x9134 Unhandled WRMSR(0x11e) = 0xbe702111 [ 36.015546][ T412] netlink: 168 bytes leftover after parsing attributes in process `syz.0.35'. [ 36.053145][ T65] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 36.062611][ T65] plantronics 0003:047F:FFFF.0001: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 36.435255][ T65] usb 2-1: USB disconnect, device number 2 [ 36.606318][ T432] capability: warning: `syz.2.42' uses deprecated v2 capabilities in a way that may be insecure [ 36.906573][ T457] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 36.906601][ T457] rust_binder: Read failure Err(EFAULT) in pid:53 [ 36.914969][ T457] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:53 [ 36.988102][ T462] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 37.006162][ T462] rust_binder: Read failure Err(EFAULT) in pid:30 [ 37.014818][ T462] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 37.021612][ T462] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:30 [ 37.070148][ T474] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 37.084051][ T474] rust_binder: Read failure Err(EFAULT) in pid:36 [ 37.092907][ T474] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:36 [ 37.133922][ T482] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 37.188443][ T486] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 37.206268][ T492] fuse: Bad value for 'fd' [ 37.221526][ T490] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer. [ 37.257640][ T498] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 37.257664][ T498] rust_binder: Read failure Err(EFAULT) in pid:71 [ 37.266078][ T498] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:71 [ 37.415773][ T31] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 37.453114][ T513] fuse: Bad value for 'fd' [ 37.570339][ T523] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 37.570362][ T523] rust_binder: Read failure Err(EFAULT) in pid:87 [ 37.579066][ T523] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:87 [ 37.686871][ T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 37.707065][ T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 37.718318][ T31] usb 1-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 37.728577][ T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 37.746214][ T31] usb 1-1: config 0 descriptor?? [ 37.805785][ T36] kauditd_printk_skb: 105 callbacks suppressed [ 37.805807][ T36] audit: type=1400 audit(1770819448.560:179): avc: denied { read } for pid=518 comm="syz.2.82" name="msr" dev="devtmpfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 37.836803][ T36] audit: type=1400 audit(1770819448.560:180): avc: denied { open } for pid=518 comm="syz.2.82" path="/dev/cpu/0/msr" dev="devtmpfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 37.960868][ T488] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 37.971995][ T488] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 38.177167][ T36] audit: type=1400 audit(1770819448.940:181): avc: denied { unmount } for pid=290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 38.220024][ T31] hid-steam 0003:28DE:1142.0002: unknown main item tag 0x0 [ 38.245068][ T31] hid-steam 0003:28DE:1142.0002: unknown main item tag 0x0 [ 38.264493][ T31] hid-steam 0003:28DE:1142.0002: unknown main item tag 0x0 [ 38.284350][ T31] hid-steam 0003:28DE:1142.0002: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.0-1/input0 [ 38.450503][ T541] fuse: Bad value for 'fd' [ 38.473208][ T36] audit: type=1400 audit(1770819449.230:182): avc: denied { bind } for pid=544 comm="syz.1.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 38.525335][ T547] Zero length message leads to an empty skb [ 38.663718][ T555] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:38 [ 38.693087][ T548] usb 1-1: USB disconnect, device number 2 [ 38.735102][ T36] audit: type=1400 audit(1770819962.493:183): avc: denied { write } for pid=560 comm="syz.2.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 38.803185][ T36] audit: type=1400 audit(1770819962.563:184): avc: denied { ioctl } for pid=562 comm="syz.2.98" path="/dev/rtc0" dev="devtmpfs" ino=195 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 39.155787][ T31] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 39.305769][ T31] usb 3-1: Using ep0 maxpacket: 32 [ 39.313306][ T31] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 39.321776][ T31] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 39.334601][ T31] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 39.343672][ T31] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 39.348161][ T580] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 39.353534][ T580] rust_binder: Read failure Err(EFAULT) in pid:49 [ 39.353649][ T31] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 39.363999][ T580] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:49 [ 39.368180][ T31] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 39.400624][ T31] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 39.412085][ T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 39.421172][ T31] usb 3-1: config 0 descriptor?? [ 39.569125][ T36] audit: type=1400 audit(1770819963.333:185): avc: denied { read write } for pid=597 comm="syz.3.115" name="uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 39.592357][ T36] audit: type=1400 audit(1770819963.333:186): avc: denied { open } for pid=597 comm="syz.3.115" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 39.617630][ T36] audit: type=1400 audit(1770819963.353:187): avc: denied { read write } for pid=597 comm="syz.3.115" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 39.662738][ T36] audit: type=1400 audit(1770819963.353:188): avc: denied { open } for pid=597 comm="syz.3.115" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 39.757337][ T31] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 39.770488][ T31] usb 3-1: USB disconnect, device number 2 [ 39.777277][ T31] usblp0: removed [ 39.807998][ T604] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 39.808022][ T604] rust_binder: Read failure Err(EFAULT) in pid:45 [ 39.816445][ T604] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:45 [ 40.645853][ T31] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 40.715800][ T45] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 40.745859][ T330] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 40.805765][ T31] usb 1-1: Using ep0 maxpacket: 16 [ 40.812128][ T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 40.823607][ T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 40.833755][ T31] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 40.847175][ T31] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 40.856437][ T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 40.865505][ T31] usb 1-1: config 0 descriptor?? [ 40.872043][ T45] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 40.883771][ T45] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 40.897035][ T330] usb 4-1: Using ep0 maxpacket: 32 [ 40.902965][ T45] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 40.914529][ T45] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 40.915002][ T330] usb 4-1: config index 0 descriptor too short (expected 29220, got 36) [ 40.933195][ T330] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 40.945010][ T45] usb 3-1: config 0 descriptor?? [ 40.954780][ T45] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 40.962500][ T330] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 40.976060][ T330] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 40.986125][ T330] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 40.996135][ T330] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 41.010123][ T330] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 41.019414][ T330] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 41.028771][ T330] usb 4-1: config 0 descriptor?? [ 41.218506][ T627] kvm: emulating exchange as write [ 41.248524][ T330] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 41.287573][ T31] microsoft 0003:045E:07DA.0003: No inputs registered, leaving [ 41.297857][ T330] usb 3-1: USB disconnect, device number 3 [ 41.304938][ T31] microsoft 0003:045E:07DA.0003: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 41.319786][ T31] microsoft 0003:045E:07DA.0003: no inputs found [ 41.326410][ T31] microsoft 0003:045E:07DA.0003: could not initialize ff, continuing anyway [ 41.524619][ T31] usb 1-1: USB disconnect, device number 3 [ 41.648270][ T548] usb 4-1: USB disconnect, device number 2 [ 41.655123][ T548] usblp0: removed [ 42.173175][ T678] netlink: 8 bytes leftover after parsing attributes in process `syz.0.148'. [ 42.263225][ T692] fuse: Unknown parameter 'grou00000000000000000000' [ 42.422239][ T65] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 42.475659][ T330] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 42.539800][ T31] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 42.583584][ T65] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 42.594220][ T65] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 42.614621][ T65] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 42.623706][ T65] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 42.636880][ T698] netlink: 8 bytes leftover after parsing attributes in process `syz.1.158'. [ 42.638678][ T65] usb 3-1: config 0 descriptor?? [ 42.646862][ T330] usb 4-1: Using ep0 maxpacket: 16 [ 42.656685][ T65] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 42.665210][ T330] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 42.676262][ T330] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 42.689461][ T330] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 42.698563][ T330] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 42.710388][ T330] usb 4-1: config 0 descriptor?? [ 42.715420][ T31] usb 1-1: Using ep0 maxpacket: 16 [ 42.721749][ T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 42.732892][ T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 42.742627][ T31] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 42.755429][ T31] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 42.764485][ T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 42.773065][ T31] usb 1-1: config 0 descriptor?? [ 42.924694][ T65] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 42.982841][ T548] usb 3-1: USB disconnect, device number 4 [ 43.085014][ T65] usb 2-1: Using ep0 maxpacket: 32 [ 43.091309][ T65] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 43.099763][ T65] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 43.108511][ T65] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 43.117600][ T65] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 43.127300][ T65] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 43.136992][ T65] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 43.149997][ T65] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 43.159045][ T65] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 43.167363][ T330] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0004/input/input6 [ 43.177253][ T65] usb 2-1: config 0 descriptor?? [ 43.184477][ T36] kauditd_printk_skb: 8 callbacks suppressed [ 43.184493][ T36] audit: type=1400 audit(1770819966.858:197): avc: denied { read } for pid=95 comm="acpid" name="event3" dev="devtmpfs" ino=471 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 43.202724][ T330] microsoft 0003:045E:07DA.0004: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 43.214047][ T36] audit: type=1400 audit(1770819966.858:198): avc: denied { open } for pid=95 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=471 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 43.232457][ T31] usbhid 1-1:0.0: can't add hid device: -71 [ 43.253698][ T36] audit: type=1400 audit(1770819966.923:199): avc: denied { ioctl } for pid=95 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=471 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 43.280561][ T31] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 43.291392][ T31] usb 1-1: USB disconnect, device number 4 [ 43.371425][ T548] usb 4-1: USB disconnect, device number 3 [ 43.403702][ T65] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 43.555264][ T713] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 43.918638][ T31] usb 2-1: USB disconnect, device number 3 [ 43.976324][ T31] usblp0: removed [ 43.982507][ T723] netlink: 8 bytes leftover after parsing attributes in process `syz.0.167'. [ 44.012683][ T46] Bluetooth: hci0: Frame reassembly failed (-84) [ 44.136528][ T736] syzkaller0: entered promiscuous mode [ 44.142036][ T736] syzkaller0: entered allmulticast mode [ 44.149362][ T36] audit: type=1400 audit(1770819967.765:200): avc: denied { write } for pid=735 comm="syz.3.172" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 44.317587][ T36] audit: type=1400 audit(1770819967.924:201): avc: denied { create } for pid=737 comm="syz.3.173" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 44.339041][ T36] audit: type=1400 audit(1770819967.924:202): avc: denied { ioctl } for pid=737 comm="syz.3.173" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=7270 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 44.386226][ T36] audit: type=1400 audit(1770819967.980:203): avc: denied { connect } for pid=741 comm="syz.3.175" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 44.417622][ T744] fuse: Unknown parameter 'group_i00000000000000000000' [ 44.635180][ T36] audit: type=1400 audit(1770819968.214:204): avc: denied { mount } for pid=753 comm="syz.1.181" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 44.669920][ T36] audit: type=1400 audit(1770819968.242:205): avc: denied { unmount } for pid=290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 44.723365][ T761] fuse: Bad value for 'fd' [ 44.743586][ T763] fuse: Unknown parameter 'group_i00000000000000000000' [ 44.913154][ T36] audit: type=1400 audit(1770819968.429:206): avc: denied { ioctl } for pid=768 comm="syz.2.188" path="socket:[6673]" dev="sockfs" ino=6673 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 45.148288][ T31] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 45.319381][ T31] usb 3-1: Using ep0 maxpacket: 32 [ 45.326611][ T31] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 45.337572][ T31] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 45.351309][ T31] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 45.360801][ T31] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 45.370490][ T31] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 45.380232][ T31] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 45.393465][ T31] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 45.436521][ T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 45.445494][ T31] usb 3-1: config 0 descriptor?? [ 45.673404][ T31] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 46.101245][ T31] usb 3-1: USB disconnect, device number 5 [ 46.108489][ T31] usblp0: removed [ 46.163929][ T54] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 46.163923][ T729] Bluetooth: hci0: command 0x1003 tx timeout [ 46.336706][ T798] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:145 [ 47.072708][ T330] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 47.246039][ T330] usb 2-1: Using ep0 maxpacket: 8 [ 47.258064][ T330] usb 2-1: config 0 has an invalid interface number: 31 but max is 0 [ 47.268354][ T330] usb 2-1: config 0 has no interface number 0 [ 47.278337][ T330] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 47.289198][ T330] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 47.297518][ T330] usb 2-1: Product: syz [ 47.301926][ T330] usb 2-1: Manufacturer: syz [ 47.306632][ T330] usb 2-1: SerialNumber: syz [ 47.333426][ T330] usb 2-1: config 0 descriptor?? [ 47.389354][ T832] fuse: Unknown parameter 'group_id00000000000000000000' [ 47.510203][ T842] raw_sendmsg: syz.0.216 forgot to set AF_INET. Fix it! [ 47.601257][ T853] fuse: Bad value for 'user_id' [ 47.606163][ T853] fuse: Bad value for 'user_id' [ 47.645482][ T330] usb 2-1: USB disconnect, device number 4 [ 47.714201][ T45] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 47.907671][ T866] rust_binder: 138: no such ref 1 [ 47.914639][ T866] rust_binder: Error while translating object. [ 47.914727][ C0] BUG: TASK stack guard page was hit at ffffc9000f287ff8 (stack is ffffc9000f288000..ffffc9000f290000) [ 47.914774][ C0] Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN PTI [ 47.914887][ C0] CPU: 0 UID: 0 PID: 866 Comm: syz.2.226 Not tainted syzkaller #0 24a10c3d70c948d82bad81e39d295aea70670ee6 [ 47.914899][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 47.914906][ C0] RIP: 0010:stack_trace_save+0xa5/0x100 [ 47.914932][ C0] Code: 7c 24 20 89 74 24 28 ff c2 89 54 24 2c 48 c7 44 24 30 00 00 00 00 65 48 8b 15 27 20 8f 7e 48 c7 c7 90 cb 75 81 48 89 c6 31 c9 c6 5f c8 ff 8b 44 24 30 66 42 c7 44 33 04 f8 f8 42 c6 44 33 06 [ 47.914942][ C0] RSP: 0018:ffffc9000f288000 EFLAGS: 00010246 [ 47.914960][ C0] RAX: ffffc9000f288020 RBX: 1ffff92001e51000 RCX: 0000000000000000 [ 47.914967][ C0] RDX: ffff88813268df00 RSI: ffffc9000f288020 RDI: ffffffff8175cb90 [ 47.914978][ C0] RBP: ffffc9000f288090 R08: ffffc9000f28815f R09: 0000000000000000 [ 47.914985][ C0] R10: ffffc9000f2880e0 R11: fffff52001e5102c R12: dffffc0000000000 [ 47.914992][ C0] R13: 1ffff110264d1ca0 R14: dffffc0000000000 R15: 1ffff92001e51018 [ 47.914999][ C0] FS: 00007f83ae40e6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 47.915008][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 47.915014][ C0] CR2: ffffc9000f287ff8 CR3: 000000010b34c000 CR4: 00000000003526b0 [ 47.915024][ C0] Call Trace: [ 47.915032][ C0] [ 47.915038][ C0] ? __cfi_stack_trace_save+0x10/0x10 [ 47.915054][ C0] ? __asan_memset+0x39/0x50 [ 47.915075][ C0] save_stack+0x125/0x240 [ 47.915088][ C0] ? free_contig_range+0x260/0x260 [ 47.915100][ C0] ? __reset_page_owner+0x450/0x450 [ 47.915112][ C0] ? zone_page_state_add+0x43/0x90 [ 47.915126][ C0] ? kvm_sched_clock_read+0x15/0x30 [ 47.915137][ C0] ? sched_clock_noinstr+0xd/0x30 [ 47.915147][ C0] __set_page_owner+0x8e/0x600 [ 47.915159][ C0] ? __zone_watermark_ok+0x134/0x630 [ 47.915169][ C0] ? __cfi___set_page_owner+0x10/0x10 [ 47.915187][ C0] ? kasan_unpoison+0x4a/0x70 [ 47.915203][ C0] post_alloc_hook+0x3b8/0x3f0 [ 47.915224][ C0] ? __cfi_post_alloc_hook+0x10/0x10 [ 47.915237][ C0] ? gfp_to_alloc_flags_cma+0x1c0/0x1c0 [ 47.915254][ C0] ? _raw_spin_trylock+0xb5/0x140 [ 47.915278][ C0] ? __cfi__raw_spin_trylock+0x10/0x10 [ 47.915299][ C0] prep_new_page+0x1c/0x110 [ 47.915314][ C0] get_page_from_freelist+0x496e/0x4a20 [ 47.915327][ C0] ? __alloc_pages_noprof+0x7e0/0x7e0 [ 47.915336][ C0] ? static_key_count+0x45/0x70 [ 47.915345][ C0] ? gfp_to_alloc_flags_cma+0x96/0x1c0 [ 47.915356][ C0] ? lruvec_init+0x271/0x280 [ 47.915368][ C0] __alloc_pages_noprof+0x35f/0x7e0 [ 47.915377][ C0] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 47.915386][ C0] ? unwind_get_return_address+0x51/0x90 [ 47.915398][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 47.915407][ C0] ? arch_stack_walk+0x10a/0x170 [ 47.915421][ C0] ? stack_trace_save+0xaa/0x100 [ 47.915435][ C0] stack_depot_save_flags+0x672/0x800 [ 47.915447][ C0] kasan_save_track+0x4f/0x80 [ 47.915463][ C0] ? kasan_save_track+0x3e/0x80 [ 47.915474][ C0] ? kasan_save_free_info+0x4a/0x60 [ 47.915483][ C0] ? __kasan_slab_free+0x5f/0x80 [ 47.915495][ C0] ? kfree+0x158/0x440 [ 47.915505][ C0] ? krealloc_noprof+0xfa/0x130 [ 47.915517][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator4freeCskDQVOo9v79Q_16rust_binder_main+0xc6/0x200 [ 47.915537][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process10update_ref+0x152c/0x22a0 [ 47.915555][ C0] ? _RNvXs_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x1741/0x56b0 [ 47.915569][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCskDQVOo9v79Q_16rust_binder_main10allocation10AllocationEBK_+0x26/0x1a0 [ 47.915583][ C0] ? _RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread21copy_transaction_data+0x4009/0x57b0 [ 47.915602][ C0] ? _RNvMNtCskDQVOo9v79Q_16rust_binder_main11transactionNtB2_11Transaction3new+0x3a2/0x2150 [ 47.915621][ C0] ? _RINvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB6_6Thread11transactionNvB2_17transaction_innerEB8_+0x8c4/0x1110 [ 47.915636][ C0] ? _RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread5write+0x17dc/0xa690 [ 47.915648][ C0] ? _RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x1077/0x5da0 [ 47.915662][ C0] ? __se_sys_ioctl+0x135/0x1b0 [ 47.915679][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 47.915691][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 47.915703][ C0] ? do_syscall_64+0x57/0xf0 [ 47.915716][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.915731][ C0] ? _RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x9a/0x180 [ 47.915750][ C0] kasan_save_free_info+0x4a/0x60 [ 47.915760][ C0] __kasan_slab_free+0x5f/0x80 [ 47.915772][ C0] kfree+0x158/0x440 [ 47.915782][ C0] ? krealloc_noprof+0xfa/0x130 [ 47.915793][ C0] krealloc_noprof+0xfa/0x130 [ 47.915804][ C0] _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator4freeCskDQVOo9v79Q_16rust_binder_main+0xc6/0x200 [ 47.915824][ C0] ? __cfi__RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator4freeCskDQVOo9v79Q_16rust_binder_main+0x10/0x10 [ 47.915841][ C0] ? __kasan_check_write+0x18/0x20 [ 47.915851][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.915864][ C0] _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process10update_ref+0x152c/0x22a0 [ 47.915878][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.915890][ C0] ? __cfi__RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process10update_ref+0x10/0x10 [ 47.915907][ C0] ? kernel_text_address+0xa9/0xe0 [ 47.915918][ C0] ? __kasan_check_write+0x18/0x20 [ 47.915928][ C0] ? _raw_spin_lock_irqsave+0xc1/0x160 [ 47.915940][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 47.915954][ C0] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 47.915966][ C0] ? stack_depot_save_flags+0x399/0x800 [ 47.915977][ C0] ? kasan_save_track+0x4f/0x80 [ 47.915988][ C0] ? kasan_save_track+0x3e/0x80 [ 47.915999][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.916008][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 47.916019][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 47.916031][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0xb4/0x200 [ 47.916046][ C0] ? __asan_memset+0x39/0x50 [ 47.916056][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.916071][ C0] ? _RINvMsj_NtNtCs1ewLyjEZ7Le_6kernel4sync3arcINtB6_9UniqueArcINtNtNtCsb7ts3l0a5c3_4core3mem12maybe_uninit11MaybeUninitNtNtCskDQVOo9v79Q_16rust_binder_main7process11NodeRefInfoEE13pin_init_withNtNtB11_7convert10InfallibleINtNtNtBa_4init10___internal11InitClosureNCNvMs1_B1R_B1P_3news_0B1P_B31_EEB1T_+0x3bd/0x990 [ 47.916100][ C0] ? __cfi__RINvMsj_NtNtCs1ewLyjEZ7Le_6kernel4sync3arcINtB6_9UniqueArcINtNtNtCsb7ts3l0a5c3_4core3mem12maybe_uninit11MaybeUninitNtNtCskDQVOo9v79Q_16rust_binder_main7process11NodeRefInfoEE13pin_init_withNtNtB11_7convert10InfallibleINtNtNtBa_4init10___internal11InitClosureNCNvMs1_B1R_B1P_3news_0B1P_B31_EEB1T_+0x10/0x10 [ 47.916128][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ea/0x3d0 [ 47.916141][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916151][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ea/0x3d0 [ 47.916164][ C0] ? __kasan_check_write+0x18/0x20 [ 47.916174][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x10/0x10 [ 47.916188][ C0] ? __kasan_check_write+0x18/0x20 [ 47.916198][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.916210][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.916221][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionINtNtCs1ewLyjEZ7Le_6kernel6rbtree10RBTreeNodejmEEECskDQVOo9v79Q_16rust_binder_main+0xd8/0x1b0 [ 47.916240][ C0] ? _RINvMs4_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x6cd/0xc90 [ 47.916255][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916266][ C0] ? _RINvMs4_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x61e/0xc90 [ 47.916282][ C0] ? __cfi__RINvMs4_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB6_14AllocationView4readNtNtB8_4defs16FlatBinderObjectEB8_+0x10/0x10 [ 47.916308][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.916320][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ea/0x3d0 [ 47.916333][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916343][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x1ea/0x3d0 [ 47.916363][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page8read_raw+0x10/0x10 [ 47.916384][ C0] ? __kasan_check_write+0x18/0x20 [ 47.916402][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.916417][ C0] ? _RNvXs_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x343/0x56b0 [ 47.916436][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916450][ C0] _RNvXs_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x1741/0x56b0 [ 47.916468][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916478][ C0] ? _raw_spin_unlock+0x45/0x60 [ 47.916489][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.916498][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process8get_node+0x1047/0x1820 [ 47.916515][ C0] ? __cfi__RNvXs_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB4_10AllocationNtNtNtCsb7ts3l0a5c3_4core3ops4drop4Drop4drop+0x10/0x10 [ 47.916529][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page9write_raw+0x1ea/0x3d0 [ 47.916542][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916559][ C0] ? __cfi__RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process8get_node+0x10/0x10 [ 47.916577][ C0] ? _RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page9write_raw+0x1ea/0x3d0 [ 47.916590][ C0] ? __cfi__RNvMs0_NtCs1ewLyjEZ7Le_6kernel4pageNtB5_4Page9write_raw+0x10/0x10 [ 47.916603][ C0] ? __kasan_slab_free+0x6a/0x80 [ 47.916626][ C0] ? kmem_cache_free+0x1bd/0x4f0 [ 47.916637][ C0] ? __wake_up+0x169/0x190 [ 47.916654][ C0] ? audit_log_end+0x1f1/0x240 [ 47.916676][ C0] ? __kasan_check_write+0x18/0x20 [ 47.916686][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.916698][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.916710][ C0] ? common_lsm_audit+0x14fe/0x18e0 [ 47.916722][ C0] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 47.916734][ C0] ? _RINvMs4_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB6_14AllocationView5writeNtNtB8_4defs16FlatBinderObjectEB8_+0x4d0/0x810 [ 47.916752][ C0] ? __cfi__RINvMs4_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB6_14AllocationView5writeNtNtB8_4defs16FlatBinderObjectEB8_+0x10/0x10 [ 47.916770][ C0] ? avc_update_node+0x2f1/0x9c0 [ 47.916781][ C0] ? slow_avc_audit+0x19f/0x220 [ 47.916791][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0xf9/0x1f0 [ 47.916811][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x181/0x2d0 [ 47.916827][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.916837][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0 [ 47.916855][ C0] ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10 [ 47.916869][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0 [ 47.916882][ C0] ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10 [ 47.916896][ C0] ? desc_read+0x202/0x3e0 [ 47.916909][ C0] ? __kasan_check_write+0x18/0x20 [ 47.916919][ C0] ? desc_read+0x1ab/0x3e0 [ 47.916932][ C0] ? prb_first_seq+0x109/0x1d0 [ 47.916944][ C0] ? __cfi_prb_first_seq+0x10/0x10 [ 47.916957][ C0] ? __kasan_check_write+0x18/0x20 [ 47.916967][ C0] ? desc_read+0x1ab/0x3e0 [ 47.916979][ C0] ? __kasan_check_read+0x15/0x20 [ 47.916989][ C0] ? this_cpu_in_panic+0x56/0x90 [ 47.916997][ C0] ? _prb_read_valid+0x9f3/0xa80 [ 47.917010][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.917020][ C0] ? prb_read_valid+0x80/0x80 [ 47.917033][ C0] ? data_alloc+0x4d0/0x7e0 [ 47.917045][ C0] ? desc_read+0x202/0x3e0 [ 47.917058][ C0] ? __kasan_check_write+0x18/0x20 [ 47.917082][ C0] ? desc_read+0x1ab/0x3e0 [ 47.917099][ C0] ? prb_first_seq+0x109/0x1d0 [ 47.917118][ C0] ? __cfi_prb_first_seq+0x10/0x10 [ 47.917136][ C0] ? __kasan_check_write+0x18/0x20 [ 47.917150][ C0] ? desc_read+0x1ab/0x3e0 [ 47.917169][ C0] ? __kasan_check_read+0x15/0x20 [ 47.917184][ C0] ? this_cpu_in_panic+0x56/0x90 [ 47.917196][ C0] ? _prb_read_valid+0x9f3/0xa80 [ 47.917216][ C0] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 47.917242][ C0] ? _RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x9a/0x180 [ 47.917267][ C0] ? __cfi__RNvMs_NtNtCs1ewLyjEZ7Le_6kernel5alloc9allocatorNtB4_7Kmalloc14aligned_layout+0x10/0x10 [ 47.917292][ C0] ? prb_read_valid+0x80/0x80 [ 47.917310][ C0] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 47.917329][ C0] ? up+0x10a/0x1b0 [ 47.917349][ C0] ? __cfi_up+0x10/0x10 [ 47.917365][ C0] ? krealloc_noprof+0xfa/0x130 [ 47.917383][ C0] ? _RNvNtCs1ewLyjEZ7Le_6kernel5alloc20dangling_from_layout+0x11/0x20 [ 47.917406][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator4freeCskDQVOo9v79Q_16rust_binder_main+0xed/0x200 [ 47.917433][ C0] ? __cfi__RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator4freeCskDQVOo9v79Q_16rust_binder_main+0x10/0x10 [ 47.917460][ C0] ? __cfi_console_unlock+0x10/0x10 [ 47.917475][ C0] ? __printk_safe_exit+0xd/0x20 [ 47.917492][ C0] ? console_trylock+0x17e/0x220 [ 47.917507][ C0] ? __cfi_console_trylock+0x10/0x10 [ 47.917522][ C0] ? __kasan_check_write+0x18/0x20 [ 47.917538][ C0] ? irq_work_queue+0xc9/0x160 [ 47.917553][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCskDQVOo9v79Q_16rust_binder_main6thread18ScatterGatherStateEEB16_+0x3a3/0x660 [ 47.917583][ C0] ? __cfi_vprintk_emit+0x10/0x10 [ 47.917597][ C0] ? _copy_from_user+0x87/0xa0 [ 47.917616][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCskDQVOo9v79Q_16rust_binder_main6thread18ScatterGatherStateEEB16_+0x10/0x10 [ 47.917645][ C0] ? vprintk_default+0x2a/0x40 [ 47.917660][ C0] ? vprintk+0x93/0xa0 [ 47.917677][ C0] ? _printk+0xde/0x140 [ 47.917691][ C0] ? __cfi__RNvMs5_NtCskDQVOo9v79Q_16rust_binder_main10allocationNtB5_12BinderObject9read_from+0x10/0x10 [ 47.917716][ C0] ? __cfi__printk+0x10/0x10 [ 47.917730][ C0] ? __asan_memset+0x39/0x50 [ 47.917746][ C0] _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCskDQVOo9v79Q_16rust_binder_main10allocation10AllocationEBK_+0x26/0x1a0 [ 47.917767][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeNtNtCskDQVOo9v79Q_16rust_binder_main10allocation13NewAllocationEBK_+0x5b/0x80 [ 47.917794][ C0] _RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread21copy_transaction_data+0x4009/0x57b0 [ 47.917826][ C0] ? __cfi__RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread21copy_transaction_data+0x10/0x10 [ 47.917862][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.917880][ C0] ? kernel_text_address+0xa9/0xe0 [ 47.917896][ C0] ? __kernel_text_address+0x11/0x40 [ 47.917912][ C0] ? unwind_get_return_address+0x51/0x90 [ 47.917927][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 47.917941][ C0] ? arch_stack_walk+0x10a/0x170 [ 47.917962][ C0] ? stack_depot_save_flags+0x38/0x800 [ 47.917978][ C0] ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x181/0x2d0 [ 47.918001][ C0] ? kasan_save_track+0x4f/0x80 [ 47.918018][ C0] ? kasan_save_track+0x3e/0x80 [ 47.918035][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.918050][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 47.918075][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 47.918093][ C0] ? krealloc_noprof+0x8d/0x130 [ 47.918110][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0xb4/0x200 [ 47.918135][ C0] ? __asan_memset+0x39/0x50 [ 47.918154][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.918168][ C0] ? _RINvMsj_NtNtCs1ewLyjEZ7Le_6kernel4sync3arcINtB6_9UniqueArcINtNtNtCsb7ts3l0a5c3_4core3mem12maybe_uninit11MaybeUninitNtNtCskDQVOo9v79Q_16rust_binder_main7process11NodeRefInfoEE13pin_init_withNtNtB11_7convert10InfallibleINtNtNtBa_4init10___internal11InitClosureNCNvMs1_B1R_B1P_3news_0B1P_B31_EEB1T_+0x3bd/0x990 [ 47.918211][ C0] ? __cfi__RINvMsj_NtNtCs1ewLyjEZ7Le_6kernel4sync3arcINtB6_9UniqueArcINtNtNtCsb7ts3l0a5c3_4core3mem12maybe_uninit11MaybeUninitNtNtCskDQVOo9v79Q_16rust_binder_main7process11NodeRefInfoEE13pin_init_withNtNtB11_7convert10InfallibleINtNtNtBa_4init10___internal11InitClosureNCNvMs1_B1R_B1P_3news_0B1P_B31_EEB1T_+0x10/0x10 [ 47.918257][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.918272][ C0] ? __kasan_check_write+0x18/0x20 [ 47.918288][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.918306][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.918326][ C0] ? __cfi__RNvMs5_NtCs1ewLyjEZ7Le_6kernel6bitmapNtB5_6Bitmap7set_bit+0x10/0x10 [ 47.918353][ C0] ? _RNvMs0_NtCskDQVOo9v79Q_16rust_binder_main4nodeNtB5_4Node16insert_node_info+0x470/0x540 [ 47.918376][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionINtNtCs1ewLyjEZ7Le_6kernel6rbtree10RBTreeNodejmEEECskDQVOo9v79Q_16rust_binder_main+0xd8/0x1b0 [ 47.918408][ C0] ? __kasan_check_write+0x18/0x20 [ 47.918425][ C0] ? mutex_unlock+0x90/0x240 [ 47.918439][ C0] ? __cfi_mutex_unlock+0x10/0x10 [ 47.918454][ C0] ? _RNvMso_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_14RawVacantEntrymINtNtNtB7_4list3arc7ListArcNtNtCskDQVOo9v79Q_16rust_binder_main7process11NodeRefInfoKyd703a5263dcc8650_EE6insertB1r_+0x114/0x150 [ 47.918487][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.918501][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process23insert_or_update_handle+0x1290/0x1f00 [ 47.918528][ C0] ? __cfi___update_load_avg_cfs_rq+0x10/0x10 [ 47.918547][ C0] ? xfd_validate_state+0x68/0x140 [ 47.918563][ C0] ? save_fpregs_to_fpstate+0x196/0x220 [ 47.918578][ C0] ? __cfi_sched_clock_cpu+0x10/0x10 [ 47.918595][ C0] ? __cfi___switch_to+0x10/0x10 [ 47.918615][ C0] ? psi_task_switch+0xad/0xa10 [ 47.918633][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.918644][ C0] ? kernel_text_address+0xa9/0xe0 [ 47.918654][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.918666][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.918678][ C0] ? stack_depot_save_flags+0x38/0x800 [ 47.918689][ C0] _RNvMNtCskDQVOo9v79Q_16rust_binder_main11transactionNtB2_11Transaction3new+0x3a2/0x2150 [ 47.918707][ C0] ? kasan_save_track+0x3e/0x80 [ 47.918718][ C0] ? _RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1Z_EEBS_+0xcb/0x650 [ 47.918741][ C0] ? __se_sys_ioctl+0x135/0x1b0 [ 47.918753][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 47.918765][ C0] ? do_syscall_64+0x57/0xf0 [ 47.918777][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.918789][ C0] ? __cfi__RNvMNtCskDQVOo9v79Q_16rust_binder_main11transactionNtB2_11Transaction3new+0x10/0x10 [ 47.918808][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.918820][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 47.918832][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 47.918843][ C0] ? __kasan_check_write+0x18/0x20 [ 47.918854][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0xb4/0x200 [ 47.918869][ C0] ? krealloc_noprof+0xfa/0x130 [ 47.918881][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0xcb/0x200 [ 47.918896][ C0] ? __cfi__RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0x10/0x10 [ 47.918910][ C0] ? mutex_unlock+0x90/0x240 [ 47.918920][ C0] ? __cfi_mutex_unlock+0x10/0x10 [ 47.918930][ C0] ? __asan_memset+0x39/0x50 [ 47.918940][ C0] ? _RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1Z_EEBS_+0x26e/0x650 [ 47.918967][ C0] ? avc_has_perm_noaudit+0x26c/0x360 [ 47.918978][ C0] ? __cfi__RINvMNtNtCs1ewLyjEZ7Le_6kernel4list3arcINtB3_7ListArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtBS_11DeliverCodeEE8pin_initNtNtB7_5error5ErrorINtNtNtB7_4init10___internal11InitClosureNCNvMs0_BS_BP_11arc_try_news0_0BP_B1Z_EEBS_+0x10/0x10 [ 47.919001][ C0] ? avc_has_perm_noaudit+0x28a/0x360 [ 47.919012][ C0] ? avc_has_perm+0x155/0x240 [ 47.919022][ C0] ? __cfi__RNvNtCs1ewLyjEZ7Le_6kernel5error9to_result+0x10/0x10 [ 47.919037][ C0] ? __kasan_check_write+0x18/0x20 [ 47.919047][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.919058][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.919076][ C0] ? selinux_binder_transaction+0x165/0x1d0 [ 47.919088][ C0] ? bpf_lsm_binder_transaction+0xd/0x20 [ 47.919099][ C0] _RINvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB6_6Thread11transactionNvB2_17transaction_innerEB8_+0x8c4/0x1110 [ 47.919115][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.919128][ C0] ? __cfi__RINvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB6_6Thread11transactionNvB2_17transaction_innerEB8_+0x10/0x10 [ 47.919144][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.919154][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 47.919166][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 47.919177][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0xb4/0x200 [ 47.919193][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreemINtNtNtB7_4list3arc7ListArcNtNtCskDQVOo9v79Q_16rust_binder_main7process11NodeRefInfoKyd703a5263dcc8650_EE9raw_entryB1i_+0x413/0x580 [ 47.919215][ C0] ? _RNvMs0_NtCskDQVOo9v79Q_16rust_binder_main4nodeNtB5_4Node9add_death+0x390/0x4b0 [ 47.919233][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtNtB1K_4node9NodeDeathEEEEB1K_+0x10/0x10 [ 47.919253][ C0] ? __kasan_check_write+0x18/0x20 [ 47.919263][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.919275][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.919287][ C0] ? _RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread5write+0x1790/0xa690 [ 47.919299][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.919317][ C0] _RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread5write+0x17dc/0xa690 [ 47.919337][ C0] ? __cfi__RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread5write+0x10/0x10 [ 47.919376][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.919389][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.919399][ C0] ? kernel_text_address+0xa9/0xe0 [ 47.919410][ C0] ? __kernel_text_address+0x11/0x40 [ 47.919419][ C0] ? unwind_get_return_address+0x51/0x90 [ 47.919433][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 47.919441][ C0] ? arch_stack_walk+0x10a/0x170 [ 47.919454][ C0] ? stack_depot_save_flags+0x38/0x800 [ 47.919465][ C0] ? kasan_save_track+0x4f/0x80 [ 47.919476][ C0] ? kasan_save_track+0x3e/0x80 [ 47.919487][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.919496][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 47.919508][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 47.919519][ C0] ? krealloc_noprof+0x8d/0x130 [ 47.919530][ C0] ? _RNvYNtNtNtCs1ewLyjEZ7Le_6kernel5alloc9allocator7KmallocNtB6_9Allocator5allocCskDQVOo9v79Q_16rust_binder_main+0xb4/0x200 [ 47.919545][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process8get_node+0x89e/0x1820 [ 47.919561][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process14set_as_manager+0x1b8/0xa50 [ 47.919580][ C0] ? _RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x183b/0x5da0 [ 47.919603][ C0] ? __se_sys_ioctl+0x135/0x1b0 [ 47.919619][ C0] ? __x64_sys_ioctl+0x7f/0xa0 [ 47.919634][ C0] ? x64_sys_call+0x1878/0x2ee0 [ 47.919653][ C0] ? do_syscall_64+0x57/0xf0 [ 47.919671][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.919708][ C0] ? _RNvMs6_NtCs1ewLyjEZ7Le_6kernel4listINtB5_4ListINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapDNtBL_13DeliverToReadEL_EE12insert_innerBL_+0x43a/0x6c0 [ 47.919730][ C0] ? __cfi__RNvMs6_NtCs1ewLyjEZ7Le_6kernel4listINtB5_4ListINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapDNtBL_13DeliverToReadEL_EE12insert_innerBL_+0x10/0x10 [ 47.919748][ C0] ? _RNvMs0_NtCskDQVOo9v79Q_16rust_binder_main4nodeNtB5_4Node28incr_refcount_allow_zero2one+0x4d4/0xe50 [ 47.919766][ C0] ? __kasan_check_write+0x18/0x20 [ 47.919776][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.919788][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.919800][ C0] ? _raw_spin_unlock+0x45/0x60 [ 47.919813][ C0] ? _RNvMs0_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_12ProcessInner24new_node_ref_with_thread+0x62d/0xa50 [ 47.919831][ C0] ? __cfi__RNvMs0_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_12ProcessInner24new_node_ref_with_thread+0x10/0x10 [ 47.919849][ C0] ? krealloc_noprof+0xfa/0x130 [ 47.919860][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreeyINtNtNtB7_4sync3arc3ArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtNtB1d_4node4NodeEEE9raw_entryB1d_+0x403/0x500 [ 47.919876][ C0] ? __cfi__RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreeyINtNtNtB7_4sync3arc3ArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtNtB1d_4node4NodeEEE9raw_entryB1d_+0x10/0x10 [ 47.919898][ C0] ? __kasan_check_write+0x18/0x20 [ 47.919908][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.919919][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.919931][ C0] ? _RNvMs1_NtCs1ewLyjEZ7Le_6kernel6rbtreeINtB5_6RBTreelINtNtNtB7_4sync3arc3ArcNtNtCskDQVOo9v79Q_16rust_binder_main6thread6ThreadEE9raw_entryB1e_+0x416/0x580 [ 47.919947][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process8get_node+0xfa9/0x1820 [ 47.919962][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.919972][ C0] ? __kasan_check_write+0x18/0x20 [ 47.919982][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.919993][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.920009][ C0] ? _raw_spin_unlock+0x45/0x60 [ 47.920021][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.920030][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process18get_current_thread+0x9e6/0x1cf0 [ 47.920043][ C0] ? __cfi__RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process8get_node+0x10/0x10 [ 47.920058][ C0] ? __cfi__RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process18get_current_thread+0x10/0x10 [ 47.920079][ C0] ? avc_has_perm_noaudit+0x26c/0x360 [ 47.920090][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.920100][ C0] ? avc_has_perm_noaudit+0x28a/0x360 [ 47.920111][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCskDQVOo9v79Q_16rust_binder_main4node7NodeRefEEB16_+0xf6/0x490 [ 47.920126][ C0] ? avc_has_perm+0x155/0x240 [ 47.920136][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtB4_6option6OptionNtNtCskDQVOo9v79Q_16rust_binder_main4node7NodeRefEEB16_+0x10/0x10 [ 47.920151][ C0] ? _RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0xf9/0x1f0 [ 47.920171][ C0] ? __cfi__RINvNtCsb7ts3l0a5c3_4core3ptr13drop_in_placeINtNtNtCs1ewLyjEZ7Le_6kernel4sync3arc3ArcINtCskDQVOo9v79Q_16rust_binder_main7DTRWrapNtNtB1o_4node4NodeEEEB1o_+0x10/0x10 [ 47.920191][ C0] ? __kasan_check_write+0x18/0x20 [ 47.920201][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.920213][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.920224][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process14set_as_manager+0x54c/0xa50 [ 47.920238][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.920248][ C0] ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process14set_as_manager+0x794/0xa50 [ 47.920261][ C0] ? __cfi__RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process14set_as_manager+0x10/0x10 [ 47.920274][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.920286][ C0] ? __kasan_check_write+0x18/0x20 [ 47.920299][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.920311][ C0] ? _RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x1019/0x5da0 [ 47.920325][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.920335][ C0] _RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x1077/0x5da0 [ 47.920350][ C0] ? stack_trace_save+0xaa/0x100 [ 47.920358][ C0] ? stack_depot_save_flags+0x38/0x800 [ 47.920369][ C0] ? kasan_save_stack+0x4d/0x60 [ 47.920380][ C0] ? kasan_save_stack+0x3e/0x60 [ 47.920391][ C0] ? __kasan_record_aux_stack+0xb2/0xd0 [ 47.920400][ C0] ? kasan_record_aux_stack_noalloc+0xf/0x20 [ 47.920410][ C0] ? __call_rcu_common+0xd7/0x720 [ 47.920423][ C0] ? call_rcu+0x14/0x20 [ 47.920435][ C0] ? __cfi__RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x10/0x10 [ 47.920449][ C0] ? _raw_spin_trylock+0xb5/0x140 [ 47.920461][ C0] ? __cfi__raw_spin_trylock+0x10/0x10 [ 47.920473][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.920485][ C0] ? _raw_spin_unlock+0x45/0x60 [ 47.920497][ C0] ? call_rcu_nocb+0x6d7/0xc80 [ 47.920508][ C0] ? swake_up_one_online_ipi+0x30/0x30 [ 47.920520][ C0] ? is_bpf_text_address+0x17b/0x1a0 [ 47.920531][ C0] ? kernel_text_address+0xa9/0xe0 [ 47.920541][ C0] ? __kernel_text_address+0x11/0x40 [ 47.920551][ C0] ? unwind_get_return_address+0x51/0x90 [ 47.920561][ C0] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 47.920570][ C0] ? arch_stack_walk+0x10a/0x170 [ 47.920583][ C0] ? stack_trace_save+0xaa/0x100 [ 47.920591][ C0] ? stack_depot_save_flags+0x38/0x800 [ 47.920601][ C0] ? kasan_save_track+0x4f/0x80 [ 47.920612][ C0] ? kasan_save_track+0x3e/0x80 [ 47.920623][ C0] ? kasan_save_alloc_info+0x40/0x50 [ 47.920632][ C0] ? __kasan_kmalloc+0x96/0xb0 [ 47.920644][ C0] ? __kmalloc_node_track_caller_noprof+0x251/0x4f0 [ 47.920655][ C0] ? krealloc_noprof+0x8d/0x130 [ 47.920667][ C0] ? kvrealloc_noprof+0x59/0x120 [ 47.920684][ C0] ? _RNvCskDQVOo9v79Q_16rust_binder_main16rust_binder_mmap+0x71b/0x1560 [ 47.920704][ C0] ? mmap_region+0x157c/0x1d60 [ 47.920715][ C0] ? do_mmap+0xb85/0x13c0 [ 47.920724][ C0] ? vm_mmap_pgoff+0x36e/0x4b0 [ 47.920737][ C0] ? ksys_mmap_pgoff+0x165/0x1e0 [ 47.920754][ C0] ? __x64_sys_mmap+0x121/0x140 [ 47.920772][ C0] ? x64_sys_call+0x13bf/0x2ee0 [ 47.920792][ C0] ? do_syscall_64+0x57/0xf0 [ 47.920808][ C0] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.920822][ C0] ? arch_scale_cpu_capacity+0x1c/0xb0 [ 47.920834][ C0] ? need_active_balance+0x228/0x9a0 [ 47.920848][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.920861][ C0] ? sched_balance_rq+0x4636/0x4ce0 [ 47.920879][ C0] ? sched_balance_update_blocked_averages+0x1360/0x1360 [ 47.920892][ C0] ? sched_clock_cpu+0x75/0x400 [ 47.920903][ C0] ? update_curr+0x690/0x9e0 [ 47.920915][ C0] ? sched_clock+0x44/0x60 [ 47.920926][ C0] ? kvm_sched_clock_read+0x15/0x30 [ 47.920936][ C0] ? sched_clock_noinstr+0xd/0x30 [ 47.920945][ C0] ? sched_clock+0x44/0x60 [ 47.920955][ C0] ? __kasan_check_write+0x18/0x20 [ 47.920965][ C0] ? _raw_spin_lock+0x92/0x120 [ 47.920981][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 47.920993][ C0] ? dequeue_entities+0x1d7/0x1400 [ 47.921005][ C0] ? raw_spin_rq_lock_nested+0x14/0x30 [ 47.921016][ C0] ? sched_balance_newidle+0x79b/0xba0 [ 47.921027][ C0] ? kvm_sched_clock_read+0x15/0x30 [ 47.921037][ C0] ? sched_clock_noinstr+0xd/0x30 [ 47.921046][ C0] ? __kasan_check_write+0x18/0x20 [ 47.921056][ C0] ? __switch_to+0xc4f/0x1300 [ 47.921074][ C0] ? __cfi___switch_to+0x10/0x10 [ 47.921085][ C0] ? psi_task_switch+0x4f2/0xa10 [ 47.921095][ C0] ? __kasan_check_write+0x18/0x20 [ 47.921105][ C0] ? finish_task_switch+0x1d9/0x760 [ 47.921115][ C0] ? __switch_to_asm+0x3d/0x70 [ 47.921126][ C0] ? __schedule+0x1357/0x1ea0 [ 47.921135][ C0] ? avc_has_extended_perms+0x80b/0xe70 [ 47.921146][ C0] ? __asan_memcpy+0x5a/0x80 [ 47.921156][ C0] ? avc_has_extended_perms+0x969/0xe70 [ 47.921167][ C0] ? __asan_set_shadow_00+0x12/0x20 [ 47.921176][ C0] ? do_vfs_ioctl+0x182d/0x2010 [ 47.921188][ C0] ? __ia32_compat_sys_ioctl+0x920/0x920 [ 47.921201][ C0] ? schedule+0xc5/0x240 [ 47.921213][ C0] ? futex_unqueue+0x136/0x160 [ 47.921225][ C0] ? ioctl_has_perm+0x39a/0x500 [ 47.921235][ C0] ? has_cap_mac_admin+0xd0/0xd0 [ 47.921244][ C0] ? futex_wait+0x2ac/0x7b0 [ 47.921256][ C0] ? __cfi_futex_wait+0x10/0x10 [ 47.921268][ C0] ? selinux_file_ioctl+0x732/0x1480 [ 47.921278][ C0] ? __cfi_userfaultfd_unmap_complete+0x10/0x10 [ 47.921292][ C0] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 47.921301][ C0] ? do_futex+0x32a/0x510 [ 47.921311][ C0] ? __cfi_do_futex+0x10/0x10 [ 47.921320][ C0] ? vm_mmap_pgoff+0x153/0x4b0 [ 47.921331][ C0] ? __fget_files+0x2c5/0x340 [ 47.921344][ C0] ? bpf_lsm_file_ioctl+0xd/0x20 [ 47.921353][ C0] ? security_file_ioctl+0x3e/0x110 [ 47.921362][ C0] ? __cfi__RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x10/0x10 [ 47.921376][ C0] __se_sys_ioctl+0x135/0x1b0 [ 47.921391][ C0] __x64_sys_ioctl+0x7f/0xa0 [ 47.921403][ C0] x64_sys_call+0x1878/0x2ee0 [ 47.921415][ C0] do_syscall_64+0x57/0xf0 [ 47.921427][ C0] ? clear_bhb_loop+0x50/0xa0 [ 47.921439][ C0] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 47.921451][ C0] RIP: 0033:0x7f83ad59bf79 [ 47.921465][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 47.921473][ C0] RSP: 002b:00007f83ae40e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 47.921485][ C0] RAX: ffffffffffffffda RBX: 00007f83ad815fa0 RCX: 00007f83ad59bf79 [ 47.921492][ C0] RDX: 00002000000001c0 RSI: 00000000c0306201 RDI: 0000000000000003 [ 47.921498][ C0] RBP: 00007f83ad6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 47.921505][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 47.921510][ C0] R13: 00007f83ad816038 R14: 00007f83ad815fa0 R15: 00007ffe371ed388 [ 47.921518][ C0] [ 47.921522][ C0] Modules linked in: [ 47.921534][ C0] ---[ end trace 0000000000000000 ]--- [ 47.921539][ C0] RIP: 0010:stack_trace_save+0xa5/0x100 [ 47.921553][ C0] Code: 7c 24 20 89 74 24 28 ff c2 89 54 24 2c 48 c7 44 24 30 00 00 00 00 65 48 8b 15 27 20 8f 7e 48 c7 c7 90 cb 75 81 48 89 c6 31 c9 c6 5f c8 ff 8b 44 24 30 66 42 c7 44 33 04 f8 f8 42 c6 44 33 06 [ 47.921559][ C0] RSP: 0018:ffffc9000f288000 EFLAGS: 00010246 [ 47.921567][ C0] RAX: ffffc9000f288020 RBX: 1ffff92001e51000 RCX: 0000000000000000 [ 47.921574][ C0] RDX: ffff88813268df00 RSI: ffffc9000f288020 RDI: ffffffff8175cb90 [ 47.921581][ C0] RBP: ffffc9000f288090 R08: ffffc9000f28815f R09: 0000000000000000 [ 47.921587][ C0] R10: ffffc9000f2880e0 R11: fffff52001e5102c R12: dffffc0000000000 [ 47.921594][ C0] R13: 1ffff110264d1ca0 R14: dffffc0000000000 R15: 1ffff92001e51018 [ 47.921601][ C0] FS: 00007f83ae40e6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 47.921609][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 47.921615][ C0] CR2: ffffc9000f287ff8 CR3: 000000010b34c000 CR4: 00000000003526b0 [ 47.921630][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 47.922183][ C0] Kernel Offset: disabled