='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x80) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000003540)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x2}]}}}]}, 0x3c}, 0x1, 0xba01}, 0x0) 14:32:43 executing program 3: futex(0x0, 0x8, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f0000000000), 0x8, 0x0, 0x0, 0x0, 0x0) 14:32:43 executing program 5: syz_emit_ethernet(0x16, &(0x7f0000000040)={@broadcast, @broadcast, @void, {@llc_tr={0x11, {@snap={0x0, 0x0, "e7", '@t('}}}}}, 0x0) 14:32:43 executing program 4: syz_emit_ethernet(0x3e, 0x0, 0x0) 14:32:43 executing program 4: syz_emit_ethernet(0x3e, 0x0, 0x0) 14:32:43 executing program 0: pipe2$watch_queue(0x0, 0x80) close$fd_v4l2_buffer(0xffffffffffffffff) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x5646, 0x0) [ 978.686986][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 978.789069][T22784] 140647127171072-140647128055807: 0000000000000000 14:32:43 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[], 0x0) 14:32:43 executing program 3: futex(0x0, 0x8, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f0000000000), 0x8, 0x0, 0x0, 0x0, 0x0) [ 979.842070][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 979.916915][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 979.950108][T22784] 140647128190976-140732348923903: 0000000000000000 [ 979.957140][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 979.979091][T22784] 140732349059072-140732349100031: 0000000000000000 [ 979.992001][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 980.016006][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 980.029059][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 980.036496][T22784] Pass: 20607332 Run:20607437 [ 980.059020][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 980.068977][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 980.079060][T22784] Call Trace: [ 980.082359][T22784] [ 980.085310][T22784] dump_stack_lvl+0xd1/0x138 [ 980.089954][T22784] mt_find.cold+0x8b/0x90 [ 980.094334][T22784] ? mas_find+0x1d0/0x1d0 [ 980.098725][T22784] find_vma+0x10c/0x1b0 [ 980.102918][T22784] ? can_vma_merge_before+0x390/0x390 [ 980.108332][T22784] ? walk_page_test+0x78/0x180 [ 980.113146][T22784] walk_page_range+0x2b1/0x4a0 [ 980.117970][T22784] ? __walk_page_range+0x780/0x780 [ 980.123230][T22784] mlock_fixup+0x650/0x810 [ 980.127710][T22784] apply_vma_lock_flags+0x23d/0x350 [ 980.132950][T22784] ? mlock_fixup+0x810/0x810 [ 980.137583][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 980.143594][T22784] do_mlock+0x25a/0x6d0 [ 980.147783][T22784] ? folio_evictable+0x270/0x270 [ 980.152766][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 980.158687][T22784] __x64_sys_mlock+0x59/0x80 [ 980.163296][T22784] do_syscall_64+0x39/0xb0 [ 980.167743][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 980.173657][T22784] RIP: 0033:0x7feaf548c0c9 [ 980.178086][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 980.197709][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 980.206150][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 980.214134][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 980.222116][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 980.230098][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 980.238078][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 980.246083][T22784] [ 980.253863][T22784] index not increased! 20ffc000 <= 20ffc000 [ 980.259949][T22784] BUG at mt_find:6473 (1) [ 980.264410][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 980.273041][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 980.310216][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 980.363838][T22784] 0-536866815: 0000000000000000 [ 980.369303][T22784] 536866816-536870911: ffff888094eb2460 [ 980.375340][T22784] 536870912-553631743: ffff888094eb2540 [ 980.381445][T22784] 553631744-553644031: 0000000000000000 [ 980.387465][T22784] 553644032-553631743: ffff888076c687e0 [ 980.393565][T22784] 553631744-553648127: ffff888076c689a0 [ 980.402362][T22784] 553648128-553652223: ffff888094eb2620 [ 980.408384][T22784] 553652224-116820934655: 0000000000000000 [ 980.414704][T22784] 116820934656-116825128959: ffff888094eb2700 [ 980.421302][T22784] 116825128960-93824997462015: 0000000000000000 [ 980.428039][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 980.440474][T22784] 93824997601280-140647092711423: 0000000000000000 [ 980.447405][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 980.454550][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 980.514256][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 980.523764][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 980.532138][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 980.544891][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 980.554486][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 980.563944][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 980.573471][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 980.584067][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 980.594323][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 980.603869][T22784] 140647114899456-140647114903551: 0000000000000000 [ 980.611150][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 980.618215][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 980.627853][T22784] 140647115304960-140647115325439: 0000000000000000 [ 980.635235][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 980.644000][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 980.695335][T22784] 140647127171072-140647128055807: 0000000000000000 [ 980.709038][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 980.716043][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 980.732711][T22784] 140647128190976-140732348923903: 0000000000000000 [ 980.749092][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 980.756174][T22784] 140732349059072-140732349100031: 0000000000000000 [ 980.779024][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 980.786052][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 980.799037][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 980.806476][T22784] Pass: 20608851 Run:20608957 [ 980.838031][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 980.848020][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 980.858112][T22784] Call Trace: [ 980.861413][T22784] [ 980.864364][T22784] dump_stack_lvl+0xd1/0x138 [ 980.869003][T22784] mt_find.cold+0x8b/0x90 [ 980.873383][T22784] ? mas_find+0x1d0/0x1d0 [ 980.877768][T22784] find_vma+0x10c/0x1b0 [ 980.881971][T22784] ? can_vma_merge_before+0x390/0x390 [ 980.887382][T22784] ? walk_page_test+0x78/0x180 [ 980.892200][T22784] walk_page_range+0x2b1/0x4a0 [ 980.897023][T22784] ? __walk_page_range+0x780/0x780 [ 980.902196][T22784] mlock_fixup+0x650/0x810 [ 980.906673][T22784] apply_vma_lock_flags+0x23d/0x350 [ 980.911922][T22784] ? mlock_fixup+0x810/0x810 [ 980.916588][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 980.922536][T22784] do_mlock+0x25a/0x6d0 [ 980.926748][T22784] ? folio_evictable+0x270/0x270 [ 980.931756][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 980.937694][T22784] __x64_sys_mlock+0x59/0x80 [ 980.942310][T22784] do_syscall_64+0x39/0xb0 [ 980.946759][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 980.952679][T22784] RIP: 0033:0x7feaf548c0c9 [ 980.957108][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 980.976743][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 980.985195][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 980.993200][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 981.001197][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 981.009190][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 981.017178][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 981.025185][T22784] [ 981.036422][T22784] index not increased! 20ffc000 <= 20ffc000 [ 981.042680][T22784] BUG at mt_find:6473 (1) [ 981.049674][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 981.058249][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 981.095755][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 981.146854][T22784] 0-536866815: 0000000000000000 [ 981.157790][T22784] 536866816-536870911: ffff888094eb2460 [ 981.163936][T22784] 536870912-553631743: ffff888094eb2540 [ 981.170391][T22784] 553631744-553644031: 0000000000000000 [ 981.176328][T22784] 553644032-553631743: ffff888076c687e0 [ 981.182315][T22784] 553631744-553648127: ffff888076c689a0 [ 981.188235][T22784] 553648128-553652223: ffff888094eb2620 [ 981.194261][T22784] 553652224-116820934655: 0000000000000000 [ 981.200498][T22784] 116820934656-116825128959: ffff888094eb2700 [ 981.206953][T22784] 116825128960-93824997462015: 0000000000000000 [ 981.217898][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 981.224739][T22784] 93824997601280-140647092711423: 0000000000000000 [ 981.231957][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 981.239051][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 981.294916][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 981.306663][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 981.314205][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 981.321435][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 981.328377][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 981.335451][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 981.346670][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 981.354807][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 981.362744][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 981.370071][T22784] 140647114899456-140647114903551: 0000000000000000 [ 981.377033][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 981.384395][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 981.391730][T22784] 140647115304960-140647115325439: 0000000000000000 [ 981.398716][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 981.408514][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 981.461049][T22784] 140647127171072-140647128055807: 0000000000000000 [ 981.468044][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 981.475234][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 981.482559][T22784] 140647128190976-140732348923903: 0000000000000000 [ 981.489593][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 981.496555][T22784] 140732349059072-140732349100031: 0000000000000000 [ 981.503595][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 981.514558][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 981.524150][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 981.541316][T22784] Pass: 20610047 Run:20610154 [ 981.546033][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 981.555939][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 981.566015][T22784] Call Trace: [ 981.569304][T22784] [ 981.572243][T22784] dump_stack_lvl+0xd1/0x138 [ 981.576864][T22784] mt_find.cold+0x8b/0x90 [ 981.581227][T22784] ? mas_find+0x1d0/0x1d0 [ 981.585933][T22784] find_vma+0x10c/0x1b0 [ 981.590107][T22784] ? can_vma_merge_before+0x390/0x390 [ 981.595504][T22784] ? walk_page_test+0x78/0x180 [ 981.600291][T22784] walk_page_range+0x2b1/0x4a0 [ 981.605083][T22784] ? __walk_page_range+0x780/0x780 [ 981.610266][T22784] mlock_fixup+0x650/0x810 [ 981.614721][T22784] apply_vma_lock_flags+0x23d/0x350 [ 981.619951][T22784] ? mlock_fixup+0x810/0x810 [ 981.624590][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 981.630607][T22784] do_mlock+0x25a/0x6d0 [ 981.634793][T22784] ? folio_evictable+0x270/0x270 [ 981.639786][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 981.645719][T22784] __x64_sys_mlock+0x59/0x80 [ 981.650329][T22784] do_syscall_64+0x39/0xb0 [ 981.654770][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 981.660686][T22784] RIP: 0033:0x7feaf548c0c9 [ 981.665118][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 981.684739][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 981.693170][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 981.701160][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 981.709141][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 981.717126][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 981.725107][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 981.733117][T22784] [ 981.748928][T22784] index not increased! 20ffc000 <= 20ffc000 [ 981.754983][T22784] BUG at mt_find:6473 (1) [ 981.759848][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 981.769601][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 981.807014][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 981.861741][T22784] 0-536866815: 0000000000000000 [ 981.868171][T22784] 536866816-536870911: ffff888094eb2460 [ 981.874605][T22784] 536870912-553631743: ffff888094eb2540 [ 981.883802][T22784] 553631744-553644031: 0000000000000000 [ 981.890061][T22784] 553644032-553631743: ffff888076c687e0 [ 981.896177][T22784] 553631744-553648127: ffff888076c689a0 [ 981.902437][T22784] 553648128-553652223: ffff888094eb2620 [ 981.908392][T22784] 553652224-116820934655: 0000000000000000 [ 981.918198][T22784] 116820934656-116825128959: ffff888094eb2700 [ 981.924848][T22784] 116825128960-93824997462015: 0000000000000000 [ 981.931923][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 981.938737][T22784] 93824997601280-140647092711423: 0000000000000000 [ 981.945878][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 981.957774][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 982.014080][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 982.021569][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 982.028559][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 982.035856][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 982.043123][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 982.050397][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 982.057374][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 982.064428][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 982.072069][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 982.079125][T22784] 140647114899456-140647114903551: 0000000000000000 [ 982.086250][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 982.093305][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 982.100472][T22784] 140647115304960-140647115325439: 0000000000000000 [ 982.107444][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 982.117589][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 982.167610][T22784] 140647127171072-140647128055807: 0000000000000000 [ 982.184784][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 982.191950][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 982.199441][T22784] 140647128190976-140732348923903: 0000000000000000 [ 982.206412][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 982.213586][T22784] 140732349059072-140732349100031: 0000000000000000 [ 982.222746][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 982.229822][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 982.236817][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 982.244817][T22784] Pass: 20610100 Run:20610208 [ 982.249608][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 982.259530][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 982.269610][T22784] Call Trace: [ 982.272902][T22784] [ 982.275852][T22784] dump_stack_lvl+0xd1/0x138 [ 982.280494][T22784] mt_find.cold+0x8b/0x90 [ 982.284860][T22784] ? mas_find+0x1d0/0x1d0 [ 982.289256][T22784] find_vma+0x10c/0x1b0 [ 982.293443][T22784] ? can_vma_merge_before+0x390/0x390 [ 982.298837][T22784] ? walk_page_test+0x78/0x180 [ 982.303634][T22784] walk_page_range+0x2b1/0x4a0 [ 982.308442][T22784] ? __walk_page_range+0x780/0x780 [ 982.313602][T22784] mlock_fixup+0x650/0x810 [ 982.318058][T22784] apply_vma_lock_flags+0x23d/0x350 [ 982.323294][T22784] ? mlock_fixup+0x810/0x810 [ 982.327941][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 982.333869][T22784] do_mlock+0x25a/0x6d0 [ 982.338059][T22784] ? folio_evictable+0x270/0x270 [ 982.343038][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 982.348960][T22784] __x64_sys_mlock+0x59/0x80 [ 982.353573][T22784] do_syscall_64+0x39/0xb0 [ 982.358021][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 982.363993][T22784] RIP: 0033:0x7feaf548c0c9 [ 982.368419][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 982.388131][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 982.396563][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 982.404544][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 982.412529][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 982.420510][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 982.428490][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 982.436521][T22784] [ 982.442253][T22784] index not increased! 20ffc000 <= 20ffc000 [ 982.448194][T22784] BUG at mt_find:6473 (1) [ 982.452609][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 982.461166][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 982.499969][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 982.548422][T22784] 0-536866815: 0000000000000000 [ 982.556160][T22784] 536866816-536870911: ffff888094eb2460 [ 982.562192][T22784] 536870912-553631743: ffff888094eb2540 [ 982.568123][T22784] 553631744-553644031: 0000000000000000 [ 982.574157][T22784] 553644032-553631743: ffff888076c687e0 [ 982.580156][T22784] 553631744-553648127: ffff888076c689a0 [ 982.587618][T22784] 553648128-553652223: ffff888094eb2620 [ 982.593702][T22784] 553652224-116820934655: 0000000000000000 [ 982.599992][T22784] 116820934656-116825128959: ffff888094eb2700 [ 982.606445][T22784] 116825128960-93824997462015: 0000000000000000 [ 982.613156][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 982.620016][T22784] 93824997601280-140647092711423: 0000000000000000 [ 982.626896][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 982.633945][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 982.703587][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 982.714979][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 982.727700][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 982.744605][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 982.754438][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 982.768512][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 982.778595][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 982.788870][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 982.796007][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 982.805221][T22784] 140647114899456-140647114903551: 0000000000000000 [ 982.812299][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 982.819337][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 982.826316][T22784] 140647115304960-140647115325439: 0000000000000000 [ 982.834358][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 982.843013][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 982.894681][T22784] 140647127171072-140647128055807: 0000000000000000 [ 982.901779][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 982.919132][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 982.926147][T22784] 140647128190976-140732348923903: 0000000000000000 [ 982.935786][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 982.942997][T22784] 140732349059072-140732349100031: 0000000000000000 [ 982.950171][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 982.957294][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 982.964516][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 982.972156][T22784] Pass: 20610100 Run:20610209 [ 982.976854][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 982.986775][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 982.996857][T22784] Call Trace: [ 983.000154][T22784] [ 983.003107][T22784] dump_stack_lvl+0xd1/0x138 [ 983.007740][T22784] mt_find.cold+0x8b/0x90 [ 983.012115][T22784] ? mas_find+0x1d0/0x1d0 [ 983.016497][T22784] find_vma+0x10c/0x1b0 [ 983.025719][T22784] ? can_vma_merge_before+0x390/0x390 [ 983.031132][T22784] ? walk_page_test+0x78/0x180 [ 983.036983][T22784] walk_page_range+0x2b1/0x4a0 [ 983.041790][T22784] ? __walk_page_range+0x780/0x780 [ 983.046964][T22784] mlock_fixup+0x650/0x810 [ 983.051436][T22784] apply_vma_lock_flags+0x23d/0x350 [ 983.056684][T22784] ? mlock_fixup+0x810/0x810 [ 983.061339][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 983.067277][T22784] do_mlock+0x25a/0x6d0 [ 983.071482][T22784] ? folio_evictable+0x270/0x270 [ 983.076475][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 983.082408][T22784] __x64_sys_mlock+0x59/0x80 [ 983.087020][T22784] do_syscall_64+0x39/0xb0 [ 983.091574][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 983.097585][T22784] RIP: 0033:0x7feaf548c0c9 [ 983.102016][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 983.121644][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 983.130076][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 983.138062][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 983.146097][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 983.154080][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 983.162061][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 983.170065][T22784] [ 983.180460][T22784] index not increased! 20ffc000 <= 20ffc000 [ 983.186398][T22784] BUG at mt_find:6473 (1) [ 983.190830][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 983.202381][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 983.239955][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 983.291761][T22784] 0-536866815: 0000000000000000 [ 983.297012][T22784] 536866816-536870911: ffff888094eb2460 [ 983.305902][T22784] 536870912-553631743: ffff888094eb2540 [ 983.311936][T22784] 553631744-553644031: 0000000000000000 [ 983.318032][T22784] 553644032-553631743: ffff888076c687e0 [ 983.324035][T22784] 553631744-553648127: ffff888076c689a0 [ 983.330188][T22784] 553648128-553652223: ffff888094eb2620 [ 983.336121][T22784] 553652224-116820934655: 0000000000000000 [ 983.342390][T22784] 116820934656-116825128959: ffff888094eb2700 [ 983.349033][T22784] 116825128960-93824997462015: 0000000000000000 [ 983.355660][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 983.362770][T22784] 93824997601280-140647092711423: 0000000000000000 [ 983.369765][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 983.376875][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 983.443433][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 983.451995][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 983.467465][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 983.476440][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 983.493676][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 983.506243][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 983.523194][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 983.534460][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 983.549356][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 983.556354][T22784] 140647114899456-140647114903551: 0000000000000000 [ 983.563492][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 983.570552][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 983.577531][T22784] 140647115304960-140647115325439: 0000000000000000 [ 983.584589][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 983.592426][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 983.644648][T22784] 140647127171072-140647128055807: 0000000000000000 [ 983.653126][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 983.661020][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 983.668005][T22784] 140647128190976-140732348923903: 0000000000000000 [ 983.675154][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 983.682193][T22784] 140732349059072-140732349100031: 0000000000000000 [ 983.689239][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 983.696214][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 983.703455][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 983.713198][T22784] Pass: 20610100 Run:20610210 [ 983.717905][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 983.727853][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 983.737965][T22784] Call Trace: [ 983.741268][T22784] [ 983.744218][T22784] dump_stack_lvl+0xd1/0x138 [ 983.748859][T22784] mt_find.cold+0x8b/0x90 [ 983.753233][T22784] ? mas_find+0x1d0/0x1d0 [ 983.757623][T22784] find_vma+0x10c/0x1b0 [ 983.761811][T22784] ? can_vma_merge_before+0x390/0x390 [ 983.767218][T22784] ? walk_page_test+0x78/0x180 [ 983.772027][T22784] walk_page_range+0x2b1/0x4a0 [ 983.776845][T22784] ? __walk_page_range+0x780/0x780 [ 983.782028][T22784] mlock_fixup+0x650/0x810 [ 983.786511][T22784] apply_vma_lock_flags+0x23d/0x350 [ 983.791756][T22784] ? mlock_fixup+0x810/0x810 [ 983.796409][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 983.802353][T22784] do_mlock+0x25a/0x6d0 [ 983.806558][T22784] ? folio_evictable+0x270/0x270 [ 983.811549][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 983.817487][T22784] __x64_sys_mlock+0x59/0x80 [ 983.822113][T22784] do_syscall_64+0x39/0xb0 [ 983.826574][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 983.832506][T22784] RIP: 0033:0x7feaf548c0c9 [ 983.836953][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 983.856598][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 983.865047][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 983.873222][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 983.881216][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 983.889211][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 983.897209][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 983.905211][T22784] [ 983.915719][T22784] index not increased! 20ffc000 <= 20ffc000 [ 983.927659][T22784] BUG at mt_find:6473 (1) [ 983.932157][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 983.940793][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 983.978118][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 984.031543][T22784] 0-536866815: 0000000000000000 [ 984.036995][T22784] 536866816-536870911: ffff888094eb2460 [ 984.043439][T22784] 536870912-553631743: ffff888094eb2540 [ 984.057817][T22784] 553631744-553644031: 0000000000000000 14:32:48 executing program 5: r0 = getpgrp(0x0) process_vm_readv(r0, &(0x7f0000000640)=[{&(0x7f0000000100)=""/86, 0x56}], 0x1, &(0x7f0000001700)=[{&(0x7f0000000700)=""/4096, 0x1000}], 0x1, 0x0) 14:32:48 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[], 0x0) 14:32:48 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x0) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000004180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) r5 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xe5f0000, 0x4, 0x0, 0x280, 0xffffffffffffffff, 0x80003, '\x00', 0x0, r5, 0x1, 0x0, 0x0, 0x7}, 0x48) getrlimit(0xb, &(0x7f0000000300)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x80) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000003540)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x2}]}}}]}, 0x3c}, 0x1, 0xba01}, 0x0) 14:32:48 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(0xffffffffffffffff) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x5646, 0x0) 14:32:48 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000480)='rcu_utilization\x00', r2}, 0x10) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x8202, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000280)={@rand_addr, 0x0, 0x2f, 0x7}}) fallocate(r2, 0x21, 0x0, 0x80000000) pipe(&(0x7f0000000080)={0xffffffffffffffff}) splice(r3, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe6, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r3, 0x400c6615, &(0x7f0000006440)={0x0, @aes256, 0x0, @desc1}) sendto$inet6(r3, &(0x7f0000000580)="49e6b17a4400f34be58d3281fcf2381731e7da3b20579b1d63b15f6cdae58f18ee3fa2ee88a13f8dbb3f3e5382c3712b2c506487b9dcae424e09cf199fae8694679668b604db9e6fb8da8970c1bcd4b698aa9d7a647b6104a1e997d25e14cf1fd24264d6d87c638f7fe1b292bf797fa146e6aadac0bbf71d9cc2484c96ae6c328a8983a76ef84e194c", 0x89, 0x0, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000380)={'sit0\x00', &(0x7f00000004c0)={@rand_addr, @rand_addr, 0x29, 0xa5}}) syz_clone(0x40900280, 0x0, 0x0, 0x0, &(0x7f0000000a80), 0x0) r4 = creat(&(0x7f0000000080)='./file0\x00', 0x125) ftruncate(r4, 0x0) 14:32:48 executing program 3: syz_emit_ethernet(0x2e, &(0x7f0000000080)={@multicast, @link_local, @val={@void}, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @broadcast, @multicast1}, {0x0, 0x0, 0x0, @multicast2}}}}}, 0x0) [ 984.065421][T22784] 553644032-553631743: ffff888076c687e0 14:32:48 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[], 0x0) 14:32:48 executing program 3: syz_emit_ethernet(0x66, &(0x7f0000000000)={@multicast, @random="0afeb320a4d1", @val={@void}, {@mpls_mc={0x8100, {[], @ipv6=@tipc_packet={0x0, 0x6, "e9db9b", 0x2c, 0x6, 0x0, @remote, @mcast2, {[], @payload_mcast={{{{{{0x2c, 0x0, 0x0, 0x0, 0x0, 0xb}}}}}}}}}}}}, 0x0) 14:32:48 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(0xffffffffffffffff) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x5646, 0x0) [ 984.113188][T22784] 553631744-553648127: ffff888076c689a0 [ 984.279798][T22784] 553648128-553652223: ffff888094eb2620 [ 984.648471][T22784] 553652224-116820934655: 0000000000000000 14:32:49 executing program 5: r0 = getpgrp(0x0) process_vm_readv(r0, &(0x7f0000000640)=[{&(0x7f0000000100)=""/86, 0x56}], 0x1, &(0x7f0000001700)=[{&(0x7f0000000700)=""/4096, 0x1000}], 0x1, 0x0) 14:32:49 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0) 14:32:49 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0) 14:32:49 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(0xffffffffffffffff) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x5646, 0x0) 14:32:49 executing program 3: r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000001c40), 0x2, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, 0x0) [ 985.193172][T22784] 116820934656-116825128959: ffff888094eb2700 [ 985.245140][T22784] 116825128960-93824997462015: 0000000000000000 14:32:49 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0) 14:32:49 executing program 5: r0 = getpgrp(0x0) process_vm_readv(r0, &(0x7f0000000640)=[{&(0x7f0000000100)=""/86, 0x56}], 0x1, &(0x7f0000001700)=[{&(0x7f0000000700)=""/4096, 0x1000}], 0x1, 0x0) [ 985.322186][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 985.379091][T22784] 93824997601280-140647092711423: 0000000000000000 [ 985.427102][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 985.468159][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 985.563734][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 985.577461][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 985.587256][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 985.603454][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 985.614456][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 985.626691][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 985.637650][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 985.656440][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 985.663738][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 985.673164][T22784] 140647114899456-140647114903551: 0000000000000000 [ 985.680256][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 985.687240][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 985.694279][T22784] 140647115304960-140647115325439: 0000000000000000 [ 985.701384][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 985.708357][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 985.774034][T22784] 140647127171072-140647128055807: 0000000000000000 [ 985.783877][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 985.791326][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 985.798344][T22784] 140647128190976-140732348923903: 0000000000000000 [ 985.805810][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 985.813163][T22784] 140732349059072-140732349100031: 0000000000000000 [ 985.820520][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 985.827537][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 985.834972][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 985.842772][T22784] Pass: 20622360 Run:20622471 [ 985.847509][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 985.857429][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 985.867510][T22784] Call Trace: [ 985.870814][T22784] [ 985.873767][T22784] dump_stack_lvl+0xd1/0x138 [ 985.878407][T22784] mt_find.cold+0x8b/0x90 [ 985.882783][T22784] ? mas_find+0x1d0/0x1d0 [ 985.887187][T22784] find_vma+0x10c/0x1b0 [ 985.891475][T22784] ? can_vma_merge_before+0x390/0x390 [ 985.896902][T22784] ? walk_page_test+0x78/0x180 [ 985.901800][T22784] walk_page_range+0x2b1/0x4a0 [ 985.906616][T22784] ? __walk_page_range+0x780/0x780 [ 985.911792][T22784] mlock_fixup+0x650/0x810 [ 985.916264][T22784] apply_vma_lock_flags+0x23d/0x350 [ 985.921517][T22784] ? mlock_fixup+0x810/0x810 [ 985.926160][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 985.932089][T22784] do_mlock+0x25a/0x6d0 [ 985.936281][T22784] ? folio_evictable+0x270/0x270 [ 985.941261][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 985.947183][T22784] __x64_sys_mlock+0x59/0x80 [ 985.951792][T22784] do_syscall_64+0x39/0xb0 [ 985.956243][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 985.962161][T22784] RIP: 0033:0x7feaf548c0c9 [ 985.966591][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 985.986220][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 985.994654][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 986.002638][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 986.010622][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 986.018604][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 986.026585][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 986.034588][T22784] [ 986.052024][T22784] index not increased! 20ffc000 <= 20ffc000 [ 986.057977][T22784] BUG at mt_find:6473 (1) [ 986.069088][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 986.082241][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 986.127960][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 986.198451][T22784] 0-536866815: 0000000000000000 [ 986.210577][T22784] 536866816-536870911: ffff888094eb2460 [ 986.216531][T22784] 536870912-553631743: ffff888094eb2540 [ 986.229012][T22784] 553631744-553644031: 0000000000000000 [ 986.234961][T22784] 553644032-553631743: ffff888076c687e0 [ 986.241384][T22784] 553631744-553648127: ffff888076c689a0 [ 986.247410][T22784] 553648128-553652223: ffff888094eb2620 [ 986.253478][T22784] 553652224-116820934655: 0000000000000000 [ 986.260058][T22784] 116820934656-116825128959: ffff888094eb2700 [ 986.266605][T22784] 116825128960-93824997462015: 0000000000000000 [ 986.275024][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 986.282117][T22784] 93824997601280-140647092711423: 0000000000000000 [ 986.291434][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 986.298494][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 986.355382][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 986.362672][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 986.369842][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 986.377445][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 986.384891][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 986.392060][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 986.401385][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 986.408448][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 986.415597][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 986.422677][T22784] 140647114899456-140647114903551: 0000000000000000 [ 986.429850][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 986.436919][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 986.444096][T22784] 140647115304960-140647115325439: 0000000000000000 [ 986.451195][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 986.458249][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 986.518295][T22784] 140647127171072-140647128055807: 0000000000000000 [ 986.527549][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 986.544368][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 986.555443][T22784] 140647128190976-140732348923903: 0000000000000000 [ 986.562977][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 986.570128][T22784] 140732349059072-140732349100031: 0000000000000000 [ 986.577528][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 986.584717][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 986.592210][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 986.599727][T22784] Pass: 20623815 Run:20623927 [ 986.604459][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 986.614377][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 986.624454][T22784] Call Trace: [ 986.627747][T22784] [ 986.630687][T22784] dump_stack_lvl+0xd1/0x138 [ 986.635310][T22784] mt_find.cold+0x8b/0x90 [ 986.639671][T22784] ? mas_find+0x1d0/0x1d0 [ 986.644037][T22784] find_vma+0x10c/0x1b0 [ 986.648209][T22784] ? can_vma_merge_before+0x390/0x390 [ 986.653603][T22784] ? walk_page_test+0x78/0x180 [ 986.658391][T22784] walk_page_range+0x2b1/0x4a0 [ 986.663182][T22784] ? __walk_page_range+0x780/0x780 [ 986.668335][T22784] mlock_fixup+0x650/0x810 [ 986.672795][T22784] apply_vma_lock_flags+0x23d/0x350 [ 986.678026][T22784] ? mlock_fixup+0x810/0x810 [ 986.682662][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 986.688592][T22784] do_mlock+0x25a/0x6d0 [ 986.692788][T22784] ? folio_evictable+0x270/0x270 [ 986.697768][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 986.703690][T22784] __x64_sys_mlock+0x59/0x80 [ 986.709771][T22784] do_syscall_64+0x39/0xb0 [ 986.714226][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 986.720140][T22784] RIP: 0033:0x7feaf548c0c9 [ 986.724567][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 986.744297][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 986.752755][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 986.760775][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 986.768779][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 986.776773][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 986.784757][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 986.792761][T22784] [ 986.802943][T22784] index not increased! 20ffc000 <= 20ffc000 [ 986.809429][T22784] BUG at mt_find:6473 (1) [ 986.813800][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 986.822597][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 986.859932][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 986.910998][T22784] 0-536866815: 0000000000000000 [ 986.916270][T22784] 536866816-536870911: ffff888094eb2460 [ 986.922347][T22784] 536870912-553631743: ffff888094eb2540 [ 986.929987][T22784] 553631744-553644031: 0000000000000000 [ 986.935992][T22784] 553644032-553631743: ffff888076c687e0 [ 986.943329][T22784] 553631744-553648127: ffff888076c689a0 [ 986.953846][T22784] 553648128-553652223: ffff888094eb2620 [ 986.960134][T22784] 553652224-116820934655: 0000000000000000 [ 986.966398][T22784] 116820934656-116825128959: ffff888094eb2700 [ 986.975306][T22784] 116825128960-93824997462015: 0000000000000000 [ 986.982305][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 986.990431][T22784] 93824997601280-140647092711423: 0000000000000000 [ 986.997323][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 987.004488][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 987.062959][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 987.070327][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 987.077313][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 987.084658][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 987.093290][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 987.108765][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 987.117398][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 987.132650][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 987.139932][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 987.146906][T22784] 140647114899456-140647114903551: 0000000000000000 [ 987.159319][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 987.166353][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 987.173805][T22784] 140647115304960-140647115325439: 0000000000000000 [ 987.192541][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 987.209043][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 987.267703][T22784] 140647127171072-140647128055807: 0000000000000000 [ 987.275428][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 987.282979][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 987.290363][T22784] 140647128190976-140732348923903: 0000000000000000 [ 987.297868][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 987.307965][T22784] 140732349059072-140732349100031: 0000000000000000 [ 987.328528][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 987.349113][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 987.356106][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 987.364969][T22784] Pass: 20624066 Run:20624179 [ 987.370012][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 987.379934][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 987.390007][T22784] Call Trace: [ 987.393302][T22784] [ 987.396257][T22784] dump_stack_lvl+0xd1/0x138 [ 987.400896][T22784] mt_find.cold+0x8b/0x90 [ 987.405275][T22784] ? mas_find+0x1d0/0x1d0 [ 987.409659][T22784] find_vma+0x10c/0x1b0 [ 987.413859][T22784] ? can_vma_merge_before+0x390/0x390 [ 987.429857][T22784] ? walk_page_test+0x78/0x180 [ 987.434660][T22784] walk_page_range+0x2b1/0x4a0 [ 987.439455][T22784] ? __walk_page_range+0x780/0x780 [ 987.444618][T22784] mlock_fixup+0x650/0x810 [ 987.449081][T22784] apply_vma_lock_flags+0x23d/0x350 [ 987.454317][T22784] ? mlock_fixup+0x810/0x810 [ 987.458954][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 987.464885][T22784] do_mlock+0x25a/0x6d0 [ 987.469078][T22784] ? folio_evictable+0x270/0x270 [ 987.474056][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 987.480063][T22784] __x64_sys_mlock+0x59/0x80 [ 987.484672][T22784] do_syscall_64+0x39/0xb0 [ 987.489121][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 987.495036][T22784] RIP: 0033:0x7feaf548c0c9 [ 987.499466][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 987.519102][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 987.527535][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 987.535528][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 987.543508][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 987.551496][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 987.559477][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 987.567483][T22784] [ 987.572534][T22784] index not increased! 20ffc000 <= 20ffc000 [ 987.578473][T22784] BUG at mt_find:6473 (1) [ 987.584003][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 987.592624][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 987.632174][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 987.681556][T22784] 0-536866815: 0000000000000000 [ 987.686803][T22784] 536866816-536870911: ffff888094eb2460 [ 987.694303][T22784] 536870912-553631743: ffff888094eb2540 [ 987.700359][T22784] 553631744-553644031: 0000000000000000 [ 987.708563][T22784] 553644032-553631743: ffff888076c687e0 [ 987.717262][T22784] 553631744-553648127: ffff888076c689a0 [ 987.733252][T22784] 553648128-553652223: ffff888094eb2620 [ 987.739355][T22784] 553652224-116820934655: 0000000000000000 [ 987.745555][T22784] 116820934656-116825128959: ffff888094eb2700 [ 987.752346][T22784] 116825128960-93824997462015: 0000000000000000 [ 987.759064][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 987.766066][T22784] 93824997601280-140647092711423: 0000000000000000 [ 987.773055][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 987.780259][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 987.852234][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 987.864876][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 987.877288][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 987.895748][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 987.905638][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 987.915803][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 987.922919][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 987.929983][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 987.936953][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 987.943988][T22784] 140647114899456-140647114903551: 0000000000000000 [ 987.953408][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 987.961157][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 987.968139][T22784] 140647115304960-140647115325439: 0000000000000000 [ 987.975418][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 987.982714][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 988.034496][T22784] 140647127171072-140647128055807: 0000000000000000 [ 988.042240][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 988.049456][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 988.056431][T22784] 140647128190976-140732348923903: 0000000000000000 [ 988.065787][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 988.073028][T22784] 140732349059072-140732349100031: 0000000000000000 [ 988.080272][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 988.087312][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 988.094578][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 988.102265][T22784] Pass: 20624097 Run:20624211 [ 988.106977][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 988.116888][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 988.126956][T22784] Call Trace: [ 988.130245][T22784] [ 988.133184][T22784] dump_stack_lvl+0xd1/0x138 [ 988.137808][T22784] mt_find.cold+0x8b/0x90 [ 988.142171][T22784] ? mas_find+0x1d0/0x1d0 [ 988.146538][T22784] find_vma+0x10c/0x1b0 [ 988.150732][T22784] ? can_vma_merge_before+0x390/0x390 [ 988.156133][T22784] ? walk_page_test+0x78/0x180 [ 988.160925][T22784] walk_page_range+0x2b1/0x4a0 [ 988.165717][T22784] ? __walk_page_range+0x780/0x780 [ 988.170873][T22784] mlock_fixup+0x650/0x810 [ 988.175329][T22784] apply_vma_lock_flags+0x23d/0x350 [ 988.180564][T22784] ? mlock_fixup+0x810/0x810 [ 988.185200][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 988.191123][T22784] do_mlock+0x25a/0x6d0 [ 988.195320][T22784] ? folio_evictable+0x270/0x270 [ 988.200303][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 988.206222][T22784] __x64_sys_mlock+0x59/0x80 [ 988.210826][T22784] do_syscall_64+0x39/0xb0 [ 988.215273][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 988.221193][T22784] RIP: 0033:0x7feaf548c0c9 [ 988.225623][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 988.245247][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 988.253684][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 988.261755][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 988.269745][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 988.277738][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 988.285728][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 988.293746][T22784] [ 988.314771][T22784] index not increased! 20ffc000 <= 20ffc000 [ 988.322433][T22784] BUG at mt_find:6473 (1) [ 988.327369][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 988.336734][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 988.374878][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 988.431940][T22784] 0-536866815: 0000000000000000 [ 988.437208][T22784] 536866816-536870911: ffff888094eb2460 [ 988.444151][T22784] 536870912-553631743: ffff888094eb2540 [ 988.450463][T22784] 553631744-553644031: 0000000000000000 [ 988.456398][T22784] 553644032-553631743: ffff888076c687e0 [ 988.462720][T22784] 553631744-553648127: ffff888076c689a0 [ 988.468651][T22784] 553648128-553652223: ffff888094eb2620 [ 988.474937][T22784] 553652224-116820934655: 0000000000000000 [ 988.481432][T22784] 116820934656-116825128959: ffff888094eb2700 [ 988.487890][T22784] 116825128960-93824997462015: 0000000000000000 [ 988.494886][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 988.501991][T22784] 93824997601280-140647092711423: 0000000000000000 [ 988.508877][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 988.516408][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 988.575696][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 988.583782][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 988.591127][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 988.598100][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 988.605504][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 988.612810][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 988.620057][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 988.629589][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 988.636579][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 988.643907][T22784] 140647114899456-140647114903551: 0000000000000000 [ 988.651163][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 988.658142][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 988.665545][T22784] 140647115304960-140647115325439: 0000000000000000 [ 988.672998][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 988.682339][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 988.736772][T22784] 140647127171072-140647128055807: 0000000000000000 [ 988.759109][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 988.766099][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 988.791134][T22784] 140647128190976-140732348923903: 0000000000000000 [ 988.798128][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 988.816057][T22784] 140732349059072-140732349100031: 0000000000000000 [ 988.824835][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 988.843402][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 988.854939][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 988.862735][T22784] Pass: 20624097 Run:20624212 [ 988.867437][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 988.877374][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 988.887477][T22784] Call Trace: [ 988.890776][T22784] [ 988.893727][T22784] dump_stack_lvl+0xd1/0x138 [ 988.898362][T22784] mt_find.cold+0x8b/0x90 [ 988.902736][T22784] ? mas_find+0x1d0/0x1d0 [ 988.907118][T22784] find_vma+0x10c/0x1b0 [ 988.911318][T22784] ? can_vma_merge_before+0x390/0x390 [ 988.916752][T22784] ? walk_page_test+0x78/0x180 [ 988.921570][T22784] walk_page_range+0x2b1/0x4a0 [ 988.926378][T22784] ? __walk_page_range+0x780/0x780 [ 988.931540][T22784] mlock_fixup+0x650/0x810 [ 988.936007][T22784] apply_vma_lock_flags+0x23d/0x350 [ 988.941252][T22784] ? mlock_fixup+0x810/0x810 [ 988.945888][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 988.951824][T22784] do_mlock+0x25a/0x6d0 [ 988.956018][T22784] ? folio_evictable+0x270/0x270 [ 988.960997][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 988.966922][T22784] __x64_sys_mlock+0x59/0x80 [ 988.971530][T22784] do_syscall_64+0x39/0xb0 [ 988.975980][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 988.981897][T22784] RIP: 0033:0x7feaf548c0c9 [ 988.986330][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 989.005957][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 989.014388][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 989.022373][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 989.030356][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 989.038349][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 989.046338][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 989.054340][T22784] [ 989.086075][T22784] index not increased! 20ffc000 <= 20ffc000 [ 989.092187][T22784] BUG at mt_find:6473 (1) [ 989.096570][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 989.105162][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 989.142996][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 989.193930][T22784] 0-536866815: 0000000000000000 [ 989.199245][T22784] 536866816-536870911: ffff888094eb2460 [ 989.205167][T22784] 536870912-553631743: ffff888094eb2540 [ 989.211130][T22784] 553631744-553644031: 0000000000000000 [ 989.217046][T22784] 553644032-553631743: ffff888076c687e0 [ 989.223004][T22784] 553631744-553648127: ffff888076c689a0 [ 989.228917][T22784] 553648128-553652223: ffff888094eb2620 [ 989.234882][T22784] 553652224-116820934655: 0000000000000000 [ 989.242236][T22784] 116820934656-116825128959: ffff888094eb2700 [ 989.248688][T22784] 116825128960-93824997462015: 0000000000000000 [ 989.255355][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 989.262217][T22784] 93824997601280-140647092711423: 0000000000000000 [ 989.269152][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:32:53 executing program 3: syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@nobarrier}, {@subvolid}, {@ssd_spread}, {@space_cache_v2}, {@autodefrag}, {@enospc_debug}, {@space_cache_v2}, {@noflushoncommit}, {@usebackuproot}, {@datasum}]}, 0x1, 0x55a8, &(0x7f000000ac40)="$eJzs3X1sVWcdB/Bz25UiL21ndGnjCyyOgOAIrk4HRFqLGF7mrG2ygXuhTuPAOSxkiOKadYOQzc1aNot2MphEp0yRSgbIFkdxCegs2UxcV8Ut4OoLjVuY7IW5+ZLee8/l3nNoe4dzndvnQ9pznvs7z3Ofe3L+uN9Ln3MDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACIJg3c2d1z3Y1vHyOVt3VN7xxNqGGeue6Tv7C633bn5gUl3FhKebHq1b2bRxevWTbcfO6qlY2D4pCBLJfol0/8U1c+s+V7/44yPDARs+mdqWlQ30lKmuh1ONETkP9vfL/fl0EARFkQEK09s56Z2CnAEyuyviAw5qwcIlO27cNr9vfemc/eO6EwfiL51+I4d7AsMlfV31nryWqpO/CyJHZNpZl14i5xJN9Y9ecK/JiwAAXpFptclN5u1o+i1upt0crUfa1ZF2a6QdvkNozW6cjtS4Iwaa5/hofZjmWZ2KCsUDzjNST5//TLs22j/SjkSNVzDP3EPTkWbkQPNsjNSHa54AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAryfvrfzLzOUv3l4yonvp9b9f86Gb5nVXvvuRr5XfUzn3Rx3L2u776qN1K5s2Tq9+su3YWT0VC9snBUFZsl8i1T1x3WVHV9WN+1jNN3754Z9eOfrOawvT44bbM7IODnrCnemlQXBlVqU3HPZoSRDU5haSzaA9Xlia3JkXFgAAAHgjqUj+Lsi0U3GwKKedSKbJRPJfKBUWFyxcsuPGbfP71pfO2T+uO3Hg9MerHWC86lOOl2mXnfxJZAXjMP5GxztZDw9dERtncNERo3n+4u27941Ztf6C5S90XjJz9l/P772h85kpVbd+/cExl25Z8c25K2P5v2zw/B+eOfkfAACA/4b8Hx1ncEPl/+Jv//aHrd95V9/2vU8d3fS3rc2r6584saGt/n0rJ9f//YJzW1+M5f/xOU8Zy//hjMP8XxCcXv4HAACA17P/df6vjo0zuKHy/4aqd0xZc33XHZsnbhp76+pn//HS/TMe/nnxZ6Yuftvsp/bN3Lg7lv+n5Zf/z8iedvhgVzjhq0uDYFr+JxUAAADIEf6/+8mPFsK8nvrkIJrXb9tVtXfbxglfunzMn+8+N3Fi77KpNe2bj/zhoi3fTdw7veVITyz/V+eX/4tem5cLAAAA5KHx8YOX3fzr8S99qqb97l1rv79s1vbjDTs3Pd2deGvlvJaWL7bE8n9tfvm/eHheDgAAAHAKSy685hcX94296fjSP5W09jY377m84tBD1z72x6bF35v1z/JtV8Tyf0N++X9Uepte+ZDqtD/8K4TbS4NgZP9OY6pwIGityhQAAACAV0mY0888/9LPN03YXjrxW7OvuGb5nh+0H9x625EP9p5z1Vcq1v7uuXUfiOX/xsHv/x/e6SBc/59z/7/Y+v+sQuqufzPdGAAAAIA3o/h6/vD2+KlvLhjo+/fzXf9f3LWq7bld71nQXFN7/32PTX1o0aHnJ24Zs+eW5q6qd3Z/ufztsfzfnF/+L8zevprf/wcAAACn4f/t+/8WxcYZ3FD3/3/h5Z2HZx286N+/+ejaO8e2bOhJ/Kppzc+e7Tm88+jkH1ecN/ktsfzfml/+D7ejs19eZ3h+1pQGQXn/TvpuglvD6V4dKXQUZRVSJz7Soz7skS50FGcVkhojPc4rDYKz+3eaI4Uzw0JrpHCsJF24K1J4OCykr4dM4SeRQmd4pW0oSU83WtgdFtILLDrCFRSjM0siIj2OD9Sjv3DKHocyTw4AAPCmEobndJYtym0G0SjbkRjqgFFDHVAw1AGFQx1wRuSA6IEDPR405BYyA144v+D99zzw+A1TP7tvxiOjPnLV7Ckn1q/+V1fbJ55fXd+46JJY/r8rv/wfnooRqc1A6/+DcP1/+nsNM+v/G8JCWaTQERZqo3cMqA2fIxV2bwmfo6w23eNYeaYAAAAAb2jh5wKFwzwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP+wd+9xUlV3gsBPN/2EpmkNiaAEezBiMKFpBBI1ukFMjKujaUkwZmJi82hJh0aQh4qLE3wkGYX4WDGRjI6wjgkaJcTEFaMOrJMoM0N8P+IjjFk1SnyBuu66rrqf7lunqLrVZRcCSjvf7x9dp+p3nrceXefeW+cCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAfw4LfnrVx4MgX/n5lv+MPX/KPa/a5e4+njjnt+ZVrjn3p289tXts46qGJ88+64qDxT122+WN/GHzCsk+G0NJVriwpXrbwxE2nT9z7iAkXrT/0l1P6XTmvKlNvJh76df4pz9w5L7b6dP8Qbi4LoSIdGFmXBCoz9+tifUPqQtgtbA1kS7T1TUqkGw6/qw1hedgayFZ1S20IdTmBr95/x9ofdiaW1oawbwihOt3GH6uTNmrTgeFVSaBvOjCrIgn873cS2cCa8iQA2y2+GbIv+tUt+Rkaui9X5PVXucM69sFKD69PTDQUz/fiYTu5Uzmq0g+0bNfTVlAdO0XB22Odd1sveLcVbOeLPW25X6Qy31De2RqqDuXT2k6ePL9jXnykPDQ19SlW0056nh/bsnDqtqR7zeswdqBhh7wON1/+yqTm/scMumHCpiFjT1q2bHu7WWzz7mzVIfOa6zXPYzTe50kvePsVfEtq9KUrhPCfvzvm7BMrDjritoOXvjHm8Gv67TXp84fu9uI1bR/f+/jd7/rymZsK5v8N7z7/jy/neFuelzu2+mZ9MjePj9TFxMv1ydwcAAAAeo3esNf00h+Nmtrv6FsfnVy556xFf//fhrVeMXDT+YNu3f8PBzUd8ZVBK75eMP9vLO34fzzkX5c72nUhjO9KnDsghEFdjyeBa2N3pgwI4a+6Ui35gcNSgXUhDO5KjMhWlSpRE0s0pgLP1mcC41OBO2OgJRW4JgYuTgXOi4HVqcDUGFiXCkyIgdCeP4796zPjKDlQGwOtyUZcHc9CeLU+tpbaVo9nqwIAANhBMrPDyvy7Oec6bG+GOL1cXdtThngGdtEM1aka0jPY7LSqaA0VPdVQ3lMN2XEvevfhF9Rc1lPNBadhlOVnuK/h6sOH3vv2dTO+sLF90BnrP/XZ139xxoVXXvbM/5nyP0Yt/PQPniuY/ze/+/y/upuOlBUc/w/huK6/MXd5JtKRjbe25GUAAAAAtsPgyiVrnj6070+O2vj0859af/nAe25bf+0PDrju4dbyh/dcumrQXgXz//Glnf8f94n0yckcNsTdEDMGhNCcH0iq/VxhIDnq3S8TAAAAgN4gezw+eyy8PXObnKKdnk8X5m/ZxvzxwP/4bvPXXPDc93+37JL/d+XU//5fvzDt53/35W8997nqo74258ZvH/3vIyb/rPD3/y2lnf/fN/826cSdsReXDgihJidwV+xlZ6BLYww8+fn8QGb8d8YNsDhWlTkxIVvV4liiNQaaU4HlxUrcmy0xKD+QebKyjZ+bHUd7pkROAAAAAN53cXdAPC4fz/+vn/yjw7dc8Ppfr3/r+WUvPfrCD/Yd9tnW4f8w+NbPDP/u7z+z70MLC+b/rdt2/n/XPLjg9P6OfiGMqgihT/qHARv6JgsDxkBdWSZxe9+krj7pqs7uG8IhnQNLV/WnzPr/Fek1Bu+vTaqKgUHDVm4Z3pm4ujaEUbmBh7+xYlxnYl4qkG18Um0Ie3eONt34TTVJ45Xpxn9cE8LQnEC2qik1IXQ2VpWu6o7qzHUM0lX9ojqEj+QEslV9pjqEBQGAXir+K52W++DcBWfOmNzR0TZnJybiPvzacHJ7R1vT1Fkd06qL9Glaqs95yxidXTimUq9880RmiaIHL3i0oZR09neCzbltZfbjF5w4mLkfvwtVdo3zgMq8u2PSQ/7kPoVNhJxvUsWGXL6Th9w3t5KtT2JB/TF/VegXaubPbZvTdMbkefPmjE7+lpr9gORvPMyUbKvR6W3Vt7u+lfDyKLpaVsp73Vb75VYyat7M2aPmLjhzZPvMydPbpredMubAsWMPHDd29JhxozpH1Zz87WGo+3VXdWqo76wocVw7cKh7VuRU8n58akhISPS2xE3HXt/4QMf1d9S2jbz/4I6T7r5q1r8+Pv6MI3/b9K9L5q9aULlHwfx/9rvP/+OnTvzkz6zPUOz4f0M8zJ88vvUwf2sMLC/1+H9DsaP52RMDGlOBRTGwyGF+AAAAPhzi7si4NzPulb59yZbV9x7/0Z8ffOnvd/9szdy9Nkz98XXfa3up5leHtf954qFNhxXM/xeV9vv/HbT+f3bp+qOKLfM/IpZoLrb+f3qZ/+z6/4uKrf+fXuY/u/7/8g9g/f/52UBqk7xq/X8AAODD4P1b/7/H5f3TFwgoyNDj8v7pCwQUZOhxGf9SLxCwzev/n1Yz7K9PvOCLVVu+NOCV1Xfs+/NPTD/+xX9/fObfnDjyiC+eNOXTtxbM/y8ubf5v4X4AAADYdXzptz9tv3vsWQOffO2fxpy+uO3UtRdM+p+zrr9nn8fXr7qqz5SNTxTM/5eXNv9//9f/C8XO/28sFmgptjCg9f8AAADopYqt/3fTg7W/OXrw2Q2vnrr8uoF7P3TqgDk3PvjAk3cNG3pR1U0L5i95oGD+v7q0+X887aI8L3fszZv1yZp2Ib2m3cv12Z8MAAAAQO9QHpqaKkvMm7cy6mHvvc3HMkuBvls617n/aey6B154e/GU855d+eKNT97/sZdPue3q7/3jF05/7cKhI8cvHlow/19X2vw/73cZmy9/ZVJz/2MGvXnDhE1Dxp60bNnW4/8AAADAzlPqfgkAAAAAAAAAAAAAAOCD98aKlv97x/5/PrDj8U+sqfvEhCea9h8y8adXVp/z6+8/84vW6b9cWvD7/3BcV7liv/+P1/2Lvy8YmJc7ttrz+n+Z+189etWCriULN9SHsE9uYMY5M3YLmWvz75cbWPvNEXt0Js5Jl7ht44RnOhMnpQNHjtz99c7EIalAa1wkcXA6EK+q+Hr/VCAur/hAOhC3x+p0oCoTOL9/Mo6y9LbaVJdsq7L0tnqsLoQBOYHstrq5LmmjLD3ApalAdoCnpgNxgMdmAuXpXq3ql/QqBupi0av6Jb0CAGCXFb8FVoaT2zvamuNX+Hi7Z0X+bZS3ZNnZhdWWldj8E5mlyR684NGGUtJ90t9Ft15rvDJUdw5hdMHX1dwsZV2j3DG19LDpBhYZck+rvZUXKZe2rZuuqviIapMRNU2d1TGtsseBj+k5ywEVPWYZXTDZyc1S3rVJS6ilhL6UMKISt00JXY73y0NTU59UroNjsCHk6ekVUerv9XPX+Sv2KsjNc8LuW2b+y9FXffPvNvxpw7TzL51wRNmzx1yz9oq3Nj75N4+33/jyfymY/zeUNv+vzh3X65mLASyKV9b73IAQWkscEQAAAHz43fDd6288Ydadm05eV/HIfffNKP/yCZXvLPz1wjO/99jti488/9M/2974WafV7f5kxU//+YRTvtEwfdrev6756GXnvbX21M2nvla/36u153+0YP7fWNr8P+7ByhwKTvZ2rIvX/z93QAhdl9ZvSALXxuFOGRDCX3WlWmKJ5IL6R8USzUng2rjDZEQs0dqSX1VNDKxOBZ6tzwTWpQJ3xkBmL8XKkNmVc0l9COO6Usfll5gdSzSkAl+OgcZUoCkGmlOB/jEwPhV4oX8m0JIK/FsMhPb8bfWr/pltBQAAsC0y86zK/LshPc9bXdFThrKeMvTtKUN5Txmqe8pQbBTx/o0xQ2Xq5JWynEyV6VprU7UUZIgXw9/mfhVkCPfm50wXLGg6nn+QPd+gLD/Dxx+6es131nzhpWN/s+SyN+99qvxHQ1Z8t7H2rXUbLvnxsLG7v/iDgvl/c2nz/775t0nrd8b5/9br/yWBu2L3Lo2njjfGwJOfzw9kdgzcGSe7i7NVtWRKZCbti2OJ8THQmArMjoHxqUDrcZnA8j3yA5mZdrbxc7ONt2dK5AQAAADgfRd3EMTdNHH+P7Nu0sRxo36y5I3lMxetffvCFy5ccXvHq5XjNr52zae+1ufx4bcXzP/Hlzb/j+31y23svNibp/uHcHPZ1t5kAyPrkkDcj1EXfx4/pC6E3XJ2cGRLtPVNSlSlGg6/q01+oV6VruqW2mSNgXj/q/ffsfaHnYmltSHsm7P3JdvGH6uTNmrTgeFVSaBvOjCrIgnEPT/ZwJryJADbLbtXML6gMqe6ZDV0X67I6+/Dck3Q9PAK9oF2k6+731ztLNXpBzL7VLO27WkrqI6douDtsc67rTe+2xq823K/SGW+obyzNVQdyqe1nTx5fse8+EjuL1kL7KTnOfdXqqWkd8DrcNF7723PqtMdaE59fDR3X67712FZrG7z5a9Mau5/zKAbJmwaMvakZctK7kYR8YfCI9ZM2i138+5s1SHzmut1nyctPk9647+BRk9bCGH/1pdu7X/wv+310MmrvzVqr8Hj/vJPTxwZHnl46T4Ljrlo5T63HFUw/28pbf5fkbrt8kbcmHMHhPDJnI27IW7+wwckn4M5geRT8iOFgeSQ+1P1RT85AQAAYEfL7u7I7i9oz9wmJ4Sn58mF+Vu2MX/cXzG+2/yl9vu1b7z49ozTvn7Lpe+E/oc3jJ2/5ZLjZm2cseaFh6b/cdV1x7a+UTD/b333+X9NqpuO/zv+z07i+H+3dvVd0TXpBxZt167ogurYKRz/79au/m5z/L9bjv87/t8dx/974Ph/t3b1p63gW9JsX7pCCHcf9Naqv7305iX/63uTh3xq7aTGeyq+f9iM368cvu6+q75y+5FffLlg/j+7tPm/9f+6X7Qvu/5fa7H1/2YXW/9vkfX/AACAnarIQnPpeV7B6n0FGdKr9xVk6HGBwB6XGLT+3zav//f82qf+XHf8+p/86qKqRz5y+ohBQ0945sDpl1859IcPbNz87P5f21gw/19U2vw/vhz65bbeW9b/azyuSFUXx8BsCwMCAACwKyq2gwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAP1nlfP+u0xcNem/bP35p4991fuW7PsqFPPPIPf/nWPafUHvLCd2YM/PhDE+efdcVB45+6bPPH/jD4hGWfDKG9q1xZUrxs4YmbTp+49xETLlp/6C+n9LtyXnWm3srM7V55uWOrb9aHsDznkbqYeLm+887WwFePXrWgojOxoT6EfXIDM86ZsVtn4pr6EPbLDaz95og9OhPnpEvctnHCM52Jk9KBI0fu/npn4pBMoCzd3Sv6J90tS3f3h/1DGJATyHb3O/3zq8q28aVMoDzdxs/qkjZioC4WvbwuaSMGOmKJ9poQRlWE0Cdd1b9UJ1X1SVf1m+qkqj7pqv62OoRDQggV6ao2ViVVVaRHfk9VUlUMDBq2csvwzsTyqhBG5QYe/saKcZ2JU1OBbOMTq0LYu/Mlk278xsqk8cp040srQxgaQqhKl3itIilRlS7xp4oQPpITyDb+7YoQFgQ+FOKHz7TcB+cuOHPG5I6Otjk7MVGVaas2nNze0dY0dVbHtOpUn4opy0m/c/Z7H/sTWxZO7bx98IJHG0pJV2TKVXZ1+YDKvLtjdvXex371za1k6/NRUH/MXxX6hZr5c9vmNJ0xed68OaOTv6VmPyD52ycTTbbV6N6yrfbLrWTUvJmzR81dcObI9pmTp7dNbztlzIFjxx44buzoMeNGdY6qOfm7I4a64v0f6p4VOZW8Hx8AEhISvS1Rnvfp1ryrf5AXfNHf2tHKUN31AV0wrcjNUtY1yh0x6MPe44jfy/eUHkc0umDiUJDlgJ6zjCmYTGzNUptk6fpeVzA5zK2pvGuTxvvloampT7Ht0JB/N3fzvrgdm/exzKYrNQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/H924EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYUdOBYAAAAAEOZvHUbPBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADApQAAAP//j/n+Zw==") mount(0x0, &(0x7f0000000040)='.\x00', 0x0, 0x848c20, 0x0) 14:32:53 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(r0) syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x5646, 0x0) 14:32:53 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f00000140fc0f7545390bb1836fa94d0c8a4121f100"], 0x0) 14:32:53 executing program 2: openat$incfs(0xffffffffffffff9c, 0x0, 0x241, 0x0) syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@nobarrier}, {@subvolid}, {@ssd_spread}, {@space_cache_v2}, {@autodefrag}, {@enospc_debug}, {@space_cache_v2}, {@noflushoncommit}, {@usebackuproot}, {@datasum}]}, 0x1, 0x55a8, &(0x7f000000ac40)="$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") mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) [ 989.276132][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d 14:32:53 executing program 5: r0 = getpgrp(0x0) process_vm_readv(r0, &(0x7f0000000640)=[{&(0x7f0000000100)=""/86, 0x56}], 0x1, &(0x7f0000001700)=[{&(0x7f0000000700)=""/4096, 0x1000}], 0x1, 0x0) 14:32:53 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0) [ 989.350284][T22784] 140647092715520-140647101104127: ffff888094eb29a0 14:32:53 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(r0) syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x5646, 0x0) [ 989.409997][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 989.417023][T22784] 140647103201280-140647105298431: ffff888094eb2b60 14:32:53 executing program 1: sendmsg$L2TP_CMD_SESSION_CREATE(0xffffffffffffffff, 0x0, 0x0) select(0x40, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x5}, &(0x7f0000000280)={0x7, 0x0, 0x7}, 0x0, 0x0) syz_init_net_socket$llc(0x1a, 0x0, 0x0) setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x0, 0x0, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, 0x0, 0x0) sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000018c0)) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) r0 = eventfd2(0x0, 0x80001) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f0000001ac0)=r0, 0x1) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001c80)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) socket$can_j1939(0x1d, 0x2, 0x7) [ 989.468402][T22784] 140647105298432-140647107395583: ffff888094eb2c40 14:32:53 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(r0) syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x5646, 0x0) 14:32:53 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0) 14:32:53 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmmsg$inet(r0, &(0x7f00000013c0)=[{{&(0x7f0000000d80)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, &(0x7f0000000fc0)=[{&(0x7f0000000dc0)="cb", 0x1}], 0x1}}], 0x1, 0x40050) [ 989.525841][T22784] 140647107395584-140647109492735: ffff888094eb2d20 14:32:53 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, &(0x7f0000000140)={0x0, 0x0, 0x2, {0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_ep_write(r0, 0x0, 0x7, &(0x7f0000000280)="9ae33c636253a1") [ 989.594960][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 989.686404][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 989.696125][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 989.721410][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 989.731212][T22784] 140647114899456-140647114903551: 0000000000000000 [ 989.769122][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 989.777434][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 989.808381][T22784] 140647115304960-140647115325439: 0000000000000000 [ 989.831590][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 989.859618][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 989.912685][T22784] 140647127171072-140647128055807: 0000000000000000 [ 989.920143][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 989.927340][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 989.934963][T22784] 140647128190976-140732348923903: 0000000000000000 [ 989.942220][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 989.949426][T22784] 140732349059072-140732349100031: 0000000000000000 [ 989.957034][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 989.964251][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 989.971490][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 989.979171][T22784] Pass: 20638312 Run:20638428 [ 989.984074][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 989.994005][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 990.004104][T22784] Call Trace: [ 990.007421][T22784] [ 990.010383][T22784] dump_stack_lvl+0xd1/0x138 [ 990.015021][T22784] mt_find.cold+0x8b/0x90 [ 990.019439][T22784] ? mas_find+0x1d0/0x1d0 [ 990.023827][T22784] find_vma+0x10c/0x1b0 [ 990.028017][T22784] ? can_vma_merge_before+0x390/0x390 [ 990.033430][T22784] ? walk_page_test+0x78/0x180 [ 990.038229][T22784] walk_page_range+0x2b1/0x4a0 [ 990.043025][T22784] ? __walk_page_range+0x780/0x780 [ 990.048182][T22784] mlock_fixup+0x650/0x810 [ 990.052653][T22784] apply_vma_lock_flags+0x23d/0x350 [ 990.057897][T22784] ? mlock_fixup+0x810/0x810 [ 990.062538][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 990.068467][T22784] do_mlock+0x25a/0x6d0 [ 990.072658][T22784] ? folio_evictable+0x270/0x270 [ 990.077645][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 990.083566][T22784] __x64_sys_mlock+0x59/0x80 [ 990.088176][T22784] do_syscall_64+0x39/0xb0 [ 990.092625][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 990.098541][T22784] RIP: 0033:0x7feaf548c0c9 [ 990.102967][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 990.122591][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 990.131022][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 990.139006][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 990.146989][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 990.154974][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 990.162956][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 990.170957][T22784] [ 990.193525][ T1731] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 990.229326][T22784] index not increased! 20ffc000 <= 20ffc000 [ 990.235362][T22784] BUG at mt_find:6473 (1) [ 990.249064][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 990.264341][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 990.399397][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:32:54 executing program 3: mount$9p_fd(0xff600000, 0x0, 0x0, 0x0, 0xffffffffffffffff) 14:32:54 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0) 14:32:54 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(r0) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x5646, 0x0) [ 990.461998][T22784] 0-536866815: 0000000000000000 [ 990.471439][T22784] 536866816-536870911: ffff888094eb2460 [ 990.477524][T22784] 536870912-553631743: ffff888094eb2540 [ 990.484014][T22784] 553631744-553644031: 0000000000000000 [ 990.490475][T22784] 553644032-553631743: ffff888076c687e0 [ 990.496542][T22784] 553631744-553648127: ffff888076c689a0 14:32:54 executing program 2: r0 = syz_open_dev$vcsn(&(0x7f0000000780), 0x0, 0x102402) write$FUSE_CREATE_OPEN(r0, &(0x7f0000002800)={0xa0, 0x0, 0x0, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}}}}, 0xa0) 14:32:54 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x0) ioctl$BLKPG(r0, 0x5452, &(0x7f0000000240)={0x2, 0x0, 0x0, 0x0}) [ 990.529309][T22784] 553648128-553652223: ffff888094eb2620 [ 990.553593][T22784] 553652224-116820934655: 0000000000000000 14:32:54 executing program 1: mount$9p_fd(0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff) 14:32:54 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(r0) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x5646, 0x0) 14:32:54 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c00, 0x0) 14:32:54 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25"], 0x0) [ 990.583821][T22784] 116820934656-116825128959: ffff888094eb2700 [ 990.621130][T22784] 116825128960-93824997462015: 0000000000000000 14:32:54 executing program 0: pipe2$watch_queue(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close$fd_v4l2_buffer(r0) syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x5646, 0x0) 14:32:54 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x89a3, &(0x7f0000000000)={'macvlan0\x00'}) [ 990.655866][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 990.678806][T22784] 93824997601280-140647092711423: 0000000000000000 [ 990.691776][ T1731] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 990.708592][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 990.713016][ T1731] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 990.750904][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 990.778008][ T1731] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 990.832532][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 990.846445][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 990.864164][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 990.874929][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 990.888116][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 990.891767][ T1731] usb 6-1: config 0 descriptor?? [ 990.906165][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 990.914541][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 990.922775][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 990.930935][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 990.937971][T22784] 140647114899456-140647114903551: 0000000000000000 [ 990.945375][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 990.952625][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 990.961567][T22784] 140647115304960-140647115325439: 0000000000000000 [ 990.968639][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 990.976546][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 991.027877][T22784] 140647127171072-140647128055807: 0000000000000000 [ 991.034961][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 991.041971][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 991.048923][T22784] 140647128190976-140732348923903: 0000000000000000 [ 991.055964][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 991.063001][T22784] 140732349059072-140732349100031: 0000000000000000 [ 991.070615][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 991.077647][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 991.095573][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 991.103350][T22784] Pass: 20644389 Run:20644506 [ 991.108056][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 991.117944][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 991.128081][T22784] Call Trace: [ 991.131354][T22784] [ 991.134281][T22784] dump_stack_lvl+0xd1/0x138 [ 991.138886][T22784] mt_find.cold+0x8b/0x90 [ 991.143307][T22784] ? mas_find+0x1d0/0x1d0 [ 991.147643][T22784] find_vma+0x10c/0x1b0 [ 991.151812][T22784] ? can_vma_merge_before+0x390/0x390 [ 991.157226][T22784] ? walk_page_test+0x78/0x180 [ 991.162021][T22784] walk_page_range+0x2b1/0x4a0 [ 991.166788][T22784] ? __walk_page_range+0x780/0x780 [ 991.171910][T22784] mlock_fixup+0x650/0x810 [ 991.176335][T22784] apply_vma_lock_flags+0x23d/0x350 [ 991.181538][T22784] ? mlock_fixup+0x810/0x810 [ 991.186145][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 991.192045][T22784] do_mlock+0x25a/0x6d0 [ 991.196208][T22784] ? folio_evictable+0x270/0x270 [ 991.201181][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 991.207123][T22784] __x64_sys_mlock+0x59/0x80 [ 991.211760][T22784] do_syscall_64+0x39/0xb0 [ 991.216183][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 991.222105][T22784] RIP: 0033:0x7feaf548c0c9 [ 991.226514][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 991.246147][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 991.254572][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 991.262593][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 991.270580][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 991.278549][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 991.286532][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 991.294533][T22784] [ 991.302322][T22784] index not increased! 20ffc000 <= 20ffc000 [ 991.308256][T22784] BUG at mt_find:6473 (1) [ 991.314630][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 991.323152][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 991.360641][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 991.413189][T22784] 0-536866815: 0000000000000000 [ 991.418581][T22784] 536866816-536870911: ffff888094eb2460 [ 991.424829][T22784] 536870912-553631743: ffff888094eb2540 [ 991.430845][T22784] 553631744-553644031: 0000000000000000 [ 991.436916][T22784] 553644032-553631743: ffff888076c687e0 [ 991.443227][T22784] 553631744-553648127: ffff888076c689a0 [ 991.449389][T22784] 553648128-553652223: ffff888094eb2620 [ 991.455320][T22784] 553652224-116820934655: 0000000000000000 [ 991.461524][T22784] 116820934656-116825128959: ffff888094eb2700 [ 991.467979][T22784] 116825128960-93824997462015: 0000000000000000 [ 991.476444][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 991.483852][T22784] 93824997601280-140647092711423: 0000000000000000 [ 991.492438][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 991.499769][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 991.557361][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 991.564728][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 991.572028][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 991.579283][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 991.580325][ T1731] keytouch 0003:0926:3333.0005: fixing up Keytouch IEC report descriptor [ 991.586324][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 991.604085][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 991.610906][ T1731] input: HID 0926:3333 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0926:3333.0005/input/input20 [ 991.611370][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 991.630353][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 991.637380][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 991.644426][T22784] 140647114899456-140647114903551: 0000000000000000 [ 991.651619][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 991.658684][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 991.665938][T22784] 140647115304960-140647115325439: 0000000000000000 [ 991.673332][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 991.680470][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 991.733766][T22784] 140647127171072-140647128055807: 0000000000000000 [ 991.741047][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 991.748536][ T1731] keytouch 0003:0926:3333.0005: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.5-1/input0 [ 991.748537][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 991.748586][T22784] 140647128190976-140732348923903: 0000000000000000 [ 991.777990][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 991.791656][T22784] 140732349059072-140732349100031: 0000000000000000 [ 991.801703][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 991.808699][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 991.815839][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 991.823660][T22784] Pass: 20644447 Run:20644565 [ 991.828375][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 991.838301][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 991.848387][T22784] Call Trace: [ 991.851692][T22784] [ 991.854651][T22784] dump_stack_lvl+0xd1/0x138 [ 991.859296][T22784] mt_find.cold+0x8b/0x90 [ 991.863678][T22784] ? mas_find+0x1d0/0x1d0 [ 991.868074][T22784] find_vma+0x10c/0x1b0 [ 991.872277][T22784] ? can_vma_merge_before+0x390/0x390 [ 991.877697][T22784] ? walk_page_test+0x78/0x180 [ 991.882521][T22784] walk_page_range+0x2b1/0x4a0 [ 991.887342][T22784] ? __walk_page_range+0x780/0x780 [ 991.892524][T22784] mlock_fixup+0x650/0x810 [ 991.897002][T22784] apply_vma_lock_flags+0x23d/0x350 [ 991.902267][T22784] ? mlock_fixup+0x810/0x810 [ 991.906903][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 991.912822][T22784] do_mlock+0x25a/0x6d0 [ 991.917017][T22784] ? folio_evictable+0x270/0x270 [ 991.921988][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 991.927918][T22784] __x64_sys_mlock+0x59/0x80 [ 991.932521][T22784] do_syscall_64+0x39/0xb0 [ 991.936973][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 991.942877][T22784] RIP: 0033:0x7feaf548c0c9 [ 991.947313][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 991.966918][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 991.975330][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 991.983299][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 991.991280][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 991.999280][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 992.007285][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 992.015267][T22784] [ 992.022897][ T1731] usb 6-1: USB disconnect, device number 13 [ 992.031587][T22784] index not increased! 20ffc000 <= 20ffc000 [ 992.037520][T22784] BUG at mt_find:6473 (1) [ 992.043888][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 992.052595][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 992.089678][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 992.143832][T22784] 0-536866815: 0000000000000000 [ 992.152054][T22784] 536866816-536870911: ffff888094eb2460 [ 992.158308][T22784] 536870912-553631743: ffff888094eb2540 [ 992.164720][T22784] 553631744-553644031: 0000000000000000 [ 992.170941][T22784] 553644032-553631743: ffff888076c687e0 [ 992.176876][T22784] 553631744-553648127: ffff888076c689a0 [ 992.184763][T22784] 553648128-553652223: ffff888094eb2620 [ 992.191281][T22784] 553652224-116820934655: 0000000000000000 [ 992.202064][T22784] 116820934656-116825128959: ffff888094eb2700 [ 992.216257][T22784] 116825128960-93824997462015: 0000000000000000 [ 992.223176][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 992.230287][T22784] 93824997601280-140647092711423: 0000000000000000 [ 992.237167][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 992.244241][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 992.304309][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 992.311934][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 992.318904][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 992.325948][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 992.332977][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 992.339983][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 992.346952][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 992.354169][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 992.361231][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 992.368208][T22784] 140647114899456-140647114903551: 0000000000000000 [ 992.375216][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 992.382250][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 992.389277][T22784] 140647115304960-140647115325439: 0000000000000000 [ 992.396237][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 992.403444][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 992.455097][T22784] 140647127171072-140647128055807: 0000000000000000 [ 992.462650][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 992.470098][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 992.477140][T22784] 140647128190976-140732348923903: 0000000000000000 [ 992.484473][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 992.491812][T22784] 140732349059072-140732349100031: 0000000000000000 [ 992.498792][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 992.505982][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 992.517663][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 992.526002][T22784] Pass: 20644968 Run:20645087 [ 992.530915][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 992.540847][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 992.550925][T22784] Call Trace: [ 992.554225][T22784] [ 992.557164][T22784] dump_stack_lvl+0xd1/0x138 [ 992.561771][T22784] mt_find.cold+0x8b/0x90 [ 992.566142][T22784] ? mas_find+0x1d0/0x1d0 [ 992.570550][T22784] find_vma+0x10c/0x1b0 [ 992.574732][T22784] ? can_vma_merge_before+0x390/0x390 [ 992.580132][T22784] ? walk_page_test+0x78/0x180 [ 992.584935][T22784] walk_page_range+0x2b1/0x4a0 [ 992.589731][T22784] ? __walk_page_range+0x780/0x780 [ 992.594888][T22784] mlock_fixup+0x650/0x810 [ 992.599349][T22784] apply_vma_lock_flags+0x23d/0x350 [ 992.604585][T22784] ? mlock_fixup+0x810/0x810 [ 992.609219][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 992.615143][T22784] do_mlock+0x25a/0x6d0 [ 992.619344][T22784] ? folio_evictable+0x270/0x270 [ 992.624367][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 992.630292][T22784] __x64_sys_mlock+0x59/0x80 [ 992.634899][T22784] do_syscall_64+0x39/0xb0 [ 992.639347][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 992.645262][T22784] RIP: 0033:0x7feaf548c0c9 [ 992.649690][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 992.669494][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 992.677924][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 992.685910][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 992.693899][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 992.701880][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 992.709870][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 14:32:57 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCADDRT(r0, 0x8911, &(0x7f0000000280)={0x7, {0x2, 0x0, @broadcast}, {0x2, 0x0, @remote}, {0x2, 0x0, @private}}) 14:32:57 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@func={0x5, 0x0, 0x0, 0xc, 0x6000000}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x5f]}}, &(0x7f0000000500)=""/255, 0x2b, 0xff, 0x1}, 0x20) 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25"], 0x0) 14:32:57 executing program 2: syz_emit_ethernet(0x66, &(0x7f0000000500)={@link_local, @random="7c813c3820e5", @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @multicast1, @remote}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}}}}}}, 0x0) [ 992.717874][T22784] 14:32:57 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000280)={@rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50010}) 14:32:57 executing program 5: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000140)=[@in6={0xa, 0x0, 0x0, @local, 0x19}], 0x1c) 14:32:57 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0xc0401273, 0x0) 14:32:57 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) 14:32:57 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, 0x0) [ 992.751740][ T1203] ieee802154 phy0 wpan0: encryption failed: -22 [ 992.758110][ T1203] ieee802154 phy1 wpan1: encryption failed: -22 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25"], 0x0) 14:32:57 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x81a0ae8c, 0x0) 14:32:57 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8943, &(0x7f0000000000)={'macvlan0\x00'}) [ 992.839335][T22784] index not increased! 20ffc000 <= 20ffc000 [ 992.850138][T22784] BUG at mt_find:6473 (1) [ 992.854517][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:32:57 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000140)=ANY=[@ANYBLOB="04"]) 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f000001"], 0x0) [ 992.956914][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 993.019717][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:32:57 executing program 1: syz_open_dev$loop(0x0, 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKPG(r0, 0x40046602, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0}) [ 993.068878][T22784] 0-536866815: 0000000000000000 [ 993.074525][T22784] 536866816-536870911: ffff888094eb2460 [ 993.080830][T22784] 536870912-553631743: ffff888094eb2540 [ 993.086902][T22784] 553631744-553644031: 0000000000000000 [ 993.093945][T22784] 553644032-553631743: ffff888076c687e0 [ 993.100768][T22784] 553631744-553648127: ffff888076c689a0 [ 993.106845][T22784] 553648128-553652223: ffff888094eb2620 [ 993.113541][T22784] 553652224-116820934655: 0000000000000000 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25"], 0x0) [ 993.122278][T22784] 116820934656-116825128959: ffff888094eb2700 [ 993.128888][T22784] 116825128960-93824997462015: 0000000000000000 [ 993.136344][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 993.143460][T22784] 93824997601280-140647092711423: 0000000000000000 [ 993.158842][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:32:57 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) [ 993.166164][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d 14:32:57 executing program 3: syz_open_dev$loop(&(0x7f0000000540), 0x0, 0x24001) 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25"], 0x0) 14:32:57 executing program 1: setuid(0xee00) openat$tcp_mem(0xffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) 14:32:57 executing program 3: setuid(0xee00) socket$inet(0x2, 0xa, 0x0) 14:32:57 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKPG(r0, 0x5452, &(0x7f0000000240)={0x3, 0x0, 0x0, 0x0}) [ 993.305939][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 993.364071][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 993.377527][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 993.398214][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 993.405640][T22784] 140647107395584-140647109492735: ffff888094eb2d20 14:32:57 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0xc, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}], 0x1c) 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25"], 0x0) 14:32:57 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, 0x0) 14:32:57 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0xc018ae85, &(0x7f0000000000)) [ 993.422576][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 993.429809][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 993.438673][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 993.448114][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 993.455244][T22784] 140647114899456-140647114903551: 0000000000000000 14:32:57 executing program 1: mount$9p_fd(0x20000000, 0x0, 0x0, 0x0, 0xffffffffffffffff) [ 993.479085][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 993.486086][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:32:57 executing program 3: setuid(0xee00) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'dvmrp0\x00'}) 14:32:57 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) [ 993.524911][T22784] 140647115304960-140647115325439: 0000000000000000 [ 993.545384][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 993.560953][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 993.616642][T22784] 140647127171072-140647128055807: 0000000000000000 14:32:57 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x4140aecd, 0x0) [ 993.624568][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 993.632063][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 993.639367][T22784] 140647128190976-140732348923903: 0000000000000000 [ 993.648000][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 993.655297][T22784] 140732349059072-140732349100031: 0000000000000000 14:32:57 executing program 3: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp={0x5, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffe0}]}, &(0x7f0000000080)='GPL\x00', 0x1, 0xb9, &(0x7f0000000100)=""/185, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:32:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed0000000000000000"], 0x0) [ 993.686971][T22784] 140732349100032-140732349116415: ffff88807b4c5000 14:32:58 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c04, 0x0) [ 993.737965][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 14:32:58 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed0000000000000000"], 0x0) [ 993.804830][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 993.824123][T22784] Pass: 20660091 Run:20660211 [ 993.830224][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 993.840261][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 993.850340][T22784] Call Trace: [ 993.853635][T22784] [ 993.856579][T22784] dump_stack_lvl+0xd1/0x138 [ 993.861219][T22784] mt_find.cold+0x8b/0x90 [ 993.865588][T22784] ? mas_find+0x1d0/0x1d0 [ 993.869968][T22784] find_vma+0x10c/0x1b0 [ 993.874146][T22784] ? can_vma_merge_before+0x390/0x390 [ 993.879543][T22784] ? walk_page_test+0x78/0x180 [ 993.884336][T22784] walk_page_range+0x2b1/0x4a0 [ 993.889130][T22784] ? __walk_page_range+0x780/0x780 [ 993.894285][T22784] mlock_fixup+0x650/0x810 [ 993.898744][T22784] apply_vma_lock_flags+0x23d/0x350 [ 993.904105][T22784] ? mlock_fixup+0x810/0x810 [ 993.908765][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 993.914709][T22784] do_mlock+0x25a/0x6d0 [ 993.918912][T22784] ? folio_evictable+0x270/0x270 [ 993.923899][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 993.929825][T22784] __x64_sys_mlock+0x59/0x80 [ 993.934440][T22784] do_syscall_64+0x39/0xb0 [ 993.938895][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 993.944835][T22784] RIP: 0033:0x7feaf548c0c9 [ 993.949275][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 993.968911][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 993.977354][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 993.985348][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 993.993338][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 14:32:58 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1260, 0x1ffff000) 14:32:58 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed0000000000000000"], 0x0) [ 994.001325][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 994.009310][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 994.017317][T22784] [ 994.089525][T22784] index not increased! 20ffc000 <= 20ffc000 [ 994.095677][T22784] BUG at mt_find:6473 (1) [ 994.100266][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 994.108871][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 994.161978][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 994.210846][T22784] 0-536866815: 0000000000000000 [ 994.216240][T22784] 536866816-536870911: ffff888094eb2460 [ 994.240298][T22784] 536870912-553631743: ffff888094eb2540 [ 994.246275][T22784] 553631744-553644031: 0000000000000000 [ 994.272317][T22784] 553644032-553631743: ffff888076c687e0 [ 994.278295][T22784] 553631744-553648127: ffff888076c689a0 [ 994.303839][T22784] 553648128-553652223: ffff888094eb2620 [ 994.309942][T22784] 553652224-116820934655: 0000000000000000 [ 994.316128][T22784] 116820934656-116825128959: ffff888094eb2700 [ 994.324611][T22784] 116825128960-93824997462015: 0000000000000000 [ 994.332592][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 994.339920][T22784] 93824997601280-140647092711423: 0000000000000000 [ 994.346814][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:32:58 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000000)={0x14}) 14:32:58 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x89a2, &(0x7f0000000000)={'macvlan0\x00'}) 14:32:58 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x8004ae98, 0x0) 14:32:58 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) 14:32:58 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed00"/50], 0x0) 14:32:58 executing program 1: setuid(0xee00) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, 0x0, &(0x7f00000001c0)) [ 994.353851][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 994.412659][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 994.419747][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 994.426714][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 994.434028][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 994.446508][T22784] 140647107395584-140647109492735: ffff888094eb2d20 14:32:58 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x89b1, &(0x7f0000000000)={'macvlan0\x00'}) 14:32:58 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1265, 0x0) [ 994.470945][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 994.508010][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 14:32:58 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed00"/50], 0x0) [ 994.516197][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 994.526057][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 994.533681][T22784] 140647114899456-140647114903551: 0000000000000000 [ 994.566614][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 994.579478][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 994.586641][T22784] 140647115304960-140647115325439: 0000000000000000 [ 994.609166][T22784] 140647115325440-140647127171071: ffff88802218f000 14:32:58 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8934, 0x0) 14:32:58 executing program 2: mount$9p_fd(0x0, &(0x7f0000001140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0) [ 994.627593][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:32:58 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed00"/50], 0x0) [ 994.711128][T22784] 140647127171072-140647128055807: 0000000000000000 [ 994.718150][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 994.725399][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 994.750135][T22784] 140647128190976-140732348923903: 0000000000000000 [ 994.808132][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 994.819550][T22784] 140732349059072-140732349100031: 0000000000000000 [ 994.864833][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 994.874176][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 994.883428][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 994.891428][T22784] Pass: 20668969 Run:20669090 [ 994.896147][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 994.906069][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 994.916147][T22784] Call Trace: [ 994.919438][T22784] [ 994.922384][T22784] dump_stack_lvl+0xd1/0x138 [ 994.927010][T22784] mt_find.cold+0x8b/0x90 [ 994.931399][T22784] ? mas_find+0x1d0/0x1d0 [ 994.935779][T22784] find_vma+0x10c/0x1b0 [ 994.939957][T22784] ? can_vma_merge_before+0x390/0x390 [ 994.945361][T22784] ? walk_page_test+0x78/0x180 [ 994.950158][T22784] walk_page_range+0x2b1/0x4a0 [ 994.954965][T22784] ? __walk_page_range+0x780/0x780 [ 994.960124][T22784] mlock_fixup+0x650/0x810 [ 994.964586][T22784] apply_vma_lock_flags+0x23d/0x350 [ 994.969823][T22784] ? mlock_fixup+0x810/0x810 [ 994.974464][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 994.980398][T22784] do_mlock+0x25a/0x6d0 [ 994.984592][T22784] ? folio_evictable+0x270/0x270 [ 994.989576][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 994.995502][T22784] __x64_sys_mlock+0x59/0x80 [ 995.000109][T22784] do_syscall_64+0x39/0xb0 [ 995.004557][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 995.010476][T22784] RIP: 0033:0x7feaf548c0c9 [ 995.014907][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 995.034531][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 995.042961][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 995.050945][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 995.058926][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 995.066911][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 995.074892][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 995.082901][T22784] [ 995.091689][T22784] index not increased! 20ffc000 <= 20ffc000 [ 995.097721][T22784] BUG at mt_find:6473 (1) [ 995.103026][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:32:59 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x248}]}) 14:32:59 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f00"], 0x0) 14:32:59 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4138ae84, 0x0) 14:32:59 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x6, 0x0, 0x0) 14:32:59 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c02, 0x0) 14:32:59 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4004ae99, &(0x7f0000000000)) 14:32:59 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1260, 0x0) [ 995.111743][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:32:59 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f00"], 0x0) 14:32:59 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8947, 0x0) [ 995.188719][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:32:59 executing program 1: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000011c0)=@bpf_lsm={0x1d, 0x5, &(0x7f0000000040)=@framed={{}, [@cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffff9}]}, &(0x7f00000000c0)='GPL\x00', 0x2, 0x1000, &(0x7f0000000100)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 995.290079][T22784] 0-536866815: 0000000000000000 14:32:59 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f00"], 0x0) [ 995.379190][T22784] 536866816-536870911: ffff888094eb2460 [ 995.387695][T22784] 536870912-553631743: ffff888094eb2540 14:32:59 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f0000"], 0x0) [ 995.423922][T22784] 553631744-553644031: 0000000000000000 [ 995.489285][T22784] 553644032-553631743: ffff888076c687e0 [ 995.496141][T22784] 553631744-553648127: ffff888076c689a0 [ 995.519559][T22784] 553648128-553652223: ffff888094eb2620 [ 995.526888][T22784] 553652224-116820934655: 0000000000000000 [ 995.533303][T22784] 116820934656-116825128959: ffff888094eb2700 [ 995.540110][T22784] 116825128960-93824997462015: 0000000000000000 [ 995.546744][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 995.553824][T22784] 93824997601280-140647092711423: 0000000000000000 [ 995.561012][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:32:59 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x1e, 0x0, &(0x7f0000000180)) 14:32:59 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8931, &(0x7f0000000000)={'macvlan0\x00'}) 14:32:59 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0x80046601, 0x0) 14:32:59 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4138ae84, 0x0) 14:32:59 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f0000"], 0x0) 14:32:59 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x0) ioctl$KVM_CAP_HYPERV_SYNIC2(r1, 0x4068aea3, 0x0) write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB], 0x8) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) [ 995.568057][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 995.633339][T22784] 140647092715520-140647101104127: ffff888094eb29a0 14:32:59 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa980000f24c86dd6055b8290006334afecc3eb7ca42dd93c576e925ae25ed000000000000000000000000007f0000"], 0x0) 14:32:59 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0xc008aec1, 0x0) 14:32:59 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0xae80, &(0x7f0000000000)) [ 995.644370][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 995.681789][T22784] 140647103201280-140647105298431: ffff888094eb2b60 14:33:00 executing program 4: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180)={0xfffffeff}, 0x8) [ 995.730714][T22784] 140647105298432-140647107395583: ffff888094eb2c40 14:33:00 executing program 5: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8910, 0x0) 14:33:00 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKPG(r0, 0x1260, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0}) 14:33:00 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4138ae84, 0x0) [ 995.832813][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 995.841237][T22784] 140647109492736-140647113687039: ffff888094eb2e00 14:33:00 executing program 2: r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000100)={{}, {0x0, @local}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}) [ 995.885214][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 14:33:00 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x9) [ 995.943265][T22784] 140647113834496-140647114563583: ffff888029235c40 14:33:00 executing program 4: socket$inet6_sctp(0xa, 0x0, 0x84) mmap$KVM_VCPU(&(0x7f0000ffd000/0x1000)=nil, 0x930, 0x0, 0x44030, 0xffffffffffffffff, 0x0) 14:33:00 executing program 2: r0 = socket$xdp(0x2c, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8905, 0x0) 14:33:00 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x4008ae90, 0x0) [ 995.985587][T22784] 140647114563584-140647114899455: ffff888029235ee0 14:33:00 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c03, 0x0) 14:33:00 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x3, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}], 0x1c) 14:33:00 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x2001, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 14:33:00 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8948, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:00 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8992, &(0x7f0000000000)={'macvlan0\x00'}) [ 996.135486][T22784] 140647114899456-140647114903551: 0000000000000000 [ 996.188495][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 996.196490][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 996.205946][T22784] 140647115304960-140647115325439: 0000000000000000 [ 996.213451][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:00 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, 0x0) [ 996.221009][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 996.272605][T22784] 140647127171072-140647128055807: 0000000000000000 [ 996.280239][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 996.296875][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 996.309619][T22784] 140647128190976-140732348923903: 0000000000000000 [ 996.329147][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 996.336170][T22784] 140732349059072-140732349100031: 0000000000000000 14:33:00 executing program 0: openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r0, 0x4138ae84, 0x0) 14:33:00 executing program 3: r0 = socket$inet(0x2, 0xa, 0x0) recvfrom$inet(r0, 0x0, 0x0, 0x2000, 0x0, 0x0) [ 996.349473][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 996.375374][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 14:33:00 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x541b, &(0x7f0000000000)={'macvlan0\x00'}) [ 996.433482][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 996.537658][T22784] Pass: 20703460 Run:20703582 [ 996.568194][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 996.578171][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 996.588273][T22784] Call Trace: [ 996.591586][T22784] [ 996.594820][T22784] dump_stack_lvl+0xd1/0x138 [ 996.599472][T22784] mt_find.cold+0x8b/0x90 [ 996.603858][T22784] ? mas_find+0x1d0/0x1d0 [ 996.608253][T22784] find_vma+0x10c/0x1b0 [ 996.612454][T22784] ? can_vma_merge_before+0x390/0x390 [ 996.617881][T22784] ? walk_page_test+0x78/0x180 [ 996.622708][T22784] walk_page_range+0x2b1/0x4a0 [ 996.627530][T22784] ? __walk_page_range+0x780/0x780 [ 996.632708][T22784] mlock_fixup+0x650/0x810 [ 996.637176][T22784] apply_vma_lock_flags+0x23d/0x350 [ 996.642521][T22784] ? mlock_fixup+0x810/0x810 [ 996.647185][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 996.653144][T22784] do_mlock+0x25a/0x6d0 [ 996.657359][T22784] ? folio_evictable+0x270/0x270 [ 996.662365][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 996.668312][T22784] __x64_sys_mlock+0x59/0x80 [ 996.672941][T22784] do_syscall_64+0x39/0xb0 [ 996.677411][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 996.683342][T22784] RIP: 0033:0x7feaf548c0c9 [ 996.687781][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 996.707418][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 14:33:01 executing program 4: r0 = socket$inet6_sctp(0xa, 0x3, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x9, 0x0, 0x0) 14:33:01 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x301, 0x0) 14:33:01 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8927, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:01 executing program 0: openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r0, 0x4138ae84, 0x0) 14:33:01 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8990, 0x0) [ 996.715867][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 996.723874][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 996.731880][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 996.739883][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 996.747936][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 996.755958][T22784] 14:33:01 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x40101288, 0x0) 14:33:01 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4090ae82, &(0x7f0000000000)) 14:33:01 executing program 0: openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r0, 0x4138ae84, 0x0) 14:33:01 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x402c5839, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:01 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0) [ 996.835110][T22784] index not increased! 20ffc000 <= 20ffc000 14:33:01 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x1a, &(0x7f00000000c0)=@filter={'filter\x00', 0xe, 0x4, 0x388, 0xffffffff, 0x100, 0x100, 0x100, 0xffffffff, 0xffffffff, 0x3c8, 0x3c8, 0x3c8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}, {{@uncond, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "af9db38a18418adc03a274b30ba679dd713dffa27fd28cb1c439fdfe9e6b7a900af7faa84b5a18df5a8e6ff759a0645c1e40d3cc7fc0b8de7e1be21a862c9f2f"}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e8) 14:33:01 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) [ 996.901265][T22784] BUG at mt_find:6473 (1) 14:33:01 executing program 2: syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[], 0x0) [ 996.946395][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 996.955191][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:01 executing program 2: syz_emit_ethernet(0x3e, 0x0, 0x0) [ 997.011795][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:01 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) 14:33:01 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, 0x0) 14:33:01 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000780), 0x1, 0x102402) write$FUSE_CREATE_OPEN(r0, &(0x7f0000002800)={0xa0, 0x0, 0x0, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}}}}, 0xa0) 14:33:01 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKPG(r0, 0x4020940d, &(0x7f0000000240)={0x3, 0x0, 0x0, 0x0}) 14:33:01 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8922, &(0x7f0000000000)={'macvlan0\x00'}) [ 997.081706][T22784] 0-536866815: 0000000000000000 [ 997.087048][T22784] 536866816-536870911: ffff888094eb2460 14:33:01 executing program 3: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000003c0)=[@in={0x2, 0x0, @local}, @in6={0xa, 0x0, 0x0, @empty}], 0x2c) 14:33:01 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) [ 997.138670][T22784] 536870912-553631743: ffff888094eb2540 [ 997.167438][T22784] 553631744-553644031: 0000000000000000 [ 997.179670][T22784] 553644032-553631743: ffff888076c687e0 14:33:01 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r2, 0x4068aea3, 0x0) [ 997.185656][T22784] 553631744-553648127: ffff888076c689a0 [ 997.200042][T22784] 553648128-553652223: ffff888094eb2620 [ 997.206180][T22784] 553652224-116820934655: 0000000000000000 [ 997.230562][T22784] 116820934656-116825128959: ffff888094eb2700 [ 997.237058][T22784] 116825128960-93824997462015: 0000000000000000 14:33:01 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000100)) 14:33:01 executing program 0: r0 = openat$kvm(0xffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) 14:33:01 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8905, 0x0) [ 997.280711][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 997.320087][T23429] macvlan0: mtu less than device minimum 14:33:01 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x4020940d, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:01 executing program 0: r0 = openat$kvm(0xffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) [ 997.350267][T22784] 93824997601280-140647092711423: 0000000000000000 14:33:01 executing program 2: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp]}, &(0x7f0000000080)='GPL\x00', 0x1, 0xb9, &(0x7f0000000100)=""/185, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:01 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKPG(r0, 0x40046602, &(0x7f0000000240)={0x7000000, 0x0, 0x0, 0x0}) 14:33:01 executing program 0: r0 = openat$kvm(0xffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4138ae84, 0x0) 14:33:01 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x8140aecc, 0x0) [ 997.425587][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:01 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x401870cc, 0x0) 14:33:01 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x801c581f, 0x0) [ 997.472664][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 997.536880][T22784] 140647092715520-140647101104127: ffff888094eb29a0 14:33:01 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_TSC_KHZ(r2, 0xaea3) [ 997.652003][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 997.706836][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 997.717513][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 997.739388][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 997.755733][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 997.763039][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 997.770595][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 997.777625][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 997.787074][T22784] 140647114899456-140647114903551: 0000000000000000 14:33:02 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4004ae8b, 0x0) 14:33:02 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKPG(r0, 0x5460, 0x0) 14:33:02 executing program 0: openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) 14:33:02 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8937, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:02 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4048ae9b, 0x0) 14:33:02 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x0) ioctl$BLKPG(r0, 0x5452, &(0x7f0000000200)={0x2, 0x0, 0x0, 0x0}) [ 997.805972][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 997.824151][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:33:02 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0xaeb7, 0x0) [ 997.859089][T22784] 140647115304960-140647115325439: 0000000000000000 [ 997.866117][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:02 executing program 0: openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) 14:33:02 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4048ae9b, &(0x7f0000000000)) 14:33:02 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae08, 0x0) [ 997.973433][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:33:02 executing program 1: lstat(&(0x7f0000000000)='\x00', 0x0) [ 998.036456][T22784] 140647127171072-140647128055807: 0000000000000000 14:33:02 executing program 0: openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) [ 998.184684][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 998.269429][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 998.302726][T22784] 140647128190976-140732348923903: 0000000000000000 [ 998.327970][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 998.362887][T22784] 140732349059072-140732349100031: 0000000000000000 [ 998.377729][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 998.384979][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 998.392750][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 998.400377][T22784] Pass: 20735102 Run:20735225 [ 998.405172][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 998.415107][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 998.425196][T22784] Call Trace: [ 998.428505][T22784] [ 998.431468][T22784] dump_stack_lvl+0xd1/0x138 [ 998.436130][T22784] mt_find.cold+0x8b/0x90 [ 998.440511][T22784] ? mas_find+0x1d0/0x1d0 [ 998.444903][T22784] find_vma+0x10c/0x1b0 [ 998.449098][T22784] ? can_vma_merge_before+0x390/0x390 [ 998.454508][T22784] ? walk_page_test+0x78/0x180 [ 998.459323][T22784] walk_page_range+0x2b1/0x4a0 [ 998.464141][T22784] ? __walk_page_range+0x780/0x780 [ 998.469325][T22784] mlock_fixup+0x650/0x810 [ 998.473811][T22784] apply_vma_lock_flags+0x23d/0x350 [ 998.479065][T22784] ? mlock_fixup+0x810/0x810 [ 998.483722][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 998.489671][T22784] do_mlock+0x25a/0x6d0 [ 998.493886][T22784] ? folio_evictable+0x270/0x270 [ 998.498888][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 998.504830][T22784] __x64_sys_mlock+0x59/0x80 [ 998.509457][T22784] do_syscall_64+0x39/0xb0 [ 998.513923][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 998.519848][T22784] RIP: 0033:0x7feaf548c0c9 [ 998.524286][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 998.543922][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 998.552362][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 998.560356][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 998.568347][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 998.576340][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 998.584327][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 998.593295][T22784] [ 998.608309][T22784] index not increased! 20ffc000 <= 20ffc000 [ 998.614463][T22784] BUG at mt_find:6473 (1) [ 998.618899][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 998.639112][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 998.689963][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 998.772860][T22784] 0-536866815: 0000000000000000 [ 998.778227][T22784] 536866816-536870911: ffff888094eb2460 [ 998.789204][T22784] 536870912-553631743: ffff888094eb2540 14:33:03 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) 14:33:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x401070c9, 0x0) 14:33:03 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x40101286, 0x0) 14:33:03 executing program 2: setuid(0xee00) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, 0x0, 0x0) 14:33:03 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) 14:33:03 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c05, 0x0) 14:33:03 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x101) ioctl$BLKZEROOUT(r0, 0x127f, 0x0) [ 998.815277][T22784] 553631744-553644031: 0000000000000000 14:33:03 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4004ae8b, &(0x7f0000000000)) 14:33:03 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x80046601, 0x0) 14:33:03 executing program 1: setuid(0xee00) openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) [ 998.925767][T22784] 553644032-553631743: ffff888076c687e0 [ 998.932243][T22784] 553631744-553648127: ffff888076c689a0 [ 998.938305][T22784] 553648128-553652223: ffff888094eb2620 [ 998.945331][T22784] 553652224-116820934655: 0000000000000000 [ 998.952017][T22784] 116820934656-116825128959: ffff888094eb2700 14:33:03 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x801c581f, 0x0) [ 998.989324][T22784] 116825128960-93824997462015: 0000000000000000 14:33:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x42) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x0) [ 999.034489][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 999.045526][T22784] 93824997601280-140647092711423: 0000000000000000 [ 999.095223][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 999.108628][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 999.167211][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 999.177065][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 999.184184][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 999.191244][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 999.198224][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 999.205371][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 999.212508][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 999.225234][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 999.232513][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 999.239625][T22784] 140647114899456-140647114903551: 0000000000000000 [ 999.246667][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 999.253729][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 999.261303][T22784] 140647115304960-140647115325439: 0000000000000000 [ 999.268290][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 999.279892][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 999.333477][T22784] 140647127171072-140647128055807: 0000000000000000 [ 999.340904][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 999.348023][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 999.363693][T22784] 140647128190976-140732348923903: 0000000000000000 [ 999.389166][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 999.396179][T22784] 140732349059072-140732349100031: 0000000000000000 [ 999.403932][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 999.411237][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 999.418235][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 999.426106][T22784] Pass: 20741261 Run:20741385 [ 999.431046][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 999.440955][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 999.451039][T22784] Call Trace: [ 999.454333][T22784] [ 999.457262][T22784] dump_stack_lvl+0xd1/0x138 [ 999.461881][T22784] mt_find.cold+0x8b/0x90 [ 999.466255][T22784] ? mas_find+0x1d0/0x1d0 [ 999.470625][T22784] find_vma+0x10c/0x1b0 [ 999.474817][T22784] ? can_vma_merge_before+0x390/0x390 [ 999.480242][T22784] ? walk_page_test+0x78/0x180 [ 999.485047][T22784] walk_page_range+0x2b1/0x4a0 [ 999.489838][T22784] ? __walk_page_range+0x780/0x780 [ 999.495019][T22784] mlock_fixup+0x650/0x810 [ 999.499505][T22784] apply_vma_lock_flags+0x23d/0x350 [ 999.504772][T22784] ? mlock_fixup+0x810/0x810 [ 999.509419][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 999.515352][T22784] do_mlock+0x25a/0x6d0 [ 999.519550][T22784] ? folio_evictable+0x270/0x270 [ 999.524539][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 999.530471][T22784] __x64_sys_mlock+0x59/0x80 [ 999.535084][T22784] do_syscall_64+0x39/0xb0 [ 999.539535][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 999.545460][T22784] RIP: 0033:0x7feaf548c0c9 [ 999.549896][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 999.569524][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 999.577966][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 999.585966][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 999.593967][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 999.601960][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 999.609952][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 999.617975][T22784] [ 999.639201][T22784] index not increased! 20ffc000 <= 20ffc000 [ 999.645252][T22784] BUG at mt_find:6473 (1) [ 999.649801][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 999.658386][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:04 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKPG(r0, 0x1263, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0}) 14:33:04 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) 14:33:04 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES64], 0x40}}, 0x0) 14:33:04 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8995, 0x0) 14:33:04 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1277, 0x0) 14:33:04 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000240)={0x3, 0x0, 0x94, &(0x7f0000000180)={0x0, 0x0, 0x10}}) [ 999.716150][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 999.769123][T22784] 0-536866815: 0000000000000000 [ 999.774486][T22784] 536866816-536870911: ffff888094eb2460 [ 999.781937][T22784] 536870912-553631743: ffff888094eb2540 14:33:04 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8916, 0x0) 14:33:04 executing program 2: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKPG(r0, 0x80046601, 0x0) 14:33:04 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000240)=[@in={0x2, 0x0, @multicast1}], 0x10) 14:33:04 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x5000aea5, 0x0) [ 999.826434][T22784] 553631744-553644031: 0000000000000000 [ 999.874638][T22784] 553644032-553631743: ffff888076c687e0 14:33:04 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x0) 14:33:04 executing program 4: syz_open_dev$loop(&(0x7f0000000000), 0x81, 0x42) [ 999.926837][T22784] 553631744-553648127: ffff888076c689a0 [ 999.934224][T22784] 553648128-553652223: ffff888094eb2620 [ 999.948374][T22784] 553652224-116820934655: 0000000000000000 [ 999.957353][T22784] 116820934656-116825128959: ffff888094eb2700 [ 999.978344][T22784] 116825128960-93824997462015: 0000000000000000 [ 999.992484][T22784] 93824997462016-93824997601279: ffff888094eb27e0 14:33:04 executing program 5: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x0) ioctl$BLKPG(r0, 0x5452, &(0x7f0000000240)={0x2, 0x0, 0x0, 0x0}) read$FUSE(r0, &(0x7f0000000540)={0x2020}, 0x2020) 14:33:04 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x890c, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:04 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x4138ae84, 0x0) [ 1000.047320][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1000.065119][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:04 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:33:04 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000340)={0x0, 0x6}) 14:33:04 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x40046602, &(0x7f0000000000)) 14:33:04 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x5000aea5, 0x0) [ 1000.108813][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d 14:33:04 executing program 5: setuid(0xee00) bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0) [ 1000.212854][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1000.222918][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1000.230129][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1000.237289][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1000.244526][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1000.253799][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1000.261075][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1000.268240][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1000.275941][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1000.283242][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1000.290430][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1000.298026][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1000.305228][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1000.312514][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1000.319725][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:33:04 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x10, 0x0, 0x0) [ 1000.417704][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1000.434283][T22784] 140647128055808-140647128059903: ffff888076c68000 14:33:04 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4138ae84, 0x0) 14:33:04 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8955, 0x0) 14:33:04 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x9, 0x0, 0x0) 14:33:04 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x40101287, 0x0) [ 1000.508188][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1000.529120][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1000.536136][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 14:33:04 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000002380), 0x0, 0x40000) read$FUSE(r0, 0x0, 0x0) 14:33:04 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:04 executing program 5: setuid(0xee00) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) [ 1000.574281][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1000.632719][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1000.642427][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1000.649670][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1000.657297][T22784] Pass: 20753783 Run:20753908 [ 1000.663219][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1000.673161][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 14:33:04 executing program 2: r0 = socket$inet(0x2, 0xa, 0x0) sendto$inet(r0, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000040), 0x7) [ 1000.683266][T22784] Call Trace: [ 1000.686574][T22784] [ 1000.689534][T22784] dump_stack_lvl+0xd1/0x138 [ 1000.694172][T22784] mt_find.cold+0x8b/0x90 [ 1000.698550][T22784] ? mas_find+0x1d0/0x1d0 [ 1000.702935][T22784] find_vma+0x10c/0x1b0 [ 1000.707133][T22784] ? can_vma_merge_before+0x390/0x390 [ 1000.712559][T22784] ? walk_page_test+0x78/0x180 [ 1000.717381][T22784] walk_page_range+0x2b1/0x4a0 [ 1000.722204][T22784] ? __walk_page_range+0x780/0x780 [ 1000.727388][T22784] mlock_fixup+0x650/0x810 14:33:05 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1278, 0x0) [ 1000.731878][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1000.737142][T22784] ? mlock_fixup+0x810/0x810 [ 1000.741806][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1000.747759][T22784] do_mlock+0x25a/0x6d0 [ 1000.751980][T22784] ? folio_evictable+0x270/0x270 [ 1000.757066][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1000.763022][T22784] __x64_sys_mlock+0x59/0x80 [ 1000.767664][T22784] do_syscall_64+0x39/0xb0 [ 1000.772145][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1000.778071][T22784] RIP: 0033:0x7feaf548c0c9 [ 1000.782506][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1000.802143][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1000.810585][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1000.818594][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 14:33:05 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2) 14:33:05 executing program 1: r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ip6_vti0\x00'}) [ 1000.826595][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1000.834595][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1000.842591][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1000.850604][T22784] 14:33:05 executing program 4: openat$kvm(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) mount$9p_fd(0x20000000, 0x0, 0x0, 0x0, 0xffffffffffffffff) [ 1000.933692][T22784] index not increased! 20ffc000 <= 20ffc000 14:33:05 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4138ae84, 0x0) 14:33:05 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2) 14:33:05 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8920, 0x0) 14:33:05 executing program 1: setuid(0xee00) openat$cgroup_root(0xffffff9c, &(0x7f0000002600)='./cgroup.net/syz0\x00', 0x200002, 0x0) 14:33:05 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x401070ca, 0x0) [ 1000.975177][T22784] BUG at mt_find:6473 (1) [ 1000.983627][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:05 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x541b, 0x0) 14:33:05 executing program 5: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x8138ae83, 0x0) 14:33:05 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0xc018ae85, 0x0) 14:33:05 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r2, 0x4004ae99, 0x0) [ 1001.062766][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:05 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000001c0)={0x1, 0x0, [{0x17b, 0x0, 0x3}]}) [ 1001.139356][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1001.188690][T22784] 0-536866815: 0000000000000000 [ 1001.194244][T22784] 536866816-536870911: ffff888094eb2460 [ 1001.200322][T22784] 536870912-553631743: ffff888094eb2540 [ 1001.206265][T22784] 553631744-553644031: 0000000000000000 [ 1001.212491][T22784] 553644032-553631743: ffff888076c687e0 [ 1001.218439][T22784] 553631744-553648127: ffff888076c689a0 [ 1001.227036][T22784] 553648128-553652223: ffff888094eb2620 14:33:05 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x4138ae84, 0x0) [ 1001.261603][T22784] 553652224-116820934655: 0000000000000000 [ 1001.267921][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1001.285056][T22784] 116825128960-93824997462015: 0000000000000000 [ 1001.294866][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1001.308534][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1001.316499][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:05 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8919, 0x0) [ 1001.324213][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1001.387104][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1001.400813][T22784] 140647101104128-140647103201279: ffff888094eb2a80 14:33:05 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000000040)={[], 0x0, 0x0, 0x7f}) [ 1001.438087][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1001.446303][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1001.459519][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1001.467683][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1001.475295][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 14:33:05 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8923, &(0x7f0000000000)={'macvlan0\x00'}) 14:33:05 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000340)={0x2, 0x0, [{0x4}, {0x2}]}) [ 1001.483138][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1001.493094][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1001.505069][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1001.512370][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1001.519684][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1001.528357][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1001.551254][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:05 executing program 1: syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x0) syz_open_dev$vcsn(0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) [ 1001.620238][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:33:05 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000340)) 14:33:06 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000280)="432c3d731af71c17e7f39d3b26df2489c6e3218f1253aa3f81f04bcb1235cbd9b6324aef00e9561c4d51d3e489e4f383eb53b0089e0bd74eebf9aacd94a6485800ee7124bcd90b29ee46eac8e8dc7be3c7624874d97bec465c6d7a6f8673f9483f089e5b7c7246c856ec628223d8ff32cc1e42802ebbfa5715b5abd76a449cc76efc189d7136cf2c31d684ef", 0x8c) [ 1001.674523][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1001.691662][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1001.698834][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1001.717218][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1001.756611][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1001.773562][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1001.782107][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1001.794326][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1001.802366][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1001.810102][T22784] Pass: 20766460 Run:20766586 [ 1001.814819][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1001.824748][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1001.834828][T22784] Call Trace: [ 1001.838122][T22784] [ 1001.841084][T22784] dump_stack_lvl+0xd1/0x138 [ 1001.845732][T22784] mt_find.cold+0x8b/0x90 [ 1001.850106][T22784] ? mas_find+0x1d0/0x1d0 [ 1001.854486][T22784] find_vma+0x10c/0x1b0 [ 1001.858670][T22784] ? can_vma_merge_before+0x390/0x390 [ 1001.864068][T22784] ? walk_page_test+0x78/0x180 [ 1001.868864][T22784] walk_page_range+0x2b1/0x4a0 [ 1001.873669][T22784] ? __walk_page_range+0x780/0x780 [ 1001.878830][T22784] mlock_fixup+0x650/0x810 [ 1001.883294][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1001.888535][T22784] ? mlock_fixup+0x810/0x810 [ 1001.893171][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1001.899113][T22784] do_mlock+0x25a/0x6d0 [ 1001.903309][T22784] ? folio_evictable+0x270/0x270 [ 1001.908318][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1001.914253][T22784] __x64_sys_mlock+0x59/0x80 [ 1001.918874][T22784] do_syscall_64+0x39/0xb0 [ 1001.923344][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1001.929272][T22784] RIP: 0033:0x7feaf548c0c9 [ 1001.933713][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1001.953349][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1001.961788][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1001.969779][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1001.977767][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1001.985753][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1001.993739][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1002.001745][T22784] [ 1002.012857][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1002.030501][T22784] BUG at mt_find:6473 (1) [ 1002.034892][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1002.065028][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1002.102600][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1002.179757][T22784] 0-536866815: 0000000000000000 [ 1002.185559][T22784] 536866816-536870911: ffff888094eb2460 [ 1002.192750][T22784] 536870912-553631743: ffff888094eb2540 [ 1002.198833][T22784] 553631744-553644031: 0000000000000000 [ 1002.205528][T22784] 553644032-553631743: ffff888076c687e0 [ 1002.212370][T22784] 553631744-553648127: ffff888076c689a0 [ 1002.218662][T22784] 553648128-553652223: ffff888094eb2620 14:33:06 executing program 5: setuid(0xee00) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) 14:33:06 executing program 2: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x4040aea0, 0x0) 14:33:06 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x5411, 0x0) 14:33:06 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x891f, 0x0) 14:33:06 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKPG(r0, 0x40046602, &(0x7f0000000240)={0x180ed078a2e053e2, 0x0, 0x0, 0x0}) 14:33:06 executing program 3: setuid(0xee00) bpf$MAP_CREATE(0x0, 0x0, 0x0) 14:33:06 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet6_udp_int(r0, 0x10e, 0x4, 0x0, 0x0) [ 1002.224839][T22784] 553652224-116820934655: 0000000000000000 [ 1002.232149][T22784] 116820934656-116825128959: ffff888094eb2700 14:33:06 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0) sendmsg$IEEE802154_ASSOCIATE_REQ(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_CHANNEL={0x5}]}, 0x1c}}, 0x0) 14:33:06 executing program 0: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000002040), 0xffffffffffffffff) 14:33:06 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x300}, 0x0) [ 1002.350195][T22784] 116825128960-93824997462015: 0000000000000000 [ 1002.360561][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1002.367573][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1002.374678][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:06 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r0) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0) r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), r0) r3 = getuid() r4 = getegid() fchown(0xffffffffffffffff, r3, r4) r5 = getuid() syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000140)={0x164, r2, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0xfc706f93d3a3f355}, @NLBL_CIPSOV4_A_MLSLVLLST={0xe8, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x76658c35}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x36}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7bc87478}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56ecf4a4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x23dfce24}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x89}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x669acf6c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdb}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb2}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xa19df51}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x27}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78ed8e84}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x56}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x324d85bc}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xb70ce7c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x472a186a}]}, {0x4}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6f099731}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x65}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xa24fa46}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x59a9fc7a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6f18afc1}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5}, {0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x2c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}, {0x5}, {0x5}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}]}, 0x164}, 0x1, 0x0, 0x0, 0x10}, 0x8000) r6 = getuid() sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000014c0)={&(0x7f0000000380)={0x1128, 0x11, 0x800, 0x70bd27, 0x25dfdbff, {0xf}, [@typed={0x1004, 0x84, 0x0, 0x0, @binary="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"}, @nested={0xfe, 0x33, 0x0, 0x1, [@generic="49443a6705e995ecc64ee851e7464e30a788d34e129e794fca25c487128243b1f8650e7d6e95af3976a3", @typed={0x8, 0x8e, 0x0, 0x0, @ipv4=@private=0xa010101}, @generic="58788adc4dc46f0619a8ed020d597f43aa07b92433d588fcc0b2e11d60094044e892250d20819bbfbdbc33eae712085c03fc0ac1bba4d1179ff8f47c065a590ad687ee2cd50f2972d10009d5a323de641a83d8fdcd486337c52290047d0de054cd7e946a25d54275124276ad8e776e8e3d545aa9dafce8a48c2c974ba738b6e592c36ac63c83dde1cfa0c704e06c542ff49e2679eecdaa43349b9601ca2e8e893116e300ab755ce23e94acbebf59dd7c346230f468cc22f7", @typed={0x8, 0x88, 0x0, 0x0, @uid=r6}, @typed={0x8, 0x8, 0x0, 0x0, @uid=r5}]}, @typed={0xd, 0x51, 0x0, 0x0, @binary="1a4014484746f88b0f"}, @generic]}, 0x1128}, 0x1, 0x0, 0x0, 0x20000081}, 0x40004) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_PROTOCOLS(r7, &(0x7f0000001640)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001600)={&(0x7f0000001580)={0x7c, r1, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x2f}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, '&\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80c0}, 0x20000804) syz_genetlink_get_family_id$ieee802154(&(0x7f0000001680), r7) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001700), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001740)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000001e00)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x18802400}, 0xc, &(0x7f0000001dc0)={&(0x7f0000001780)={0x604, r8, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0xc0}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x55}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}], @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CSA_IES={0x594, 0xb9, 0x0, 0x1, [@beacon_params=[@NL80211_ATTR_PROBE_RESP={0x51e, 0x91, "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"}, @NL80211_ATTR_BEACON_TAIL={0x7, 0xf, [@sec_chan_ofs={0x3e, 0x1}]}, @NL80211_ATTR_IE={0xa, 0x2a, [@challenge={0x10, 0x1, 0x51}, @dsss={0x3, 0x1, 0xa}]}, @NL80211_ATTR_IE_ASSOC_RESP={0x7, 0x80, [@sec_chan_ofs={0x3e, 0x1, 0x2}]}, @NL80211_ATTR_IE_PROBE_RESP={0x4c, 0x7f, [@dsss={0x3, 0x1, 0x64}, @mesh_id={0x72, 0x6}, @sec_chan_ofs={0x3e, 0x1, 0x1}, @ht={0x2d, 0x1a, {0x80, 0x2, 0x3, 0x0, {0x0, 0x5, 0x0, 0x22a, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x1, 0x1ff, 0x9}}, @rann={0x7e, 0x15, {{0x1, 0x9}, 0x4, 0x0, @device_b, 0xfe2a0000, 0x65, 0xffff}}, @perr={0x84, 0x2, {0xe}}, @sec_chan_ofs={0x3e, 0x1, 0x2}]}], @NL80211_ATTR_CSA_C_OFF_BEACON={0x6, 0xba, [0x1000]}]}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x22}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}]}, 0x604}, 0x1, 0x0, 0x0, 0x4000}, 0x45) r10 = socket$unix(0x1, 0x5, 0x0) r11 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000001e80), r7) sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000001f80)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001f40)={&(0x7f0000001ec0)={0x48, r11, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0xc}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x4) syz_genetlink_get_family_id$ieee802154(&(0x7f0000001fc0), r7) r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002040), 0xffffffffffffffff) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000002180)={'ip_vti0\x00', &(0x7f0000002080)={'gretap0\x00', 0x0, 0x700, 0x8, 0x3c, 0x33, {{0x34, 0x4, 0x0, 0x37, 0xd0, 0x66, 0x0, 0x1f, 0x2f, 0x0, @rand_addr=0x64010101, @multicast2, {[@timestamp_addr={0x44, 0xc, 0xc1, 0x1, 0x6, [{@multicast1, 0x3}]}, @ra={0x94, 0x4, 0x1}, @generic={0x94, 0x2}, @cipso={0x86, 0x31, 0x3, [{0x2, 0x3, "8a"}, {0x2, 0xf, "70623dedce0258e5fcbac78e1f"}, {0x5, 0xa, "59caf463ea01e7a9"}, {0x5, 0xf, "0895c992234d2d1ce76eb92614"}]}, @timestamp_addr={0x44, 0x2c, 0x6, 0x1, 0xa, [{@rand_addr=0x64010102, 0x9}, {@multicast2, 0x52f}, {@broadcast, 0x4d14}, {@dev={0xac, 0x14, 0x14, 0x2a}, 0xd1}, {@rand_addr=0x64010101, 0x1}]}, @timestamp_addr={0x44, 0x1c, 0x51, 0x1, 0x2, [{@broadcast, 0xd217}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7ff}]}, @noop, @cipso={0x86, 0x17, 0x3, [{0x0, 0xb, "ea8fdfb07b53dcb281"}, {0x2, 0x6, "bffc8602"}]}, @cipso={0x86, 0x17, 0x1, [{0x1, 0xb, "30fc5cace65941f602"}, {0x6, 0x2}, {0x6, 0x4, "c415"}]}]}}}}}) ioctl$ifreq_SIOCGIFINDEX_team(r10, 0x8933, &(0x7f00000021c0)={'team0\x00', 0x0}) sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f00000023c0)={&(0x7f0000002000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000002380)={&(0x7f0000002200)={0x174, r12, 0x10, 0x70bd2a, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xe63888665ab53776}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x44055}, 0x4008001) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000002400), r0) 14:33:06 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={0x0}}, 0x0) [ 1002.382121][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d 14:33:06 executing program 2: syz_open_dev$loop(&(0x7f0000004800), 0x0, 0x0) 14:33:06 executing program 3: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) 14:33:06 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_setup(0x5, &(0x7f00000000c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000c00)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x9c89, r0, 0x0, 0x0, 0x0, 0x0, 0x2}]) 14:33:06 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0) sendmsg$IEEE802154_ASSOCIATE_REQ(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x1}, 0x14}}, 0x0) 14:33:06 executing program 4: io_setup(0x6eb, &(0x7f0000000a40)=0x0) io_submit(r0, 0x0, 0x0) io_setup(0xff3c, &(0x7f00000001c0)) 14:33:06 executing program 2: r0 = syz_open_dev$vcsu(&(0x7f0000000040), 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, 0x0) [ 1002.544707][T22784] 140647092715520-140647101104127: ffff888094eb29a0 14:33:06 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_mreqn(r0, 0x0, 0x20, 0x0, &(0x7f00000004c0)) 14:33:06 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r2, 0x4040ae9e, 0x0) 14:33:06 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x66, &(0x7f0000000200), 0x4) 14:33:07 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x48) 14:33:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) dup3(r4, r1, 0x0) 14:33:07 executing program 0: syz_usb_connect$cdc_ecm(0x0, 0x17b, &(0x7f0000001700)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x169, 0x1, 0x1, 0xeb, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x20, {{0x9, 0x24, 0x6, 0x0, 0x0, "c6f22920"}, {0x5, 0x24, 0x0, 0xcd3}, {0xd, 0x24, 0xf, 0x1, 0x9, 0x6, 0xffff, 0x2}, [@call_mgmt={0x5, 0x24, 0x1, 0x2, 0xff}, @mbim={0xc, 0x24, 0x1b, 0x8, 0x3e, 0x1, 0x6, 0x5, 0x2f}, @mbim_extended={0x8, 0x24, 0x1c, 0x6, 0x1, 0x2c0}, @mdlm_detail={0x4c, 0x24, 0x13, 0x40, "8ffaf3da4025973f27dd14986b5780f6f8c10eb9893c998b1dfc11b68ffe9adfe0ac7dc05cfef34085bea193d292be3cfa47d55412b2b22bcd189f6a6ced9c4377bdb2be1a91c506"}, @mdlm_detail={0xbc, 0x24, 0x13, 0x9, "1634212bc174e1b580cf50b9bd0d3484ad50a9348aefa1234e490ead1a1bf1da680b9aa0ce843c8293a301fbaf7331827005d5ede6c8aa95184452d43e7e9c705f5bcf0ac0c0f6aabeb266fc1bf3d89cf738f789799e7f4de2202ad9c92791d79ebdb4c33c58b0a53c105b2f56e788a4388fd62a784e14bd740d30a1ad56868b8509defc68664f3184b61e8dd1d9debe01d37376f9a6eebdce7ba953a137f2fe33760b2eb74ec08dd2c7dd856d0217cf4029286c516efe0a"}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x400, 0xfd, 0x20}}], {{0x9, 0x5, 0x82, 0x2, 0x20, 0xa0, 0x8, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x3, 0x7, 0x6c}}}}}]}}]}}, &(0x7f0000001bc0)={0xa, &(0x7f0000001880)={0xa, 0x6, 0x310, 0xff, 0x40, 0x5, 0x40, 0x40}, 0x41, &(0x7f00000018c0)={0x5, 0xf, 0x41, 0x5, [@wireless={0xb, 0x10, 0x1, 0xc, 0x28, 0x3f, 0x20, 0x5fee, 0x7}, @ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0x8, 0xf, 0x2, [0x6000, 0x30]}, @ssp_cap={0x10, 0x10, 0xa, 0x2, 0x1, 0x9, 0xf000, 0x4, [0x0]}, @ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0x1f, 0x74, 0xfc}]}, 0x4, [{0x7f, &(0x7f0000001940)=@string={0x7f, 0x3, "9b404725a2e7776ecfdeb8cbe416dfd70487142033145f9d3bea10f352b6570f6177de954ee47581888002b687803ddbc9dfe389c13f123dea978a6662f47b4203643ac642396284182cf9ce91ca695fed1184ebfad9028657b5bf63d276d58133226fdd82dce7baef6f2ce10bfab6185523c0a45dcf6937e951196cc7"}}, {0x4, &(0x7f00000019c0)=@lang_id={0x4, 0x3, 0x422}}, {0xdf, &(0x7f0000001a00)=@string={0xdf, 0x3, "2da924f8288e9d0871bb35e1301f4e54ebc16da705fbca5239f100af0e3d1f420d839a3db820ed759f6d8f0cab46eb800ef9ecd5cb387e2b2b545afce6a7b0b7a173ae6038d3caeb50344096b3dd3db4fb43501cfb783e6ad5bedccbddbb5c505ba83d66de571366189d989dd840d50d32dd5a2ad0588159c3a5e2b3947fa3cf413b364e866e6aedd5dad16467d9fc40a42b320b37697121273b075a6f9dc46ca436c7b33924b1c6c388b00ecd6420d3ee547df1e652e80b375c699ab8c147c21285b3e33d782331702596a59c2cc575b06db2cf7bb95c639146e55a13"}}, {0xa7, &(0x7f0000001b00)=@string={0xa7, 0x3, "2bf2a923bd6d39f405cab16a20ac9e982761463be89836f5f364c5f0af8ad95c22f090cfaac12a36b36ebdada8141a4d30d4752c18c6d7d40170ceecc6e3ba9b77424aa24ae8c61395b5bd3c5b2be5573b8be4098cf9f13357d7b37381ef15b0d6d7c0128fc1dc6b2439f1b3e228dc1b3d9e48bebb85e58d5fd2a1a80d8129cd909798bb819a900018df7da7a70b2d2c7ecf974d1c541655e77066b6421baccf4634b1f37a"}}]}) 14:33:07 executing program 5: signalfd(0xffffffffffffffff, &(0x7f00000008c0), 0x8) 14:33:07 executing program 3: socketpair(0x2, 0x2, 0x0, &(0x7f00000008c0)) [ 1002.786087][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1002.809247][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1002.816394][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1002.823992][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1002.834628][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1002.842553][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1002.849956][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1002.870451][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1002.880663][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1002.888003][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1002.895914][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1002.903683][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1002.911450][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:07 executing program 1: syz_usb_connect$cdc_ecm(0x0, 0x51, &(0x7f0000001700)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xcd3}, {0xd}, [@mdlm_detail={0x4}]}}}]}}]}}, 0x0) [ 1002.920928][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1002.976241][T22784] 140647127171072-140647128055807: 0000000000000000 14:33:07 executing program 3: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FIONREAD(r0, 0x4004667f, &(0x7f0000000dc0)) [ 1002.983825][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1002.991514][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1002.998693][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1003.006427][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1003.013961][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1003.021616][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1003.028877][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 14:33:07 executing program 4: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000fc0)={&(0x7f00000010c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}, 0x10) [ 1003.037922][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1003.067894][T22784] Pass: 20780481 Run:20780608 [ 1003.080231][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1003.090180][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1003.100275][T22784] Call Trace: [ 1003.103586][T22784] [ 1003.106577][T22784] dump_stack_lvl+0xd1/0x138 [ 1003.111227][T22784] mt_find.cold+0x8b/0x90 [ 1003.115627][T22784] ? mas_find+0x1d0/0x1d0 [ 1003.120029][T22784] find_vma+0x10c/0x1b0 [ 1003.124233][T22784] ? can_vma_merge_before+0x390/0x390 [ 1003.129657][T22784] ? walk_page_test+0x78/0x180 [ 1003.134462][T22784] walk_page_range+0x2b1/0x4a0 [ 1003.139249][T22784] ? __walk_page_range+0x780/0x780 [ 1003.144430][T22784] mlock_fixup+0x650/0x810 [ 1003.148896][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1003.154128][T22784] ? mlock_fixup+0x810/0x810 [ 1003.158744][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1003.164667][T22784] do_mlock+0x25a/0x6d0 [ 1003.168885][T22784] ? folio_evictable+0x270/0x270 [ 1003.173894][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1003.179845][T22784] __x64_sys_mlock+0x59/0x80 [ 1003.184461][T22784] do_syscall_64+0x39/0xb0 [ 1003.188985][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1003.194924][T22784] RIP: 0033:0x7feaf548c0c9 [ 1003.199378][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1003.219028][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1003.227500][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 14:33:07 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000001680), r0) 14:33:07 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001100)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@enum={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61]}}, &(0x7f0000000100)=""/4096, 0x2e, 0x1000, 0x1}, 0x20) 14:33:07 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x10e, 0x0, 0x0, 0x59) [ 1003.235511][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1003.243523][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1003.251536][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1003.259545][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1003.267576][T22784] [ 1003.276547][ T5883] usb 1-1: new high-speed USB device number 20 using dummy_hcd 14:33:07 executing program 3: r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f0000000040)=0xe, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x5000940e, &(0x7f0000000080)={{r0}, "8dac7eaefc2f37b9f574a96984ab58f11a7d0de7cd3000073533f1fd4ae1105c64899b82157ab0ce3f82086974918c2a6fcb76049a1074b604e966c73aec9432d566a74d781e2ac0378b6c3896fb4d89b9ba587c10aa569315810b5185a96c058ca6b47b23b5d1f7336515471921fa7cf8799ed81616c8ae5074c89658dcf84c6dfe5e39a52e3aca83b38a477019933c7003b24940d59c0bd27b0a4bc16a9fc37e17bbb33b155060a155c1892c50f67198cc6457b12b062e78bb91c049872e8df526d5af74967f23dcb1a7c4249b046991f98ea7e82c1a09327e57012c81e4103313f6b99d27b9b001de0987cb8eaecbad43ab70f9c7d33e2b2a3f3413d4de3d127b933349ba45b19e047c8ccd9578258501cc097e254b27829b22b6f349258f1396437cb67f4a9f8e3cb021af7a72e0796837e34019ee7d2b27de89322d721b844b2ccc0a79e458d4d85345044ecb5b168b9c2223d22fc0aebba8620e1b297177a1867cc091d40306a509fe9ea55896429d434cfdb1700d4f3a07a362d9757135fd320d1422e992f38d40d42bc8b588321e511c0777776e86154f925e9a1ee11a878b80d876e9ad9d6f6b7b2d894d2bf041185157843478ab2749edf4b1fc8d54f562dccec93a81e4fc32f82a770fbdca0a82d9ce569644061f2353c51077e3d4838f4d75aec8ba122a4f0299cbcefc89cf292dbac5bb3850a19494c9d5ed287e2f47fe5043754e553c4febd4be34e99de0f3bef56cbbc229a270bdcf84869b083e99b5ffa7caed2c3abc9a5398b44b16529cdfe26a655b35af71acbc9388c76d188572a0337c46365b775dc9246d24d3c7f73475904c52ea7e53b839c5ef5907943a98525a8b243558242d0d660c44ef858853adc1980a36f8a353dfae02bc1fde2059c6ad7fb08f57a37b34ef04e53dab01cc1d88d8ed7b5a547bc0c0fa8aeed96cca3b3138aef9f24ee68dac24d79c72039c2a2f09fe2ea9c1f1259a8ed9d1a5bd3b07297b67ddc06e630eee2df506f3ce78f297778af6ad928bd523c37dbc28442708092019f79067946d594ce8e787cccf2312b99a361c76106c398f4c13458264420a255d8d112bc0e5c04786f4e286f8295672ed0ae7fc9873024b2a0f728f6854758f9774d1669458d4ed189596e682e21ab0fc6b833ce91c38a9e85f0d0c3a079b1a66393e373c3a6b5e360b18887f397472a870758f8a31a86180a067fb40efba42eb57670a204eb1ea755bd49eb8be9e820ebf580e187633f620db32023fd3f7602746e71a52ce528e7b2557c16072b52babd76ee1d6a8a70b89306a780c4501e1adc6cf9f58c98c1b10168bfc909d6af2e76aa2545c01b71e9c7822efc42dff3210a338a75f967d31d17715f2baed7736cba2e464d13c836062f23900e29bdc296b183682be538aabf69c0d454b9f8077a72f4622c52f8b3a666f7207a5460cbf570aa298a49aba64808e2b97dae87783d084d7fe1f71e24d9b7b57be55c263d756e93ce0271082bf1635924c5ebeeaba96b698252ca5d0b7c29b24e45c30aad5c327ba86d6b5ea3432b7893ac6ffc2d36a08cdd301122793dc655217d8c2afc3c7e4c06163496691fe609425f0acaa7d6c8ec824daa4d44df3b3f48a9e5f888bae497cf262b12b7f0c727712e4aa385396d7b793d7e5571afc93aac96294effb61064ecbaafa16ccde50289eed9c9254cb2b1987d81db8e623a550234eeb298e273f8ecf62c30efc0d2201769d85c6096909478b870e983a50af976eb8686c27c622456099c141689d0ef4051d6a74caa5c66db2437e4d159ad009d7807dd82f71997e2cb0715362d6d9720f31d4500aee01cc93bd3f289335254b679e0364de6191f33a0d0d9fd7548f49cfb1ec3aeecd047cc8b54bd4007b3f79ba5467de04b1271e2d9285f1b89f4968f4076eea450bdf9dcbf30f443748783aee7dd12420617c338eb9c159ad87beeb4b412f349cceafe159d5669490a170f0fc7a663c41f13df45d7dae92ede2899a766cb80f85f63285660f9b5a13df1a7eb11a80c59f8dd50ef4ce42448d25141c2903d707976cd796d9fd535b966c454b698ea8de7eac32363ad58a082e41f84308e2ec6e374e804ea74695b92ed74024414994e6ee505023995ad99d145fa770f8e16e9318ff34041c0940ccca990787004b1f4b21907465c67bcf9a5e2b25cd9974eb6fc09913eedb2e688ff0dbf9c9363d310760ae27a82b2a3b70f90b4b1806541639308046f5c577906d02ca8d8f2b6b8d16a50704863b1b40f6cb9c8884c559d5df8534f849e35c1dc0582812500d3b132e424fae784165ad73c4c5730f14d7f454f5a4387a52009b0ff529df7d410da4068b850b8f086a5725abc534bc4eba6520d2f88a6321024d665488076ef6a7178ed2acb0b95b1bf9cf8ccb685445b0dd542fa75aa80f06f6d520f2772cf5ecb39acf7c2c38f92263e55af7016b3c1639254a0c755610dfaad7fbe13682e2686a781c80cb72b1587115c6a04e5309eb82e87dc507e4fa7fb1f399a80a71d38dd06af41e4effaf161f0caa1bc2a6759cde74174caafc3ee334b6bd037c491b859d7a970028e2519e3c649d12dd6f66bc033a716af5b3303ac376c0a9a2bad16ec13eff53c6a68e86b8f90b11be93ad96df57bc6c74b6c9ba6856919ca56005423204501fb325fa55b08097329a2182e28b1e1d431b4136818e41a9ea10daae173cd3b5869872875fa073648472ae2f2e4793d48f02d345533e58a1ea3fee11b6996ad1f916b7f5a7f406059ef1fb7564925d99b24a7bac6b603018040556d217d5fdb6acdae961d15fa45ddfdec26d24204f697e5d860d5fb7f386cbe7fde6a2527a178801d2d4bf7198b9857bacef9b77f06e4f0631824cb285f4e01f006d89b0227552d4fbb33cc33f19adc43475aa9467d6cbb427fc0272b679f0672b351d7b5c204a82e5d2c8ec62f7b547842b08f3d5c8174ecf28e7586a3cdd371eb9fba3f28bc28d8f0d0ad7d7d5681a9a9b3f01d93e3357e3afcf5282931299bfdecce200e830d13a329954c781b7693fd4f1b2f29e630e8e5363e5a05c90fbd15eb3eaeccd44ec476c71f1874cf403172fc4506c54fb7c5eea18cda33ef2149e19bc44ed9ad9153dee854a0af4296f0448e7951f9fca43fa1313674c2e17eefe368993d4ac472a8ce159de25f58b14192ec66ccaa2ee262ceafde055cd3c5c20d0122bacd5750e65f0658563b9ba8836b84bc22573a1eb22d52126c620c1f3725407294a9d1f08624d7b1c3f505d3565b14bdee0cad0fbe402a912e43290d9ba20284563e40304ae4a5fe7cdad7a5ca3416e43c66995a193c47da0e8432d3829ed96801056938a00289afc1f0b8b30400a3ce320b792a6870ebffe707fe0daed276ba9f5f78c3306f9cedbfd9d56b90e5bbc41fa4c932d101e664f12cafd0085c4726b49f2c6465f2d8fc782b33a00628e62ee5b56c3f71c812fe7b231efaed485f00350bf1ba20be4a212d8b4fd85c135f91400590e90dff757dbdca69a8a74477aebe63f52ef3e50c494fe7ec93971e1c2a8b018c889600d6f9b87100666c2316a9922503b61ae8c8a7145d940eb8c4e17a5ff3bd74853b92fbd264df8a99aec51b5941e8a59e0c9c9282b6411bd69d7e664c2fde79bb4cdaeac344456b4077d8648948ca4b95cb5624e70c3115347de4178aee2418a120e02536e989477424694e95a4e6a68755336155a6dbfda27c46486ef605cc50c4dda1ff1002b8b9ecabb5e59728b8e59c4d2fe171e44144f97bcd380c1abb42f096c8454ee0481ee2cd7196244cf78ffd90ac847c812822b8db847336041966e4686fa0360ea58ba5d3154791de35204265806bd1a4b89491387c9428416fe51da3724a6eb4dbc638e18f9fd312b49c2794c1f5d930fd95f65f96d8a494de143a13565f08f7a9b9725cbae75f40510f5d2fef7e77c131e958782d6ee1ecd994bc7592daf37eedf0548920540d9511537d90339b250bcfdf1818271545e62846df4311657435310f3f26abb110a28747c0eacd3a2c05870e2cde950eb83b3d1a45a96b71cad2031235909ed4d23f0a77b7793650d2921cb308d08ba5cfc3a8d3d9779fd361b61312f2fedaf230e68bf13876a1a704e35903ce9a99c28296d6f9003d7b630a8f8fe3578dc1fb784c559ff8ff03932cf4aa8c35c6f9d82f8e5633c7d79f20c75003c6fc20ec89dc7ea42be0943a5058f912b63f641520c0cc46b61c424c9869ef439b1b5bd7cc0ceb71df820b635c2fca45c1820cf1246905e3c6729c85ee95b93949ed1d14260508fad0ed369b8182a90dc29fa13270438ec219224bab028d62be7a3868bd29509c0d87eedd932e2adbcaf15fe5d935e4f6a310d8fb5dfdf4cda31446b6d68b0a64ea0d431883095207dc5f2b69b1bd4da938981eba933e4a9271aa14c670ba126e4625e2eccdb915c99ac7f3bfe0929256c4361aa35bab305d2bbb782439dd8e7551b5707bfa56148d8ca091693b0ac0ba91d8cc1349e5ec7023c0dc2323d29cde3ca25f351487941fb3fdd76f08b01f90ed76701e35ed2c6478dee5846caecec605ab67392d460cb502800d448fd28fa8df78f992834a5301a2ff51f559ac5979a1e3033c23ce7cbb244d06d893e3e6c83e72664a40b23c67e9388ef39325715085e1572f11027fcdebf22561905a3a1e7fef495cd6d1803834a3a5b4e8d45e88bf148eb2b77cb746075fb2a4fcd56ac0711b3b512801d2f69203e2ef85ac58a982caa59ae1373ef2639973ed9f7b2fe8892420a9779bf0fbb14eabe64100fd9ea895b80e391b0f7c7bda12322552a6ebf3029b85c7c127f3c9ff512403fe37a3aa41c65e4e80a6f03c33d3af397fc3b6bc30f881e16e8b558ccbc73d2a4bbd57f262c3895d65fb637e40af7121dc1dd9f8725bbaa6df699721e98e7643daff1a1894ffb67f087f391771bf712a3c626799ef12f70c9efc1fd7f57ee846c0c91b9a07ff9b39982dbc156199ebc7ec333072b2108e9f3e4dfcae7bcad8d40c203c58376169ed6da6d6e41f0f88dbb2a3d7945dc8f65fd8527384e81301fb6cc8ee3a507373bd3fca92ee7417cad5b9a0a53ecb56db4b215c0ad122bb8a70f9c0ec9ff316aead47cc28b81400e413eeb24c6005673b8986e0683c50b6881394841ac9765abc2afa450ece50ffee56949fcfb7dad15310b67dbdf6b432cf6b85eea473d1e03ea3e29ce2e529e53a59f8e4dac4733d145c435e5a1472faaa3a43e4bdc40f497b8b336657a4b82578ea67e4f5e0112d56c798086d0d9307103b443a63ffdb6f2963bca8f46f25997f18d631b35023485b51af65aae49f95e94eb8a1c41d0a6b1d4d111c88b0796ea9f3178b5af4662b39811608417cf194bdce54ba7fe2c1e73506234df1fa85eac398f3ad0db2d845a75709d21fb5d9a36c279a88a972fb86f63c5c9d5503922ca2d48b15a85733f306be10316d92407961673f33428841f77a99c7ec8047e80b4f7e57b1ff5f063d6750e9bfa5514707a409854f382db724783df944dc6a51b246e24db2f40a02c3318dab3279a26405d8b2b51d4ed4368d98dfd7fc851da9592fa4d6466fcfaf33083086e92ef6d8096ae6b29277a56a1e2e4b8b35b1f398508a155a3c7dd1e4a8b1178c3f27a6509e7689e8069d8b982f5671d70474472fc53c72d2203d668b6136ea9ba072f3b049ad6d4089dc05267186dc08af91deb84edf69126f6df5059c4c7bd876a94487a688f5a06f8dcdb7ef78af7c7986922c62c699dc2eb2e"}) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000001080)=0x2, 0x2) r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000010c0)='cpuset.sched_load_balance\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFSUUID(r2, 0x4008662c, &(0x7f0000001100)={0x10, 0x0, "385287c755a828a7363ada6bfb046cf2"}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001180), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001240)={&(0x7f00000011c0)={0x7c, r3, 0x8, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="e20fdba2eeb9"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @random="2e64de0500ca"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @random="e9974f5e43c9"}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x1) r4 = dup2(r0, r1) sendmsg$NL80211_CMD_SET_WDS_PEER(r4, &(0x7f0000001380)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0xaa7e526c0f430ac3}, 0xc, &(0x7f0000001340)={&(0x7f0000001300)={0x40, r3, 0xc0c, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x5d}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9274e99763a5"}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000893}, 0x4000000) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f00000013c0)={0x0, 0x0, "5806be1103838c953832137743490a2b5d061672b961ac5a5f29e01a5aba0a6cc1ab5b308a231eb5501ec904daeca1fb200e85a9bc59298d11cc9a184d390fa085dc3d4e102b1d18d7ef8a76e2e7efdd63d618e7ef1ba18688bf4f5f5db281974a2a48199940708c14653325efa8c02a6756d9643c15638b9c0a86d608648ffec564c756387d35fcb9208160f98b3bf19e67befe08a88f78821e7de31908e152c20a6eed5bf703b01a6a9ff78428bfb3067e9ef2245558ebc40845a61d9f913a74fefe806b7abe5985324c9403f081b4af5b49542222dea7cc65305442fccbc3dcf65bb3a73e6b4bb0c910489f2367476b5380d2584d1e0be4f099131079d67b", "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"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f00000023c0)={r5, 0x0, "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", "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"}) syz_clone(0x40060100, &(0x7f0000003400)="3e94f877e21cdff1996e65ecbde257e52a738e79a426353462f99159fb73908c724feabf8d8f244e40e1dadcf19e0e6aaf80a12b0872b58939930f01bbf0007c4bbcca0c0541924f9d9db6c8", 0x4c, &(0x7f0000003480), &(0x7f00000034c0), &(0x7f0000003500)="6c732e59587180007857019dc9c6f10380e0434402ddd68062d7e19511ce9689f9f3f06e7f2e774ef755c082b80a4a8d9b5efdcfc0c001fe928f4115bbe92974121a9f5dd98f638e9d110c78dc5903ab3eb8ba5a4a8ca1001e8768b0a173f93f1ec44e1cfe829b2db194d20d9c6380dba41f685819ac8d9d15ca601d8061c9222ddcef20dc3f6f4cde7cc23c98e202df1a6fbb4ce2958b12a1c1f7d689c0410b3ad8467831e7b7897e9d998ab7693fb1d9e38a9859bfa9e06fc6862c38453e0ad73b974261a79440ce74f7b681e5b31a8bdd76a6ed6ee9908362cbd2") r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000003dc0), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000003ec0)={&(0x7f0000003d80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000003e80)={&(0x7f0000003e00)={0x68, r6, 0x102, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'wlan0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x29, 0x7, 'system_u:object_r:setfiles_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x43}}]}, 0x68}, 0x1, 0x0, 0x0, 0x4008000}, 0x4) r7 = socket$xdp(0x2c, 0x3, 0x0) sendmsg$xdp(r7, &(0x7f0000004000)={&(0x7f0000003f00)={0x2c, 0x5, 0x0, 0x3c}, 0x10, &(0x7f0000003fc0)=[{&(0x7f0000003f40)="9fd4d763fe8302c1e04bd3eae8f838f7fd75305acd7b97ba77ab195112656e8c7b8b6c703dca42f8fdfd211e79c4e65b0d6004b01b39c7e6e7580ffe3b2667834fb30a8bf35a1193c3abef07396e96491a616371da", 0x55}], 0x1, 0x0, 0x0, 0x4000001}, 0x20004014) r8 = socket(0x1f, 0x1, 0x7) r9 = syz_genetlink_get_family_id$fou(&(0x7f0000004080), r4) sendmsg$FOU_CMD_ADD(r8, &(0x7f0000004140)={&(0x7f0000004040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000004100)={&(0x7f00000040c0)={0x1c, r9, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_V4={0x8, 0x8, @multicast2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000004240)={'tunl0\x00', &(0x7f00000041c0)={'syztnl1\x00', 0x0, 0x700, 0x10, 0x48000000, 0x6, {{0xd, 0x4, 0x0, 0x5, 0x34, 0x66, 0x0, 0xff, 0x29, 0x0, @multicast1, @empty, {[@timestamp_addr={0x44, 0x1c, 0x16, 0x1, 0xd, [{@broadcast, 0xd39}, {@private=0xa010102, 0xfff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x10001}]}, @end, @end]}}}}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r8, 0x89f0, &(0x7f0000004300)={'sit0\x00', &(0x7f0000004280)={'syztnl0\x00', 0x0, 0x7, 0x8000, 0x9, 0x3, {{0xd, 0x4, 0x3, 0x18, 0x34, 0x67, 0x0, 0x1, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, {[@end, @rr={0x7, 0x13, 0xfc, [@broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @empty]}, @cipso={0x86, 0x9, 0x3, [{0x1, 0x3, ' '}]}]}}}}}) sendmsg$ETHTOOL_MSG_RINGS_GET(r4, &(0x7f0000004500)={&(0x7f0000004180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000044c0)={&(0x7f0000004340)={0x164, 0x0, 0x4, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}]}, @HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}]}]}, 0x164}, 0x1, 0x0, 0x0, 0x4}, 0x5) sendmsg$NL80211_CMD_FLUSH_PMKSA(r4, &(0x7f0000004600)={&(0x7f0000004540)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000045c0)={&(0x7f0000004580)={0x28, r3, 0x600, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x9, 0x64}}}}, ["", "", ""]}, 0x28}}, 0x810) r12 = syz_open_dev$loop(&(0x7f0000004800), 0x8, 0x4a040) ioctl$LOOP_SET_FD(r12, 0x4c00, r8) [ 1003.307960][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1003.320448][T22784] BUG at mt_find:6473 (1) [ 1003.326179][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64ffc6925621b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea244929260583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe90223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863142811a89d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428c4770275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa39822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad185782c4216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778c9e5122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6fd9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378a921c7f7f6933c2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fc8a488ac9b2645ec879f09ee9c2cac01b8babb757b5c59217b80d0dbb14a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302b8e8715405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d30488ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174cd31f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd998c055c701ee7324d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426a088a0208040982a0000000000000000000000000051ceaaf0159fe6422eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6d7ec2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad49d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04abb9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae280d14f578bfec4a2d7a7edbc8ef9527ce75d63345e31994480095a29afb52dbbd5ba013c091e3a499df474dc32f96e665b2d8a46e5df0075365f984714e32e64494bf061aac06b5897b4a03442e9c1ea127d4969d09d93ba75483d1419dfdae525044d36993798a49afc0ab7273b8497b36091853fbb172a50de8eafd1fc94306a86d386ed4eee8a89c0841e3ed6a949eddc0d11adb9c17e3e9cdd64c8e73daf10b5f964a37743487faa0518e18595b51c5374f133155b11b858e244a927e759701d4f7fc"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) dup3(r4, r1, 0x0) 14:33:07 executing program 4: syz_usb_connect$cdc_ecm(0x0, 0x64, &(0x7f0000001700)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x52, 0x1, 0x1, 0x0, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x0, "c6f2"}, {0x5, 0x24, 0x0, 0xcd3}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x6, 0xffff}, [@mbim={0xc, 0x24, 0x1b, 0x8, 0x0, 0x0, 0x6, 0x5}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x400, 0x0, 0x20}}], {{0x9, 0x5, 0x82, 0x2, 0x20, 0xa0, 0x8, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x0, 0x0, 0x7, 0x6c}}}}}]}}]}}, &(0x7f0000001bc0)={0xa, &(0x7f0000001880)={0xa, 0x6, 0x310, 0xff, 0x40, 0x5, 0x40}, 0x36, &(0x7f00000018c0)={0x5, 0xf, 0x36, 0x4, [@ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0x8, 0xf, 0x0, [0x0, 0x0]}, @ssp_cap={0x10, 0x10, 0xa, 0x2, 0x1, 0x0, 0xf000, 0x4, [0x0]}, @ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x1f, 0x0, 0xfc}]}, 0x2, [{0x7f, &(0x7f0000001940)=@string={0x7f, 0x3, "9b404725a2e7776ecfdeb8cbe416dfd70487142033145f9d3bea10f352b6570f6177de954ee47581888002b687803ddbc9dfe389c13f123dea978a6662f47b4203643ac642396284182cf9ce91ca695fed1184ebfad9028657b5bf63d276d58133226fdd82dce7baef6f2ce10bfab6185523c0a45dcf6937e951196cc7"}}, {0x0, 0x0}]}) [ 1003.343084][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1003.411585][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1003.479094][ T5203] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 1003.500391][T22784] 0-536866815: 0000000000000000 [ 1003.509908][T22784] 536866816-536870911: ffff888094eb2460 [ 1003.522817][T22784] 536870912-553631743: ffff888094eb2540 [ 1003.531645][T22784] 553631744-553644031: 0000000000000000 [ 1003.544350][T22784] 553644032-553631743: ffff888076c687e0 [ 1003.577838][T22784] 553631744-553648127: ffff888076c689a0 [ 1003.589210][T22784] 553648128-553652223: ffff888094eb2620 [ 1003.595179][T22784] 553652224-116820934655: 0000000000000000 [ 1003.601513][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1003.608325][T22784] 116825128960-93824997462015: 0000000000000000 [ 1003.615087][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1003.622079][ T5883] usb 1-1: Using ep0 maxpacket: 32 [ 1003.627893][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1003.637895][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1003.645199][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1003.713776][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1003.721819][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1003.752324][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1003.759431][ T5176] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 1003.769280][ T5203] usb 2-1: Using ep0 maxpacket: 32 [ 1003.774930][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1003.782719][ T5883] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0 [ 1003.799002][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1003.809865][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1003.816853][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1003.839314][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1003.846355][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1003.855612][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1003.863471][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1003.870876][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1003.879248][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1003.894594][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1003.914884][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1003.915761][ T5203] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 1003.965200][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1004.008666][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1004.017038][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1004.019292][ T5176] usb 5-1: Using ep0 maxpacket: 32 [ 1004.029961][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1004.037094][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1004.052706][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1004.060559][ T5883] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1004.069930][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1004.076911][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1004.084615][ T5883] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1004.093685][ T5883] usb 1-1: Product: ꤭踨࢝뭱ἰ呎쇫ꝭﬅ勊꼀㴎䈟茍㶚₸痭涟ಏ䚫胫癩헬㣋⭾含ﱚ꟦랰玡悮팸㑐陀됽䏻᱐磻樾뻕쯜믝停ꡛ昽埞易鴘鶘䃘෕⩚壐妁ꗃ돢羔쾣㭁丶溆擑䃼⮤ଲ椷ⅱ㬧娇鵯泄㚤돇␹욱裃ະ操팠哮勦௨尷驩솸쉇蔒砽ㄣ╰ꖖⲜ病涰쾲륻捜䚑嫥 [ 1004.126819][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1004.134614][T22784] Pass: 20784806 Run:20784934 [ 1004.139801][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1004.149269][ T5176] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1004.149714][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1004.167754][ T5176] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32 [ 1004.170603][T22784] Call Trace: [ 1004.170615][T22784] [ 1004.170628][T22784] dump_stack_lvl+0xd1/0x138 [ 1004.170674][T22784] mt_find.cold+0x8b/0x90 [ 1004.170716][T22784] ? mas_find+0x1d0/0x1d0 [ 1004.196415][ T5176] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 1004.200010][T22784] find_vma+0x10c/0x1b0 [ 1004.200046][T22784] ? can_vma_merge_before+0x390/0x390 [ 1004.200082][T22784] ? walk_page_test+0x78/0x180 [ 1004.200124][T22784] walk_page_range+0x2b1/0x4a0 [ 1004.200168][T22784] ? __walk_page_range+0x780/0x780 [ 1004.200226][T22784] mlock_fixup+0x650/0x810 [ 1004.200288][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1004.246956][T22784] ? mlock_fixup+0x810/0x810 [ 1004.251604][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1004.257536][T22784] do_mlock+0x25a/0x6d0 [ 1004.261731][T22784] ? folio_evictable+0x270/0x270 [ 1004.266807][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1004.272733][T22784] __x64_sys_mlock+0x59/0x80 [ 1004.277346][T22784] do_syscall_64+0x39/0xb0 [ 1004.281797][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1004.287716][T22784] RIP: 0033:0x7feaf548c0c9 [ 1004.292151][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1004.311787][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1004.320225][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1004.328218][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1004.336204][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1004.344191][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1004.352180][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1004.360190][T22784] [ 1004.369215][ T5203] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1004.379432][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1004.383482][ T5883] usb 1-1: Manufacturer: Т [ 1004.385346][T22784] BUG at mt_find:6473 (1) [ 1004.385366][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1004.385391][T22784] 0-18446744073709551615: [ 1004.392327][ T5203] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1004.395662][T22784] node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 [ 1004.410695][ T5883] usb 1-1: SerialNumber: ⎩涽쨅檱갠颞愧㭆飨擳誯峙쾐솪㘪溳궽ᒨ䴚퐰Ⱶ옘퓗瀁鮺䉷ꉊᏆ떕㲽⭛埥謻৤歷㏱흗玳뀕ퟖዀ솏毜㤤돱⣢ᯜ鸽빈薻跥퉟ꢡ脍촩鞐뮘骁Ᵹ஧Ⱝ콾䶗吜唖烧뙦ᭂ쾬㑆 [ 1004.415860][T22784] contents: [ 1004.431001][ T5203] usb 2-1: Product: syz [ 1004.449638][T22784] 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1004.484951][ T5203] usb 2-1: Manufacturer: syz [ 1004.493013][T23752] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1004.495706][ T5203] usb 2-1: SerialNumber: syz [ 1004.506341][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1004.522941][T23752] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1004.556117][T22784] 0-536866815: 0000000000000000 [ 1004.572682][T22784] 536866816-536870911: ffff888094eb2460 [ 1004.578695][T22784] 536870912-553631743: ffff888094eb2540 [ 1004.585552][ T5203] usb 2-1: bad CDC descriptors [ 1004.591842][T22784] 553631744-553644031: 0000000000000000 [ 1004.600852][T22784] 553644032-553631743: ffff888076c687e0 [ 1004.607073][T22784] 553631744-553648127: ffff888076c689a0 [ 1004.619095][T22784] 553648128-553652223: ffff888094eb2620 [ 1004.625162][T22784] 553652224-116820934655: 0000000000000000 [ 1004.631608][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1004.638133][T22784] 116825128960-93824997462015: 0000000000000000 [ 1004.644905][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1004.652074][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1004.659109][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1004.666133][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1004.723842][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1004.731003][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1004.738063][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1004.745225][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1004.752346][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1004.759642][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1004.766666][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1004.769460][ T5176] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1004.773737][T22784] 140647113834496-140647114563583: [ 1004.792404][ T5176] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1004.794978][ T4564] usb 2-1: USB disconnect, device number 6 [ 1004.805362][ T5176] usb 5-1: Product: syz [ 1004.813178][T22784] ffff888029235c40 [ 1004.821566][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1004.828768][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1004.840199][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1004.847399][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1004.854411][ T5176] usb 5-1: SerialNumber: syz [ 1004.859975][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1004.867417][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1004.878620][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1004.879493][T23782] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22 [ 1004.930254][T22784] 140647127171072-140647128055807: [ 1004.940059][ T5883] usb 1-1: bad CDC descriptors [ 1004.950307][ T5176] cdc_ether: probe of 5-1:1.0 failed with error -22 [ 1004.958995][T22784] 0000000000000000 [ 1004.962992][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1004.986770][ T5883] usb 1-1: USB disconnect, device number 20 [ 1004.989216][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1005.000325][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1005.007476][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1005.016582][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1005.024022][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1005.031353][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1005.038443][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1005.046060][T22784] Pass: 20784854 Run:20784983 [ 1005.051005][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1005.060937][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1005.071009][T22784] Call Trace: [ 1005.074285][T22784] [ 1005.077221][T22784] dump_stack_lvl+0xd1/0x138 [ 1005.081825][T22784] mt_find.cold+0x8b/0x90 [ 1005.086162][T22784] ? mas_find+0x1d0/0x1d0 [ 1005.090504][T22784] find_vma+0x10c/0x1b0 [ 1005.094666][T22784] ? can_vma_merge_before+0x390/0x390 [ 1005.100041][T22784] ? walk_page_test+0x78/0x180 [ 1005.104817][T22784] walk_page_range+0x2b1/0x4a0 [ 1005.109609][T22784] ? __walk_page_range+0x780/0x780 [ 1005.114796][T22784] mlock_fixup+0x650/0x810 [ 1005.119294][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1005.124536][T22784] ? mlock_fixup+0x810/0x810 [ 1005.129141][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1005.135040][T22784] do_mlock+0x25a/0x6d0 [ 1005.139209][T22784] ? folio_evictable+0x270/0x270 [ 1005.144172][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1005.150088][T22784] __x64_sys_mlock+0x59/0x80 [ 1005.154679][T22784] do_syscall_64+0x39/0xb0 [ 1005.159118][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1005.165051][T22784] RIP: 0033:0x7feaf548c0c9 [ 1005.169493][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1005.189102][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1005.197516][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1005.205482][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1005.213467][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1005.221460][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1005.229428][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1005.237444][T22784] [ 1005.253902][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1005.260574][ T5176] usb 5-1: USB disconnect, device number 13 [ 1005.267951][T22784] BUG at mt_find:6473 (1) [ 1005.276424][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1005.286371][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:09 executing program 0: syz_usb_connect$cdc_ecm(0x0, 0x5f, &(0x7f0000001700)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x4d, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xcd3}, {0xd, 0x24, 0xf, 0x1, 0x9, 0x6}, [@call_mgmt={0x5}, @mdlm_detail={0x4}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x0, 0xfd}}], {{0x9, 0x5, 0x82, 0x2, 0x20, 0xa0}}, {{0x9, 0x5, 0x3, 0x2, 0x10}}}}}]}}]}}, 0x0) 14:33:09 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0), r1) sendmsg$IEEE802154_SCAN_REQ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r2, 0xbc963a23e54480d5}, 0x14}}, 0x0) 14:33:09 executing program 2: syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$ethtool(&(0x7f0000002040), 0xffffffffffffffff) 14:33:09 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000004800), 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c00, 0xffffffffffffffff) 14:33:09 executing program 3: bpf$OBJ_GET_PROG(0x8, &(0x7f00000000c0)={0x0, 0x0, 0xcd92160331bf3838}, 0x10) [ 1005.324916][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:09 executing program 3: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 14:33:09 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000002540)={0x0, 0x0, 0x0}, 0x0) 14:33:09 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1b, 0x0, 0x0, 0x68}, 0x48) [ 1005.434411][T22784] 0-536866815: 0000000000000000 14:33:09 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet6_udp_int(r0, 0x10e, 0x0, 0x0, 0x4) [ 1005.485607][T22784] 536866816-536870911: ffff888094eb2460 14:33:09 executing program 2: bpf$OBJ_GET_MAP(0x7, &(0x7f0000001700)={0x0}, 0x10) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000001c00)) 14:33:09 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_PROTOCOLS(r0, 0x0, 0x0) [ 1005.537130][T22784] 536870912-553631743: ffff888094eb2540 [ 1005.579291][T22784] 553631744-553644031: 0000000000000000 [ 1005.607111][T22784] 553644032-553631743: ffff888076c687e0 [ 1005.644672][T22784] 553631744-553648127: ffff888076c689a0 [ 1005.669190][T22784] 553648128-553652223: ffff888094eb2620 [ 1005.678816][T22784] 553652224-116820934655: 0000000000000000 [ 1005.693976][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1005.701194][T22784] 116825128960-93824997462015: 0000000000000000 [ 1005.714502][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1005.727659][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1005.734920][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:10 executing program 4: r0 = socket$pptp(0x18, 0x1, 0x2) syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0) [ 1005.742574][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1005.799209][ T5203] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 1005.806933][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1005.829349][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1005.836371][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1005.865641][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1005.882486][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1005.899267][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1005.906265][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1005.922968][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1005.938378][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1005.957104][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1005.976599][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1005.985956][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1006.002945][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1006.015731][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1006.027418][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1006.081510][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1006.088506][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1006.096259][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1006.103435][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1006.110633][ T5203] usb 1-1: Using ep0 maxpacket: 32 [ 1006.115945][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1006.123316][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1006.130814][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1006.138556][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1006.155548][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1006.166472][T22784] Pass: 20789892 Run:20790022 [ 1006.178410][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1006.188432][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1006.198513][T22784] Call Trace: [ 1006.201818][T22784] [ 1006.204774][T22784] dump_stack_lvl+0xd1/0x138 [ 1006.209420][T22784] mt_find.cold+0x8b/0x90 [ 1006.213802][T22784] ? mas_find+0x1d0/0x1d0 [ 1006.218189][T22784] find_vma+0x10c/0x1b0 [ 1006.222382][T22784] ? can_vma_merge_before+0x390/0x390 [ 1006.227797][T22784] ? walk_page_test+0x78/0x180 [ 1006.232607][T22784] walk_page_range+0x2b1/0x4a0 [ 1006.237427][T22784] ? __walk_page_range+0x780/0x780 [ 1006.242617][T22784] mlock_fixup+0x650/0x810 [ 1006.247105][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1006.252359][T22784] ? mlock_fixup+0x810/0x810 [ 1006.257015][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1006.262962][T22784] do_mlock+0x25a/0x6d0 [ 1006.267178][T22784] ? folio_evictable+0x270/0x270 [ 1006.272183][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1006.278126][T22784] __x64_sys_mlock+0x59/0x80 [ 1006.282750][T22784] do_syscall_64+0x39/0xb0 [ 1006.287219][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1006.293156][T22784] RIP: 0033:0x7feaf548c0c9 [ 1006.297605][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1006.317254][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1006.325792][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1006.333795][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1006.341797][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1006.349810][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1006.357807][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1006.365831][T22784] [ 1006.376780][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1006.382760][T22784] BUG at mt_find:6473 (1) [ 1006.387115][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1006.396369][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1006.433935][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1006.483437][ T5203] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0 [ 1006.497172][T22784] 0-536866815: 0000000000000000 [ 1006.503427][T22784] 536866816-536870911: ffff888094eb2460 [ 1006.511835][T22784] 536870912-553631743: ffff888094eb2540 [ 1006.517782][T22784] 553631744-553644031: 0000000000000000 [ 1006.525205][T22784] 553644032-553631743: ffff888076c687e0 [ 1006.531656][T22784] 553631744-553648127: ffff888076c689a0 [ 1006.537614][T22784] 553648128-553652223: ffff888094eb2620 [ 1006.544401][T22784] 553652224-116820934655: 0000000000000000 [ 1006.551234][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1006.557703][T22784] 116825128960-93824997462015: 0000000000000000 [ 1006.564750][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1006.572052][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1006.579228][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1006.586220][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1006.646271][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1006.655577][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1006.663276][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1006.670698][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1006.677684][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1006.685386][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1006.692659][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1006.700130][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1006.707113][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1006.714453][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1006.721945][ T5203] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1006.731187][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1006.738174][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1006.745965][ T5203] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1006.755744][ T5203] usb 1-1: Product: syz [ 1006.760261][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1006.767252][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1006.774822][ T5203] usb 1-1: Manufacturer: syz [ 1006.780066][ T5203] usb 1-1: SerialNumber: syz [ 1006.790938][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1006.841612][T23799] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1006.848883][T23799] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1006.857462][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1006.865834][ T5203] usb 1-1: bad CDC descriptors [ 1006.873916][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1006.881506][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1006.888501][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1006.896348][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1006.905857][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1006.913200][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1006.920480][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1006.927472][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1006.935816][T22784] Pass: 20789892 Run:20790023 [ 1006.940818][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1006.950747][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1006.960836][T22784] Call Trace: [ 1006.964148][T22784] [ 1006.967109][T22784] dump_stack_lvl+0xd1/0x138 [ 1006.971761][T22784] mt_find.cold+0x8b/0x90 [ 1006.976322][T22784] ? mas_find+0x1d0/0x1d0 [ 1006.980717][T22784] find_vma+0x10c/0x1b0 [ 1006.984912][T22784] ? can_vma_merge_before+0x390/0x390 [ 1006.990330][T22784] ? walk_page_test+0x78/0x180 [ 1006.995148][T22784] walk_page_range+0x2b1/0x4a0 [ 1006.999964][T22784] ? __walk_page_range+0x780/0x780 [ 1007.005141][T22784] mlock_fixup+0x650/0x810 [ 1007.009611][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1007.014860][T22784] ? mlock_fixup+0x810/0x810 [ 1007.019502][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1007.025450][T22784] do_mlock+0x25a/0x6d0 [ 1007.029666][T22784] ? folio_evictable+0x270/0x270 [ 1007.034671][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1007.040615][T22784] __x64_sys_mlock+0x59/0x80 [ 1007.045231][T22784] do_syscall_64+0x39/0xb0 [ 1007.049684][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1007.055606][T22784] RIP: 0033:0x7feaf548c0c9 [ 1007.060041][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1007.079675][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1007.088110][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1007.096101][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1007.104091][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1007.112086][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1007.120248][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1007.128261][T22784] [ 1007.145746][ T5176] usb 1-1: USB disconnect, device number 21 [ 1007.162856][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1007.176239][T22784] BUG at mt_find:6473 (1) [ 1007.181221][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1007.190092][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1007.228704][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1007.283589][T22784] 0-536866815: 0000000000000000 [ 1007.289021][T22784] 536866816-536870911: ffff888094eb2460 [ 1007.295050][T22784] 536870912-553631743: ffff888094eb2540 [ 1007.301131][T22784] 553631744-553644031: 0000000000000000 [ 1007.307152][T22784] 553644032-553631743: ffff888076c687e0 [ 1007.313741][T22784] 553631744-553648127: ffff888076c689a0 [ 1007.319843][T22784] 553648128-553652223: ffff888094eb2620 [ 1007.325865][T22784] 553652224-116820934655: 0000000000000000 [ 1007.332410][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1007.339028][T22784] 116825128960-93824997462015: 0000000000000000 [ 1007.345756][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1007.352723][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1007.359996][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1007.368532][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1007.427574][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1007.435010][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1007.442347][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1007.449720][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1007.456793][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1007.464229][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1007.483631][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1007.491124][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1007.498200][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1007.505654][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1007.513011][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1007.520339][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1007.528151][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1007.537936][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1007.545376][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1007.616355][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1007.631199][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1007.648083][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1007.658421][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1007.677539][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1007.687468][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1007.704260][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1007.719221][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 14:33:12 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r0) sendmsg$IEEE802154_DISASSOCIATE_REQ(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, r1, 0x1, 0x0, 0x0, {0x0}}, 0x14}}, 0x0) 14:33:12 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000003bc0)={0x1, &(0x7f0000003b80)=[{0x5}]}) 14:33:12 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet6_udp_int(r0, 0x10e, 0xa, 0x0, 0x0) 14:33:12 executing program 2: openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000001180), 0xffffffffffffffff) 14:33:12 executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'gretap0\x00', &(0x7f00000001c0)={'sit0\x00', 0x0, 0x40, 0x7800, 0x6, 0xf4, {{0xe, 0x4, 0x0, 0x5, 0x38, 0x0, 0x0, 0x81, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty, {[@noop, @noop, @rr={0x7, 0x1b, 0x0, [@rand_addr=0x64010100, @broadcast, @loopback, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2]}, @cipso={0x86, 0x6}]}}}}}) bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x9, 0x7, 0x1, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 14:33:12 executing program 4: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x40086602, &(0x7f0000000040)) [ 1007.726485][T22784] 140732349124608-18446744073709551615: 0000000000000000 14:33:12 executing program 4: openat$cgroup_int(0xffffffffffffffff, &(0x7f00000010c0)='cpuset.sched_load_balance\x00', 0x2, 0x0) 14:33:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000002540)={&(0x7f0000002440), 0xc, &(0x7f0000002500)={0x0}}, 0x0) 14:33:12 executing program 2: syz_genetlink_get_family_id$nl80211(&(0x7f0000001700), 0xffffffffffffffff) [ 1007.787486][T22784] Pass: 20792021 Run:20792153 14:33:12 executing program 1: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0xaf01, 0x0) [ 1007.826128][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1007.836109][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1007.846203][T22784] Call Trace: [ 1007.849544][T22784] [ 1007.852509][T22784] dump_stack_lvl+0xd1/0x138 [ 1007.857155][T22784] mt_find.cold+0x8b/0x90 [ 1007.861545][T22784] ? mas_find+0x1d0/0x1d0 [ 1007.865944][T22784] find_vma+0x10c/0x1b0 [ 1007.870148][T22784] ? can_vma_merge_before+0x390/0x390 14:33:12 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000001ec0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) 14:33:12 executing program 0: sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) [ 1007.875570][T22784] ? walk_page_test+0x78/0x180 [ 1007.880435][T22784] walk_page_range+0x2b1/0x4a0 [ 1007.885268][T22784] ? __walk_page_range+0x780/0x780 [ 1007.890459][T22784] mlock_fixup+0x650/0x810 [ 1007.894953][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1007.900216][T22784] ? mlock_fixup+0x810/0x810 [ 1007.904882][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1007.910841][T22784] do_mlock+0x25a/0x6d0 [ 1007.915067][T22784] ? folio_evictable+0x270/0x270 [ 1007.920081][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 14:33:12 executing program 4: syz_open_procfs(0x0, &(0x7f0000000180)='attr/prev\x00') [ 1007.926041][T22784] __x64_sys_mlock+0x59/0x80 [ 1007.930674][T22784] do_syscall_64+0x39/0xb0 [ 1007.935151][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1007.941091][T22784] RIP: 0033:0x7feaf548c0c9 [ 1007.945549][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1007.965205][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 14:33:12 executing program 4: io_setup(0x6eb, &(0x7f0000000a40)=0x0) io_setup(0x8e00, &(0x7f0000000140)) io_submit(r0, 0x0, 0x0) io_setup(0xff3c, &(0x7f00000001c0)) 14:33:12 executing program 3: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6(0xa, 0x3, 0x2c) r3 = socket$inet6(0xa, 0x80003, 0x6b) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1) writev(0xffffffffffffffff, &(0x7f00000041c0)=[{&(0x7f0000001040)="99d53930fa23b90e8731ba1659d4262fade0b1a5949452ef2a61eef081c583ff8039a9b3b8a1160ef6874689b4d573662e1250e4b3", 0x35}], 0x1) syz_open_dev$vcsn(&(0x7f0000000700), 0x8, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(r2, 0x29, 0x7, &(0x7f0000000080)=0x2, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0}, 0x80) accept4(0xffffffffffffffff, &(0x7f0000000400)=@nfc_llcp, &(0x7f00000004c0)=0x80, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r4, &(0x7f0000000340), &(0x7f0000000040)=@tcp}, 0x20) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000180)) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000640)={0x0, @remote, @initdev}, &(0x7f0000000680)=0xc) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000780)={@mcast2, @private0, @loopback, 0x0, 0x96a0, 0x40, 0x0, 0x1, 0x800088}) r5 = socket(0x1e, 0x4, 0x0) connect$tipc(r5, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x1}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000b00)={'sit0\x00', &(0x7f0000000740)={@loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x13, 0xf}}) write$binfmt_misc(r1, &(0x7f0000000080)=ANY=[], 0x2bb98205) splice(r0, 0x0, r2, 0x0, 0x4ff9c, 0x0) 14:33:12 executing program 0: mkdir(&(0x7f0000000280)='./file0\x00', 0x10) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) writev(r0, &(0x7f00000001c0)=[{0x0}], 0x1) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x21, 0x4a6, &(0x7f0000000a40)="$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") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./bus/file0\x00', 0x0) removexattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="747275737465642e6367726f35702e70726f6373001b3e9394144d37cbe253d8dc9c35a96b1679c3e43da8ea7f922bd9fa6c923e405491786ad1f76602191557d357908eeb770ab736d0c1fb274876c792acc16190f017ffb7afd373b5fcf5b2139020125e894356cd4d66d6d1a9b25cf23ee64090aa4894296a8637a2c16a132bdb8249a37e"]) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) write$P9_RCREATE(0xffffffffffffffff, &(0x7f0000000380)={0x18, 0x73, 0x2, {{0x0, 0x3}, 0x3}}, 0x18) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="18010000001000caa8e96c53f3003760b828bc697d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) io_submit(0x0, 0x3, &(0x7f0000000440)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x2, 0x7, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x8}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x3, 0x9, r3, &(0x7f0000000340), 0x0, 0x2, 0x0, 0x3}]) 14:33:12 executing program 2: r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f0000000040)=0xe, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x5000940e, &(0x7f0000000080)={{r0}, "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"}) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000001080)=0x2, 0x2) r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000010c0)='cpuset.sched_load_balance\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFSUUID(r2, 0x4008662c, &(0x7f0000001100)={0x10, 0x0, "385287c755a828a7363ada6bfb046cf2"}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001180), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001240)={&(0x7f00000011c0)={0x7c, r3, 0x8, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="e20fdba2eeb9"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @random="2e64de0500ca"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @random="e9974f5e43c9"}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x1) r4 = dup2(r0, r1) sendmsg$NL80211_CMD_SET_WDS_PEER(r4, &(0x7f0000001380)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0xaa7e526c0f430ac3}, 0xc, &(0x7f0000001340)={&(0x7f0000001300)={0x40, r3, 0xc0c, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x5d}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9274e99763a5"}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000893}, 0x4000000) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f00000013c0)={0x0, 0x0, "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", "83555817001ff75b19062025d734002f65483e5ef8903c9e06413205cf994fcad9869408a6bbaab6e985e736531c82d76925440c5f58bc25cbb22a68ab37661b83df272ff6c57037725e5641dd3cccb278294bdedded1fc7f27df76bd1ec3f7906a0155147482b706deb006fae72c6bd85bb2f9b9ef142c9112bf073bb3e96d29a39d6a454b36dd4e0515c24c61fef07ce982114845afdea8f9bae53eac927caae4eba430b5f08ed32e4e801300449aa61f9810f6ef00fd63f491ca1a80cd30d492c89770dd1b82cf282c045bc7bc2952512a056c090591b5f0d02138469c6fc536331cc43a1ba171bc44c7a6434768a259454826d3595df8f4c4cfaaae2c3a10122a652d5e973a0781a51d1e8f59e02a51ab9fef8f4ef328e13503b38a62093f73ef72ee8aaedf4a30a6ca5d964218d6a82e715aece3a6893542554d2442cf03c0655ced2cf7f82a13dfe9ddf130ee2eafabd1c9cf3b73f05106d3599e3fbdeb6fcb6e1170f01970b3b8723c8d702b132684c6fb0712845ca27f66c3159cdf747a8dae4ecbdbb47a4fecceb93c9c3408ef46263b6204d85211960fca9a25c3e17fab63aec74e573cd768a8bb7c0e10fbac9f041cccbaf684ae4657f4b5a4c6343a16a0d24d32434c6e80a4708ffe637495f90151418578e345712be0a214318cda3479d10e112ba14ea48f3b2eb28c405fcf3a94f611e9e3124a59e3d6fa264e51d98049cd8d48c64b80cff002881b6c6567b9117de2f19be17ab8c46e7f31f6d1fd913842b4184357f9504ea94ef74b51a1d9efa4eda41379fd52f82d0bfd535a8ee33c677de8208b7bc6dc025c4fe488a2560b3c26893931b1379a86cd091384312be3c934fd0452535456a99126027f45aaf7154ad07d93e4057bd18a1dc38c671f32b5a2711cbb25e4989b431361d8bb53a3da8e286face667823fae5471fb52359292758bfe4785a3e397655d56862d893280c3bd7f1c4e25c78f739e7b0cf1a3789f73c1d544b5414f21217d21f733c08ff669d365fb65cc5859fd181702003e4c881ec38df917bd8defa2811b0eeb8cbf70dcca156c33e32bcd9b6d712c040ff08574f50831925d6a38619045e662d06f5acaf13d68059b40cd436cae250ce8862cf0a219c7e5d6808087c19310e7599a3de46a0913793196eb09043d8e6e76040b565f606831a3a64f95ae5698a2a5b685b576dcf54b2674f84c7c620eeddfa4a2662e0aee5ecfc6e476f75acf1420ab32cc6dee495606eeb8a2c0a9f1e2242595f49511245e31abcdea60c5f20dc1fc265c3ba66f007318eb6a46d3c725a8709bc2b84c4f86c468b31dcd041ddd2c04de0665dcf52adf32234550cd11f43f0a229a3471278e8ab347ba86c4ffd3ecba8b23d07454ab8856ebf095f7af95829c6baae41342ca2f08f49df6076d383ba0516070e51408e247b3a39400b6729a43fdc809918e14ff5f39de970a002010ccab7bf9a34e9997131f0ea5da5c87451d919e176fce1c861b3f20c7f297365e2a0ba5d3f78af3c688a4b2049bc78ab857bb6985b8ad92b45059774953fcb9036c25e54961bac2257a9075d4002028fc7343ce8bc25db54b390d13a8e1d9b80f4d8794020f8597133e46266dc948504c636f4b0fc5d799a4b02dbffe224bcbd1d9034a180f0e87565eb7bb3dbb44d53a297a0e8cb71235ec85652b4ecf861d30d497250bfa0d87214b25bc31413539c0e549cb0ab830497178d35957c002cceb54450317c8553d0a5c3d558e133c1f16a25cfc408b9a394423a9ff626eb2f3395d2a941a8109ba4c5ea7490ff159a2cace15dd5eb87ac7ec79ad110a1a2e4fa51b17bb4715dfa3dc8ec2d859a3fbb3a8b0406d513e689fd8b8449c209d0e2d174b87650412d59a64d0185747ca02d572e648df23dd0f3871a62b25cd1387444a2924757ee1fc80ce81fbc6e87557fca988d11afd7b04082c5dec20bbca62f098473e450be3d7f906087c69b1ddeeb24e3c3e29add9f55c27a3b607b97eb0a1fa8a57c944234f19308fb931ed7c80b1dfdd2f62aa7030a22d95f45601d66dfa9bcfdef0eb720238aae4c1e19d4dbd55c1d34ac52fea48dd5e05b22d16f06565e4f3b1b7a9441e47382a2b93f349b236f27148da143c2696e8c8369e2b70110e1b3cfe98a2bf9c1d522f8de0d339946b73d51fe2e06a07ce130f6c744d2dde85a7a8c47bba43d34a0a0fcefdde2c0e6d49d7b55c3c7ea46a67143959ad4987e86e33e410e1a5e9e0e6b4b8da83d03280b972f66b8846dcf493697e1e5ea5023e75d446b9c447e5e1803559cf268386219847f13e170cf6ebe0085092c0e8a578c95504dace4c149b2b3b5c81fb0841b80e39e545a4da005e144539346c59044cec59d2122138cdbbe4cc55baa371096909b5e3dd71f1c6036989f70295ea25941df5c268d45532661cbe0bd856320f5a6ddf9e5ab349374d61b7f86ad36705bc9349675cd4b5816c0b943c2ff66f50a1d9444eb17d80edb2f755ea19b63f15840005bb50e922b37cf59083745960455b27854b7b4fb4e588a2b75adcb05956c5300afa2bdcfde1291948bbadb58267af7af163df33ea9d54c2dd5916cde0e8e9b19eeadd2491bbbeb69479b76cd9689e8acb2024ac8bdf2e1490b41b4946c36bddd40700ec81f119433aa28e1fb847dcfc8ba1a5723f0fc26b2d4663d954c33b3ca0033853f6b0d37ab2e0aa36cc9c4e3909b2561926dbed436fc78d1ef93558f385aee9587a64653e2c9c710e6f2e8733253905ff30614f621ff222de3ab553923e3b62cf6e8284856540df87ede6df1cff10cfe3e86d6ec3f8deb792c9229791ac24aa4e9b324d55ee11ba48c21953e8d1731536ca11a90fc1abe59ea7115b2c210d92d4ccaa1e42a097d79646e0e5613f7865d129d4d112e9f6955ac76ad11b068636fd51fd906d64a8e82a6dbf18a88ac02a0625cb4f3ecb65d2ae2ae84ca32ca91d235221c57efe615c507017db5b0a790f094b289486fd3295278dd773db8953d2e44899215d92718744eda23730fdb6f77ae4500418bfaeffabee3dff75c1076be9558909d22a2b248fd7c21d12f1fc3fb7085117e7b40c8df3cea50a721d2a93fc0307c2a1fc4a5b5d4189eedbe9f12720356ef7ceac4aeb26009da45b89eefd4dd511e184cbdf28a6645c4d9b837c426fc65a629cd5f811c82d66a02421d9df0bf87398aa208ad9cfd48130c176f1c9744ee946828f127e034d0f05adcaf3a44df485f675658c5f56a8001b01100e8f849ac003a839b32db1bbdafeeb33a85ccb138ff18f2eb24cc75a11c8b0b961497034af6f4855df7c5f202a52621fe7a4df9781d6d36afb5c31feccb190e1ee26ae0115192b6918278b660427e1166b5231ccc81e350a719c057cd90ef91704a397c9c13be8a87f31e09bb2e2423b1993e56c1d694cd45d6472139db8e0e9904b4686aa5bd73b30e90568c183bc0dcf10c162c717ac516b79575c5d3fc5a241d72fdb212c536607939220bd57c2e2faddb9214ea232713a5a937ddd9a200d2f513c5da77d1ecb2fa88d79af98ed9ecbd0391099c5257d803ede647bafb9e687e305e7e5c70861ada9d2f53d74c660605a43e8b417731f0020ed31c4422ad6d0e2d4bf43f80677985a8a1bfb92593c72ddee072f4578f9193b1b988af7fdfc038c35387243fa6de64515f9e1b374d553bfd4b271f54d6a00183e68741333e5251e6ef14091987f4099f34359f8d2ae74b2e3482f57c9c330ae6e6c5b7567597c3c7c06adeb082bafcc53605df4158f4e01f5856a2ea0919099afafb45b7d12552fb9b0ab4c34a2a6fb9f5a6030d59a06b39d685c295a488791592d442c8e251cc86bf9f74e04eef693073ed038c92985261fb90c7eced4ed5c714467fe5589da65c209256761e160e648d16d435b376918a6c56779a749efaf804f86b28ae9de72d88a288179320b83fd836efdbce48a83e61dba97b342ccfaeb5ce4096eb797808fa2e082c3be0a36217ad62fcc19d41eb7f690c8b3d5903ebed6598725c57ee2944879cc2b610ad1588238bf19c7db1f84a8c11c747537b629973aa33a66aed80ebdf904846fe813654d7e21de27897312f4e7b60714dea731f36e5b18e12e095da35bc7917ce0e26a396b36b90fa637400c082d09ba78771665390ebd86c8ce4694f4b284701defb9c9f2166b54b734b74b877eb7200ee8fa6c1bf122b3b0a4c4b2817782626003076d552532e9874e9534183c58868afc1fe04dd94fcdcd1cffe0f4f5273e06ddf82426aa297f1dcfc1ef62723bbf55d2f9d68a5e3cfb72af9f41114eb4d822f51841d332c04a0aafd59f91d4d2e4bb62e05ac334a00ebbaa5f173a0dfdcae65f2ba8b4b6ec599540b1de5512f3fe089da40f15062cfb6b007c5f73bf93e38e2db86e6f4725e195b7f33e1daf39abafe935d421f295a1aad0f76a6fc98e121f1aab571c01139ac0e2c0c2d57c139480c545399f98f8af0a5e2266ecfe3d9f7f58b32d95c7979bbf1c108cf8d4b0aab80c8af5315922bc9bdb6fc25ff29af00f8e70f828ade401469d70c88a322c94985c583ddd25fb90732625f7ed2ffe07b9f23c5464feaf977693fce40a4b4ab310ce7f52d2bc8eaf260345331f1057f842de6c6dd463589ddfb2a26a0f9586b7c7a67dac8f93bc8e9ed7707d3b9724e2bae53d5a176fe833bf1017fb6a6b873c698c126c6e5167dd126699dcdda6c3d987b291b0838c5e2534db536b95f8e2eb2767a383971a30c6cf6749d735b70464d4517f1152603d960411c5d3d91af983930e7d4f10fa2104547e422bbf86d1353fad6ca4c1eed7102590fea1f2231c4b1d0a679f607ac8ab2b4095a145992a1dcab2402b596bb2cccdb254c32fa0d3ddde3e3f1cb4bb8d167e53548a491445cb8c109ec3a44b110dcc108430eec467d2a62925abab531492e9555b79cd1ea204b7fd99c66fbb4d8503862b0dbde444ccbeebf59abf7ddfcd90d44758bbabc83ba57b07da898bcc24e6760f5d6028cad07f5943957c81ea116c1657971c9415949781707fb2eae873b3561307fbe2b723cbb541495b3a1398e873c29972fcddf74f70f96781a14aef1ba7aaa209363d4ec59792ef89d35a1b3224bc5850bd26f9b91f9bca2dc0895e869146ac5971765a47ce27f96f8f6ba045a362e7128de32c78bb504081e1343ba43a0dd400927b8c981ff83fd961ed82ba84b828bffffdf2aa38b32c464cc45debdd2eeac4499732bb7ec1552186572ddd3a11c872c39451fb869c9e53da9d22ce7181622982cfe5a4c1e4b0b639eccbeec38ae40a6ce686ed518031bcbefdd575aa1830e5d0a332c9fd37396f585a57e325ed080beb83b42562199b5247098ee9b161302d6c56803820703923bc38680056385f4ffb28ca6ee0516"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f00000023c0)={r5, 0x0, "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", "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"}) syz_clone(0x40060100, &(0x7f0000003400), 0x0, &(0x7f0000003480), &(0x7f00000034c0), 0x0) sendmsg$nl_generic(r4, 0x0, 0x0) r6 = syz_genetlink_get_family_id$netlbl_unlabel(0x0, 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000003ec0)={&(0x7f0000003d80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000003e80)={&(0x7f0000003e00)={0x68, r6, 0x102, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'wlan0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x29, 0x7, 'system_u:object_r:setfiles_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x43}}]}, 0x68}, 0x1, 0x0, 0x0, 0x4008000}, 0x4) socket$xdp(0x2c, 0x3, 0x0) socket(0x1f, 0x1, 0x7) syz_genetlink_get_family_id$fou(&(0x7f0000004080), r4) sendmsg$ETHTOOL_MSG_RINGS_GET(r4, &(0x7f0000004500)={&(0x7f0000004180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000044c0)={&(0x7f0000004340)={0x164, 0x0, 0x4, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}]}, @HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}]}]}, 0x164}, 0x1, 0x0, 0x0, 0x4}, 0x5) 14:33:12 executing program 5: syz_usb_connect$cdc_ecm(0x0, 0x17b, &(0x7f0000001700)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x169, 0x1, 0x1, 0xeb, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x0, "c6f22920"}, {0x5, 0x24, 0x0, 0xcd3}, {0xd, 0x24, 0xf, 0x1, 0x9, 0x6, 0xffff, 0x2}, [@call_mgmt={0x5, 0x24, 0x1, 0x2, 0xff}, @mbim={0xc, 0x24, 0x1b, 0x8, 0x3e, 0x1, 0x6, 0x5, 0x2f}, @mbim_extended={0x8, 0x24, 0x1c, 0x6, 0x1, 0x2c0}, @mdlm_detail={0x4c, 0x24, 0x13, 0x40, "8ffaf3da4025973f27dd14986b5780f6f8c10eb9893c998b1dfc11b68ffe9adfe0ac7dc05cfef34085bea193d292be3cfa47d55412b2b22bcd189f6a6ced9c4377bdb2be1a91c506"}, @mdlm_detail={0xbc, 0x24, 0x13, 0x9, "1634212bc174e1b580cf50b9bd0d3484ad50a9348aefa1234e490ead1a1bf1da680b9aa0ce843c8293a301fbaf7331827005d5ede6c8aa95184452d43e7e9c705f5bcf0ac0c0f6aabeb266fc1bf3d89cf738f789799e7f4de2202ad9c92791d79ebdb4c33c58b0a53c105b2f56e788a4388fd62a784e14bd740d30a1ad56868b8509defc68664f3184b61e8dd1d9debe01d37376f9a6eebdce7ba953a137f2fe33760b2eb74ec08dd2c7dd856d0217cf4029286c516efe0a"}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x400, 0xfd, 0x20}}], {{0x9, 0x5, 0x82, 0x2, 0x20, 0xa0, 0x8, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x3, 0x7, 0x6c}}}}}]}}]}}, &(0x7f0000001bc0)={0xa, &(0x7f0000001880)={0xa, 0x6, 0x310, 0xff, 0x40, 0x5, 0x40, 0x40}, 0x41, &(0x7f00000018c0)={0x5, 0xf, 0x41, 0x5, [@wireless={0xb, 0x10, 0x1, 0xc, 0x28, 0x3f, 0x20, 0x5fee, 0x7}, @ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0x8, 0xf, 0x2, [0x6000, 0x30]}, @ssp_cap={0x10, 0x10, 0xa, 0x2, 0x1, 0x9, 0xf000, 0x4, [0x0]}, @ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0x1f, 0x74, 0xfc}]}, 0x4, [{0x7f, &(0x7f0000001940)=@string={0x7f, 0x3, "9b404725a2e7776ecfdeb8cbe416dfd70487142033145f9d3bea10f352b6570f6177de954ee47581888002b687803ddbc9dfe389c13f123dea978a6662f47b4203643ac642396284182cf9ce91ca695fed1184ebfad9028657b5bf63d276d58133226fdd82dce7baef6f2ce10bfab6185523c0a45dcf6937e951196cc7"}}, {0x4, &(0x7f00000019c0)=@lang_id={0x4, 0x3, 0x422}}, {0xdf, &(0x7f0000001a00)=@string={0xdf, 0x3, "2da924f8288e9d0871bb35e1301f4e54ebc16da705fbca5239f100af0e3d1f420d839a3db820ed759f6d8f0cab46eb800ef9ecd5cb387e2b2b545afce6a7b0b7a173ae6038d3caeb50344096b3dd3db4fb43501cfb783e6ad5bedccbddbb5c505ba83d66de571366189d989dd840d50d32dd5a2ad0588159c3a5e2b3947fa3cf413b364e866e6aedd5dad16467d9fc40a42b320b37697121273b075a6f9dc46ca436c7b33924b1c6c388b00ecd6420d3ee547df1e652e80b375c699ab8c147c21285b3e33d782331702596a59c2cc575b06db2cf7bb95c639146e55a13"}}, {0xa7, &(0x7f0000001b00)=@string={0xa7, 0x3, "2bf2a923bd6d39f405cab16a20ac9e982761463be89836f5f364c5f0af8ad95c22f090cfaac12a36b36ebdada8141a4d30d4752c18c6d7d40170ceecc6e3ba9b77424aa24ae8c61395b5bd3c5b2be5573b8be4098cf9f13357d7b37381ef15b0d6d7c0128fc1dc6b2439f1b3e228dc1b3d9e48bebb85e58d5fd2a1a80d8129cd909798bb819a900018df7da7a70b2d2c7ecf974d1c541655e77066b6421baccf4634b1f37a"}}]}) [ 1007.973669][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1007.981682][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1007.989700][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1007.997712][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1008.005729][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1008.013774][T22784] 14:33:12 executing program 1: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000004c80)={0x0}, 0x10) [ 1008.052493][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1008.070875][T22784] BUG at mt_find:6473 (1) [ 1008.090004][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1008.139609][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:12 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r0) sendmsg$IEEE802154_DISASSOCIATE_REQ(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_REASON={0x4}]}, 0x1c}}, 0x0) [ 1008.255785][T23849] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING [ 1008.306558][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1008.350121][T23858] netlink: 'syz-executor.1': attribute type 18 has an invalid length. 14:33:12 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), r0) [ 1008.535842][T22784] 0-536866815: 0000000000000000 [ 1008.553797][T22784] 536866816-536870911: ffff888094eb2460 14:33:12 executing program 4: syz_clone(0x40060100, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1008.589093][T22784] 536870912-553631743: [ 1008.589112][ T5883] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 1008.589123][T22784] ffff888094eb2540 14:33:12 executing program 1: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x40086602, &(0x7f0000000080)={@host}) 14:33:13 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) [ 1008.709090][T22784] 553631744-553644031: 0000000000000000 [ 1008.749418][T22784] 553644032-553631743: ffff888076c687e0 [ 1008.761091][T22784] 553631744-553648127: ffff888076c689a0 [ 1008.767056][T22784] 553648128-553652223: ffff888094eb2620 14:33:13 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet6_udp_int(r0, 0x10e, 0xb, 0x0, 0x0) [ 1008.859163][ T5883] usb 6-1: Using ep0 maxpacket: 32 [ 1008.874483][T22784] 553652224-116820934655: 0000000000000000 [ 1008.892501][T22784] 116820934656-116825128959: ffff888094eb2700 14:33:13 executing program 1: syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000010280)='./bus\x00', 0x10, &(0x7f0000007f80)=ANY=[], 0x1, 0x7e64, &(0x7f0000000100)="$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") r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) r1 = open(&(0x7f0000008200)='./bus\x00', 0x103002, 0x0) r2 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0) socket$nl_generic(0x10, 0x3, 0x10) fallocate(r2, 0x0, 0x0, 0x1000f4) ftruncate(r1, 0x2007ffb) fallocate(r0, 0x8, 0x0, 0x8000) [ 1008.938044][T22784] 116825128960-93824997462015: 0000000000000000 [ 1008.998826][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1009.009311][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1009.016500][ T5883] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 1009.043179][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1009.069751][ T5883] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32 [ 1009.081293][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1009.104980][ T5883] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 1009.219298][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1009.226337][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1009.296978][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1009.336787][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1009.375888][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1009.383180][ T5883] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1009.399634][ T5883] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1009.407673][ T5883] usb 6-1: Product: ꤭踨࢝뭱ἰ呎쇫ꝭﬅ勊꼀㴎䈟茍㶚₸痭涟ಏ䚫胫癩헬㣋⭾含ﱚ꟦랰玡悮팸㑐陀됽䏻᱐磻樾뻕쯜믝停ꡛ昽埞易鴘鶘䃘෕⩚壐妁ꗃ돢羔쾣㭁丶溆擑䃼⮤ଲ椷ⅱ㬧娇鵯泄㚤돇␹욱裃ະ操팠哮勦௨尷驩솸쉇蔒砽ㄣ╰ꖖⲜ病涰쾲륻捜䚑嫥 [ 1009.453589][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1009.468480][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1009.483431][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1009.499214][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1009.513054][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1009.524996][ T5883] usb 6-1: Manufacturer: Т [ 1009.534185][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1009.542447][ T5883] usb 6-1: SerialNumber: ⎩涽쨅檱갠颞愧㭆飨擳誯峙쾐솪㘪溳궽ᒨ䴚퐰Ⱶ옘퓗瀁鮺䉷ꉊᏆ떕㲽⭛埥謻৤歷㏱흗玳뀕ퟖዀ솏毜㤤돱⣢ᯜ鸽빈薻跥퉟ꢡ脍촩鞐뮘骁Ᵹ஧Ⱝ콾䶗吜唖烧뙦ᭂ쾬㑆 [ 1009.575835][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:33:13 executing program 3: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6(0xa, 0x3, 0x2c) r3 = socket$inet6(0xa, 0x80003, 0x6b) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1) writev(0xffffffffffffffff, &(0x7f00000041c0)=[{&(0x7f0000001040)="99d53930fa23b90e8731ba1659d4262fade0b1a5949452ef2a61eef081c583ff8039a9b3b8a1160ef6874689b4d573662e1250e4b3", 0x35}], 0x1) syz_open_dev$vcsn(&(0x7f0000000700), 0x8, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(r2, 0x29, 0x7, &(0x7f0000000080)=0x2, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0}, 0x80) accept4(0xffffffffffffffff, &(0x7f0000000400)=@nfc_llcp, &(0x7f00000004c0)=0x80, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r4, &(0x7f0000000340), &(0x7f0000000040)=@tcp}, 0x20) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000180)) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000640)={0x0, @remote, @initdev}, &(0x7f0000000680)=0xc) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000780)={@mcast2, @private0, @loopback, 0x0, 0x96a0, 0x40, 0x0, 0x1, 0x800088}) r5 = socket(0x1e, 0x4, 0x0) connect$tipc(r5, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x1}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000b00)={'sit0\x00', &(0x7f0000000740)={@loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x13, 0xf}}) write$binfmt_misc(r1, &(0x7f0000000080)=ANY=[], 0x2bb98205) splice(r0, 0x0, r2, 0x0, 0x4ff9c, 0x0) [ 1009.591667][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1009.610402][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1009.646708][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1009.716451][T23876] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING [ 1009.795237][T23851] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 1009.837556][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1009.856780][T23851] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 1009.879143][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1009.906712][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1009.932661][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1009.952519][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1009.969200][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1009.987587][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1010.010881][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1010.043094][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1010.065376][T22784] Pass: 20813398 Run:20813531 [ 1010.080838][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1010.090791][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1010.100875][T22784] Call Trace: [ 1010.104178][T22784] [ 1010.107142][T22784] dump_stack_lvl+0xd1/0x138 [ 1010.111788][T22784] mt_find.cold+0x8b/0x90 [ 1010.116166][T22784] ? mas_find+0x1d0/0x1d0 [ 1010.120555][T22784] find_vma+0x10c/0x1b0 [ 1010.124756][T22784] ? can_vma_merge_before+0x390/0x390 [ 1010.130182][T22784] ? walk_page_test+0x78/0x180 [ 1010.135004][T22784] walk_page_range+0x2b1/0x4a0 [ 1010.139826][T22784] ? __walk_page_range+0x780/0x780 [ 1010.145011][T22784] mlock_fixup+0x650/0x810 [ 1010.149493][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1010.154744][T22784] ? mlock_fixup+0x810/0x810 [ 1010.159402][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1010.165349][T22784] do_mlock+0x25a/0x6d0 [ 1010.169570][T22784] ? folio_evictable+0x270/0x270 [ 1010.174574][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1010.180514][T22784] __x64_sys_mlock+0x59/0x80 [ 1010.185140][T22784] do_syscall_64+0x39/0xb0 [ 1010.189614][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1010.190307][ T5883] usb 6-1: bad CDC descriptors [ 1010.195527][T22784] RIP: 0033:0x7feaf548c0c9 [ 1010.195554][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1010.195583][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1010.232839][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1010.240847][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1010.248292][ T5883] usb 6-1: USB disconnect, device number 14 [ 1010.248833][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1010.262729][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1010.270739][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1010.278769][T22784] [ 1010.901863][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1010.927279][T22784] BUG at mt_find:6473 (1) [ 1010.942311][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1010.988011][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1011.016630][T23872] loop1: detected capacity change from 0 to 63271 [ 1011.080464][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1011.108997][T23872] F2FS-fs (loop1): Mismatch start address, segment0(512) cp_blkaddr(605) [ 1011.212694][T23872] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1011.270273][T23872] F2FS-fs (loop1): invalid crc value [ 1011.294931][T22784] 0-536866815: 0000000000000000 [ 1011.313322][T23872] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1011.319304][T22784] 536866816-536870911: ffff888094eb2460 [ 1011.341826][T22784] 536870912-553631743: ffff888094eb2540 [ 1011.373360][T22784] 553631744-553644031: 0000000000000000 [ 1011.401207][T22784] 553644032-553631743: ffff888076c687e0 [ 1011.425253][T22784] 553631744-553648127: ffff888076c689a0 [ 1011.445053][T22784] 553648128-553652223: ffff888094eb2620 [ 1011.469493][T22784] 553652224-116820934655: 0000000000000000 14:33:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10) r2 = open(&(0x7f0000000080)='./bus\x00', 0x6fe44da629969272, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x80000041) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r4, 0x0, 0x80000041) 14:33:15 executing program 2: io_setup(0x8001, &(0x7f0000000000)) io_setup(0xff, &(0x7f00000009c0)=0x0) io_getevents(r0, 0x0, 0x0, 0x0, 0x0) io_setup(0x233, &(0x7f0000000bc0)=0x0) io_destroy(r1) 14:33:15 executing program 5: syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), 0xffffffffffffffff) 14:33:15 executing program 3: syz_usb_connect$cdc_ecm(0x0, 0x51, &(0x7f0000001700)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3f, 0x1, 0x1, 0xeb, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x20, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x0, 0xffff}, [@mdlm_detail={0x4}]}}}]}}]}}, 0x0) [ 1011.489069][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1011.511848][T23872] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1011.513288][T22784] 116825128960-93824997462015: [ 1011.518908][T23872] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b [ 1011.564154][T22784] 0000000000000000 [ 1011.601335][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1011.653321][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1011.660538][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:16 executing program 5: io_setup(0x6eb, &(0x7f0000000a40)=0x0) r1 = socket$pptp(0x18, 0x1, 0x2) io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000280)="a6", 0x1}]) [ 1011.668182][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1011.726266][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1011.734444][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1011.743429][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1011.769926][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1011.782254][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1011.789470][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1011.806019][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 14:33:16 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r0) sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000140)={0x14}, 0x14}}, 0x0) [ 1011.815288][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1011.835834][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1011.861409][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1011.873329][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1011.881350][ T5883] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 1011.910988][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1011.938847][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1011.959550][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1011.986153][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1012.104549][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1012.119750][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1012.149157][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1012.169319][ T5883] usb 4-1: Using ep0 maxpacket: 32 [ 1012.181592][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1012.209414][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1012.299119][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1012.299740][ T5883] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 1012.313898][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1012.401989][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1012.429482][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1012.436939][T22784] Pass: 20818901 Run:20819035 [ 1012.468142][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1012.478109][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1012.488192][T22784] Call Trace: [ 1012.491515][T22784] [ 1012.494473][T22784] dump_stack_lvl+0xd1/0x138 [ 1012.499115][T22784] mt_find.cold+0x8b/0x90 [ 1012.503490][T22784] ? mas_find+0x1d0/0x1d0 [ 1012.507876][T22784] find_vma+0x10c/0x1b0 [ 1012.512071][T22784] ? can_vma_merge_before+0x390/0x390 [ 1012.517480][T22784] ? walk_page_test+0x78/0x180 [ 1012.522293][T22784] walk_page_range+0x2b1/0x4a0 [ 1012.527109][T22784] ? __walk_page_range+0x780/0x780 [ 1012.532275][T22784] mlock_fixup+0x650/0x810 [ 1012.536740][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1012.541974][T22784] ? mlock_fixup+0x810/0x810 [ 1012.546613][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1012.552542][T22784] do_mlock+0x25a/0x6d0 [ 1012.556743][T22784] ? folio_evictable+0x270/0x270 [ 1012.561729][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1012.567655][T22784] __x64_sys_mlock+0x59/0x80 [ 1012.572262][T22784] do_syscall_64+0x39/0xb0 [ 1012.576711][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1012.582631][T22784] RIP: 0033:0x7feaf548c0c9 [ 1012.587061][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1012.606683][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1012.615121][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1012.623105][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1012.631089][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1012.639072][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1012.647053][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1012.655061][T22784] [ 1012.690413][ T5883] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1012.709331][ T5883] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1012.717371][ T5883] usb 4-1: Product: syz [ 1012.748451][ T5883] usb 4-1: Manufacturer: syz [ 1012.758998][ T5883] usb 4-1: SerialNumber: syz [ 1013.109962][ T5883] usb 4-1: bad CDC descriptors [ 1013.124487][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1013.135315][ T5883] usb 4-1: USB disconnect, device number 17 [ 1013.144024][T22784] BUG at mt_find:6473 (1) [ 1013.158475][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1013.177175][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1013.220202][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1013.319835][T22784] 0-536866815: 0000000000000000 [ 1013.325129][T22784] 536866816-536870911: ffff888094eb2460 [ 1013.338993][T22784] 536870912-553631743: ffff888094eb2540 [ 1013.344949][T22784] 553631744-553644031: 0000000000000000 [ 1013.369196][T22784] 553644032-553631743: ffff888076c687e0 [ 1013.375166][T22784] 553631744-553648127: ffff888076c689a0 [ 1013.391365][T22784] 553648128-553652223: ffff888094eb2620 [ 1013.397327][T22784] 553652224-116820934655: 0000000000000000 [ 1013.419599][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1013.426093][T22784] 116825128960-93824997462015: 0000000000000000 [ 1013.448992][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1013.455819][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1013.478998][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1013.486002][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1013.555127][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1013.562346][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1013.585237][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1013.595149][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1013.615842][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1013.628609][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1013.646117][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1013.656743][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1013.673814][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1013.685243][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1013.697884][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1013.729020][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1013.736031][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1013.753607][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1013.767000][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1013.831256][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1013.838272][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1013.855230][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1013.865102][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1013.881075][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1013.888080][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1013.908810][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1013.928688][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1013.937292][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1013.956157][T22784] Pass: 20819381 Run:20819516 [ 1013.961052][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1013.970978][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1013.981055][T22784] Call Trace: [ 1013.984352][T22784] [ 1013.987308][T22784] dump_stack_lvl+0xd1/0x138 [ 1013.991946][T22784] mt_find.cold+0x8b/0x90 [ 1013.996322][T22784] ? mas_find+0x1d0/0x1d0 [ 1014.000707][T22784] find_vma+0x10c/0x1b0 [ 1014.004895][T22784] ? can_vma_merge_before+0x390/0x390 [ 1014.010302][T22784] ? walk_page_test+0x78/0x180 [ 1014.015108][T22784] walk_page_range+0x2b1/0x4a0 [ 1014.019927][T22784] ? __walk_page_range+0x780/0x780 [ 1014.025105][T22784] mlock_fixup+0x650/0x810 [ 1014.029589][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1014.034839][T22784] ? mlock_fixup+0x810/0x810 [ 1014.039488][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1014.045426][T22784] do_mlock+0x25a/0x6d0 [ 1014.049635][T22784] ? folio_evictable+0x270/0x270 [ 1014.054632][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1014.060567][T22784] __x64_sys_mlock+0x59/0x80 [ 1014.065192][T22784] do_syscall_64+0x39/0xb0 [ 1014.069664][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1014.075596][T22784] RIP: 0033:0x7feaf548c0c9 [ 1014.080041][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1014.099677][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1014.108122][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1014.116123][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1014.124125][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1014.132125][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1014.140124][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1014.148154][T22784] [ 1014.197671][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1014.207918][T22784] BUG at mt_find:6473 (1) [ 1014.217845][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1014.239338][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1014.288724][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:18 executing program 4: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) openat$dlm_control(0xffffffffffffff9c, &(0x7f0000001540), 0x40b02, 0x0) syz_clone(0x600c0000, &(0x7f0000001740), 0x0, &(0x7f00000017c0), &(0x7f0000001800), &(0x7f0000001840)="4003678ec2f5eff99e039a55875049372d4f482eacfd3f8734b6716886eea936bc04fbedc926d477333b8b5c26") 14:33:18 executing program 2: syz_usb_connect$uac1(0x0, 0xf0, &(0x7f0000001680)=ANY=[@ANYBLOB="12010002000000406b1d01014000010203010902de000301"], 0x0) 14:33:18 executing program 5: io_setup(0x6eb, &(0x7f0000000a40)=0x0) r1 = socket$pptp(0x18, 0x1, 0x2) io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000280)="a6", 0x1}]) 14:33:18 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000040)={{{@in6=@local, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee00}}, {{@in6=@remote, 0x0, 0x2b}, 0xa, @in=@local}}, 0xe8) 14:33:18 executing program 1: syz_open_dev$dri(&(0x7f00000000c0), 0x8, 0x0) 14:33:18 executing program 3: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_TMR_METRONOME(r0, 0x40045407) 14:33:18 executing program 0: r0 = open(&(0x7f00000000c0)='./bus\x00', 0x10b9fe, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa003}, 0x4) r2 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x2007fff) sendfile(r0, r0, 0x0, 0x8080fffffffe) r3 = socket(0x2, 0x803, 0xff) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) r4 = dup(r3) ftruncate(r0, 0x0) r5 = open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x8000fffffffe) [ 1014.352116][T22784] 0-536866815: 0000000000000000 [ 1014.357396][T22784] 536866816-536870911: ffff888094eb2460 [ 1014.369998][T22784] 536870912-553631743: ffff888094eb2540 [ 1014.375956][T22784] 553631744-553644031: 0000000000000000 14:33:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x0) ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0) 14:33:18 executing program 3: openat$ttyS3(0xffffff9c, &(0x7f0000000000), 0x101001, 0x0) [ 1014.461733][T22784] 553644032-553631743: ffff888076c687e0 14:33:18 executing program 1: openat$hwrng(0xffffff9c, &(0x7f0000000380), 0x10802, 0x0) [ 1014.509602][T22784] 553631744-553648127: ffff888076c689a0 [ 1014.544444][T22784] 553648128-553652223: ffff888094eb2620 14:33:18 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$inet6_udp_int(r0, 0x11, 0xa, 0x0, &(0x7f0000000500)) [ 1014.584360][T22784] 553652224-116820934655: 0000000000000000 14:33:18 executing program 5: io_setup(0x6eb, &(0x7f0000000a40)=0x0) r1 = socket$pptp(0x18, 0x1, 0x2) io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000280)="a6", 0x1}]) [ 1014.615311][ T27] audit: type=1804 audit(1673361198.874:75): pid=23917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3556165082/syzkaller.DtCuFU/1103/bus" dev="sda1" ino=1166 res=1 errno=0 [ 1014.645916][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1014.689486][T22784] 116825128960-93824997462015: 0000000000000000 [ 1014.696162][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1014.709272][ T5180] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 1014.726391][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1014.734133][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1014.742602][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1014.804681][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1014.813791][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1014.821349][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1014.828472][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1014.836120][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1014.844011][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1014.856998][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1014.864446][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1014.871858][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1014.879314][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1014.886429][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1014.899827][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1014.917005][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1014.925469][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1014.933847][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:33:19 executing program 4: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) openat$dlm_control(0xffffffffffffff9c, &(0x7f0000001540), 0x40b02, 0x0) syz_clone(0x600c0000, &(0x7f0000001740), 0x0, &(0x7f00000017c0), &(0x7f0000001800), &(0x7f0000001840)="4003678ec2f5eff99e039a55875049372d4f482eacfd3f8734b6716886eea936bc04fbedc926d477333b8b5c26") [ 1014.987580][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1015.006779][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1015.014288][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1015.028933][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1015.036561][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1015.066195][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1015.076060][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1015.089177][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1015.096206][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1015.104294][T22784] Pass: 20825540 Run:20825676 [ 1015.109647][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1015.119583][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1015.129670][T22784] Call Trace: [ 1015.132972][T22784] [ 1015.135922][T22784] dump_stack_lvl+0xd1/0x138 [ 1015.140568][T22784] mt_find.cold+0x8b/0x90 [ 1015.144949][T22784] ? mas_find+0x1d0/0x1d0 [ 1015.149338][T22784] find_vma+0x10c/0x1b0 [ 1015.153529][T22784] ? can_vma_merge_before+0x390/0x390 [ 1015.158939][T22784] ? walk_page_test+0x78/0x180 [ 1015.163747][T22784] walk_page_range+0x2b1/0x4a0 [ 1015.168548][T22784] ? __walk_page_range+0x780/0x780 [ 1015.173708][T22784] mlock_fixup+0x650/0x810 [ 1015.178169][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1015.183406][T22784] ? mlock_fixup+0x810/0x810 [ 1015.188040][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1015.193966][T22784] do_mlock+0x25a/0x6d0 [ 1015.198155][T22784] ? folio_evictable+0x270/0x270 [ 1015.203135][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1015.209091][T22784] __x64_sys_mlock+0x59/0x80 [ 1015.213696][T22784] do_syscall_64+0x39/0xb0 [ 1015.218144][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1015.224061][T22784] RIP: 0033:0x7feaf548c0c9 [ 1015.228488][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1015.248118][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1015.256558][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1015.264547][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1015.272534][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1015.280518][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1015.288499][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1015.296504][T22784] [ 1015.303447][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1015.309726][T22784] BUG at mt_find:6473 (1) [ 1015.314256][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1015.324324][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1015.364553][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1015.378259][ T5180] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1015.415599][T22784] 0-536866815: 0000000000000000 [ 1015.428627][T22784] 536866816-536870911: ffff888094eb2460 [ 1015.435018][T22784] 536870912-553631743: ffff888094eb2540 [ 1015.441345][T22784] 553631744-553644031: 0000000000000000 [ 1015.447457][T22784] 553644032-553631743: ffff888076c687e0 [ 1015.455979][T22784] 553631744-553648127: ffff888076c689a0 [ 1015.458611][ T5180] usb 3-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 1015.462282][T22784] 553648128-553652223: ffff888094eb2620 [ 1015.477685][T22784] 553652224-116820934655: 0000000000000000 [ 1015.484071][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1015.490758][T22784] 116825128960-93824997462015: 0000000000000000 [ 1015.497493][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1015.504633][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1015.511725][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1015.518828][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1015.578388][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1015.585735][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1015.602412][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1015.615008][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1015.622159][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1015.639105][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1015.646124][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1015.653818][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1015.661774][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1015.668753][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1015.675987][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1015.683203][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1015.690955][ T5180] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1015.694363][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1015.700350][ T5180] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1015.714990][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1015.715648][ T5180] usb 3-1: Product: syz [ 1015.725190][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 [ 1015.726590][ T5180] usb 3-1: Manufacturer: syz [ 1015.726615][ T5180] usb 3-1: SerialNumber: syz [ 1015.767488][T22784] ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1015.799631][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1015.806625][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1015.814140][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1015.831694][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1015.838766][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1015.850279][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1015.857268][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1015.864892][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1015.874335][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1015.881865][T22784] Pass: 20825614 Run:20825751 [ 1015.886616][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1015.896504][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1015.906559][T22784] Call Trace: [ 1015.909847][T22784] [ 1015.912800][T22784] dump_stack_lvl+0xd1/0x138 [ 1015.917459][T22784] mt_find.cold+0x8b/0x90 [ 1015.921803][T22784] ? mas_find+0x1d0/0x1d0 [ 1015.926154][T22784] find_vma+0x10c/0x1b0 [ 1015.930327][T22784] ? can_vma_merge_before+0x390/0x390 [ 1015.935732][T22784] ? walk_page_test+0x78/0x180 [ 1015.940522][T22784] walk_page_range+0x2b1/0x4a0 [ 1015.945319][T22784] ? __walk_page_range+0x780/0x780 [ 1015.950468][T22784] mlock_fixup+0x650/0x810 [ 1015.954952][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1015.960201][T22784] ? mlock_fixup+0x810/0x810 [ 1015.964859][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1015.970810][T22784] do_mlock+0x25a/0x6d0 [ 1015.975019][T22784] ? folio_evictable+0x270/0x270 [ 1015.980019][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1015.985949][T22784] __x64_sys_mlock+0x59/0x80 [ 1015.990546][T22784] do_syscall_64+0x39/0xb0 [ 1015.995009][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1016.000941][T22784] RIP: 0033:0x7feaf548c0c9 [ 1016.005373][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1016.024983][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1016.033408][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1016.041410][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1016.049414][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1016.057400][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1016.065363][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1016.073369][T22784] [ 1016.080479][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1016.086520][T22784] BUG at mt_find:6473 (1) [ 1016.091051][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1016.099503][ T5883] usb 3-1: USB disconnect, device number 16 [ 1016.105570][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1016.147936][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1016.197465][T22784] 0-536866815: 0000000000000000 [ 1016.202954][T22784] 536866816-536870911: ffff888094eb2460 [ 1016.208887][T22784] 536870912-553631743: ffff888094eb2540 [ 1016.215127][T22784] 553631744-553644031: 0000000000000000 [ 1016.221207][T22784] 553644032-553631743: ffff888076c687e0 [ 1016.227133][T22784] 553631744-553648127: ffff888076c689a0 [ 1016.233155][T22784] 553648128-553652223: ffff888094eb2620 [ 1016.239147][T22784] 553652224-116820934655: 0000000000000000 [ 1016.245409][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1016.253682][T22784] 116825128960-93824997462015: 0000000000000000 [ 1016.260424][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1016.267223][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1016.276097][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1016.283211][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1016.340742][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1016.347748][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1016.354990][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1016.362059][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1016.379013][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1016.386012][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1016.409088][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1016.417051][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1016.428773][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1016.436934][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1016.456620][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1016.468084][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1016.478415][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1016.485576][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1016.492716][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1016.589213][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1016.597430][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1016.612378][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1016.625626][T22784] 140647128190976-140732348923903: 0000000000000000 14:33:20 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:20 executing program 0: r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000040)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @multicast2}}}}) 14:33:20 executing program 1: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'veth1_macvtap\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000380)={r2, 0x1, 0x6, @multicast}, 0x10) 14:33:20 executing program 3: r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KDSKBSENT(r0, 0x4b49, 0x0) 14:33:20 executing program 5: io_setup(0x6eb, &(0x7f0000000a40)=0x0) r1 = socket$pptp(0x18, 0x1, 0x2) io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000280)="a6", 0x1}]) 14:33:20 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000480)=@newtclass={0x434, 0x28, 0x1, 0x0, 0x0, {}, [@tclass_kind_options=@c_htb={{0x8}, {0x408, 0x2, [@TCA_HTB_RTAB={0x404}]}}]}, 0x434}}, 0x0) recvmmsg(r0, &(0x7f0000004800)=[{{0x0, 0x0, &(0x7f0000002f80)=[{0x0}, {&(0x7f0000002c80)=""/254, 0xfe}, {&(0x7f0000002d80)=""/224, 0xe0}], 0x3, &(0x7f0000002fc0)=""/186, 0xba}}, {{&(0x7f0000003080)=@rc, 0x80, 0x0}}], 0x2, 0x2060, &(0x7f0000004880)={0x0, 0x989680}) [ 1016.635752][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 14:33:20 executing program 4: timer_create(0x0, &(0x7f0000000500)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000240)=0x0) timer_settime(r0, 0x0, &(0x7f00000002c0)={{0x77359400}, {0x0, 0x3938700}}, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0}) futex(&(0x7f00000000c0)=0x1, 0xb, 0x1, &(0x7f0000000140)={r1}, &(0x7f0000000200), 0x0) 14:33:20 executing program 1: r0 = openat$vsock(0xffffff9c, &(0x7f0000000040), 0x80600, 0x0) ioctl$RTC_AIE_OFF(r0, 0x5450) [ 1016.692071][T22784] 140732349059072-140732349100031: 0000000000000000 14:33:21 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000f40)={0x0, 0x1, 0x6, @broadcast}, 0x10) [ 1016.752042][T22784] 140732349100032-140732349116415: ffff88807b4c5000 14:33:21 executing program 2: r0 = openat$cuse(0xffffff9c, &(0x7f0000000740), 0x2, 0x0) read$FUSE(r0, &(0x7f0000002840)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_DIRENT(r0, &(0x7f0000004880)={0x10, 0x0, r1}, 0x10) 14:33:21 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCGETS(r0, 0x5401, &(0x7f0000000080)) [ 1016.803113][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 14:33:21 executing program 3: r0 = openat$autofs(0xffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, 0x0) 14:33:21 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000ec0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000f00)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000001400)={0x20, r1, 0x1, 0x0, 0x0, {}, [{{0x8, 0x1, r3}, {0x4}}]}, 0x20}}, 0x0) [ 1016.860396][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1016.893983][T22784] Pass: 20839171 Run:20839309 [ 1016.924492][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1016.934460][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1016.944558][T22784] Call Trace: [ 1016.947865][T22784] [ 1016.950825][T22784] dump_stack_lvl+0xd1/0x138 [ 1016.955474][T22784] mt_find.cold+0x8b/0x90 [ 1016.959867][T22784] ? mas_find+0x1d0/0x1d0 [ 1016.964265][T22784] find_vma+0x10c/0x1b0 [ 1016.968461][T22784] ? can_vma_merge_before+0x390/0x390 [ 1016.973888][T22784] ? walk_page_test+0x78/0x180 [ 1016.978703][T22784] walk_page_range+0x2b1/0x4a0 [ 1016.983532][T22784] ? __walk_page_range+0x780/0x780 [ 1016.988715][T22784] mlock_fixup+0x650/0x810 [ 1016.993208][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1016.998479][T22784] ? mlock_fixup+0x810/0x810 [ 1017.003144][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1017.009099][T22784] do_mlock+0x25a/0x6d0 [ 1017.013317][T22784] ? folio_evictable+0x270/0x270 [ 1017.018325][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1017.024277][T22784] __x64_sys_mlock+0x59/0x80 [ 1017.028913][T22784] do_syscall_64+0x39/0xb0 [ 1017.033385][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1017.039321][T22784] RIP: 0033:0x7feaf548c0c9 [ 1017.043776][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1017.063425][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 14:33:21 executing program 0: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB="a5"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:21 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000440)) [ 1017.071894][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1017.079901][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1017.087901][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1017.095907][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1017.103917][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1017.111949][T22784] 14:33:21 executing program 1: r0 = openat$autofs(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18}, './file0\x00'}) [ 1017.179131][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1017.185460][T22784] BUG at mt_find:6473 (1) [ 1017.191054][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:21 executing program 2: r0 = openat$vsock(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_AIE_OFF(r0, 0xc0189436) 14:33:21 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000440)) [ 1017.202530][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1017.355517][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1017.414875][T22784] 0-536866815: 0000000000000000 [ 1017.421449][T22784] 536866816-536870911: ffff888094eb2460 [ 1017.427439][T22784] 536870912-553631743: ffff888094eb2540 [ 1017.433732][T22784] 553631744-553644031: 0000000000000000 [ 1017.439778][T22784] 553644032-553631743: ffff888076c687e0 [ 1017.445750][T22784] 553631744-553648127: ffff888076c689a0 [ 1017.451783][T22784] 553648128-553652223: ffff888094eb2620 [ 1017.457754][T22784] 553652224-116820934655: 0000000000000000 [ 1017.464364][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1017.471561][T22784] 116825128960-93824997462015: 0000000000000000 [ 1017.478231][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1017.485153][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1017.492324][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1017.499411][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1017.585114][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1017.596788][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1017.614431][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1017.625916][T22784] 140647105298432-140647107395583: ffff888094eb2c40 14:33:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2, &(0x7f0000000080)=ANY=[], 0x1, 0x78d, &(0x7f0000001740)="$eJzs3c1rXFUbAPDnTpKmb9q+jSC2dRUQa6B0YtLYqriouFDBQkHBnTVMpqFmkgmZSW1ioBYR3AgqFQTd1K0f1ZVbP7a69D9wIS3VptWKC4ncyUw7bSbJpCYzSn4/uMl57r2Zc565XydzD3MD2LL60h+ZiH0R8U4Ssbs6P4mIrkqpM+Lo0no3FuZz6ZTE4uLzvyaVda4vzOei7m9SOyI60mBvRHz7ZsSBzPJ6S7Nz4yOFQn46DX6bOnR+79mBvtLs3MFTEyNj+bH85OHB4eGhI48cObxGAvft2vNlk7n+/sPczsvvPv3Q50f/fGPPxbe/S+Jo7Kwuq89jo/RFX/U96Urfwts8tdGVtVnS7gZwV9JDs2PpKI998er2drcHANh8ZyNiEQDYYpLbrv/PtK8hAECL1D4HuL4wn6tN7f1EorWuPBkR25fyr93fXFrSuXTP7seDr52NiJ7rSeUeSU0SEb0bUH9fRHz01UufplNs0n1IgEZePxcRL/f2LT//J8vGLKzXw02s03dH7PwHrfN12v95tFH/L1M9/peGhNzZ/+lucOzejbWP/8ylDahmRWn/74m6sW036vKv6u2oRrsqfb6u5OSpQj49t/0/IvqjqzuNB1epo//aX9fqwo9ffHD4ZlDf/7v63iufpPWnv2+tnrnU2X37642OlEc2IPWKK+ci7u9slH9yc/snK/R/jzdZx7OPvfXhSsvS/NN8a9Py/DfX4oWI/Q23/60RbWlpoDwxNdBwfOJAZXcYqO0UDXzx0wc9K9Vfv/3TKa2/9r9AK6Tbv2f1/HuT+vGapfXX8f2F3d+stGzt/Bvv/9uSFyrlbdV5Z0bK5enBiG3Jc8vnD+1//+rj9fGt9dP8+x9ofPyvtv93pd2mJvPvvPzLZ3ef/+ZK8x9d1/Zff+HijfGOlepvbvsvnS/7q3OaOf8128B/8t4BAAAAAAAAAAAAAAAAAAAAAAAAQLMyEbEzkkz2ZjmTyWYrz/COe6MnUyiWygdOFmcmR6PyrOze6MrUvupyd933oQ5Wvw+/Fg/dER+KiHsi4nz3/ypxNlcsjLY7eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACo2rHC8/9TP3e3u3UAwKbZ3u4GAAAt5/oPAFuP6z8AbD2u/wCw9bj+A8DW4/oPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAJjt+7Fg6Lf6xMJ9L49HTszPjxdMHR/Ol8ezETC6bK05PZceKxbFCPpsrTqz1eoVicWo4JmfODJTzpfJAaXbuxERxZrJ84tTEyFj+RL6rJVkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPqUZufGRwqF/LTCKoWh4X9FMxQUWlZo95kJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4L/h7wAAAP//e0Mw7A==") 14:33:21 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x18, 0x4, &(0x7f0000000580)=@framed={{}, [@alu={0x4, 0x0, 0x0, 0xa}]}, &(0x7f0000000600)='GPL\x00', 0x3, 0x9b, &(0x7f0000000640)=""/155, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:21 executing program 5: openat$cuse(0xffffff9c, &(0x7f0000000740), 0x2, 0x0) 14:33:21 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, &(0x7f00000003c0)=""/90, 0x0, 0x5a}, 0x20) 14:33:21 executing program 2: pselect6(0x0, 0x0, 0x0, &(0x7f0000001880), 0x0, 0x0) 14:33:21 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000ec0), 0xffffffffffffffff) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f00000010c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000002", @ANYRES32, @ANYBLOB="cc"], 0x5c}}, 0x0) 14:33:21 executing program 1: sendmsg$RDMA_NLDEV_CMD_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0}, 0x4000000) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) sendmsg$RDMA_NLDEV_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x40000) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x9}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000400)={{0x1, 0x1, 0x18}, './file0\x00'}) [ 1017.644095][T22784] 140647107395584-140647109492735: ffff888094eb2d20 14:33:21 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000001600)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x2}]}}, &(0x7f00000000c0)=""/245, 0x26, 0xf5, 0x1}, 0x20) 14:33:22 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000340)={'ip6tnl0\x00', &(0x7f00000002c0)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}) [ 1017.687538][T23977] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1017.709241][T22784] 140647109492736-140647113687039: ffff888094eb2e00 14:33:22 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000003a00)=@base={0x0, 0x0, 0x0, 0x0, 0x744}, 0x48) 14:33:22 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@bloom_filter={0x1e, 0x0, 0x3, 0x3f}, 0x48) 14:33:22 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000340)={&(0x7f0000000200), 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x14}, 0x14}}, 0x0) [ 1017.783319][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1017.817772][T22784] 140647113834496-140647114563583: ffff888029235c40 14:33:22 executing program 4: syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = syz_open_dev$ptys(0xc, 0x3, 0x0) ioctl$TIOCNXCL(r0, 0x540d) 14:33:22 executing program 1: io_setup(0xf8, &(0x7f00000012c0)=0x0) io_pgetevents(r0, 0x0, 0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000540)={&(0x7f0000000500), 0x8}) 14:33:22 executing program 3: clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) setitimer(0x0, &(0x7f0000000000)={{0x77359400}, {0x0, r0/1000+10000}}, 0x0) setitimer(0x0, 0x0, &(0x7f00000000c0)) [ 1017.879279][T22784] 140647114563584-140647114899455: ffff888029235ee0 14:33:22 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x9, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x80) [ 1017.942283][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1017.985807][T24002] syz-executor.3 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1018.017530][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1018.042649][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1018.054252][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1018.067231][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1018.085278][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1018.157365][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1018.166182][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1018.181636][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1018.194394][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1018.208648][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1018.227334][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1018.235718][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1018.251153][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1018.258151][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1018.284281][T22784] Pass: 20861789 Run:20861928 [ 1018.289179][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1018.299105][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1018.309186][T22784] Call Trace: [ 1018.312485][T22784] [ 1018.315437][T22784] dump_stack_lvl+0xd1/0x138 [ 1018.320075][T22784] mt_find.cold+0x8b/0x90 [ 1018.324459][T22784] ? mas_find+0x1d0/0x1d0 [ 1018.328848][T22784] find_vma+0x10c/0x1b0 [ 1018.333046][T22784] ? can_vma_merge_before+0x390/0x390 [ 1018.338459][T22784] ? walk_page_test+0x78/0x180 [ 1018.343271][T22784] walk_page_range+0x2b1/0x4a0 [ 1018.348078][T22784] ? __walk_page_range+0x780/0x780 [ 1018.353256][T22784] mlock_fixup+0x650/0x810 [ 1018.357742][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1018.362994][T22784] ? mlock_fixup+0x810/0x810 [ 1018.367649][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1018.373592][T22784] do_mlock+0x25a/0x6d0 [ 1018.377807][T22784] ? folio_evictable+0x270/0x270 [ 1018.382813][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1018.388755][T22784] __x64_sys_mlock+0x59/0x80 [ 1018.393379][T22784] do_syscall_64+0x39/0xb0 [ 1018.397840][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1018.403774][T22784] RIP: 0033:0x7feaf548c0c9 [ 1018.408215][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1018.427872][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1018.436331][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1018.444340][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1018.452344][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1018.460344][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1018.468341][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1018.476365][T22784] [ 1018.484188][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1018.490195][T22784] BUG at mt_find:6473 (1) [ 1018.494549][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:22 executing program 2: openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x8a181, 0x0) 14:33:22 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, 0x4, 0x8, 0x201, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}]}, 0x24}}, 0x0) 14:33:22 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000002340), 0x2, 0x0) write$FUSE_BMAP(r0, 0x0, 0x0) 14:33:22 executing program 3: r0 = getpid() process_vm_writev(r0, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/55, 0x37}, {&(0x7f0000000380)=""/106, 0x6a}, {&(0x7f0000000400)=""/60, 0x3c}], 0x3, &(0x7f0000001740)=[{&(0x7f0000000540)=""/152, 0x98}, {&(0x7f0000001640)=""/197, 0xc5}], 0x2, 0x0) 14:33:22 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0x1}, 0x14}}, 0x0) 14:33:22 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000003a00)=@base={0x0, 0x0, 0x0, 0x0, 0x744, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2}, 0x48) 14:33:22 executing program 3: setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, &(0x7f0000000000)={0x0, @multicast2, 0x0, 0x0, 'rr\x00'}, 0x2c) socketpair(0x28, 0x0, 0x9, &(0x7f0000000a80)) 14:33:22 executing program 2: ioctl$RTC_PLL_SET(0xffffffffffffffff, 0x40207012, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) [ 1018.503090][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:22 executing program 4: clock_getres(0x0, &(0x7f0000003a80)) 14:33:22 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), r0) 14:33:22 executing program 1: socket$vsock_stream(0x28, 0x1, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) 14:33:22 executing program 0: syz_clone(0x30000600, 0x0, 0x0, 0x0, 0x0, 0x0) 14:33:23 executing program 3: io_setup(0xf8, &(0x7f00000012c0)=0x0) io_getevents(r0, 0x0, 0x0, 0x0, 0x0) [ 1018.666775][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:23 executing program 5: sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, 0x0, 0x699030b7b6bccf75) 14:33:23 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000003a00)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2}, 0x48) 14:33:23 executing program 1: socketpair(0x28, 0x0, 0x0, &(0x7f0000000400)) 14:33:23 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000080)) 14:33:23 executing program 0: socketpair(0x2c, 0x3, 0x0, &(0x7f0000000300)) [ 1018.790131][T22784] 0-536866815: 0000000000000000 14:33:23 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@ipv6_getroute={0x1c, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x80, 0x80}}, 0x1c}}, 0x0) 14:33:23 executing program 4: bpf$PROG_LOAD(0xb, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:23 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) bind$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @host}, 0x10) [ 1018.844848][T22784] 536866816-536870911: ffff888094eb2460 14:33:23 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x1, &(0x7f0000000680)=@raw=[@func], &(0x7f0000000700)='syzkaller\x00', 0x2, 0x8e, &(0x7f0000000740)=""/142, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:23 executing program 3: bpf$PROG_LOAD(0x8, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 1018.908516][T22784] 536870912-553631743: ffff888094eb2540 14:33:23 executing program 1: syz_clone(0x48000000, &(0x7f0000000000)="09c72b1b898eadc0963cc44c30a8d5217b7275fef866425927b45558e283c06cee2592d0b93532ab7fa5cf3e9a10b57974e5c2ae23a446d3ac8a62f891388d51af0b00b247495fc3c904a957d9009868c237e53b6391cf5b55c875ffe75baa04469809dbf6801d0ec8a9f22fe2e9023e61b24f3a5210711fc7e0a7303323", 0x7e, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000001c0)="2bf74f191c28834cf75746f3e979c5153362c3d99628059eb2bd7c513aa406c3a5c38549edc431524bbe9b5ec9c7c68726e8e170d1faa46395ad4e05ffa2a7dfad78eb00707b5fd6e6ab16944a477694b0bbd90df760aa12661a8dd886b84b3bc052c81deee03727200b3acbb240bb") sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x9effffff00000000}, 0x300}, 0x0) 14:33:23 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, 0x0, 0x1400}, 0x0) 14:33:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_inet_SIOCGIFNETMASK(r0, 0x891b, &(0x7f0000000100)={'macvtap0\x00', {0x2, 0x0, @dev}}) 14:33:23 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8983, &(0x7f0000000a80)={0x8, 'vlan0\x00', {'bridge_slave_1\x00'}}) [ 1018.959105][T22784] 553631744-553644031: 0000000000000000 14:33:23 executing program 3: syz_clone(0x48000000, 0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000001c0)="2bf74f191c28834cf75746f3e979c5153362c3d99628059eb2bd7c513aa406c3a5c38549ed") 14:33:23 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKROGET(r0, 0x80041285, &(0x7f0000000000)) 14:33:23 executing program 2: unshare(0x40000200) socket(0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet(0x2, 0x0, 0x80000001) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet6(0xa, 0x80003, 0x6) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="6000000024000b0f000000000000000060000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff000000000a0001006e6574656d0003ff300002000000000006047c030000000000000000000000000041"], 0x60}}, 0x0) sendto$inet6(r0, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x218}, 0x1c) recvmsg(r0, &(0x7f00000008c0)={0x0, 0x8, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/52, 0x34}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/121, 0x79}, {&(0x7f0000000400)=""/183, 0xb7}], 0x6}, 0x40000110) 14:33:23 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000006380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x60842, 0x0) fallocate(r2, 0x20, 0x0, 0xa16) [ 1019.089639][T22784] 553644032-553631743: ffff888076c687e0 [ 1019.095626][T22784] 553631744-553648127: ffff888076c689a0 14:33:23 executing program 0: bpf$PROG_LOAD(0x1b, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 1019.168360][T22784] 553648128-553652223: ffff888094eb2620 [ 1019.220241][T22784] 553652224-116820934655: 0000000000000000 [ 1019.247949][T22784] 116820934656-116825128959: ffff888094eb2700 14:33:23 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x5}, 0x48) 14:33:23 executing program 0: syz_io_uring_setup(0x38d, &(0x7f0000000100)={0x0, 0x1804, 0x8}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000500)) [ 1019.276942][T22784] 116825128960-93824997462015: 0000000000000000 [ 1019.305484][T22784] 93824997462016-93824997601279: ffff888094eb27e0 14:33:23 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1a, 0x0, 0x53}) [ 1019.374132][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1019.398755][T24079] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1019.410194][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1019.531535][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1019.715861][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1019.732045][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1019.742481][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1019.763550][T22784] 140647105298432-140647107395583: ffff888094eb2c40 14:33:24 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f00000000c0)={@multicast2, @local}, 0xc) 14:33:24 executing program 0: r0 = memfd_secret(0x0) timerfd_gettime(r0, 0x0) 14:33:24 executing program 5: r0 = semget$private(0x0, 0x6, 0x0) semtimedop(r0, &(0x7f0000000300)=[{0x0, 0x0, 0x1000}], 0x1, 0x0) semtimedop(r0, &(0x7f0000000300)=[{0x2, 0x4, 0x1000}, {0x2, 0x9, 0x1800}, {0x2, 0x401, 0x800}, {0x1, 0x200, 0x1800}, {0x0, 0x2, 0x1800}, {0x3, 0x3ff, 0x1000}, {0x0, 0x9, 0x800}], 0x7, &(0x7f0000000340)={0x77359400}) [ 1019.789394][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1019.796416][T22784] 140647109492736-140647113687039: ffff888094eb2e00 14:33:24 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioprio_get$pid(0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1a, 0x0, 0x53}) [ 1019.841621][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1019.924083][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1019.990838][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1020.009108][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1020.016117][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1020.078076][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1020.086325][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1020.149298][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1020.167502][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1020.264347][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1020.284932][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1020.299151][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1020.313030][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1020.331897][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1020.346833][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1020.364418][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1020.384144][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1020.399167][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1020.414734][T22784] Pass: 20908218 Run:20908358 [ 1020.425212][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1020.435193][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1020.445283][T22784] Call Trace: [ 1020.448592][T22784] [ 1020.451549][T22784] dump_stack_lvl+0xd1/0x138 [ 1020.456194][T22784] mt_find.cold+0x8b/0x90 [ 1020.460580][T22784] ? mas_find+0x1d0/0x1d0 [ 1020.464975][T22784] find_vma+0x10c/0x1b0 [ 1020.469167][T22784] ? can_vma_merge_before+0x390/0x390 [ 1020.474592][T22784] ? walk_page_test+0x78/0x180 [ 1020.479405][T22784] walk_page_range+0x2b1/0x4a0 [ 1020.484208][T22784] ? __walk_page_range+0x780/0x780 [ 1020.489371][T22784] mlock_fixup+0x650/0x810 [ 1020.493834][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1020.499072][T22784] ? mlock_fixup+0x810/0x810 [ 1020.503704][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1020.509632][T22784] do_mlock+0x25a/0x6d0 [ 1020.513826][T22784] ? folio_evictable+0x270/0x270 [ 1020.518804][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1020.524737][T22784] __x64_sys_mlock+0x59/0x80 [ 1020.529350][T22784] do_syscall_64+0x39/0xb0 [ 1020.533815][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1020.539734][T22784] RIP: 0033:0x7feaf548c0c9 [ 1020.544160][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1020.563785][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1020.572216][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1020.580206][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1020.588193][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1020.596177][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1020.604157][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1020.612164][T22784] [ 1020.623410][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1020.639536][T22784] BUG at mt_find:6473 (1) [ 1020.652661][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1020.691296][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1020.792426][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1020.926488][T22784] 0-536866815: 0000000000000000 [ 1020.938639][T22784] 536866816-536870911: ffff888094eb2460 [ 1020.951630][T22784] 536870912-553631743: ffff888094eb2540 [ 1020.974897][T22784] 553631744-553644031: 0000000000000000 [ 1020.992743][T22784] 553644032-553631743: ffff888076c687e0 [ 1021.015842][T22784] 553631744-553648127: ffff888076c689a0 [ 1021.059160][T22784] 553648128-553652223: ffff888094eb2620 [ 1021.065144][T22784] 553652224-116820934655: 0000000000000000 [ 1021.090798][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1021.097298][T22784] 116825128960-93824997462015: 0000000000000000 [ 1021.149274][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1021.156115][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1021.208355][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1021.238382][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1021.397550][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1021.418938][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1021.426268][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1021.434041][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1021.441395][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1021.448382][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1021.455776][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1021.463119][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1021.470513][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1021.477529][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1021.484974][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1021.496558][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1021.503919][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1021.513420][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1021.520745][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1021.571251][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1021.578243][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1021.585740][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1021.593049][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1021.600850][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1021.607851][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1021.615275][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1021.624726][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1021.639236][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1021.646832][T22784] Pass: 20913271 Run:20913412 [ 1021.679027][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1021.688987][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1021.699078][T22784] Call Trace: [ 1021.702384][T22784] [ 1021.705343][T22784] dump_stack_lvl+0xd1/0x138 [ 1021.710009][T22784] mt_find.cold+0x8b/0x90 [ 1021.714396][T22784] ? mas_find+0x1d0/0x1d0 [ 1021.718789][T22784] find_vma+0x10c/0x1b0 [ 1021.722994][T22784] ? can_vma_merge_before+0x390/0x390 [ 1021.728420][T22784] ? walk_page_test+0x78/0x180 [ 1021.733238][T22784] walk_page_range+0x2b1/0x4a0 [ 1021.738057][T22784] ? __walk_page_range+0x780/0x780 [ 1021.743244][T22784] mlock_fixup+0x650/0x810 [ 1021.747716][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1021.752960][T22784] ? mlock_fixup+0x810/0x810 [ 1021.757606][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1021.763544][T22784] do_mlock+0x25a/0x6d0 [ 1021.767753][T22784] ? folio_evictable+0x270/0x270 [ 1021.772740][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1021.778664][T22784] __x64_sys_mlock+0x59/0x80 [ 1021.783274][T22784] do_syscall_64+0x39/0xb0 [ 1021.787725][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1021.793644][T22784] RIP: 0033:0x7feaf548c0c9 [ 1021.798080][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1021.817727][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1021.826170][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1021.834157][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1021.842146][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1021.850130][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1021.858114][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1021.866120][T22784] [ 1022.300955][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1022.339094][T22784] BUG at mt_find:6473 (1) [ 1022.343485][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1022.389021][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1022.477362][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1022.544223][T22784] 0-536866815: 0000000000000000 [ 1022.554318][T22784] 536866816-536870911: ffff888094eb2460 [ 1022.568870][T22784] 536870912-553631743: ffff888094eb2540 [ 1022.581069][T22784] 553631744-553644031: 0000000000000000 [ 1022.587049][T22784] 553644032-553631743: ffff888076c687e0 [ 1022.617971][T22784] 553631744-553648127: ffff888076c689a0 [ 1022.649209][T22784] 553648128-553652223: ffff888094eb2620 [ 1022.655191][T22784] 553652224-116820934655: 0000000000000000 [ 1022.688999][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1022.695549][T22784] 116825128960-93824997462015: 0000000000000000 [ 1022.730847][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1022.737703][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1022.781066][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1022.788110][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1022.919087][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1022.926117][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1022.959001][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1022.966016][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1022.989024][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1022.996036][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1023.019033][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1023.026059][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1023.049005][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1023.056039][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1023.081190][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1023.088205][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1023.128702][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1023.136245][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1023.154855][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1023.224348][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1023.259023][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1023.266029][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1023.289027][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1023.296029][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1023.321261][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1023.328274][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1023.359127][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1023.366136][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1023.394974][T22784] Pass: 20918228 Run:20918370 [ 1023.419106][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1023.429072][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1023.439156][T22784] Call Trace: [ 1023.442456][T22784] [ 1023.445411][T22784] dump_stack_lvl+0xd1/0x138 [ 1023.450050][T22784] mt_find.cold+0x8b/0x90 [ 1023.454430][T22784] ? mas_find+0x1d0/0x1d0 [ 1023.458811][T22784] find_vma+0x10c/0x1b0 [ 1023.462999][T22784] ? can_vma_merge_before+0x390/0x390 [ 1023.468411][T22784] ? walk_page_test+0x78/0x180 [ 1023.473216][T22784] walk_page_range+0x2b1/0x4a0 [ 1023.478022][T22784] ? __walk_page_range+0x780/0x780 [ 1023.483191][T22784] mlock_fixup+0x650/0x810 [ 1023.487655][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1023.492888][T22784] ? mlock_fixup+0x810/0x810 [ 1023.497531][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1023.503456][T22784] do_mlock+0x25a/0x6d0 [ 1023.507649][T22784] ? folio_evictable+0x270/0x270 [ 1023.512629][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1023.518552][T22784] __x64_sys_mlock+0x59/0x80 [ 1023.523159][T22784] do_syscall_64+0x39/0xb0 [ 1023.527607][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1023.533531][T22784] RIP: 0033:0x7feaf548c0c9 [ 1023.537960][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1023.557587][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1023.566019][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1023.574005][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1023.581988][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1023.589971][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1023.597952][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1023.605962][T22784] [ 1023.766084][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1023.772152][T22784] BUG at mt_find:6473 (1) [ 1023.776502][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1023.819186][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1023.872943][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1023.939266][T22784] 0-536866815: 0000000000000000 [ 1023.944541][T22784] 536866816-536870911: ffff888094eb2460 [ 1023.971363][T22784] 536870912-553631743: ffff888094eb2540 [ 1023.977328][T22784] 553631744-553644031: 0000000000000000 [ 1023.999043][T22784] 553644032-553631743: ffff888076c687e0 [ 1024.005002][T22784] 553631744-553648127: ffff888076c689a0 [ 1024.018996][T22784] 553648128-553652223: ffff888094eb2620 [ 1024.024939][T22784] 553652224-116820934655: 0000000000000000 [ 1024.049085][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1024.057104][T22784] 116825128960-93824997462015: 0000000000000000 [ 1024.079004][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1024.085848][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1024.119257][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1024.126277][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1024.249004][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1024.256034][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1024.279068][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1024.286076][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1024.329116][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1024.336129][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1024.363566][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1024.381211][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1024.388217][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1024.439017][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1024.446023][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1024.476811][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1024.519016][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1024.526027][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1024.547775][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1024.711413][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1024.718434][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1024.749097][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1024.759863][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1024.766856][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1024.784518][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1024.795780][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1024.821198][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1024.828204][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1024.879291][T22784] Pass: 20918229 Run:20918372 [ 1024.884087][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1024.894006][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1024.904084][T22784] Call Trace: [ 1024.907383][T22784] [ 1024.910358][T22784] dump_stack_lvl+0xd1/0x138 [ 1024.915006][T22784] mt_find.cold+0x8b/0x90 [ 1024.919387][T22784] ? mas_find+0x1d0/0x1d0 [ 1024.923778][T22784] find_vma+0x10c/0x1b0 [ 1024.927967][T22784] ? can_vma_merge_before+0x390/0x390 [ 1024.933375][T22784] ? walk_page_test+0x78/0x180 [ 1024.938187][T22784] walk_page_range+0x2b1/0x4a0 [ 1024.943010][T22784] ? __walk_page_range+0x780/0x780 [ 1024.948190][T22784] mlock_fixup+0x650/0x810 [ 1024.952670][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1024.957929][T22784] ? mlock_fixup+0x810/0x810 [ 1024.962592][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1024.968539][T22784] do_mlock+0x25a/0x6d0 [ 1024.972750][T22784] ? folio_evictable+0x270/0x270 [ 1024.977752][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1024.983693][T22784] __x64_sys_mlock+0x59/0x80 [ 1024.988311][T22784] do_syscall_64+0x39/0xb0 [ 1024.992772][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1024.998693][T22784] RIP: 0033:0x7feaf548c0c9 [ 1025.003125][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1025.022765][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1025.031216][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1025.039211][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1025.047196][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1025.055202][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1025.063187][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1025.071205][T22784] 14:33:29 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) recvmmsg(r0, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000000)=""/36, 0x24}, {0x0}, {&(0x7f0000000080)=""/173, 0xad}], 0x3}}], 0x1, 0x22, 0x0) 14:33:29 executing program 5: r0 = gettid() rt_sigqueueinfo(r0, 0x17, &(0x7f0000000000)) [ 1025.118643][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1025.124682][T22784] BUG at mt_find:6473 (1) [ 1025.139050][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1025.147710][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1025.211550][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1025.307905][T22784] 0-536866815: 0000000000000000 [ 1025.335503][T22784] 536866816-536870911: ffff888094eb2460 [ 1025.348715][T22784] 536870912-553631743: ffff888094eb2540 [ 1025.357853][T22784] 553631744-553644031: 0000000000000000 [ 1025.371328][T22784] 553644032-553631743: ffff888076c687e0 [ 1025.377417][T22784] 553631744-553648127: ffff888076c689a0 14:33:29 executing program 2: unshare(0x40000200) socket(0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet(0x2, 0x0, 0x80000001) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet6(0xa, 0x80003, 0x6) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="6000000024000b0f000000000000000060000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff000000000a0001006e6574656d0003ff300002000000000006047c030000000000000000000000000041"], 0x60}}, 0x0) sendto$inet6(r0, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x218}, 0x1c) recvmsg(r0, &(0x7f00000008c0)={0x0, 0x8, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/52, 0x34}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/121, 0x79}, {&(0x7f0000000400)=""/183, 0xb7}], 0x6}, 0x40000110) 14:33:29 executing program 0: r0 = inotify_init1(0x0) inotify_add_watch(r0, 0x0, 0x30000e06) 14:33:29 executing program 4: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCDELRT(r0, 0x8912, &(0x7f0000000240)={0xfdfdffff, {}, {0x2, 0x0, @loopback}, {0x2, 0x0, @dev}}) 14:33:29 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x13, 0xe, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42) 14:33:29 executing program 5: syz_clone(0x48000000, &(0x7f0000000000)="09c72b1b898eadc0963cc44c30a8d5217b7275fef866425927b45558e283c06cee2592d0b93532ab7fa5cf3e9a10b57974e5c2ae23a446d3ac8a62f891388d51af0b00b247495fc3c904a957d9009868c237e53b6391cf5b55c875ffe75baa04469809dbf6801d0ec8a9f22fe2e9023e61b24f3a5210711fc7e0a73033233cb5eb92", 0x82, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000001c0)="2bf74f191c28834cf75746f3e979c5153362c3d99628059eb2bd7c513aa406c3a5c38549edc431524bbe9b5ec9c7c68726e8e170d1faa46395ad4e05ffa2a7dfad78eb00707b5fd6e6ab16944a477694b0bbd90df760aa12661a8dd886b84b3bc052c81deee03727200b3acbb240bbee1d9fce") r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x9effffff00000000}, 0x300}, 0x0) [ 1025.383824][T22784] 553648128-553652223: ffff888094eb2620 [ 1025.391131][T22784] 553652224-116820934655: 0000000000000000 [ 1025.397410][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1025.405648][T22784] 116825128960-93824997462015: 0000000000000000 [ 1025.415084][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1025.422822][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1025.430162][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:29 executing program 0: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCDELRT(r0, 0x89f0, 0x0) 14:33:29 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x4e22}, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x2, 0x1000, @dev={0xac, 0x14, 0x14, 0x2}}, 0x67, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x40000, 0x2}) r1 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x8f, "2184c1bda9ef0c6eeac20d0d98d6fce6465864d5b79a631e91237aca7da8ca7ca0ed68b9a282c357f0e490c5c309a0206446f5a52f77f873c8e0aa05f4b8b7633e556259b46c880a88aed246bbe4bf45b9fe04cfe1e669cb2d7700bd23e180f242832854d462026bc87ef35092578f5ca4d4e489f5ce649634f6803ef1ebfebff8f871450b23a4e0898a79d5c667e1"}, &(0x7f0000000180)=0xb3) setsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000000000)={@broadcast, @multicast1}, 0x8) 14:33:29 executing program 1: bpf$PROG_LOAD(0x1d, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 1025.468460][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d 14:33:29 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x4e22}, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x2, 0x1000, @dev={0xac, 0x14, 0x14, 0x2}}, 0x67, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x40000, 0x2}) r1 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x8f, "2184c1bda9ef0c6eeac20d0d98d6fce6465864d5b79a631e91237aca7da8ca7ca0ed68b9a282c357f0e490c5c309a0206446f5a52f77f873c8e0aa05f4b8b7633e556259b46c880a88aed246bbe4bf45b9fe04cfe1e669cb2d7700bd23e180f242832854d462026bc87ef35092578f5ca4d4e489f5ce649634f6803ef1ebfebff8f871450b23a4e0898a79d5c667e1"}, &(0x7f0000000180)=0xb3) setsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000000000)={@broadcast, @multicast1}, 0x8) 14:33:29 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468000000000400028008000300ea810a"], 0x3c}}, 0x0) [ 1025.651985][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1025.705126][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1025.724896][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1025.746103][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1025.776482][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1025.791044][T24125] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1025.817598][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1025.829258][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1025.841117][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1025.866444][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1025.903957][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1025.918043][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1025.931271][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1025.944055][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1025.958099][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:30 executing program 3: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_VDPA_GET_GROUP_NUM(r0, 0x8004af81, &(0x7f0000000080)) 14:33:30 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, &(0x7f00000002c0)=@framed={{}, [@map_idx]}, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 1025.972415][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1026.090015][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1026.101718][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1026.131221][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1026.153398][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1026.169337][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1026.179142][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1026.196293][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1026.214274][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1026.239205][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1026.269478][T22784] Pass: 20949945 Run:20950089 [ 1026.279101][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1026.289051][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1026.299133][T22784] Call Trace: [ 1026.302432][T22784] [ 1026.305383][T22784] dump_stack_lvl+0xd1/0x138 [ 1026.310027][T22784] mt_find.cold+0x8b/0x90 [ 1026.314404][T22784] ? mas_find+0x1d0/0x1d0 [ 1026.318788][T22784] find_vma+0x10c/0x1b0 [ 1026.322981][T22784] ? can_vma_merge_before+0x390/0x390 [ 1026.328395][T22784] ? walk_page_test+0x78/0x180 [ 1026.333206][T22784] walk_page_range+0x2b1/0x4a0 [ 1026.338021][T22784] ? __walk_page_range+0x780/0x780 [ 1026.343197][T22784] mlock_fixup+0x650/0x810 [ 1026.347675][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1026.352932][T22784] ? mlock_fixup+0x810/0x810 [ 1026.357585][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1026.363535][T22784] do_mlock+0x25a/0x6d0 [ 1026.367755][T22784] ? folio_evictable+0x270/0x270 [ 1026.372754][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1026.378696][T22784] __x64_sys_mlock+0x59/0x80 [ 1026.383319][T22784] do_syscall_64+0x39/0xb0 [ 1026.387787][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1026.393723][T22784] RIP: 0033:0x7feaf548c0c9 [ 1026.398165][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1026.417807][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1026.426266][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1026.434268][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1026.442266][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1026.450277][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1026.458273][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1026.466307][T22784] [ 1026.560309][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1026.566302][T22784] BUG at mt_find:6473 (1) [ 1026.599280][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1026.653191][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1026.707996][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1026.905706][T22784] 0-536866815: 0000000000000000 [ 1026.919160][T22784] 536866816-536870911: ffff888094eb2460 [ 1026.925605][T22784] 536870912-553631743: ffff888094eb2540 [ 1026.936852][T22784] 553631744-553644031: 0000000000000000 [ 1026.943148][T22784] 553644032-553631743: ffff888076c687e0 [ 1026.959115][T22784] 553631744-553648127: ffff888076c689a0 [ 1026.965077][T22784] 553648128-553652223: ffff888094eb2620 [ 1026.974976][T22784] 553652224-116820934655: 0000000000000000 [ 1026.981457][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1026.987914][T22784] 116825128960-93824997462015: 0000000000000000 [ 1027.025597][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1027.039251][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1027.053500][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1027.081470][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1027.175042][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1027.219053][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1027.226076][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1027.305849][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1027.319077][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1027.326165][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1027.359294][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1027.389325][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1027.401458][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1027.424661][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1027.459146][T22784] 140647114903552-140647115268095: ffff88807687fee0 14:33:31 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x1b, 0x0, 0x0, 0x0, 0x20, 0x1}, 0x48) 14:33:31 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x4e22}, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x2, 0x1000, @dev={0xac, 0x14, 0x14, 0x2}}, 0x67, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x40000, 0x2}) r1 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x8f, "2184c1bda9ef0c6eeac20d0d98d6fce6465864d5b79a631e91237aca7da8ca7ca0ed68b9a282c357f0e490c5c309a0206446f5a52f77f873c8e0aa05f4b8b7633e556259b46c880a88aed246bbe4bf45b9fe04cfe1e669cb2d7700bd23e180f242832854d462026bc87ef35092578f5ca4d4e489f5ce649634f6803ef1ebfebff8f871450b23a4e0898a79d5c667e1"}, &(0x7f0000000180)=0xb3) setsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000000000)={@broadcast, @multicast1}, 0x8) 14:33:31 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890b, &(0x7f0000000040)={0x0, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @dev}, 0x67, 0x0, 0x0, 0x0, 0x6c}) 14:33:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x20, 0x0, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000002b40)={{0x0, 0x0, 0x80}, "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", "a2f23169becb96abdf78a3a9b14d7e9750f42a81fc34cba2d1e7411f1e93e240e49afc1cd3228850f8f88cfe40bfc3a134c0044f5b16a2d2120afa32c516657a371c3786cdf1c379b391db850805c348ead29919f5c1c79cfc5b49b436fd776ba22275aca698179c37649171f10adeb88f502d019d5ebe24441f4ab0430457aac1282dcaaed7e66de449879fee64ef3cbd7e62359620552116e788b85b122a3503181f40b202b786eb9df3ce0424f173e2f58adc25a72a946ee65338d2fce1db2bce5fd131810ecea62eeefbec198eaf6ba70b266f9726de5d1d3eb4a1989ea60140169d1968495b8a4958917c84e48cd9b3c8e3b4fc296a2a2b32d8aa652949b12a782958643dffc115bb0cd7debd44b7471a6f3e509b4be4b95f42b46239aebea7f5106b9b3308bb1fa5704261e4a11bcf46d93ae52b23a44749710a3c1fbb1f4919bb94d7573f400efcb51fc1f6e758b925e0a04181c079d3b5b5fda8d2dc714b5f24cb5392812344e815bc9487ef41848f9b5b39b8a2fb5b2adce88283a077801f7fb043addb36c223435aefb6299e1c143ffd99f217f513028af3fc3945d5bda749319f8df37d09712b8de174d1c7c0fb5400ef4461739e0a9f8fd2afa7fde4484bd9e1bc3bd14062d40876a1f4bcbf7f9b080d8cd4a4e02b2088878f9689cc5f50526798d7f0ea9044098c4228a91c35f84957cb5d7e02da462246b1a54f2a63ec8cd368052599790fc05da7ff961b94c287267113fb3b3f8ff984f8977e99af4ee06c7f11e28816c804f392073c84451281c4aadb0b6e4dae67249bc3871ab6f10e1381dc05c8fe7dccd455b968468f37fd68c5ce0b75461989db1698d98923e4ab36ed61381d7d66037c4023d09ccd5c5897f66469656307a99ed56b8a3ea162bde489b19b875a6a9bab24b8617bcf7a955315bfe630f5e85abf6aed46d6a3e130c112a6a8d0980a90b74423176ed69d0af93c894ec6bda829054d17f43d6ca1ed188c7bc50410fcaa6d8b3ef82be6e5a99705015b1cf1a6d96021631ce9892e73ef7a701e2b7f198478c34d14eb01f570a889aebe78a2eb5634c24540c85de8fb00deb6fb72d0df6b13b9939ad9068894b667d6ec78d14b0ba138d2cef5edc54396f51741e9362ca98733643e8ac01fe6064add2e203cb860a29a934752225e7bcb1f35256300c9324cb075764ffd6bed387eab0837a1a8e3f61e06e3e070e79b3a6887e3c6821ef74620cee0f4f961344782d21a975f31c83c2afecbc6ac38f78b9fb1830ed5a5698e3ff13bd017dc48e9082ef9e5f865a7bb6644017a376351ec9356cde2e514a950a7c2a76bb64323b1818c795e8695b26294b56f7792a2f19c7b60ce37dc793cb0f58f9c83d8c8dba5ba87d6efe1f87e2d0e02bf17aa972956723bc37f604b96908abf80312887c86607708320b57315bdbd990abc343395fe9b06b730a430cdcb068a053b1d5ed73f61515506115fb11abab778e325df6951f239174e4ddac1ad95f5924e91f5d3d06a99f86c0abfb3381ebc309eda12867ede3bc7bf654645a2ca43b07d4b6bb646299e38ffaa220fe3f1009fd93c8a3e553da344824661058bf5b42278a3f80e0d4d64c223567ba2f0dd9e678f43d9cdb458655a316063255b43668310d92dfca267aa20d0bd3dca0451c60bf1c126efc9c60df6f762c539fd74cf8a90b234cc16ba9ecc14fc6ef0c0e8814cca4f627a1112b9a9f6c48911f38665513cd3eb39e700e4c5323f8617111c7fcd3de696ad6557550e315a7da3a2e56f7d8f913fea3f16596cb867ba0b007dd09523125948db0cb0401c2b452b59e1d508e15a3f2cd188eacd75d8cd351ae3fac772dd0a7663ba27566502bbcd3c59b2e25fc9ce776f524e5608f5273ae311b2df1b7c04e54e4189c577858e37778632a832934bbb0f2c9cb36aabbb7b07e70b0c0d65466c94fc241009df1536c9778cd9a561d040a62c291c16cd52033e5dc4aa0f3ee78e04258f4ef84fff03d5551c2828ae2ae01891878696e9c005c0ee8bb9a56f54f91cd88c0e209af0897a79c816095daf5e6d74cf4598a046bb580458b0fb784e6f359e9e654e32f3b5108fc976462c84a9fde32d5108288dc53cf1512cfe74cb77d89883f39bd8a81457025750e51a2e80b593513a069602380ae6e7e9b5f2e32c7e96e43b52cd110bb3c3253b4b67360bc967850ec7b2dea8bf0f504c9a834bdba7325621a9ee147e2aa97f7da03ab9b030ea9117375d80e9db3e18ca8cf6f225eaab15cdb6548bb7c5a291e308a2456aecbec5a97aeb9b4bf51091efdd6528495616e4cc589a78878192ed462a6b3d85cee6522a2269902ff081f06ffe85cb2133e0437869f08f009834ef123b0511b7f99d1dfb58b70338219286ba033b35a8be535946ebdd2f63d0039e080511259a22bb118cb943aad47b7b19a152939c049c11b9518cf9a6d1b10c27d053f3875bbd9960c1bbcad5e493aff758ba1ffa3902623d5eb16c4ee809a27461052c716ede83b954b0d8a2ad661e0e49120b0af746c38a499dccd0ffacda71789ceabffae71c62f837c0bdd1f3340ff08baee2471d83107cd250c4d12e24618d2086bc33db8cf788612f06269baa77bd6337e71f0886f9c271b40123ce4abca75bcce1323b4317cd3470608b359538b5f661eb20769dffe1d4c016f42dcb1872491c92fad140e359a426d0936b7c595f2434e2a040f53db72cdd36cd89a3634f38cdfd3a7381364c6d902b72124a130b8f3feb60f882639581e6ef7abe543bb84d4ef644d45b07c3f1a758374bdb10ac6d4b7eba9746cc1a6bce79744b0855be0323d44331c62dd01edffce42f75b7360e3b828b804de75810bbcdaa39afd81f07e40013ca89e9d44872710ed7945c1ad059258e476a92d9eea0621d262e3417a7c16a776c160922eae4882803058a6df0ea5af5988582b12b2b76cd61bdaa551d0f57df2b4bd519a5601600c27f506001ecfd95cc5f7f936009445e29f2fa5cd892b79db35ac1005873ed0c0ab634719a3ff85fc81f7f699a467b134e5ad1841d2c6cb587fcabc693b269d6047d17b3f595f8392d28628c47b9a4fb3deaf9f99adee5128bd20d7414adc6120ca16df0452bf2e7e5894eeca1f848f014a42e1baed4a9d81ebd2cde801c32e48b4f43191d76984c5ab8275f5e6a2fdac938223a18aad14ca1e971ee84fcfe69f53b785344ce440723753f97c0aedf95181f87f23c20f27c299d48401013f3ee3dbf6adb5a3d8cbf6624d0d4b277d64212769c612cf6f4474958f74b1c9874de983fd087ab43c606892667951c90b639352ad5de607746178ff8463e7b0110097c581665751748594269a98785f34820a336e1568c735adb1885b32f6c02b6ab7c373c0d67e289fe603ea35fcc28739ae67c2ed15c5a39df7c2b18b62a58176f485e4b5c32ff748a3898787e17578397fa660b3839b1c8d4c524b0c3bc4edf3fa5b4a85d3081fded9984947f2916d0955dc948c9bd275d2e2bfd57835d02847d864d59247d99f420751e9f009e97115fafa3c18d35af71698c3e12cc852efd9a562298476efa4b1242dea19dcbbbc9880d598bb1214108b8885ac2ac28ec20f2e02c2a16312880ebfe8c33c927ff8eb2437878b7295081611a6ee8c27c0bae211e22230aadaab18c8e1573621a950cc0e6edfed3aa7f87f7cdb6f686751975e5afec61e419e303c664775157f948ac49b954771d49762a13e32c3ef2f9f70120b4ff51b2afb101a246ab5fa2d0cf1fdddab04fe3cfd15af5146a618d445451779f71e91ebcb64fd165ffdc44e2a125792cf2b4686c8adf9fd50db21dde2e5846174bc60d243747943345b811cd01ac0832a01080efe81eb0475b84edf31622db4b923ae308b586264eaa67f2c9d815d3d857d17651ea4f7c1c20e532b3086d16ddc757b7232ee99e92eeca598529293a85501c3225540dd6e44f53b64b92cdd6297b49d0dc1429ee42d74663a570dc35960e48d8ebdb009ea92a6bb4e659e419028691962ec19cdc1942cd462cabe5775a405c3bb47ef75376ff04f75f19ff02fc5e4143a1ef86ab6d0c4eb63455ae8e0437de9e040c5f2c64adb7616bed37e9092330d25bd5359138b301f069d03a149651617ea9a4f94bfb3df67b3a44adb71daa37fa2795d8e31b7c007d1efa8e86a2744f499602cddfc9ab3d5745f2aba2d142582a7fb5e422097f953711274efb7df8a153807f126019e774251484ad28406ead786279e67feeebbb511666b009577963963d419503516660924ae1485d3223b30376c5748714949ffc8a379f687ce8009169eb02afc342b287a86469cfee2dae4db42342a75b79cf7dcc1c282a9f724506f73a4254ec995aa4662aed6382ef33c572dffb75bd492b094bf7b994bdc314c7469f2b291a2c0e52752a453c9af288cb36ff903a32179dd0b328a10d5b870f6285aaa70f052fb976a355478eba2f4e10c684f75eb99877de61faa07a6281db5922dd3750ff20767dfb18f15836b95b0e285a3087616ea01011470594a51c7ee179ae8da69a1103759793df3d730358682d9ac932561a0337a0f13c64f74960a1a0aac8c74e47718f2f134703faceab51058222590b798945f4336287d98f517c4abc6efbe94f79ffa667dd507a40981f4c8d13fb022dab4333705a7450e68b208d55654a95c6b27d2be27db7b343f525c8b08036f47c547f89546d9b6fffae9d35d2d38a02e066c294eef773bdda554ebc7e6191fe538b247c7bfdc5ba536684afc15b1896a27bdf12b80d975c147b37f52f3ebd17e585937c9f64cb8cb725ad2043d6758a85cde86280ffca89a458ec77af99e9e64c935fe67f8add9d020739ecc723a189244c5d384613a201f418091bbfb95192cd67a229e0904c9993f5108c20ada6876566ff2a114901f3e66020d0005afab2e8c837ca4521e47452a25d748cc72ee00e7c6f25d7db4688281bbb77d63c017b4f37db5f6927dd545b4c54f5fece1d9601f5c48aa2eb7f32108a791223a08a77e9cd97f935ee7fc4c98a2f211a6cdca63f85f135de132bb7a8110bd572786ec92afec3a479defab0559676a5da109a1d69a16803367dad0a1c7711161c52c275be327d2845f74eed207093905281b2f85fe5d605c5d92fe86e57dc4a244970ad369f0617b1218a805da5e423f8df0100c96d2ef7e66e53f93a04d9d062eb32ee590399048aab9e3dceab5027ba03858341f0f989d4e20dcdd0c77a18e73de0eab42e9755f2dbd06615bb5ea947e8d47da020dccc6e1c2b3f215f2b101d5adfbe24351928cb1fa4880348e5ca780f5f2a6c5e6b8c12d4db14c36269e16ceb80c657ecde69c5523dc863823d98ae263c21f1cd32f451c15e97b06a75ae26862f8c3612060b8f36909cb0f204289fc93a9b7a5f642ad97361831d32b7c9ea4dc3f7aa7725e272430b75174ab1b59e39c6b53bba2dd7ec7dd8c95ba69bf9c7341c13a7ae959c65bd563d5c98c2ce85173c12efbdd8e50695718f863fbd20a34d84e0a3a3184660392a16748ee532af6edf375fb3cae99469d4cd76826d94a32ed47d5548f6836482dd52a7d83aaca4ecee12551b9788fcfe6878921c68cf884b02d80f656d75869a9d613354773b74ffd48266944050638937e5e14db18de805ffba02339d7b313aa9e264ce7f6fe692e4658b0d989a2796a849e1efc0946462f5acbdcb45eb17ef72dd1cfc4e30040d74a512b525247c685331e06d9dfc52ffb8098894f613849d5af18dc0f6955ccd0e95f2363c1855902977fcd0"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000004bc0)={{0x0, 0x0, 0x80}, "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", "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"}) [ 1027.487133][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1027.526691][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1027.566438][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1027.597343][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1027.651872][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1027.658868][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1027.666195][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1027.673285][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1027.680801][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1027.687782][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1027.694845][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1027.701929][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1027.708929][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1027.716412][T22784] Pass: 20953878 Run:20954023 [ 1027.721223][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1027.731156][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1027.741228][T22784] Call Trace: [ 1027.744521][T22784] [ 1027.747462][T22784] dump_stack_lvl+0xd1/0x138 [ 1027.752090][T22784] mt_find.cold+0x8b/0x90 [ 1027.756453][T22784] ? mas_find+0x1d0/0x1d0 [ 1027.760822][T22784] find_vma+0x10c/0x1b0 [ 1027.765005][T22784] ? can_vma_merge_before+0x390/0x390 [ 1027.770403][T22784] ? walk_page_test+0x78/0x180 [ 1027.775202][T22784] walk_page_range+0x2b1/0x4a0 [ 1027.780002][T22784] ? __walk_page_range+0x780/0x780 [ 1027.785156][T22784] mlock_fixup+0x650/0x810 [ 1027.789617][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1027.794852][T22784] ? mlock_fixup+0x810/0x810 [ 1027.799484][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1027.805495][T22784] do_mlock+0x25a/0x6d0 [ 1027.809696][T22784] ? folio_evictable+0x270/0x270 [ 1027.814677][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1027.820601][T22784] __x64_sys_mlock+0x59/0x80 [ 1027.825211][T22784] do_syscall_64+0x39/0xb0 [ 1027.829665][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1027.835583][T22784] RIP: 0033:0x7feaf548c0c9 [ 1027.840022][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1027.859648][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1027.868078][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1027.876064][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1027.884047][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1027.892032][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1027.900016][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1027.908064][T22784] [ 1027.942799][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1027.964626][T22784] BUG at mt_find:6473 (1) [ 1027.971199][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1027.980062][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1028.024849][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1028.075023][T22784] 0-536866815: 0000000000000000 [ 1028.089288][T22784] 536866816-536870911: ffff888094eb2460 [ 1028.095236][T22784] 536870912-553631743: ffff888094eb2540 [ 1028.115622][T22784] 553631744-553644031: 0000000000000000 [ 1028.131341][T22784] 553644032-553631743: ffff888076c687e0 [ 1028.137300][T22784] 553631744-553648127: ffff888076c689a0 [ 1028.156518][T22784] 553648128-553652223: ffff888094eb2620 [ 1028.167244][T22784] 553652224-116820934655: 0000000000000000 [ 1028.187885][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1028.204731][T22784] 116825128960-93824997462015: 0000000000000000 [ 1028.259706][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1028.266548][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1028.279210][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1028.296694][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1028.369051][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1028.376146][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1028.391774][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1028.398851][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1028.411583][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1028.418654][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1028.425893][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1028.433070][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1028.441343][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1028.455039][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1028.476301][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1028.490143][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1028.504964][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1028.520148][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1028.535087][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1028.649120][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1028.656252][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1028.665526][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1028.673205][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1028.680604][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1028.687676][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1028.695150][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1028.707107][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1028.721752][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1028.737385][T22784] Pass: 20954524 Run:20954670 [ 1028.748279][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1028.758221][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1028.768305][T22784] Call Trace: [ 1028.771606][T22784] [ 1028.774558][T22784] dump_stack_lvl+0xd1/0x138 [ 1028.779196][T22784] mt_find.cold+0x8b/0x90 [ 1028.783579][T22784] ? mas_find+0x1d0/0x1d0 [ 1028.787961][T22784] find_vma+0x10c/0x1b0 [ 1028.792148][T22784] ? can_vma_merge_before+0x390/0x390 [ 1028.797565][T22784] ? walk_page_test+0x78/0x180 [ 1028.802374][T22784] walk_page_range+0x2b1/0x4a0 [ 1028.807184][T22784] ? __walk_page_range+0x780/0x780 [ 1028.812367][T22784] mlock_fixup+0x650/0x810 [ 1028.816842][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1028.822090][T22784] ? mlock_fixup+0x810/0x810 [ 1028.826727][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1028.832657][T22784] do_mlock+0x25a/0x6d0 [ 1028.836849][T22784] ? folio_evictable+0x270/0x270 [ 1028.841827][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1028.847747][T22784] __x64_sys_mlock+0x59/0x80 [ 1028.852351][T22784] do_syscall_64+0x39/0xb0 [ 1028.856796][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1028.862711][T22784] RIP: 0033:0x7feaf548c0c9 [ 1028.867140][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1028.886770][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1028.895205][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1028.903194][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1028.911203][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1028.919212][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1028.927227][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1028.935248][T22784] [ 1029.139046][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1029.145004][T22784] BUG at mt_find:6473 (1) [ 1029.175899][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1029.199018][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1029.253603][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1029.334753][T22784] 0-536866815: 0000000000000000 [ 1029.340147][T22784] 536866816-536870911: ffff888094eb2460 [ 1029.346085][T22784] 536870912-553631743: ffff888094eb2540 [ 1029.352506][T22784] 553631744-553644031: 0000000000000000 [ 1029.358441][T22784] 553644032-553631743: ffff888076c687e0 [ 1029.364501][T22784] 553631744-553648127: ffff888076c689a0 [ 1029.382945][T22784] 553648128-553652223: ffff888094eb2620 [ 1029.388906][T22784] 553652224-116820934655: 0000000000000000 [ 1029.413970][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1029.420667][T22784] 116825128960-93824997462015: 0000000000000000 [ 1029.427298][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1029.434200][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1029.441219][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1029.448200][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1029.508580][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1029.529081][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1029.536087][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1029.544199][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1029.551577][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1029.558558][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1029.565988][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1029.573319][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1029.580613][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1029.588042][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1029.595447][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1029.602674][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1029.609984][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1029.616964][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1029.624359][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1029.677076][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1029.685064][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1029.692955][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1029.700302][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1029.707279][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1029.715091][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1029.722435][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1029.729689][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1029.736699][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1029.744971][T22784] Pass: 20954527 Run:20954674 [ 1029.750017][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1029.759961][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1029.770041][T22784] Call Trace: [ 1029.773341][T22784] [ 1029.776296][T22784] dump_stack_lvl+0xd1/0x138 [ 1029.780937][T22784] mt_find.cold+0x8b/0x90 [ 1029.785313][T22784] ? mas_find+0x1d0/0x1d0 [ 1029.789699][T22784] find_vma+0x10c/0x1b0 [ 1029.793899][T22784] ? can_vma_merge_before+0x390/0x390 [ 1029.799312][T22784] ? walk_page_test+0x78/0x180 [ 1029.804122][T22784] walk_page_range+0x2b1/0x4a0 [ 1029.808943][T22784] ? __walk_page_range+0x780/0x780 [ 1029.814111][T22784] mlock_fixup+0x650/0x810 [ 1029.818578][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1029.823817][T22784] ? mlock_fixup+0x810/0x810 [ 1029.828455][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1029.834380][T22784] do_mlock+0x25a/0x6d0 [ 1029.838573][T22784] ? folio_evictable+0x270/0x270 [ 1029.843557][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1029.849481][T22784] __x64_sys_mlock+0x59/0x80 [ 1029.854088][T22784] do_syscall_64+0x39/0xb0 [ 1029.858536][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1029.864450][T22784] RIP: 0033:0x7feaf548c0c9 [ 1029.868879][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1029.888502][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1029.896936][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1029.904923][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1029.912910][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1029.920896][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1029.928882][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1029.936903][T22784] [ 1029.959061][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1029.965000][T22784] BUG at mt_find:6473 (1) [ 1029.969856][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1029.978305][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1030.016948][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1030.071514][T22784] 0-536866815: 0000000000000000 [ 1030.076778][T22784] 536866816-536870911: ffff888094eb2460 [ 1030.084567][T22784] 536870912-553631743: ffff888094eb2540 [ 1030.099462][T22784] 553631744-553644031: 0000000000000000 [ 1030.108870][T22784] 553644032-553631743: ffff888076c687e0 [ 1030.114906][T22784] 553631744-553648127: ffff888076c689a0 [ 1030.121080][T22784] 553648128-553652223: ffff888094eb2620 [ 1030.127012][T22784] 553652224-116820934655: 0000000000000000 [ 1030.133317][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1030.143946][T22784] 116825128960-93824997462015: 0000000000000000 [ 1030.150658][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1030.157455][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1030.164428][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1030.171453][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1030.231221][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1030.238224][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1030.246090][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1030.253390][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1030.262917][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1030.270495][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1030.277477][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1030.287492][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1030.305891][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1030.321548][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1030.328542][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1030.345460][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1030.361726][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1030.368716][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1030.399046][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1030.513569][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1030.520840][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1030.531462][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1030.538460][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1030.545535][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1030.552882][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1030.559934][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1030.566907][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1030.573952][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1030.588492][T22784] Pass: 20954527 Run:20954675 [ 1030.619000][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1030.628957][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1030.639032][T22784] Call Trace: [ 1030.642332][T22784] [ 1030.645272][T22784] dump_stack_lvl+0xd1/0x138 [ 1030.649893][T22784] mt_find.cold+0x8b/0x90 [ 1030.654251][T22784] ? mas_find+0x1d0/0x1d0 [ 1030.658611][T22784] find_vma+0x10c/0x1b0 [ 1030.662784][T22784] ? can_vma_merge_before+0x390/0x390 [ 1030.668173][T22784] ? walk_page_test+0x78/0x180 [ 1030.672968][T22784] walk_page_range+0x2b1/0x4a0 [ 1030.677759][T22784] ? __walk_page_range+0x780/0x780 [ 1030.682910][T22784] mlock_fixup+0x650/0x810 [ 1030.687363][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1030.692589][T22784] ? mlock_fixup+0x810/0x810 [ 1030.697215][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1030.703139][T22784] do_mlock+0x25a/0x6d0 [ 1030.707323][T22784] ? folio_evictable+0x270/0x270 [ 1030.712295][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1030.718212][T22784] __x64_sys_mlock+0x59/0x80 [ 1030.722815][T22784] do_syscall_64+0x39/0xb0 [ 1030.727256][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1030.733166][T22784] RIP: 0033:0x7feaf548c0c9 [ 1030.737591][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1030.757210][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1030.765640][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1030.773630][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1030.781612][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1030.789940][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1030.797932][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1030.805935][T22784] [ 1030.819905][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1030.839027][T22784] BUG at mt_find:6473 (1) [ 1030.843406][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1030.866249][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1030.913284][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:35 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{}, {0x31}]}, 0x10) 14:33:35 executing program 3: syz_clone(0x48000000, &(0x7f0000000000), 0x0, &(0x7f00000000c0), &(0x7f0000000100), 0x0) 14:33:35 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x4e22}, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x2, 0x1000, @dev={0xac, 0x14, 0x14, 0x2}}, 0x67, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x40000, 0x2}) r1 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x8f, "2184c1bda9ef0c6eeac20d0d98d6fce6465864d5b79a631e91237aca7da8ca7ca0ed68b9a282c357f0e490c5c309a0206446f5a52f77f873c8e0aa05f4b8b7633e556259b46c880a88aed246bbe4bf45b9fe04cfe1e669cb2d7700bd23e180f242832854d462026bc87ef35092578f5ca4d4e489f5ce649634f6803ef1ebfebff8f871450b23a4e0898a79d5c667e1"}, &(0x7f0000000180)=0xb3) setsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000000000)={@broadcast, @multicast1}, 0x8) 14:33:35 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_PIE_ON(r0, 0x5450) 14:33:35 executing program 2: symlinkat(0x0, 0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00') 14:33:35 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000140)={0x1, 0x0, 0x98, &(0x7f0000000080)={0x0, 0x0, 0x6}}) [ 1030.971177][T22784] 0-536866815: 0000000000000000 [ 1030.976454][T22784] 536866816-536870911: ffff888094eb2460 14:33:35 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000a00)={0x14}, 0x14}}, 0x0) 14:33:35 executing program 0: socket$inet(0x2, 0x0, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) accept4(r0, 0x0, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmmsg$inet(r1, &(0x7f0000003500)=[{{&(0x7f0000002940)={0x2, 0x0, @private}, 0x10, &(0x7f0000002ac0)=[{&(0x7f0000002980)="17", 0x1}, {0x0}], 0x2, &(0x7f0000002b40)=[@ip_tos_u8={{0x11}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev}}}], 0x38}}], 0x1, 0x0) 14:33:35 executing program 2: syz_mount_image$udf(&(0x7f0000000c00), &(0x7f0000000c40)='./file0\x00', 0x80001c, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0xc00, &(0x7f0000000c80)="$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") r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0) 14:33:35 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sockstat\x00') read$FUSE(r0, &(0x7f0000002100)={0x2020}, 0x2020) read$FUSE(r0, &(0x7f00000044c0)={0x2020}, 0x2020) [ 1031.066235][T22784] 536870912-553631743: ffff888094eb2540 14:33:35 executing program 4: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000740), 0x4) [ 1031.123689][T22784] 553631744-553644031: 0000000000000000 [ 1031.163450][T22784] 553644032-553631743: ffff888076c687e0 14:33:35 executing program 5: syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002400)) 14:33:35 executing program 1: sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0x40001}, 0x4040840) sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, 0x0, 0x20008010) r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000380)) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'batadv0\x00', 0x0}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000480)={'ip_vti0\x00', &(0x7f0000000400)={'sit0\x00', 0x0, 0x40, 0x10, 0x0, 0x1990d40, {{0x12, 0x4, 0x0, 0x24, 0x48, 0x65, 0x0, 0x0, 0x2b, 0x0, @dev={0xac, 0x14, 0x14, 0x1f}, @multicast2, {[@timestamp={0x44, 0x20, 0x0, 0x0, 0x4, [0x0, 0x9, 0x0, 0xffff, 0x1, 0x0, 0x0]}, @lsrr={0x83, 0x13, 0x23, [@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @broadcast, @rand_addr=0x64010102]}]}}}}}) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000300), 0xc, &(0x7f00000006c0)={&(0x7f00000004c0)={0x134, r0, 0x11, 0x70bd25, 0x0, {}, [@HEADER={0x4}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x4}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x134}}, 0x4004810) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x100002}, 0xc, &(0x7f0000000940)={&(0x7f00000008c0)={0x5c, 0x0, 0x0, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x200}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x3f}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x7}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x1) sendmsg$BATADV_CMD_GET_HARDIF(r3, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a00)={0x2c, 0x0, 0xa21, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x400}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040c0}, 0x4008004) [ 1031.226655][T22784] 553631744-553648127: ffff888076c689a0 [ 1031.259467][T22784] 553648128-553652223: ffff888094eb2620 [ 1031.313871][T22784] 553652224-116820934655: 0000000000000000 [ 1031.359955][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1031.413790][T22784] 116825128960-93824997462015: 0000000000000000 [ 1031.442292][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1031.470822][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1031.478034][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1031.498208][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1031.588678][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1031.603393][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1031.616992][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1031.628902][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1031.649028][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1031.663619][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1031.676622][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1031.690492][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1031.697619][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1031.716074][T22784] 140647114899456-140647114903551: 0000000000000000 14:33:36 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000002080)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5}, 0x48) 14:33:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_WOWLAN(r0, &(0x7f0000002700)={0x0, 0x0, &(0x7f00000026c0)={&(0x7f0000001200)={0xec4, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @val={0xc}}}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0x8, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_ANY={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0xe8c, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE={0x4}, @NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}, @NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}, @NL80211_WOWLAN_TRIG_TCP_CONNECTION={0xe78, 0xe, 0x0, 0x1, [@NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ={0x10, 0x7, {0x7}}, @NL80211_WOWLAN_TCP_DST_IPV4={0x8, 0x2, @empty}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @device_b}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD={0xe4d, 0x6, "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"}]}]}]}, 0xec4}}, 0x0) 14:33:36 executing program 1: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x6}}) 14:33:36 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_WOWLAN(r0, &(0x7f0000002700)={0x0, 0x0, &(0x7f00000026c0)={&(0x7f0000001200)={0x30, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @val={0xc}}}}, 0x30}}, 0x0) 14:33:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x2b) getpid() syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000002c0)="f029910b0000000f01c4f001341ff30fc731d8e6b8d404401d0f23d00f21f8353000000e0f23f80f01cb0f01c2c74424000b000000c744240200800000c7442406000000000f0114248fea80120102000000", 0x52}], 0x1, 0x19, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:33:36 executing program 0: syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0) sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f0000000b40), 0xffffffffffffffff) openat$bsg(0xffffffffffffff9c, &(0x7f0000000f00), 0x0, 0x0) [ 1031.740372][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1031.747394][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:33:36 executing program 1: fanotify_mark(0xffffffffffffffff, 0x0, 0xbd90fd3d1c706586, 0xffffffffffffffff, 0x0) 14:33:36 executing program 4: pselect6(0x0, 0x0, 0x0, &(0x7f0000000240), &(0x7f0000000280)={0x0, 0x989680}, &(0x7f0000000300)={&(0x7f00000002c0)={[0x6]}, 0x8}) 14:33:36 executing program 0: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)={0x0, 0x0, 0x8}, 0x10) 14:33:36 executing program 2: syz_mount_image$fuse(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x88000, &(0x7f00000002c0)={{}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0) [ 1031.852194][T22784] 140647115304960-140647115325439: 0000000000000000 14:33:36 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002d40)={&(0x7f0000002c00)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002d00)={&(0x7f0000002c80)={0x14}, 0x14}}, 0x0) 14:33:36 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000200), 0x4) [ 1031.929112][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:36 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000440)='/sys/bus/event_source', 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000a40), r0) 14:33:36 executing program 4: write$UHID_GET_REPORT_REPLY(0xffffffffffffffff, 0x0, 0x0) 14:33:36 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f00000031c0)=[{{&(0x7f0000001140)={0xa, 0x0, @multicast1}, 0x10, 0x0}}], 0x1, 0x0) [ 1031.953434][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:33:36 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, 0x0, &(0x7f0000002dc0)) [ 1032.131630][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1032.166624][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1032.175554][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1032.189201][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1032.248049][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1032.269733][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1032.289605][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1032.309047][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1032.329344][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1032.350007][T22784] Pass: 20992420 Run:20992569 [ 1032.354825][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1032.364750][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1032.374820][T22784] Call Trace: [ 1032.378114][T22784] [ 1032.381057][T22784] dump_stack_lvl+0xd1/0x138 [ 1032.385681][T22784] mt_find.cold+0x8b/0x90 [ 1032.390040][T22784] ? mas_find+0x1d0/0x1d0 [ 1032.394405][T22784] find_vma+0x10c/0x1b0 [ 1032.398581][T22784] ? can_vma_merge_before+0x390/0x390 [ 1032.403974][T22784] ? walk_page_test+0x78/0x180 [ 1032.408765][T22784] walk_page_range+0x2b1/0x4a0 [ 1032.413559][T22784] ? __walk_page_range+0x780/0x780 [ 1032.418714][T22784] mlock_fixup+0x650/0x810 [ 1032.423172][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1032.428405][T22784] ? mlock_fixup+0x810/0x810 [ 1032.433040][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1032.438973][T22784] do_mlock+0x25a/0x6d0 [ 1032.443171][T22784] ? folio_evictable+0x270/0x270 [ 1032.448149][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1032.454070][T22784] __x64_sys_mlock+0x59/0x80 [ 1032.458676][T22784] do_syscall_64+0x39/0xb0 [ 1032.463126][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1032.469051][T22784] RIP: 0033:0x7feaf548c0c9 [ 1032.473482][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1032.493104][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1032.501536][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1032.509520][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1032.517503][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1032.525490][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1032.533471][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1032.541474][T22784] [ 1032.599128][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1032.605174][T22784] BUG at mt_find:6473 (1) [ 1032.619112][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1032.639068][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1032.739029][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1032.889036][T22784] 0-536866815: 0000000000000000 [ 1032.894316][T22784] 536866816-536870911: ffff888094eb2460 [ 1032.939061][T22784] 536870912-553631743: ffff888094eb2540 [ 1032.949327][T22784] 553631744-553644031: 0000000000000000 [ 1032.969070][T22784] 553644032-553631743: ffff888076c687e0 14:33:37 executing program 5: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$PPPIOCBRIDGECHAN(r0, 0x40047435, 0x0) 14:33:37 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f00000031c0)=[{{&(0x7f0000001140)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@ip_retopts={{0x10}}, @ip_ttl={{0x14}}], 0x28}}], 0x1, 0x0) 14:33:37 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f00000003c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000000140)="d4", 0x1}], 0x2}}], 0x2, 0x2004c844) 14:33:37 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000000)={{0x2, 0x0, @private}, {0x0, @random="8414642bde5a"}, 0x2a, {0x2, 0x0, @loopback}, 'ipvlan1\x00'}) 14:33:37 executing program 2: openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001a80), 0x4000, 0x0) 14:33:37 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000000)) 14:33:37 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xd, 0xd, 0x2, [@datasec={0x0, 0x0, 0x0, 0xf, 0x1, [], "fd"}]}}, &(0x7f0000000400)=""/197, 0x2a, 0xc5, 0x1}, 0x20) [ 1032.990960][T22784] 553631744-553648127: ffff888076c689a0 14:33:37 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000200)={0xbb0b}, 0x4) 14:33:37 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, 0x0) 14:33:37 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$l2tp(&(0x7f0000000300), r0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff) [ 1033.052861][T22784] 553648128-553652223: ffff888094eb2620 [ 1033.058843][T22784] 553652224-116820934655: 0000000000000000 14:33:37 executing program 3: openat$sysfs(0xffffffffffffff9c, 0x0, 0x402402, 0x0) 14:33:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_KEY(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, 0x0}, 0x0) [ 1033.153189][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1033.215454][T22784] 116825128960-93824997462015: 0000000000000000 14:33:37 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002f40)={&(0x7f0000002e00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000002f00)={&(0x7f0000002e80)={0x14}, 0x14}}, 0x0) 14:33:37 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, 0x0, 0x0) 14:33:37 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000080)={0x0, 0x0, 0x98, &(0x7f0000000100)}) 14:33:37 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r0) syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff) 14:33:37 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f00000003c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000400)="1133", 0x2}, {0x0}, {&(0x7f00000001c0)='[', 0x1}], 0x3}}], 0x2, 0x2004c844) 14:33:37 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001740)='/sys/kernel/notes', 0x0, 0x0) ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, 0x0) [ 1033.268616][T22784] 93824997462016-93824997601279: ffff888094eb27e0 14:33:37 executing program 4: bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001880)={0x0, 0x0, 0x18}, 0xc) 14:33:37 executing program 2: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x1, &(0x7f0000000500)=[{0x8}]}) 14:33:37 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000003c80)=[{{&(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}, {{&(0x7f0000001300)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000001480)=[@ip_ttl={{0x14}}], 0x18}}], 0x2, 0x0) [ 1033.351273][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1033.358210][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:37 executing program 4: sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0xffff0000) 14:33:37 executing program 0: openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/smsc75xx', 0x0, 0x0) 14:33:37 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="ac1414bbac1e000101000000040000ac"], 0x20) [ 1033.432079][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1033.589071][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1033.641523][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1033.656663][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1033.669141][T22784] 140647105298432-140647107395583: ffff888094eb2c40 14:33:37 executing program 5: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/virtio_blk', 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000004c0)) 14:33:37 executing program 2: r0 = getpgrp(0xffffffffffffffff) sched_rr_get_interval(r0, &(0x7f00000000c0)) 14:33:37 executing program 0: ioctl$PPPIOCSNPMODE(0xffffffffffffffff, 0x4008744b, 0x0) ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f00000000c0)={0x0, 0x0}) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x8000, 0x0) ioctl$PPPIOCBRIDGECHAN(r0, 0x40047435, &(0x7f0000000280)) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x7, &(0x7f0000000500)=[{0x4, 0x6}, {0x2, 0x1, 0x0, 0x48}, {0x0, 0x0, 0x40}, {0x0, 0x2, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0xe9}, {}]}) 14:33:37 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001a40)={0x18, 0x3, &(0x7f00000018c0)=@framed, &(0x7f0000001940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001a00), 0x10}, 0x80) 14:33:37 executing program 1: write$UHID_GET_REPORT_REPLY(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x3, &(0x7f0000000500)=[{0x4, 0x6, 0x8}, {0x2, 0x0, 0x5, 0x48}, {}]}) 14:33:37 executing program 4: write$UHID_GET_REPORT_REPLY(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x3, &(0x7f0000000500)=[{}, {0x2, 0x0, 0x0, 0x48}, {}]}) [ 1033.689296][T22784] 140647107395584-140647109492735: ffff888094eb2d20 14:33:38 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x0, @multicast}, 0x0, {}, 'veth1\x00'}) 14:33:38 executing program 1: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0}, 0x38) 14:33:38 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_int(r0, 0x0, 0x2, 0x0, &(0x7f0000000580)) 14:33:38 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000340)=ANY=[], 0x14}}, 0x0) [ 1033.711477][T22784] 140647109492736-140647113687039: ffff888094eb2e00 14:33:38 executing program 1: ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1}) [ 1033.817687][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 14:33:38 executing program 3: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$RFKILL_IOC_MAX_SIZE(r0, 0x2, &(0x7f0000000180)) [ 1033.875093][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1033.935495][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1033.998400][T22784] 140647114899456-140647114903551: 0000000000000000 14:33:38 executing program 5: r0 = getpgrp(0xffffffffffffffff) sched_setscheduler(r0, 0x0, &(0x7f0000000100)) 14:33:38 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0xc}]}}, &(0x7f0000000100)=""/158, 0x26, 0x9e, 0x1}, 0x20) 14:33:38 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_int(r0, 0x0, 0x32, 0x0, &(0x7f00000001c0)) 14:33:38 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000340)=ANY=[], 0x14}}, 0x0) 14:33:38 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmmsg$inet(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000580)=[{0x0}, {0x0}, {&(0x7f0000000480)='r', 0x1}], 0x3}}], 0x1, 0x0) 14:33:38 executing program 3: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000580)='/sys/module/bridge', 0x1414c0, 0x0) 14:33:38 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000340)=ANY=[], 0x14}}, 0x0) 14:33:38 executing program 4: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000440)='/sys/bus/event_source', 0x40000, 0x0) 14:33:38 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000002640)=[{{&(0x7f0000001140)={0x2, 0x4e21, @private}, 0x10, 0x0, 0x0, &(0x7f0000002380)=[@ip_retopts={{0x10}}], 0x10}}], 0x1, 0x4) 14:33:38 executing program 2: bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001b00)={0xffffffffffffffff, 0x0, 0x0}, 0x10) [ 1034.087457][T22784] 140647114903552-140647115268095: ffff88807687fee0 14:33:38 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000340)=ANY=[], 0x14}}, 0x0) 14:33:38 executing program 1: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) [ 1034.201975][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:33:38 executing program 5: futex(&(0x7f0000000000), 0x8, 0x0, &(0x7f0000000040), 0x0, 0x0) 14:33:38 executing program 4: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000500), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000540)={0x3}) 14:33:38 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000500), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000540)={0x3, 0x0, 0x800}) 14:33:38 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)={@multicast1, @multicast1}, 0x10) [ 1034.259117][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1034.334700][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:38 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001800)=[{{&(0x7f0000000000)={0x2, 0x4e20, @private}, 0x10, 0x0, 0x0, &(0x7f0000001780)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}], 0x20}}], 0x1, 0x0) 14:33:38 executing program 4: syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x14, &(0x7f00000001c0)={[{@adinicb}, {@uid}, {@dmode={'dmode', 0x3d, 0x80000000000}}, {@undelete}]}, 0x1, 0x4b5, &(0x7f0000000580)="$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") 14:33:38 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendto$inet(r0, 0x0, 0x0, 0x4000004, &(0x7f0000000040)={0x2, 0x4e20, @remote}, 0x10) 14:33:38 executing program 2: ioctl$PPPIOCGDEBUG(0xffffffffffffffff, 0x80047441, &(0x7f0000000000)) ioctl$PPPIOCSNPMODE(0xffffffffffffffff, 0x4008744b, &(0x7f0000000040)={0xfd, 0x1}) ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) write$UHID_GET_REPORT_REPLY(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x5, &(0x7f0000000500)=[{0x0, 0x0, 0x0, 0x4}, {0x2, 0x0, 0x5, 0x48}, {}, {0x8, 0x7, 0x0, 0x6}, {}]}) [ 1034.371734][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 14:33:38 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001800)=[{{&(0x7f0000000000)={0x2, 0x4e20, @private}, 0x10, 0x0, 0x0, &(0x7f0000001780)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}], 0x20}}], 0x1, 0x0) 14:33:38 executing program 1: rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000040)) [ 1034.431707][T22784] 140647127171072-140647128055807: 0000000000000000 14:33:38 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000002e80)={0x14}, 0x14}}, 0x0) 14:33:38 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) getpeername$netlink(r0, 0x0, &(0x7f00000001c0)) 14:33:38 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@empty, @in6=@dev}}, {{@in=@remote}, 0x0, @in=@loopback}}, 0xe8) 14:33:38 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001800)=[{{&(0x7f0000000000)={0x2, 0x4e20, @private}, 0x10, 0x0, 0x0, &(0x7f0000001780)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}], 0x20}}], 0x1, 0x0) 14:33:38 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000480)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @rand_addr=0x64010100}, {0x2, 0x0, @broadcast}}) 14:33:38 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001a40)={0x0, 0x0, 0x0, &(0x7f0000001940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 1034.554774][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1034.566155][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1034.579544][T22784] 140647128190976-140732348923903: 0000000000000000 14:33:38 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001800)=[{{&(0x7f0000000000)={0x2, 0x4e20, @private}, 0x10, 0x0, 0x0, &(0x7f0000001780)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}], 0x20}}], 0x1, 0x0) 14:33:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, 0x0) 14:33:38 executing program 1: openat$ppp(0xffffffffffffff9c, &(0x7f0000000bc0), 0x204002, 0x0) [ 1034.627496][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 14:33:38 executing program 2: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000140), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000180)) [ 1034.676766][T22784] 140732349059072-140732349100031: 0000000000000000 14:33:39 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002200)}, 0x80) 14:33:39 executing program 0: bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000002040)={0x0, 0x0, 0x7c6dab3783b44db6}, 0xc) [ 1034.725027][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1034.749818][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1034.756933][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1034.764847][T22784] Pass: 21026768 Run:21026918 [ 1034.772337][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1034.782277][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1034.792361][T22784] Call Trace: [ 1034.795674][T22784] [ 1034.798634][T22784] dump_stack_lvl+0xd1/0x138 [ 1034.803275][T22784] mt_find.cold+0x8b/0x90 [ 1034.807661][T22784] ? mas_find+0x1d0/0x1d0 [ 1034.812058][T22784] find_vma+0x10c/0x1b0 [ 1034.816262][T22784] ? can_vma_merge_before+0x390/0x390 [ 1034.821686][T22784] ? walk_page_test+0x78/0x180 [ 1034.826506][T22784] walk_page_range+0x2b1/0x4a0 [ 1034.831320][T22784] ? __walk_page_range+0x780/0x780 [ 1034.836499][T22784] mlock_fixup+0x650/0x810 [ 1034.840982][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1034.846240][T22784] ? mlock_fixup+0x810/0x810 [ 1034.850904][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1034.856848][T22784] do_mlock+0x25a/0x6d0 [ 1034.861064][T22784] ? folio_evictable+0x270/0x270 [ 1034.866069][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1034.872015][T22784] __x64_sys_mlock+0x59/0x80 [ 1034.876641][T22784] do_syscall_64+0x39/0xb0 [ 1034.881113][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1034.887049][T22784] RIP: 0033:0x7feaf548c0c9 [ 1034.891497][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1034.911150][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1034.919612][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1034.927630][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1034.935644][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1034.943660][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1034.951661][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1034.959689][T22784] 14:33:39 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000005c0)={0x1, &(0x7f0000000580)=[{0xd0}]}) 14:33:39 executing program 1: msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000440)={{}, 0x0, 0x0, 0xffffffffffffffff}) [ 1034.983103][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1035.012912][T22784] BUG at mt_find:6473 (1) 14:33:39 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f00000003c0)={0x2, 0x4e21, @dev}, 0x10, 0x0}}], 0x1, 0x0) 14:33:39 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000440)='/sys/block/loop0', 0x200040, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0x0, 0x0, 0x0) 14:33:39 executing program 0: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000140), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000180)={0x0, 0x1, [{}]}) [ 1035.045978][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:39 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7}, 0x48) [ 1035.088892][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1035.138034][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:39 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000003c80)=[{{&(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}, {{&(0x7f0000001300)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x2, 0x0) [ 1035.226802][T22784] 0-536866815: 0000000000000000 [ 1035.248447][T22784] 536866816-536870911: ffff888094eb2460 14:33:39 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)) pipe2(&(0x7f0000000140)={0xffffffffffffffff}, 0x0) r1 = dup(r0) sendmmsg(r1, 0x0, 0x0, 0x0) 14:33:39 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000280)={{0x1}}) 14:33:39 executing program 1: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/virtio_blk', 0x4000, 0x0) 14:33:39 executing program 5: clock_nanosleep(0x3, 0x0, &(0x7f0000000000), 0x0) 14:33:39 executing program 0: r0 = socket(0x2, 0x1, 0x0) connect(r0, &(0x7f0000000300), 0xc) 14:33:39 executing program 3: socketpair(0x23, 0x0, 0x40, 0x0) 14:33:39 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000059965240450c3e61887c000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000600)={0x2c, &(0x7f0000003280)=ANY=[], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000640)={0x2c, &(0x7f0000000240)=ANY=[@ANYBLOB="00000100000012"], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000800)={0x84, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) [ 1035.315900][T22784] 536870912-553631743: ffff888094eb2540 14:33:39 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSKEYCODE(r0, 0x80004525, 0x0) 14:33:39 executing program 2: rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x7}) [ 1035.385388][T22784] 553631744-553644031: 0000000000000000 14:33:39 executing program 5: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) getpeername(r0, 0x0, &(0x7f00000003c0)) 14:33:39 executing program 4: prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000400)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff6000/0x9000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000d24000/0x14000)=nil, &(0x7f0000eaa000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000c80000/0x3000)=nil, &(0x7f0000fb5000/0x1000)=nil, &(0x7f0000d84000/0x4000)=nil, 0x0}, 0x68) 14:33:39 executing program 3: r0 = socket$igmp(0x2, 0x3, 0x2) sendmmsg$inet(r0, &(0x7f0000008940)=[{{&(0x7f0000000400)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10, &(0x7f0000001900)=[{0x0}, {0x0}, {&(0x7f0000001540)='W', 0x1}], 0x3}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 14:33:39 executing program 2: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_pktinfo(r0, 0x0, 0x22, &(0x7f0000000080)={0x0, @local, @empty}, 0xc) [ 1035.436827][T22784] 553644032-553631743: ffff888076c687e0 [ 1035.464423][T22784] 553631744-553648127: ffff888076c689a0 14:33:39 executing program 0: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', 0x0}) setsockopt$inet_pktinfo(r0, 0x0, 0x31, &(0x7f0000000080)={r1, @local, @empty}, 0xc) 14:33:39 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r0, 0x1, 0x37, &(0x7f0000000000)=""/218, &(0x7f0000000100)=0xda) [ 1035.517184][T22784] 553648128-553652223: ffff888094eb2620 [ 1035.541741][T22784] 553652224-116820934655: 0000000000000000 [ 1035.569090][T22784] 116820934656-116825128959: ffff888094eb2700 14:33:39 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000100)=@get={0x1, 0x0, 0x5}) 14:33:39 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@bridge_getlink={0x28, 0x12, 0x1, 0x0, 0x0, {}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x2}]}, 0x28}}, 0x0) 14:33:39 executing program 4: syz_clone(0x10140000, &(0x7f0000000000)='%', 0x1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)) [ 1035.609564][T22784] 116825128960-93824997462015: 0000000000000000 [ 1035.640396][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1035.694222][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1035.723018][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1035.739379][ T5180] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 1035.759608][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1035.837445][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1035.856037][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1035.866779][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1035.889352][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1035.896365][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1035.913366][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1035.925050][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1035.939309][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1035.949450][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1035.956458][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1035.978695][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1035.995874][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1036.006021][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1036.022382][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1036.044029][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1036.107196][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1036.116186][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1036.136083][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1036.148389][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1036.165769][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1036.173301][ T5180] usb 2-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=7c.88 [ 1036.189032][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1036.196026][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1036.209320][ T5180] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1036.237254][ T5180] usb 2-1: config 0 descriptor?? [ 1036.242979][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1036.263608][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1036.278375][T22784] Pass: 21046521 Run:21046672 [ 1036.286682][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1036.296633][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1036.306729][T22784] Call Trace: [ 1036.310033][T22784] [ 1036.312992][T22784] dump_stack_lvl+0xd1/0x138 [ 1036.317640][T22784] mt_find.cold+0x8b/0x90 [ 1036.322027][T22784] ? mas_find+0x1d0/0x1d0 [ 1036.326421][T22784] find_vma+0x10c/0x1b0 [ 1036.330618][T22784] ? can_vma_merge_before+0x390/0x390 [ 1036.336035][T22784] ? walk_page_test+0x78/0x180 [ 1036.340855][T22784] walk_page_range+0x2b1/0x4a0 [ 1036.345676][T22784] ? __walk_page_range+0x780/0x780 [ 1036.350864][T22784] mlock_fixup+0x650/0x810 [ 1036.355346][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1036.360604][T22784] ? mlock_fixup+0x810/0x810 [ 1036.365260][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1036.371207][T22784] do_mlock+0x25a/0x6d0 [ 1036.375420][T22784] ? folio_evictable+0x270/0x270 [ 1036.380425][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1036.386368][T22784] __x64_sys_mlock+0x59/0x80 [ 1036.391000][T22784] do_syscall_64+0x39/0xb0 [ 1036.395471][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1036.401407][T22784] RIP: 0033:0x7feaf548c0c9 [ 1036.405857][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1036.425511][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1036.433974][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1036.441982][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1036.449989][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1036.457994][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1036.465997][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1036.474034][T22784] [ 1036.491342][ T5180] gspca_main: sonixj-2.14.0 probing 0c45:613e [ 1036.512599][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1036.518558][T22784] BUG at mt_find:6473 (1) [ 1036.528525][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1036.547057][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1036.599889][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1036.658028][T22784] 0-536866815: 0000000000000000 [ 1036.663400][T22784] 536866816-536870911: ffff888094eb2460 [ 1036.680723][T22784] 536870912-553631743: ffff888094eb2540 [ 1036.686685][T22784] 553631744-553644031: 0000000000000000 [ 1036.704414][T22784] 553644032-553631743: ffff888076c687e0 [ 1036.715631][T22784] 553631744-553648127: ffff888076c689a0 [ 1036.727421][T22784] 553648128-553652223: ffff888094eb2620 [ 1036.737738][T22784] 553652224-116820934655: 0000000000000000 [ 1036.753077][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1036.769123][T22784] 116825128960-93824997462015: 0000000000000000 [ 1036.775778][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1036.791954][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1036.798878][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1036.816025][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1036.887639][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1036.897618][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1036.919316][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1036.926351][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1036.944953][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1036.954934][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1036.973989][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1036.985329][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1037.007103][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1037.017082][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1037.034199][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1037.045553][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1037.058476][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1037.078711][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1037.087387][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1037.154118][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1037.169978][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1037.177159][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1037.204273][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1037.215819][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1037.228910][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1037.236267][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1037.253624][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1037.268853][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1037.295157][T22784] Pass: 21052362 Run:21052514 [ 1037.300183][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1037.310128][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1037.320215][T22784] Call Trace: [ 1037.323526][T22784] [ 1037.326486][T22784] dump_stack_lvl+0xd1/0x138 [ 1037.331135][T22784] mt_find.cold+0x8b/0x90 [ 1037.335523][T22784] ? mas_find+0x1d0/0x1d0 [ 1037.339912][T22784] find_vma+0x10c/0x1b0 [ 1037.344103][T22784] ? can_vma_merge_before+0x390/0x390 [ 1037.349523][T22784] ? walk_page_test+0x78/0x180 [ 1037.354335][T22784] walk_page_range+0x2b1/0x4a0 [ 1037.359145][T22784] ? __walk_page_range+0x780/0x780 [ 1037.364319][T22784] mlock_fixup+0x650/0x810 [ 1037.368826][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1037.374080][T22784] ? mlock_fixup+0x810/0x810 [ 1037.378736][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1037.384682][T22784] do_mlock+0x25a/0x6d0 [ 1037.388892][T22784] ? folio_evictable+0x270/0x270 [ 1037.393893][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1037.399836][T22784] __x64_sys_mlock+0x59/0x80 [ 1037.404461][T22784] do_syscall_64+0x39/0xb0 [ 1037.408929][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1037.414862][T22784] RIP: 0033:0x7feaf548c0c9 [ 1037.419314][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1037.438960][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1037.447420][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1037.455426][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1037.463431][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1037.471436][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1037.479437][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1037.487464][T22784] [ 1037.510455][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1037.516415][T22784] BUG at mt_find:6473 (1) [ 1037.520905][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1037.529449][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1037.572686][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1037.654516][T22784] 0-536866815: 0000000000000000 [ 1037.669368][T22784] 536866816-536870911: ffff888094eb2460 [ 1037.679085][T22784] 536870912-553631743: ffff888094eb2540 [ 1037.685042][T22784] 553631744-553644031: 0000000000000000 [ 1037.691076][T22784] 553644032-553631743: ffff888076c687e0 [ 1037.697008][T22784] 553631744-553648127: ffff888076c689a0 [ 1037.703025][T22784] 553648128-553652223: ffff888094eb2620 [ 1037.710393][T22784] 553652224-116820934655: 0000000000000000 [ 1037.716606][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1037.724102][T22784] 116825128960-93824997462015: 0000000000000000 [ 1037.733189][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1037.741028][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1037.747944][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1037.755360][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1037.811744][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1037.818754][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1037.826043][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1037.833316][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1037.842716][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1037.849970][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1037.856947][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1037.864437][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1037.883146][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1037.895993][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1037.907402][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1037.924556][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1037.937187][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1037.948675][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1037.969198][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1038.033134][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1038.048777][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1038.057427][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1038.076584][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1038.088752][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1038.102431][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1038.113182][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1038.120487][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1038.127612][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1038.135547][T22784] Pass: 21052673 Run:21052826 [ 1038.141213][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1038.151143][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1038.161219][T22784] Call Trace: [ 1038.164518][T22784] [ 1038.167458][T22784] dump_stack_lvl+0xd1/0x138 [ 1038.172057][T22784] mt_find.cold+0x8b/0x90 [ 1038.176395][T22784] ? mas_find+0x1d0/0x1d0 [ 1038.180758][T22784] find_vma+0x10c/0x1b0 [ 1038.184957][T22784] ? can_vma_merge_before+0x390/0x390 [ 1038.190385][T22784] ? walk_page_test+0x78/0x180 [ 1038.195191][T22784] walk_page_range+0x2b1/0x4a0 [ 1038.200005][T22784] ? __walk_page_range+0x780/0x780 [ 1038.205190][T22784] mlock_fixup+0x650/0x810 [ 1038.209684][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1038.214927][T22784] ? mlock_fixup+0x810/0x810 [ 1038.219555][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1038.225496][T22784] do_mlock+0x25a/0x6d0 [ 1038.229684][T22784] ? folio_evictable+0x270/0x270 [ 1038.234673][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1038.240683][T22784] __x64_sys_mlock+0x59/0x80 [ 1038.245302][T22784] do_syscall_64+0x39/0xb0 [ 1038.249755][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1038.255676][T22784] RIP: 0033:0x7feaf548c0c9 [ 1038.260108][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1038.279741][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1038.288182][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1038.296173][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1038.304160][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1038.312146][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1038.320126][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1038.328130][T22784] [ 1038.335148][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1038.341534][T22784] BUG at mt_find:6473 (1) [ 1038.345894][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1038.354660][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1038.392030][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1038.441834][T22784] 0-536866815: 0000000000000000 [ 1038.447156][T22784] 536866816-536870911: ffff888094eb2460 [ 1038.455881][T22784] 536870912-553631743: ffff888094eb2540 [ 1038.461914][T22784] 553631744-553644031: 0000000000000000 [ 1038.467843][T22784] 553644032-553631743: ffff888076c687e0 [ 1038.473856][T22784] 553631744-553648127: ffff888076c689a0 [ 1038.479839][T22784] 553648128-553652223: ffff888094eb2620 [ 1038.485773][T22784] 553652224-116820934655: 0000000000000000 [ 1038.492049][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1038.499654][T22784] 116825128960-93824997462015: 0000000000000000 [ 1038.506294][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1038.513498][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1038.520489][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1038.527537][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1038.584978][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1038.592110][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1038.600067][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1038.607038][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1038.614091][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1038.621101][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1038.628044][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1038.635068][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1038.642189][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1038.649273][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1038.656236][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1038.663349][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1038.670666][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1038.677646][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1038.684992][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1038.737291][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1038.749111][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1038.756256][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1038.765021][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1038.772315][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1038.779473][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1038.786719][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1038.793736][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1038.801474][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1038.808895][T22784] Pass: 21052673 Run:21052827 [ 1038.813660][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1038.823592][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1038.833656][T22784] Call Trace: [ 1038.836934][T22784] [ 1038.839863][T22784] dump_stack_lvl+0xd1/0x138 [ 1038.844460][T22784] mt_find.cold+0x8b/0x90 [ 1038.848795][T22784] ? mas_find+0x1d0/0x1d0 [ 1038.853135][T22784] find_vma+0x10c/0x1b0 [ 1038.857287][T22784] ? can_vma_merge_before+0x390/0x390 [ 1038.862658][T22784] ? walk_page_test+0x78/0x180 [ 1038.867423][T22784] walk_page_range+0x2b1/0x4a0 [ 1038.872212][T22784] ? __walk_page_range+0x780/0x780 [ 1038.877383][T22784] mlock_fixup+0x650/0x810 [ 1038.881845][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1038.887426][T22784] ? mlock_fixup+0x810/0x810 [ 1038.892070][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1038.898015][T22784] do_mlock+0x25a/0x6d0 [ 1038.902227][T22784] ? folio_evictable+0x270/0x270 [ 1038.907222][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1038.913171][T22784] __x64_sys_mlock+0x59/0x80 [ 1038.917810][T22784] do_syscall_64+0x39/0xb0 [ 1038.922292][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1038.928234][T22784] RIP: 0033:0x7feaf548c0c9 [ 1038.932673][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1038.952305][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1038.960753][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1038.968754][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1038.976752][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1038.984748][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1038.992736][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1039.000743][T22784] [ 1039.011648][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1039.017596][T22784] BUG at mt_find:6473 (1) [ 1039.022436][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1039.031225][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1039.068608][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1039.123640][T22784] 0-536866815: 0000000000000000 [ 1039.129101][T22784] 536866816-536870911: ffff888094eb2460 [ 1039.135041][T22784] 536870912-553631743: ffff888094eb2540 [ 1039.141098][T22784] 553631744-553644031: 0000000000000000 [ 1039.147023][T22784] 553644032-553631743: ffff888076c687e0 [ 1039.153064][T22784] 553631744-553648127: ffff888076c689a0 [ 1039.159090][T22784] 553648128-553652223: ffff888094eb2620 [ 1039.165023][T22784] 553652224-116820934655: 0000000000000000 [ 1039.171279][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1039.177715][T22784] 116825128960-93824997462015: 0000000000000000 [ 1039.184407][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1039.191265][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1039.198139][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1039.205170][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1039.264178][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1039.271279][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1039.278272][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1039.285887][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1039.295244][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1039.302546][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1039.310214][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1039.318204][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1039.325521][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1039.332644][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1039.339817][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1039.346791][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1039.353783][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1039.361026][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1039.368010][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1039.420325][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1039.427340][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1039.434426][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1039.441443][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1039.448420][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1039.455516][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1039.462559][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1039.469612][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1039.476575][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1039.484041][T22784] Pass: 21052673 Run:21052828 [ 1039.500322][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1039.510268][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1039.520355][T22784] Call Trace: [ 1039.523664][T22784] [ 1039.526602][T22784] dump_stack_lvl+0xd1/0x138 [ 1039.531204][T22784] mt_find.cold+0x8b/0x90 [ 1039.535536][T22784] ? mas_find+0x1d0/0x1d0 [ 1039.539872][T22784] find_vma+0x10c/0x1b0 [ 1039.544024][T22784] ? can_vma_merge_before+0x390/0x390 [ 1039.549395][T22784] ? walk_page_test+0x78/0x180 [ 1039.554157][T22784] walk_page_range+0x2b1/0x4a0 [ 1039.558920][T22784] ? __walk_page_range+0x780/0x780 [ 1039.564073][T22784] mlock_fixup+0x650/0x810 [ 1039.568537][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1039.573781][T22784] ? mlock_fixup+0x810/0x810 [ 1039.578415][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1039.584341][T22784] do_mlock+0x25a/0x6d0 [ 1039.588532][T22784] ? folio_evictable+0x270/0x270 [ 1039.593512][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1039.599433][T22784] __x64_sys_mlock+0x59/0x80 [ 1039.604042][T22784] do_syscall_64+0x39/0xb0 [ 1039.608490][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1039.614408][T22784] RIP: 0033:0x7feaf548c0c9 [ 1039.618837][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.638467][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1039.646901][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1039.654886][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1039.662869][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1039.670853][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1039.678834][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1039.686839][T22784] [ 1039.691022][ T5180] gspca_sonixj: reg_w1 err -71 [ 1039.695374][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1039.701122][ T5180] sonixj: probe of 2-1:0.0 failed with error -71 [ 1039.701752][T22784] BUG at mt_find:6473 (1) [ 1039.713806][ T5180] usb 2-1: USB disconnect, device number 7 [ 1039.720776][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1039.741388][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1039.779264][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1039.831404][T22784] 0-536866815: 0000000000000000 [ 1039.836853][T22784] 536866816-536870911: ffff888094eb2460 [ 1039.845452][T22784] 536870912-553631743: ffff888094eb2540 [ 1039.851570][T22784] 553631744-553644031: 0000000000000000 [ 1039.857495][T22784] 553644032-553631743: ffff888076c687e0 [ 1039.863466][T22784] 553631744-553648127: ffff888076c689a0 [ 1039.869555][T22784] 553648128-553652223: ffff888094eb2620 [ 1039.875491][T22784] 553652224-116820934655: 0000000000000000 [ 1039.881954][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1039.888406][T22784] 116825128960-93824997462015: 0000000000000000 [ 1039.895112][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1039.902002][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1039.908906][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1039.916056][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1039.974243][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1039.981317][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1039.988277][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1039.995525][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1040.007779][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1040.014986][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1040.027321][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1040.037646][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1040.044711][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1040.051761][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1040.058727][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1040.065717][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1040.072712][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1040.081912][T22784] 140647115325440-140647127171071: ffff88802218f000 14:33:44 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000059965240450c3e61887c000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000600)={0x2c, &(0x7f0000003280)=ANY=[], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000640)={0x2c, &(0x7f0000000240)=ANY=[@ANYBLOB="00000100000012"], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000800)={0x84, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) [ 1040.088894][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1040.146071][T22784] 140647127171072-140647128055807: 0000000000000000 14:33:44 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_pktinfo(r0, 0x0, 0x28, 0x0, 0x0) 14:33:44 executing program 3: syz_clone(0x40008000, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0) 14:33:44 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_timeval(r0, 0x1, 0x1, 0x0, &(0x7f0000000100)) 14:33:44 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$sock_int(r0, 0x1, 0x2d, 0x0, &(0x7f00000001c0)) 14:33:44 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000002840)=@raw={'raw\x00', 0x9, 0x3, 0x260, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1c8, 0xffffffff, 0xffffffff, 0x1c8, 0xffffffff, 0x3, 0x0, {[{{@ip={@private, @dev, 0x0, 0x0, 'macsec0\x00', 'ipvlan0\x00'}, 0x0, 0x98, 0xd0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SET3={0x38}}, {{@uncond, 0x0, 0x90, 0xf8, 0x0, {}, [@common=@socket0={{0x20}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00', {0x7ff}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0) [ 1040.153220][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1040.160354][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1040.193667][T24414] x_tables: duplicate underflow at hook 3 14:33:44 executing program 4: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0) write$FUSE_BMAP(r0, 0x0, 0x0) 14:33:44 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000bc0)={0x0, 0x0, 0x0}, 0x0) 14:33:44 executing program 2: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) inotify_rm_watch(r0, 0x0) [ 1040.216261][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1040.244120][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 14:33:44 executing program 0: openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) 14:33:44 executing program 2: openat$audio1(0xffffffffffffff9c, &(0x7f0000004140), 0x0, 0x0) 14:33:44 executing program 5: openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000001c80), 0x2, 0x0) [ 1040.291549][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1040.350374][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1040.382171][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1040.410101][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1040.435140][T22784] Pass: 21058201 Run:21058357 [ 1040.454277][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1040.464234][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1040.474321][T22784] Call Trace: [ 1040.477623][T22784] [ 1040.480580][T22784] dump_stack_lvl+0xd1/0x138 [ 1040.485220][T22784] mt_find.cold+0x8b/0x90 [ 1040.489600][T22784] ? mas_find+0x1d0/0x1d0 [ 1040.493984][T22784] find_vma+0x10c/0x1b0 [ 1040.498187][T22784] ? can_vma_merge_before+0x390/0x390 [ 1040.503604][T22784] ? walk_page_test+0x78/0x180 [ 1040.508415][T22784] walk_page_range+0x2b1/0x4a0 [ 1040.513226][T22784] ? __walk_page_range+0x780/0x780 [ 1040.518389][T22784] mlock_fixup+0x650/0x810 [ 1040.522849][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1040.528084][T22784] ? mlock_fixup+0x810/0x810 [ 1040.532716][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1040.538642][T22784] do_mlock+0x25a/0x6d0 [ 1040.542835][T22784] ? folio_evictable+0x270/0x270 [ 1040.547818][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1040.553768][T22784] __x64_sys_mlock+0x59/0x80 [ 1040.558376][T22784] do_syscall_64+0x39/0xb0 [ 1040.562827][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1040.569180][T22784] RIP: 0033:0x7feaf548c0c9 [ 1040.573608][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1040.593235][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1040.601665][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1040.609648][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1040.617632][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1040.625613][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1040.633597][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1040.641602][T22784] [ 1040.653580][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1040.660858][T22784] BUG at mt_find:6473 (1) [ 1040.665405][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1040.674949][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1040.716811][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1040.769016][ T5180] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 1040.776998][T22784] 0-536866815: 0000000000000000 [ 1040.782503][T22784] 536866816-536870911: ffff888094eb2460 [ 1040.788486][T22784] 536870912-553631743: ffff888094eb2540 [ 1040.794824][T22784] 553631744-553644031: 0000000000000000 [ 1040.801671][T22784] 553644032-553631743: ffff888076c687e0 [ 1040.807615][T22784] 553631744-553648127: ffff888076c689a0 [ 1040.813976][T22784] 553648128-553652223: ffff888094eb2620 [ 1040.820182][T22784] 553652224-116820934655: 0000000000000000 [ 1040.826392][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1040.833476][T22784] 116825128960-93824997462015: 0000000000000000 [ 1040.840407][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1040.847219][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1040.855425][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1040.862476][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1040.919112][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1040.926238][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1040.933812][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1040.945273][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1040.953220][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1040.960799][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1040.967880][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1040.975260][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1040.984764][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1040.992177][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1040.999508][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1041.006600][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1041.014244][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1041.022750][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1041.030594][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1041.082373][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1041.089501][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1041.096491][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1041.103596][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1041.110715][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1041.117701][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1041.124850][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1041.129195][ T5180] usb 2-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=7c.88 [ 1041.133190][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1041.149070][ T5180] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1041.150244][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1041.166867][T22784] Pass: 21058285 Run:21058442 [ 1041.171062][ T5180] usb 2-1: config 0 descriptor?? [ 1041.174569][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1041.186364][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1041.196423][T22784] Call Trace: [ 1041.199714][T22784] [ 1041.202654][T22784] dump_stack_lvl+0xd1/0x138 [ 1041.207281][T22784] mt_find.cold+0x8b/0x90 [ 1041.211644][T22784] ? mas_find+0x1d0/0x1d0 [ 1041.216015][T22784] find_vma+0x10c/0x1b0 [ 1041.220189][T22784] ? can_vma_merge_before+0x390/0x390 [ 1041.225591][T22784] ? walk_page_test+0x78/0x180 [ 1041.230383][T22784] walk_page_range+0x2b1/0x4a0 [ 1041.235175][T22784] ? __walk_page_range+0x780/0x780 [ 1041.240332][T22784] mlock_fixup+0x650/0x810 [ 1041.244789][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1041.250020][T22784] ? mlock_fixup+0x810/0x810 [ 1041.254652][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1041.260582][T22784] do_mlock+0x25a/0x6d0 [ 1041.264772][T22784] ? folio_evictable+0x270/0x270 [ 1041.269754][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1041.275677][T22784] __x64_sys_mlock+0x59/0x80 [ 1041.280281][T22784] do_syscall_64+0x39/0xb0 [ 1041.284726][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1041.290642][T22784] RIP: 0033:0x7feaf548c0c9 [ 1041.295071][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1041.314695][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1041.323127][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1041.331110][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1041.339095][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1041.347076][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1041.355059][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1041.363060][T22784] [ 1041.380321][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1041.386374][T22784] BUG at mt_find:6473 (1) [ 1041.391747][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1041.400508][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1041.401321][ T5180] gspca_main: sonixj-2.14.0 probing 0c45:613e [ 1041.445125][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1041.494211][T22784] 0-536866815: 0000000000000000 [ 1041.503323][T22784] 536866816-536870911: ffff888094eb2460 [ 1041.509764][T22784] 536870912-553631743: ffff888094eb2540 [ 1041.515751][T22784] 553631744-553644031: 0000000000000000 [ 1041.521795][T22784] 553644032-553631743: ffff888076c687e0 [ 1041.527777][T22784] 553631744-553648127: ffff888076c689a0 [ 1041.533811][T22784] 553648128-553652223: ffff888094eb2620 [ 1041.539869][T22784] 553652224-116820934655: 0000000000000000 [ 1041.546129][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1041.552712][T22784] 116825128960-93824997462015: 0000000000000000 [ 1041.559548][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1041.567328][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1041.574344][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1041.581488][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1041.643100][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1041.650256][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1041.657434][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1041.665187][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1041.673899][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1041.681014][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1041.688032][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1041.695151][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1041.702263][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1041.709407][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1041.716503][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1041.723610][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1041.730792][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1041.737874][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1041.745002][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1041.798722][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1041.805920][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1041.813104][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1041.820255][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1041.827339][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1041.834442][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1041.841497][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1041.848459][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1041.855499][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1041.862968][T22784] Pass: 21058309 Run:21058467 [ 1041.867652][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1041.877553][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1041.887638][T22784] Call Trace: [ 1041.890941][T22784] [ 1041.893897][T22784] dump_stack_lvl+0xd1/0x138 [ 1041.898541][T22784] mt_find.cold+0x8b/0x90 [ 1041.902929][T22784] ? mas_find+0x1d0/0x1d0 [ 1041.907321][T22784] find_vma+0x10c/0x1b0 [ 1041.911517][T22784] ? can_vma_merge_before+0x390/0x390 [ 1041.916936][T22784] ? walk_page_test+0x78/0x180 [ 1041.921756][T22784] walk_page_range+0x2b1/0x4a0 [ 1041.926582][T22784] ? __walk_page_range+0x780/0x780 [ 1041.931763][T22784] mlock_fixup+0x650/0x810 [ 1041.936247][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1041.941502][T22784] ? mlock_fixup+0x810/0x810 [ 1041.946154][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1041.952085][T22784] do_mlock+0x25a/0x6d0 [ 1041.956281][T22784] ? folio_evictable+0x270/0x270 [ 1041.961264][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1041.967191][T22784] __x64_sys_mlock+0x59/0x80 [ 1041.971802][T22784] do_syscall_64+0x39/0xb0 [ 1041.976272][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1041.982190][T22784] RIP: 0033:0x7feaf548c0c9 [ 1041.986620][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1042.006246][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1042.014678][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1042.022661][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1042.030647][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1042.038631][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1042.046613][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1042.054617][T22784] [ 1042.086168][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1042.092322][T22784] BUG at mt_find:6473 (1) [ 1042.096718][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1042.105956][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1042.143757][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1042.195285][T22784] 0-536866815: 0000000000000000 [ 1042.200908][T22784] 536866816-536870911: ffff888094eb2460 [ 1042.207022][T22784] 536870912-553631743: ffff888094eb2540 [ 1042.213399][T22784] 553631744-553644031: 0000000000000000 [ 1042.219648][T22784] 553644032-553631743: ffff888076c687e0 [ 1042.225585][T22784] 553631744-553648127: ffff888076c689a0 [ 1042.231963][T22784] 553648128-553652223: ffff888094eb2620 [ 1042.237905][T22784] 553652224-116820934655: 0000000000000000 [ 1042.244480][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1042.251224][T22784] 116825128960-93824997462015: 0000000000000000 [ 1042.257857][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1042.265009][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1042.272199][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1042.279474][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1042.338292][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1042.346140][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1042.354446][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1042.361723][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1042.368704][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1042.376082][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1042.383349][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1042.391517][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1042.398504][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1042.405869][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1042.413284][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1042.420629][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1042.427698][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1042.435420][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1042.444974][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1042.496007][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1042.512408][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1042.527412][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1042.542496][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1042.560505][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1042.575327][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1042.586251][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1042.601214][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1042.608215][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1042.615739][T22784] Pass: 21058312 Run:21058471 [ 1042.626099][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1042.636039][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1042.646122][T22784] Call Trace: [ 1042.649428][T22784] [ 1042.652384][T22784] dump_stack_lvl+0xd1/0x138 [ 1042.657029][T22784] mt_find.cold+0x8b/0x90 [ 1042.661407][T22784] ? mas_find+0x1d0/0x1d0 [ 1042.665785][T22784] find_vma+0x10c/0x1b0 [ 1042.669965][T22784] ? can_vma_merge_before+0x390/0x390 [ 1042.675364][T22784] ? walk_page_test+0x78/0x180 [ 1042.680156][T22784] walk_page_range+0x2b1/0x4a0 [ 1042.684949][T22784] ? __walk_page_range+0x780/0x780 [ 1042.690106][T22784] mlock_fixup+0x650/0x810 [ 1042.694569][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1042.699807][T22784] ? mlock_fixup+0x810/0x810 [ 1042.704443][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1042.710370][T22784] do_mlock+0x25a/0x6d0 [ 1042.714585][T22784] ? folio_evictable+0x270/0x270 [ 1042.719593][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1042.725533][T22784] __x64_sys_mlock+0x59/0x80 [ 1042.730146][T22784] do_syscall_64+0x39/0xb0 [ 1042.734612][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1042.740537][T22784] RIP: 0033:0x7feaf548c0c9 [ 1042.744979][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1042.764620][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1042.773060][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1042.781046][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1042.789030][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1042.797015][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1042.805014][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1042.813036][T22784] [ 1042.823699][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1042.830204][T22784] BUG at mt_find:6473 (1) [ 1042.834765][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1042.843804][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1042.881272][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1042.933971][T22784] 0-536866815: 0000000000000000 [ 1042.949025][T22784] 536866816-536870911: ffff888094eb2460 [ 1042.954980][T22784] 536870912-553631743: ffff888094eb2540 [ 1042.970975][T22784] 553631744-553644031: 0000000000000000 [ 1042.976927][T22784] 553644032-553631743: ffff888076c687e0 [ 1042.992736][T22784] 553631744-553648127: ffff888076c689a0 [ 1043.000905][T22784] 553648128-553652223: ffff888094eb2620 [ 1043.006853][T22784] 553652224-116820934655: 0000000000000000 [ 1043.013214][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1043.019752][T22784] 116825128960-93824997462015: 0000000000000000 [ 1043.026377][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1043.033846][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1043.043185][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1043.050492][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1043.107111][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1043.124065][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1043.135459][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1043.148155][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1043.171114][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1043.178116][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1043.193636][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1043.206457][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1043.219093][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1043.226180][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1043.233779][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1043.241126][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1043.248190][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1043.255639][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1043.263014][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1043.318703][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1043.336196][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1043.346597][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1043.360216][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1043.368174][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1043.382457][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1043.397440][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1043.413724][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1043.428832][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1043.442508][T22784] Pass: 21058313 Run:21058473 [ 1043.447307][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1043.457227][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1043.467312][T22784] Call Trace: [ 1043.470612][T22784] [ 1043.473564][T22784] dump_stack_lvl+0xd1/0x138 [ 1043.478204][T22784] mt_find.cold+0x8b/0x90 [ 1043.482588][T22784] ? mas_find+0x1d0/0x1d0 [ 1043.486972][T22784] find_vma+0x10c/0x1b0 [ 1043.491162][T22784] ? can_vma_merge_before+0x390/0x390 [ 1043.496573][T22784] ? walk_page_test+0x78/0x180 [ 1043.501379][T22784] walk_page_range+0x2b1/0x4a0 [ 1043.506189][T22784] ? __walk_page_range+0x780/0x780 [ 1043.511375][T22784] mlock_fixup+0x650/0x810 [ 1043.515850][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1043.521099][T22784] ? mlock_fixup+0x810/0x810 [ 1043.525754][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1043.531693][T22784] do_mlock+0x25a/0x6d0 [ 1043.535886][T22784] ? folio_evictable+0x270/0x270 [ 1043.540879][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1043.546803][T22784] __x64_sys_mlock+0x59/0x80 [ 1043.551411][T22784] do_syscall_64+0x39/0xb0 [ 1043.555859][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1043.561775][T22784] RIP: 0033:0x7feaf548c0c9 [ 1043.566204][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1043.585835][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1043.594271][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1043.602261][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1043.610250][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1043.618242][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1043.626235][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1043.634244][T22784] [ 1043.653115][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1043.664202][T22784] BUG at mt_find:6473 (1) [ 1043.668571][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1043.686780][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1043.736187][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1043.797440][T22784] 0-536866815: 0000000000000000 [ 1043.802844][T22784] 536866816-536870911: ffff888094eb2460 [ 1043.808779][T22784] 536870912-553631743: ffff888094eb2540 [ 1043.819561][T22784] 553631744-553644031: 0000000000000000 [ 1043.825517][T22784] 553644032-553631743: ffff888076c687e0 [ 1043.831548][T22784] 553631744-553648127: ffff888076c689a0 [ 1043.837477][T22784] 553648128-553652223: ffff888094eb2620 [ 1043.843472][T22784] 553652224-116820934655: 0000000000000000 [ 1043.849870][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1043.856407][T22784] 116825128960-93824997462015: 0000000000000000 [ 1043.863179][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1043.870596][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1043.877580][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1043.884752][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1043.943486][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1043.951373][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1043.958469][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1043.965883][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1043.973184][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1043.980458][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1043.987808][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1043.995022][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1044.002194][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1044.010016][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1044.017137][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1044.024916][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1044.032711][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1044.039871][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1044.046836][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1044.098140][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1044.105169][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1044.112845][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1044.119980][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1044.128513][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1044.135611][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1044.142636][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1044.149669][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1044.156629][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1044.164083][T22784] Pass: 21058315 Run:21058476 [ 1044.168767][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1044.178652][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1044.188706][T22784] Call Trace: [ 1044.191992][T22784] [ 1044.194947][T22784] dump_stack_lvl+0xd1/0x138 [ 1044.199586][T22784] mt_find.cold+0x8b/0x90 [ 1044.203981][T22784] ? mas_find+0x1d0/0x1d0 [ 1044.208350][T22784] find_vma+0x10c/0x1b0 [ 1044.212527][T22784] ? can_vma_merge_before+0x390/0x390 [ 1044.217926][T22784] ? walk_page_test+0x78/0x180 [ 1044.222719][T22784] walk_page_range+0x2b1/0x4a0 [ 1044.227512][T22784] ? __walk_page_range+0x780/0x780 [ 1044.232667][T22784] mlock_fixup+0x650/0x810 [ 1044.237126][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1044.242357][T22784] ? mlock_fixup+0x810/0x810 [ 1044.247027][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1044.252954][T22784] do_mlock+0x25a/0x6d0 [ 1044.257141][T22784] ? folio_evictable+0x270/0x270 [ 1044.262121][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1044.268044][T22784] __x64_sys_mlock+0x59/0x80 [ 1044.272650][T22784] do_syscall_64+0x39/0xb0 [ 1044.277098][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1044.283015][T22784] RIP: 0033:0x7feaf548c0c9 [ 1044.287442][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1044.307065][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1044.315497][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1044.323481][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1044.331464][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1044.339448][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1044.347430][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1044.355432][T22784] [ 1044.367414][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1044.373416][T22784] BUG at mt_find:6473 (1) [ 1044.377776][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1044.386883][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1044.424197][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1044.476749][T22784] 0-536866815: 0000000000000000 [ 1044.482667][T22784] 536866816-536870911: ffff888094eb2460 [ 1044.488595][T22784] 536870912-553631743: ffff888094eb2540 [ 1044.494765][T22784] 553631744-553644031: 0000000000000000 [ 1044.500982][T22784] 553644032-553631743: ffff888076c687e0 [ 1044.506915][T22784] 553631744-553648127: ffff888076c689a0 [ 1044.513240][T22784] 553648128-553652223: ffff888094eb2620 [ 1044.519456][T22784] 553652224-116820934655: 0000000000000000 [ 1044.525644][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1044.532474][T22784] 116825128960-93824997462015: 0000000000000000 [ 1044.540282][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1044.547086][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1044.554391][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1044.561647][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1044.629096][ T5180] gspca_sonixj: reg_w1 err -71 [ 1044.633964][ T5180] sonixj: probe of 2-1:0.0 failed with error -71 [ 1044.634959][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1044.652792][ T5180] usb 2-1: USB disconnect, device number 8 [ 1044.656062][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1044.656096][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1044.685781][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1044.693415][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1044.701418][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1044.708487][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1044.715749][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1044.729297][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1044.736409][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1044.745646][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1044.752819][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1044.759975][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1044.767019][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1044.774095][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1044.826412][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1044.833813][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1044.840961][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1044.849112][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1044.856089][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1044.863119][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1044.870336][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1044.877301][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1044.884319][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1044.891764][T22784] Pass: 21058541 Run:21058703 [ 1044.896457][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1044.906360][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1044.916448][T22784] Call Trace: [ 1044.919756][T22784] [ 1044.922711][T22784] dump_stack_lvl+0xd1/0x138 [ 1044.927344][T22784] mt_find.cold+0x8b/0x90 [ 1044.931702][T22784] ? mas_find+0x1d0/0x1d0 [ 1044.936073][T22784] find_vma+0x10c/0x1b0 [ 1044.940245][T22784] ? can_vma_merge_before+0x390/0x390 [ 1044.945663][T22784] ? walk_page_test+0x78/0x180 [ 1044.950483][T22784] walk_page_range+0x2b1/0x4a0 [ 1044.955288][T22784] ? __walk_page_range+0x780/0x780 [ 1044.960446][T22784] mlock_fixup+0x650/0x810 [ 1044.964909][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1044.970146][T22784] ? mlock_fixup+0x810/0x810 [ 1044.974786][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1044.980726][T22784] do_mlock+0x25a/0x6d0 [ 1044.984930][T22784] ? folio_evictable+0x270/0x270 [ 1044.990005][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1044.995940][T22784] __x64_sys_mlock+0x59/0x80 [ 1045.000558][T22784] do_syscall_64+0x39/0xb0 [ 1045.005011][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1045.010931][T22784] RIP: 0033:0x7feaf548c0c9 [ 1045.015362][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1045.035005][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1045.043466][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1045.051468][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1045.059462][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1045.067453][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1045.075439][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1045.083446][T22784] [ 1045.094835][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1045.100854][T22784] BUG at mt_find:6473 (1) [ 1045.105219][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1045.113871][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:49 executing program 1: openat$sequencer2(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) 14:33:49 executing program 0: mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000380)={0xf, 0x8}, 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$UHID_INPUT(r1, &(0x7f00000000c0)={0x8, {"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", 0x1000}}, 0x1006) 14:33:49 executing program 4: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$fb(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) 14:33:49 executing program 2: openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 14:33:49 executing program 5: syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1, 0xeb1, &(0x7f0000000f80)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0x208e24b) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000380)={0x0, 0x100000065e8}) 14:33:49 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/libceph', 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000100)='\x9a$-/%}{,-%!:\xb8*\x00', &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff) [ 1045.153115][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1045.205985][T22784] 0-536866815: 0000000000000000 [ 1045.211619][T22784] 536866816-536870911: ffff888094eb2460 [ 1045.217571][T22784] 536870912-553631743: ffff888094eb2540 14:33:49 executing program 4: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$FUSE_STATFS(r0, 0x0, 0x0) 14:33:49 executing program 2: r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000001100), 0x1, 0x0) write$tcp_congestion(r0, &(0x7f0000001140)='reno\x00', 0x5) 14:33:49 executing program 3: openat$ptmx(0xffffffffffffff9c, 0x0, 0x400040, 0x0) 14:33:49 executing program 1: ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) mprotect(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4) mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000540)='/proc/tty/ldiscs\x00', 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ff9000/0x3000)=nil, 0x930, 0x0, 0x12, r0, 0x0) [ 1045.300321][T22784] 553631744-553644031: 0000000000000000 14:33:49 executing program 0: mremap(&(0x7f0000fed000/0x13000)=nil, 0x1300a, 0x4000, 0x0, &(0x7f0000fed000/0x4000)=nil) sched_rr_get_interval(0x0, &(0x7f0000000000)) 14:33:49 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x7, 0x0, 0x9}, 0x48) 14:33:49 executing program 3: mlock(&(0x7f0000ff7000/0x4000)=nil, 0x4000) mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000fed000/0x4000)=nil) [ 1045.344196][T22784] 553644032-553631743: ffff888076c687e0 14:33:49 executing program 4: syz_open_dev$loop(&(0x7f0000000140), 0x6, 0x0) 14:33:49 executing program 1: ioctl$EVIOCGREP(0xffffffffffffffff, 0x80084503, 0x0) [ 1045.389736][T22784] 553631744-553648127: ffff888076c689a0 14:33:49 executing program 0: ioctl$SNDRV_PCM_IOCTL_UNLINK(0xffffffffffffffff, 0x4161, 0x0) ioctl$SNDRV_PCM_IOCTL_START(0xffffffffffffffff, 0x4142, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x9, 0x701000) ioctl$SNDRV_PCM_IOCTL_RESET(r0, 0x4141, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000000c0)={0x4, 0x0, &(0x7f0000000040)=[@exit_looper], 0x6, 0x0, &(0x7f0000000080)="b162ed29bebe"}) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, &(0x7f0000000100)) ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000140)=""/78) r1 = syz_open_dev$evdev(&(0x7f00000001c0), 0x100, 0x200) ioctl$EVIOCSKEYCODE(r1, 0x40084504, &(0x7f0000000200)=[0x8001, 0xe7c]) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000023c0)='./binderfs/binder1\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) [ 1045.439119][T22784] 553648128-553652223: ffff888094eb2620 [ 1045.499210][T22784] 553652224-116820934655: 0000000000000000 [ 1045.505446][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1045.524476][T22784] 116825128960-93824997462015: 0000000000000000 [ 1045.534125][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1045.541390][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1045.548383][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1045.573608][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1045.639610][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1045.646637][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1045.667888][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1045.677177][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1045.684563][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1045.691830][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1045.698811][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1045.705867][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1045.722440][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1045.729549][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1045.736534][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1045.743637][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1045.750688][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1045.757670][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1045.767723][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1045.833053][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1045.848999][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1045.856010][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1045.875044][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1045.886261][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1045.898780][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1045.910070][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1045.917071][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1045.924417][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1045.932102][T22784] Pass: 21069594 Run:21069757 [ 1045.936814][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1045.946747][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1045.956837][T22784] Call Trace: [ 1045.960145][T22784] [ 1045.963103][T22784] dump_stack_lvl+0xd1/0x138 [ 1045.967759][T22784] mt_find.cold+0x8b/0x90 [ 1045.972148][T22784] ? mas_find+0x1d0/0x1d0 [ 1045.976539][T22784] find_vma+0x10c/0x1b0 [ 1045.980743][T22784] ? can_vma_merge_before+0x390/0x390 [ 1045.986164][T22784] ? walk_page_test+0x78/0x180 [ 1045.990978][T22784] walk_page_range+0x2b1/0x4a0 [ 1045.995791][T22784] ? __walk_page_range+0x780/0x780 [ 1046.000977][T22784] mlock_fixup+0x650/0x810 [ 1046.005467][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1046.010732][T22784] ? mlock_fixup+0x810/0x810 [ 1046.015392][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1046.021345][T22784] do_mlock+0x25a/0x6d0 [ 1046.025570][T22784] ? folio_evictable+0x270/0x270 [ 1046.030591][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1046.036543][T22784] __x64_sys_mlock+0x59/0x80 [ 1046.041178][T22784] do_syscall_64+0x39/0xb0 [ 1046.045654][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1046.051597][T22784] RIP: 0033:0x7feaf548c0c9 [ 1046.056050][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1046.075700][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1046.084165][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1046.092180][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1046.100188][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1046.108189][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1046.116196][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1046.124228][T22784] [ 1046.133004][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1046.139167][T22784] BUG at mt_find:6473 (1) [ 1046.143602][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1046.152239][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1046.191957][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1046.244421][T22784] 0-536866815: 0000000000000000 [ 1046.250086][T22784] 536866816-536870911: ffff888094eb2460 [ 1046.256155][T22784] 536870912-553631743: ffff888094eb2540 [ 1046.262621][T22784] 553631744-553644031: 0000000000000000 [ 1046.268689][T22784] 553644032-553631743: ffff888076c687e0 [ 1046.276661][T22784] 553631744-553648127: ffff888076c689a0 [ 1046.283022][T22784] 553648128-553652223: ffff888094eb2620 [ 1046.289317][T22784] 553652224-116820934655: 0000000000000000 [ 1046.295649][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1046.302621][T22784] 116825128960-93824997462015: 0000000000000000 [ 1046.329042][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1046.336270][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1046.358067][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1046.375461][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1046.451461][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1046.458710][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1046.465888][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1046.472980][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1046.480648][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1046.488617][T22784] 140647109492736-140647113687039: ffff888094eb2e00 14:33:50 executing program 5: r0 = socket$can_j1939(0x1d, 0x2, 0x7) getsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 14:33:50 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x1, 0x5, 0x4f, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 14:33:50 executing program 4: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000180), 0x2) ioctl$UDMABUF_CREATE(r0, 0x5452, &(0x7f00000001c0)) 14:33:50 executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x2, &(0x7f0000000040)=@raw=[@map_val], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 14:33:50 executing program 1: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000023c0)='./binderfs/binder1\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000002780)={0x68, 0x0, &(0x7f0000002600)=[@dead_binder_done, @clear_death, @release, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x1, 0x0, &(0x7f00000026c0)="f4"}) 14:33:50 executing program 0: mremap(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x4000, 0x0, &(0x7f0000fed000/0x4000)=nil) munlock(&(0x7f0000ff3000/0x1000)=nil, 0x1000) 14:33:50 executing program 3: openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x841c0, 0x0) [ 1046.495959][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1046.503181][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1046.510342][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1046.517778][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1046.534460][T22784] 140647114903552-140647115268095: ffff88807687fee0 14:33:50 executing program 4: pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) getpeername$unix(r0, 0x0, 0x0) 14:33:50 executing program 0: pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000006, 0xffffffffffffffff) 14:33:50 executing program 2: openat$bsg(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0) syz_io_uring_setup(0xb4, &(0x7f00000004c0), &(0x7f0000000000/0x2000)=nil, &(0x7f0000000000/0x4000)=nil, &(0x7f0000000540), &(0x7f0000000580)) 14:33:50 executing program 1: syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x8, 0xe0, 0x0, [{{0x9, 0x4, 0x0, 0xf9, 0x1, 0x7, 0x1, 0x2, 0x7f, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x58}}}}}]}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x0, 0x9, 0x0, 0x5, 0xff}, 0x4b, &(0x7f0000000080)={0x5, 0xf, 0x4b, 0x2, [@generic={0x43, 0x10, 0xa, "60f4ce517583b344e15f72c11d4bf9f7c5d59281945b117eb9f7d4d19c5a53b45445f80bb1967a1eec7cfc7713103603392ebd86925f7e03f90df52bfb56f07d"}, @ptm_cap={0x3}]}, 0x2, [{0x15, &(0x7f0000000100)=@string={0x15, 0x3, "87a12fc93820dd276a33dd08c1e2353a91b9c7"}}, {0x58, &(0x7f0000000140)=@string={0x58, 0x3, "385a15d56df2111bdd0e5a9effe04c49bf0ebdf56f0d59cc81e4304e23fecba3a14e9867b50f40b27d349046256fe52f587a57f9145e195ef4eace22b28dbc25d1fa217acd3e23362ad371bedb8854b7ed0527681225"}}]}) [ 1046.587478][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:33:50 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x3, 0x3, 0x101, 0x0, 0x0, {}, [@NFQA_MARK={0x8}, @NFQA_VERDICT_HDR={0xc}, @NFQA_MARK]}, 0x34}}, 0x0) [ 1046.639408][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1046.692207][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1046.722980][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1046.733627][T24491] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1046.790554][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1046.797601][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1046.805555][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1046.812624][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1046.819679][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1046.826663][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1046.835379][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1046.845230][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1046.863267][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1046.888040][T22784] Pass: 21076813 Run:21076977 [ 1046.915727][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1046.925695][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1046.935786][T22784] Call Trace: [ 1046.939089][T22784] [ 1046.942045][T22784] dump_stack_lvl+0xd1/0x138 [ 1046.946690][T22784] mt_find.cold+0x8b/0x90 [ 1046.951073][T22784] ? mas_find+0x1d0/0x1d0 [ 1046.955475][T22784] find_vma+0x10c/0x1b0 [ 1046.959674][T22784] ? can_vma_merge_before+0x390/0x390 [ 1046.965097][T22784] ? walk_page_test+0x78/0x180 [ 1046.969910][T22784] walk_page_range+0x2b1/0x4a0 [ 1046.974709][T22784] ? __walk_page_range+0x780/0x780 [ 1046.979872][T22784] mlock_fixup+0x650/0x810 [ 1046.984333][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1046.989568][T22784] ? mlock_fixup+0x810/0x810 [ 1046.994211][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1047.000155][T22784] do_mlock+0x25a/0x6d0 [ 1047.004351][T22784] ? folio_evictable+0x270/0x270 [ 1047.009332][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1047.015255][T22784] __x64_sys_mlock+0x59/0x80 [ 1047.019864][T22784] do_syscall_64+0x39/0xb0 [ 1047.024330][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1047.030272][T22784] RIP: 0033:0x7feaf548c0c9 [ 1047.034713][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1047.054430][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1047.062864][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1047.070848][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1047.078832][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1047.086816][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1047.094796][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1047.102798][T22784] [ 1047.106659][ T7] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 1047.119926][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1047.125875][T22784] BUG at mt_find:6473 (1) [ 1047.133125][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:51 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x1d}, [@call={0x25}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) 14:33:51 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x8ab68ba297fb8a85}, 0xc) 14:33:51 executing program 0: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0xeab3af92203e574d, 0x0) syz_io_uring_setup(0x633b, &(0x7f00000000c0)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0)) 14:33:51 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x1c}, [@call={0x26, 0x0, 0x0, 0x80ffffff}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) 14:33:51 executing program 4: io_setup(0x101, &(0x7f0000000000)) io_setup(0x8, &(0x7f0000000300)) io_setup(0x2, &(0x7f0000000100)) [ 1047.142015][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:51 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f00000000c0)=0x3, 0x4) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, &(0x7f0000000200)={0x1, 'netdevsim0\x00'}, 0x18) syz_emit_ethernet(0x7e, &(0x7f0000000240)={@broadcast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0xc, 0x0, 0x0, 0x3, 0x5c, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @broadcast, @dev, {[@noop, @cipso={0x86, 0x3c, 0x0, [{0x0, 0x4, "86ca"}, {0x0, 0x3, 'y'}, {0x0, 0x12, "e1273f68ffa8f0c0695e0f970e80cca2"}, {0x0, 0x11, "f3f8d9f56ca0fd3e740b50826c9daa"}, {0x0, 0x8, "ef8be0c7289e"}, {0x0, 0x4, "ba17"}]}]}}}}}}}, 0x0) 14:33:51 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x1c}, [@call={0x67}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) 14:33:51 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="700000000806070200000000000000000a000007050001000700"], 0x70}}, 0x0) [ 1047.202721][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:51 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_SAVE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x8, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0xb, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}}, 0x0) 14:33:51 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="6400000001090102"], 0x64}}, 0x0) [ 1047.274282][T24506] netlink: 84 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1047.284297][T24506] netlink: 84 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1047.346196][T24511] netlink: 80 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1047.361323][T22784] 0-536866815: 0000000000000000 [ 1047.366763][T22784] 536866816-536870911: ffff888094eb2460 [ 1047.383464][T22784] 536870912-553631743: ffff888094eb2540 [ 1047.397387][T22784] 553631744-553644031: 0000000000000000 [ 1047.405151][ T7] usb 2-1: Using ep0 maxpacket: 32 [ 1047.412155][T22784] 553644032-553631743: ffff888076c687e0 [ 1047.418148][T22784] 553631744-553648127: ffff888076c689a0 [ 1047.424651][T22784] 553648128-553652223: ffff888094eb2620 [ 1047.430829][T22784] 553652224-116820934655: 0000000000000000 [ 1047.437087][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1047.444055][T22784] 116825128960-93824997462015: 0000000000000000 [ 1047.450920][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1047.457770][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1047.465092][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1047.474517][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1047.531025][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1047.538087][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1047.545886][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1047.553248][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1047.561373][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1047.568354][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1047.579199][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1047.586272][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1047.597992][ T7] usb 2-1: config 1 interface 0 altsetting 249 bulk endpoint 0x1 has invalid maxpacket 1023 [ 1047.599051][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1047.614646][ T7] usb 2-1: config 1 interface 0 has no altsetting 0 [ 1047.616081][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1047.629720][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1047.636751][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1047.643808][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1047.650880][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1047.657947][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1047.708000][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1047.720196][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1047.727186][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1047.734574][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1047.742241][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1047.749897][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1047.756885][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1047.764244][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1047.771755][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1047.779433][T22784] Pass: 21081990 Run:21082155 [ 1047.784141][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1047.794062][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1047.804121][T22784] Call Trace: [ 1047.807405][T22784] [ 1047.810344][T22784] dump_stack_lvl+0xd1/0x138 [ 1047.814978][T22784] mt_find.cold+0x8b/0x90 [ 1047.819340][T22784] ? mas_find+0x1d0/0x1d0 [ 1047.823741][T22784] find_vma+0x10c/0x1b0 [ 1047.827920][T22784] ? can_vma_merge_before+0x390/0x390 [ 1047.833318][T22784] ? walk_page_test+0x78/0x180 [ 1047.838111][T22784] walk_page_range+0x2b1/0x4a0 [ 1047.842904][T22784] ? __walk_page_range+0x780/0x780 [ 1047.848059][T22784] mlock_fixup+0x650/0x810 [ 1047.852516][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1047.857749][T22784] ? mlock_fixup+0x810/0x810 [ 1047.862384][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1047.868310][T22784] do_mlock+0x25a/0x6d0 [ 1047.872499][T22784] ? folio_evictable+0x270/0x270 [ 1047.877479][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1047.883403][T22784] __x64_sys_mlock+0x59/0x80 [ 1047.888011][T22784] do_syscall_64+0x39/0xb0 [ 1047.892457][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1047.898371][T22784] RIP: 0033:0x7feaf548c0c9 [ 1047.902797][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1047.922435][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1047.930878][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1047.938874][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1047.946864][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1047.954850][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1047.962837][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1047.970842][T22784] [ 1047.989113][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1047.995060][T22784] BUG at mt_find:6473 (1) [ 1047.999547][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1048.008090][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1048.045495][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1048.049319][ T7] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1048.095927][T22784] 0-536866815: [ 1048.103204][ T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1048.104645][T22784] 0000000000000000 [ 1048.107345][ T7] usb 2-1: Product: syz [ 1048.125768][T22784] 536866816-536870911: ffff888094eb2460 [ 1048.130619][ T7] usb 2-1: Manufacturer: 娸픕ᬑໝ鹚䥌຿൯챙丰︣ꏋ亡枘ྵ뉀㑽䚐漥⿥穘綾帔帙⋎趲▼𣏕稡㻍㘣팪빱裛띔׭栧┒ [ 1048.131903][T22784] 536870912-553631743: ffff888094eb2540 [ 1048.153498][T22784] 553631744-553644031: 0000000000000000 [ 1048.156370][ T7] usb 2-1: SerialNumber: syz [ 1048.159535][T22784] 553644032-553631743: ffff888076c687e0 [ 1048.159566][T22784] 553631744-553648127: ffff888076c689a0 [ 1048.159591][T22784] 553648128-553652223: ffff888094eb2620 [ 1048.182027][T22784] 553652224-116820934655: 0000000000000000 [ 1048.188225][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1048.195226][T22784] 116825128960-93824997462015: 0000000000000000 [ 1048.203149][T24488] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1048.211158][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1048.217930][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1048.227510][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1048.234987][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1048.297805][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1048.305101][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1048.312405][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1048.319714][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1048.327706][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1048.335059][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1048.342317][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1048.349660][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1048.356629][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1048.363861][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1048.371161][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1048.378130][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1048.385318][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1048.392571][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1048.401910][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1048.457162][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1048.465026][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1048.472400][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1048.479785][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1048.486780][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1048.501679][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1048.508679][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1048.515920][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1048.523075][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1048.531888][T22784] Pass: 21082014 Run:21082180 [ 1048.536589][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1048.546475][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1048.556525][T22784] Call Trace: [ 1048.559813][T22784] [ 1048.562774][T22784] dump_stack_lvl+0xd1/0x138 [ 1048.567420][T22784] mt_find.cold+0x8b/0x90 [ 1048.571775][T22784] ? mas_find+0x1d0/0x1d0 [ 1048.576162][T22784] find_vma+0x10c/0x1b0 [ 1048.578285][ T7] usb 2-1: USB disconnect, device number 9 [ 1048.580329][T22784] ? can_vma_merge_before+0x390/0x390 [ 1048.580374][T22784] ? walk_page_test+0x78/0x180 [ 1048.580415][T22784] walk_page_range+0x2b1/0x4a0 [ 1048.580459][T22784] ? __walk_page_range+0x780/0x780 [ 1048.580517][T22784] mlock_fixup+0x650/0x810 [ 1048.610773][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1048.616034][T22784] ? mlock_fixup+0x810/0x810 [ 1048.620705][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1048.626643][T22784] do_mlock+0x25a/0x6d0 [ 1048.630844][T22784] ? folio_evictable+0x270/0x270 [ 1048.635835][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1048.641763][T22784] __x64_sys_mlock+0x59/0x80 [ 1048.646378][T22784] do_syscall_64+0x39/0xb0 [ 1048.650830][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1048.656750][T22784] RIP: 0033:0x7feaf548c0c9 [ 1048.661180][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1048.680805][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1048.689238][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1048.697221][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1048.705208][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1048.713195][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1048.721182][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1048.729186][T22784] [ 1048.735576][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1048.741705][T22784] BUG at mt_find:6473 (1) [ 1048.746169][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1048.755001][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1048.792162][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1048.843820][T22784] 0-536866815: 0000000000000000 [ 1048.849425][T22784] 536866816-536870911: ffff888094eb2460 [ 1048.855470][T22784] 536870912-553631743: ffff888094eb2540 [ 1048.861657][T22784] 553631744-553644031: 0000000000000000 [ 1048.867598][T22784] 553644032-553631743: ffff888076c687e0 [ 1048.873665][T22784] 553631744-553648127: ffff888076c689a0 [ 1048.879648][T22784] 553648128-553652223: ffff888094eb2620 [ 1048.885542][T22784] 553652224-116820934655: 0000000000000000 [ 1048.891807][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1048.898265][T22784] 116825128960-93824997462015: 0000000000000000 [ 1048.905581][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1048.912518][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1048.919519][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1048.926490][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1048.985543][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1048.998313][T22784] 140647101104128-140647103201279: ffff888094eb2a80 14:33:53 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x1c}, [@call={0x4, 0x0, 0x0, 0x80ffffff}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) 14:33:53 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x34}}, 0x0) sendmsg$OSF_MSG_REMOVE(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000001c00)={0xe0c, 0x1, 0x5, 0x0, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', "d87f05a6909581f05736dcc05c2b8e27906041e658dcd763c1b108fb6db1739f", "725a4b426dd543a75ca9ca53f48b7e49c2fa119c33c7eeca51612a01d0bb3b63"}}}, {{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', "42e3932d47bade5636e979ef56a1dff830d73f426bcb61f7d65a05052e37c6b2", "409c09206aac6b8f7a884cd1a6bfdd5912ef2a5e67e1b4c78fcff7e447783626"}}}, {{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', "4e569001ae59f3fb174f181f8cb3db3e6a7f3f74b54ba1261c7592ef329786af", "80fd847c2717d2292734b252930a63bcb38165f19122d251540a68680f63d7d7"}}}, {{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', "30c81e1e0e9a67772f037f3df8343059cf267ec0d3f00bbbbee9c38f18c707f5", "07b0b04a12c7279683e9ca2545c0ae2e55894d9016f98f9b2ca20941266ae34b"}}}, {{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', "753dfbfc9ba951825431ed4095561b1f15a74b331ac6f7c814fc08fd493c03d8", "90325e513503b0db15b4504fd78d3dda77c9ea75abc40b9eaae51c857f162444"}}}, {{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz0\x00', "a46dce939f9b189a91b17a68ae922c22c5be2112f475395032478ae2a4697a5f", "526d57bb5bc0eacb22a471a6c85940094b1e0e3b29ce85e94845260b38b5b4ef"}}}]}, 0xe0c}}, 0x0) 14:33:53 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) getsockopt$netlink(r0, 0x10e, 0xa, 0x0, &(0x7f0000000100)) 14:33:53 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x50, 0x1, 0x2, 0x101, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}]}, 0x50}}, 0x0) 14:33:53 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x14, 0x0, 0x4, 0x201}, 0x14}}, 0x0) 14:33:53 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x26}, [@call={0x25}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) [ 1049.005348][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1049.012395][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1049.019465][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1049.026430][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1049.033451][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1049.045695][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1049.052812][T22784] 140647114563584-140647114899455: ffff888029235ee0 14:33:53 executing program 4: socketpair$unix(0x1, 0x4000000000002, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f0000007f80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0xa725}], 0x1, 0x0, 0x0, 0x0) recvmsg$unix(r0, &(0x7f00000037c0)={0x0, 0x0, 0x0}, 0x0) 14:33:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r3, 0x4068aea3, &(0x7f0000000300)={0xa3, 0x0, 0x0}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:33:53 executing program 0: r0 = syz_io_uring_setup(0x25, &(0x7f0000000100), &(0x7f0000000000/0x4000)=nil, &(0x7f0000000000/0x4000)=nil, &(0x7f0000000040), &(0x7f00000000c0)) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1, 0x7}, 0x1c) io_uring_enter(r0, 0x40b3, 0x0, 0x0, &(0x7f0000000000)={[0x2]}, 0x8) 14:33:53 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x4) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc) [ 1049.098570][T22784] 140647114899456-140647114903551: 0000000000000000 14:33:53 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x56}, [@call={0x25}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) [ 1049.146346][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1049.185346][T22784] 140647115268096-140647115304959: ffff88807a3a2380 14:33:53 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS(r0, &(0x7f0000000000)={&(0x7f0000000100), 0x20000106, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x5, 0x1, 0x0, 0x0, 0x0, {}, ["", ""]}, 0x14}}, 0x0) 14:33:53 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:53 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'wlan0\x00'}) 14:33:53 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x50, 0x1, 0x2, 0x101, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0x8, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}]}]}, 0x50}}, 0x0) [ 1049.278609][T22784] 140647115304960-140647115325439: 0000000000000000 14:33:53 executing program 0: timer_create(0x9, &(0x7f0000000100)={0x0, 0x12}, &(0x7f0000000180)=0x0) timer_settime(0x0, 0x0, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) timer_create(0x0, &(0x7f0000000480)={0x0, 0x1a, 0x0, @thr={&(0x7f00000003c0)="d9fea99bf0cfaa05135d43981b6ec4bfde9061186140a461f667a0b8ac4a7888ac743a2cceb164b1be94d4a7343fa33270cd08718a2cb58afdbbd5c217d6e88f95a7047b27e9fdfa3be88b21fc5e602bd5216bacdf70f481aa3af429ee32bb279010e2b660272763dbf402606a499c794da2192ccf2af496d0b2ddc3e48d9e9b807f0c8a72f86f675b6bcc", &(0x7f0000000580)="a54946f5bf7c08dad160d8c015877ff923c04a9d2a9392c20f15e4d916d0ffae7502c335c4e0e768193e6b61ea2f8f6092231ffb989365892c3eac262b9ee319ee9c4ca0c1dabaf3d31d73ffdd7a6e714e0e28b933862656b703327df5ccba7e638c86e4ae7fd0711ab580e9a7de474714c3f09061683707d641222bf196ebcf42b6315a345bf3163500cedf0164872b804cbdeaca3cd236b7de8f8abce7e89089a7f02373ee53191d35afb2538ef56fd95c90fd84a1945b651300ba3c0f0a4ff964bdc9bcab486ed3e1adff8d5144967f0894b445c17127475ac4873b9959b54f97964bf0fd"}}, &(0x7f00000004c0)=0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x20}}, 0x0) clock_gettime(0x0, &(0x7f00000006c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000700)={0x0, 0x0}) timer_settime(r2, 0x0, &(0x7f0000000740)={{r4, r5+60000000}, {r6, r7+10000000}}, &(0x7f0000000780)) timer_settime(r0, 0x0, &(0x7f00000007c0), &(0x7f0000000680)) getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000540)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0x4, r8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 14:33:53 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:53 executing program 3: syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x204894, &(0x7f0000000180)=ANY=[], 0x1, 0x4c3, &(0x7f0000000f00)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) [ 1049.321914][T24545] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1049.361568][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1049.389220][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1049.489346][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1049.496655][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1049.507537][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1049.543052][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1049.560839][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1049.598446][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1049.615389][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1049.622526][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1049.630787][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1049.638194][T22784] Pass: 21092309 Run:21092476 [ 1049.645148][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1049.655075][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1049.665135][T22784] Call Trace: [ 1049.668427][T22784] [ 1049.671357][T22784] dump_stack_lvl+0xd1/0x138 [ 1049.675956][T22784] mt_find.cold+0x8b/0x90 [ 1049.680289][T22784] ? mas_find+0x1d0/0x1d0 [ 1049.684626][T22784] find_vma+0x10c/0x1b0 [ 1049.688777][T22784] ? can_vma_merge_before+0x390/0x390 [ 1049.694148][T22784] ? walk_page_test+0x78/0x180 [ 1049.698911][T22784] walk_page_range+0x2b1/0x4a0 [ 1049.703697][T22784] ? __walk_page_range+0x780/0x780 [ 1049.708873][T22784] mlock_fixup+0x650/0x810 [ 1049.713364][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1049.718596][T22784] ? mlock_fixup+0x810/0x810 [ 1049.723200][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1049.729128][T22784] do_mlock+0x25a/0x6d0 [ 1049.733306][T22784] ? folio_evictable+0x270/0x270 [ 1049.738288][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1049.744182][T22784] __x64_sys_mlock+0x59/0x80 [ 1049.748781][T22784] do_syscall_64+0x39/0xb0 [ 1049.753241][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1049.759167][T22784] RIP: 0033:0x7feaf548c0c9 [ 1049.763588][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1049.783192][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1049.791603][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1049.799580][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1049.807580][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1049.815565][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1049.823530][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1049.831527][T22784] [ 1049.838570][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1049.844679][T22784] BUG at mt_find:6473 (1) [ 1049.849190][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1049.857727][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1049.896395][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1049.946553][T22784] 0-536866815: 0000000000000000 [ 1049.952019][T22784] 536866816-536870911: ffff888094eb2460 [ 1049.958042][T22784] 536870912-553631743: ffff888094eb2540 [ 1049.965679][T22784] 553631744-553644031: 0000000000000000 [ 1049.971843][T22784] 553644032-553631743: ffff888076c687e0 [ 1049.977875][T22784] 553631744-553648127: ffff888076c689a0 [ 1049.983975][T22784] 553648128-553652223: ffff888094eb2620 [ 1049.990050][T22784] 553652224-116820934655: 0000000000000000 14:33:54 executing program 4: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x65}, [@call={0x15}], {0x95, 0x2}}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) 14:33:54 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:54 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc) 14:33:54 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x13, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x65}, [@call={0xc}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x46, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f) 14:33:54 executing program 0: ioctl$FIONCLEX(0xffffffffffffffff, 0x5450) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x14, 0x4, 0x4, 0x7}, 0x48) openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x400000, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000580)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x3c}}, 0x0) r4 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000080)=0x2, 0x4) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = signalfd(r0, &(0x7f0000001640)={[0x7]}, 0x8) sendmsg$nl_route(r6, &(0x7f0000001740)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001700)={&(0x7f00000016c0)=@ipmr_newroute={0x3c, 0x18, 0xf08, 0x70bd25, 0x25dfdbfd, {0x80, 0x80, 0x80, 0x6, 0xfd, 0x3, 0xfd, 0x6, 0xc00}, [@RTA_DPORT={0x6, 0x1d, 0x4e20}, @RTA_IP_PROTO={0x5, 0x1b, 0x6}, @RTA_PRIORITY={0x8, 0x6, 0x2}, @RTA_DPORT={0x6, 0x1d, 0x4e22}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x8000) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000780)) [ 1049.996293][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1050.002854][T22784] 116825128960-93824997462015: 0000000000000000 [ 1050.009653][T22784] 93824997462016-93824997601279: ffff888094eb27e0 14:33:54 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000001040101000000000000000002000000300001"], 0x44}}, 0x0) 14:33:54 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x4, &(0x7f0000000180), 0x4) [ 1050.053637][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1050.077099][T22784] 140647092711424-140647092715519: ffff888094eb28c0 14:33:54 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000010401"], 0x44}}, 0x0) 14:33:54 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0x0, 0x0, r2) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r4) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0xc) setresgid(0x0, r5, r6) 14:33:54 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:54 executing program 1: setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x4, &(0x7f0000000180)=0x19, 0x4) 14:33:54 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x22044040, &(0x7f0000b63fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = epoll_create(0x3) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x40002009}) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) epoll_wait(r1, &(0x7f0000000040)=[{}], 0x1, 0x0) 14:33:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000180)=0x19, 0x4) [ 1050.209043][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1050.211593][T24577] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.0'. 14:33:54 executing program 1: setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:54 executing program 2: io_setup(0x101, &(0x7f0000000000)=0x0) io_setup(0x8, &(0x7f0000000300)) io_setup(0x2, &(0x7f0000000100)) io_destroy(r0) io_setup(0x7, &(0x7f0000000040)) 14:33:54 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14}, 0x14}, 0x7}, 0x0) [ 1050.353840][T22784] 140647092715520-140647101104127: ffff888094eb29a0 14:33:54 executing program 4: io_setup(0x101, &(0x7f0000000000)=0x0) io_setup(0x8, &(0x7f0000000300)) io_destroy(r0) [ 1050.401187][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1050.410327][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1050.433539][T22784] 140647105298432-140647107395583: ffff888094eb2c40 14:33:54 executing program 0: syz_open_dev$evdev(&(0x7f0000000000), 0x8001, 0x3) 14:33:54 executing program 1: setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 3: socketpair$unix(0x1, 0x4000000000002, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) r2 = socket(0xb, 0x6, 0xc0) recvmsg$unix(r2, &(0x7f0000001640)={&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000001480)=[{&(0x7f0000000140)=""/68, 0x44}, {&(0x7f00000001c0)=""/82, 0x52}, {&(0x7f0000000240)=""/10, 0xa}, {&(0x7f0000000280)=""/124, 0x7c}, {&(0x7f0000000300)=""/132, 0x84}, {&(0x7f00000003c0)}, {&(0x7f0000000400)=""/44, 0x2c}, {&(0x7f0000000440)=""/28, 0x1c}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x9, &(0x7f0000001540)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe0}, 0x40010001) ppoll(&(0x7f0000000040)=[{r2, 0xa0}, {r1, 0xa725}], 0x2, 0x0, 0x0, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt(r3, 0xff, 0x0, &(0x7f0000000140), 0x0) recvmsg$unix(r0, &(0x7f00000037c0)={&(0x7f0000001680), 0x6e, &(0x7f0000003700)=[{&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000000080)=""/24, 0x18}, {&(0x7f0000002700)=""/4096, 0x1000}], 0x3, &(0x7f0000003740)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x50}, 0x100) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000200)="e3fc5eac968b5d632e644174475a55122902ed5fab59ff88470ba9523f4186c2ab5cab76420e0e476024cc201121b5701e6e71fa33070d24c69ac9c1997d52bd4164b49ab3c653b656f0f1f4ac2cbd6c73fc059c93fa306b7fd48cbf2f0771e22bc7b6954406b85687e8822a048d6e36013e3fa314650d2d9326d9639aa2f06fd589006c913c9a30fe0e0b8259444bad80a2207530a92945", 0x98}, {0x0}, {&(0x7f0000000380)="7480da182de404c8c52678ba9afc75da91f6ac396b6445990618bb0eee0247c79e89c554e545168ad4f294ad09573e2c4162a47346ef1cf9e9554b13a96972900e7516a25d2b8d51c67e8da8ce58f54e636a7a385c4b5e9518b108d9f2b06a3ce8ba3bf4a41734ead7073b4f44ee94044bdb4cca5068542456bd57ab026c3794ce547093b60d8618ec1d04d7b8a16663827a37ebebc89a72d299aa448337e7befddd33eee346ffbcac0f158c7fd879d7c67ea5089d26332c47f6dc77205b5181c30c46ddc43d7440b1ae0bcf495a46994a7ef257a0123ca4", 0xd8}, {&(0x7f0000000480)="4e54898bfc977befc9fcc9de8b997f88334d25ae51b09ab858a232824c52ae5c9d2d2c0b9286d19562580a83b46992071a7e31b9984cbcdb302a57e7f228707f7742e2071f2dd03732fc17c1f1104927c9564e2613e7b0ab7ac404b4888408f9a1d1d0f208eedae0f7308853d0949c1c9ec900596484baa2d40ed12893ee5979be144d2d810d9371ec1b8713152b5cb7c12f7a99ed67ec47aa2ba655748dec6c497dd8146e67e67d3d3a26f15491e8f9", 0xb0}, {&(0x7f0000000540)="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", 0xffe}], 0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0) 14:33:54 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) [ 1050.476730][T22784] 140647107395584-140647109492735: ffff888094eb2d20 14:33:54 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="700000000806070200000000000000000a0000070a00010007"], 0x70}}, 0x0) 14:33:54 executing program 2: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000480)=[@in={0x2, 0x4e21, @remote}, @in={0x2, 0x0, @multicast2}], 0x20) [ 1050.526346][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1050.563217][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1050.592789][T22784] 140647113834496-140647114563583: ffff888029235c40 14:33:54 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 5: writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r3, 0x4068aea3, &(0x7f0000000300)={0xa3, 0x0, 0x0}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1050.642750][T24613] netlink: 'syz-executor.0': attribute type 1 has an invalid length. 14:33:54 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:33:54 executing program 2: syz_mount_image$fuse(&(0x7f000000a140), &(0x7f000000a180)='./file0\x00', 0x0, &(0x7f000000e280)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@appraise}]}}, 0x0, 0x0, 0x0) [ 1050.686511][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1050.697585][T24613] netlink: 80 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1050.720267][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1050.738487][T24613] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 1050.754768][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1050.775056][T24627] fuse: Bad value for 'fd' 14:33:55 executing program 0: setitimer(0x2, &(0x7f00000021c0)={{}, {0x0, 0x2710}}, 0x0) 14:33:55 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, 0x0, 0x0) [ 1050.784398][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1050.869088][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1050.889763][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1050.906107][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1050.975542][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1050.983781][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1050.994021][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1051.001510][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1051.008497][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1051.016784][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1051.024101][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1051.031377][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1051.038356][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1051.046175][T22784] Pass: 21109772 Run:21109940 [ 1051.051672][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1051.061614][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1051.071697][T22784] Call Trace: [ 1051.075003][T22784] [ 1051.077957][T22784] dump_stack_lvl+0xd1/0x138 [ 1051.082598][T22784] mt_find.cold+0x8b/0x90 [ 1051.086976][T22784] ? mas_find+0x1d0/0x1d0 [ 1051.091361][T22784] find_vma+0x10c/0x1b0 [ 1051.095559][T22784] ? can_vma_merge_before+0x390/0x390 [ 1051.100971][T22784] ? walk_page_test+0x78/0x180 [ 1051.105781][T22784] walk_page_range+0x2b1/0x4a0 [ 1051.110594][T22784] ? __walk_page_range+0x780/0x780 [ 1051.115774][T22784] mlock_fixup+0x650/0x810 [ 1051.120240][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1051.125480][T22784] ? mlock_fixup+0x810/0x810 [ 1051.130123][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1051.136051][T22784] do_mlock+0x25a/0x6d0 [ 1051.140242][T22784] ? folio_evictable+0x270/0x270 [ 1051.145224][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1051.151147][T22784] __x64_sys_mlock+0x59/0x80 [ 1051.155758][T22784] do_syscall_64+0x39/0xb0 [ 1051.160210][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1051.166132][T22784] RIP: 0033:0x7feaf548c0c9 [ 1051.170565][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1051.190191][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1051.198630][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1051.206615][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1051.214605][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1051.222588][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1051.230570][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1051.238575][T22784] [ 1051.245713][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1051.251721][T22784] BUG at mt_find:6473 (1) [ 1051.256075][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1051.264617][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1051.303182][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1051.354496][T22784] 0-536866815: 0000000000000000 [ 1051.360106][T22784] 536866816-536870911: ffff888094eb2460 [ 1051.366138][T22784] 536870912-553631743: ffff888094eb2540 [ 1051.372167][T22784] 553631744-553644031: 0000000000000000 [ 1051.378104][T22784] 553644032-553631743: ffff888076c687e0 [ 1051.384092][T22784] 553631744-553648127: ffff888076c689a0 [ 1051.390488][T22784] 553648128-553652223: ffff888094eb2620 [ 1051.397843][T22784] 553652224-116820934655: 0000000000000000 [ 1051.404266][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1051.411026][T22784] 116825128960-93824997462015: 0000000000000000 [ 1051.417908][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1051.424856][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1051.431838][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1051.438817][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1051.496866][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1051.514651][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1051.526365][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1051.543613][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1051.554855][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1051.567507][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1051.578750][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1051.595547][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1051.609698][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1051.616695][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1051.623784][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1051.631149][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1051.638134][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1051.645218][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1051.652334][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1051.704682][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1051.724071][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1051.739107][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1051.746114][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1051.762361][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1051.775007][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1051.786301][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1051.799082][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1051.807562][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1051.825588][T22784] Pass: 21111326 Run:21111495 [ 1051.835866][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1051.845814][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1051.855894][T22784] Call Trace: [ 1051.859192][T22784] [ 1051.862146][T22784] dump_stack_lvl+0xd1/0x138 [ 1051.866786][T22784] mt_find.cold+0x8b/0x90 [ 1051.871164][T22784] ? mas_find+0x1d0/0x1d0 [ 1051.875552][T22784] find_vma+0x10c/0x1b0 [ 1051.879741][T22784] ? can_vma_merge_before+0x390/0x390 [ 1051.885152][T22784] ? walk_page_test+0x78/0x180 [ 1051.889963][T22784] walk_page_range+0x2b1/0x4a0 [ 1051.894771][T22784] ? __walk_page_range+0x780/0x780 [ 1051.899943][T22784] mlock_fixup+0x650/0x810 [ 1051.904424][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1051.909675][T22784] ? mlock_fixup+0x810/0x810 [ 1051.914338][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1051.920287][T22784] do_mlock+0x25a/0x6d0 [ 1051.924502][T22784] ? folio_evictable+0x270/0x270 14:33:56 executing program 3: r0 = gettid() sched_rr_get_interval(r0, &(0x7f0000002080)) 14:33:56 executing program 5: writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:56 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f0000000080)) 14:33:56 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c"], 0x1c}}, 0x0) 14:33:56 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, 0x0, 0x0) 14:33:56 executing program 0: prctl$PR_GET_IO_FLUSHER(0x3b) [ 1051.929512][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1051.935455][T22784] __x64_sys_mlock+0x59/0x80 [ 1051.940081][T22784] do_syscall_64+0x39/0xb0 [ 1051.944552][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1051.950496][T22784] RIP: 0033:0x7feaf548c0c9 [ 1051.954950][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:33:56 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, 0x0, 0x0) 14:33:56 executing program 2: r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8912, &(0x7f0000000c40)) [ 1051.974602][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1051.983060][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1051.991067][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1051.999068][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1052.007061][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1052.015052][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1052.023072][T22784] 14:33:56 executing program 0: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x93, 0x33, 0x3b, 0x0, 0x2537, 0x1068, 0x3882, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa3, 0x90, 0x3}}]}}]}}, 0x0) 14:33:56 executing program 3: socket$inet6(0xa, 0x5, 0x80000000) 14:33:56 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) write(r0, &(0x7f0000000000)="99", 0x1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x800001, 0x28011, r0, 0x0) clock_adjtime(0x0, &(0x7f0000000100)) 14:33:56 executing program 5: writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) [ 1052.088595][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1052.095567][T22784] BUG at mt_find:6473 (1) [ 1052.100112][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:56 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="15"], 0x34}}, 0x0) 14:33:56 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x548, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a8) [ 1052.108577][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:56 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000300), &(0x7f0000000500)=0xfffffffffffffd8f) 14:33:56 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1262, 0x0) 14:33:56 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x0, 0x1}, 0x14}}, 0x0) 14:33:56 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_udplite(0xa, 0x2, 0x88) pselect6(0x40, &(0x7f0000001080), &(0x7f00000010c0)={0x1f}, 0x0, 0x0, 0x0) 14:33:56 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x1600bd7e, 0x0, &(0x7f00000000c0)) 14:33:56 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x548, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a8) [ 1052.301068][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1052.473085][T22784] 0-536866815: 0000000000000000 [ 1052.478329][T22784] 536866816-536870911: ffff888094eb2460 [ 1052.487047][T22784] 536870912-553631743: ffff888094eb2540 [ 1052.496137][T22784] 553631744-553644031: 0000000000000000 [ 1052.502197][T22784] 553644032-553631743: ffff888076c687e0 [ 1052.508138][T22784] 553631744-553648127: ffff888076c689a0 [ 1052.516377][T22784] 553648128-553652223: ffff888094eb2620 [ 1052.523250][ T5176] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 1052.531731][T22784] 553652224-116820934655: 0000000000000000 [ 1052.537934][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1052.544513][T22784] 116825128960-93824997462015: 0000000000000000 [ 1052.551229][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1052.558003][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1052.565157][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1052.572245][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1052.630977][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1052.637983][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1052.645072][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1052.652095][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1052.659227][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1052.666205][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1052.673410][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1052.680509][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1052.687475][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1052.694489][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1052.701500][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1052.708437][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1052.715821][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1052.722861][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1052.731383][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1052.783610][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1052.790689][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1052.797676][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1052.804904][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1052.812020][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1052.819077][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1052.826057][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1052.834298][ T5176] usb 1-1: Using ep0 maxpacket: 8 [ 1052.840361][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1052.847341][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1052.854793][T22784] Pass: 21120629 Run:21120799 [ 1052.859715][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1052.869614][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1052.879683][T22784] Call Trace: [ 1052.882955][T22784] [ 1052.885879][T22784] dump_stack_lvl+0xd1/0x138 [ 1052.890479][T22784] mt_find.cold+0x8b/0x90 [ 1052.894841][T22784] ? mas_find+0x1d0/0x1d0 [ 1052.899177][T22784] find_vma+0x10c/0x1b0 [ 1052.903326][T22784] ? can_vma_merge_before+0x390/0x390 [ 1052.908722][T22784] ? walk_page_test+0x78/0x180 [ 1052.913495][T22784] walk_page_range+0x2b1/0x4a0 [ 1052.918271][T22784] ? __walk_page_range+0x780/0x780 [ 1052.923517][T22784] mlock_fixup+0x650/0x810 [ 1052.928004][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1052.933264][T22784] ? mlock_fixup+0x810/0x810 [ 1052.937869][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1052.943776][T22784] do_mlock+0x25a/0x6d0 [ 1052.947955][T22784] ? folio_evictable+0x270/0x270 [ 1052.952909][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1052.958805][T22784] __x64_sys_mlock+0x59/0x80 [ 1052.963399][T22784] do_syscall_64+0x39/0xb0 [ 1052.967859][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1052.973804][T22784] RIP: 0033:0x7feaf548c0c9 [ 1052.978247][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1052.997873][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1053.006307][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1053.014291][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1053.022278][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1053.030265][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1053.038252][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1053.046259][T22784] [ 1053.053402][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1053.066225][T22784] BUG at mt_find:6473 (1) [ 1053.070844][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1053.084757][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1053.127111][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1053.188678][T22784] 0-536866815: 0000000000000000 [ 1053.194909][ T5176] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1053.205893][T22784] 536866816-536870911: ffff888094eb2460 [ 1053.211913][T22784] 536870912-553631743: ffff888094eb2540 [ 1053.217834][T22784] 553631744-553644031: 0000000000000000 [ 1053.223816][ T5176] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1053.233683][ T5176] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1053.244853][T22784] 553644032-553631743: ffff888076c687e0 [ 1053.250910][T22784] 553631744-553648127: ffff888076c689a0 [ 1053.256866][T22784] 553648128-553652223: ffff888094eb2620 [ 1053.262902][ T5176] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 1053.272747][T22784] 553652224-116820934655: 0000000000000000 [ 1053.278931][T22784] 116820934656-116825128959: [ 1053.279132][ T5176] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1053.293921][T22784] ffff888094eb2700 [ 1053.297640][T22784] 116825128960-93824997462015: 0000000000000000 [ 1053.304358][ T5176] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 1053.314139][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1053.321050][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1053.327951][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1053.337167][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1053.394075][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1053.401163][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1053.408134][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1053.415468][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1053.422509][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1053.429755][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1053.436719][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1053.447545][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1053.454998][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1053.462006][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1053.470278][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1053.477357][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1053.484584][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1053.491848][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1053.498788][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1053.552936][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1053.560357][ T5176] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1053.569058][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1053.569619][ T5176] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1053.576409][T22784] 140647128059904-140647128190975: [ 1053.584503][ T5176] usb 1-1: Product: syz [ 1053.584527][ T5176] usb 1-1: Manufacturer: syz [ 1053.584554][ T5176] usb 1-1: SerialNumber: syz [ 1053.603719][T22784] ffff888076c680e0 [ 1053.607453][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1053.614522][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1053.621555][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1053.628519][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1053.635778][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1053.642929][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1053.652266][T22784] Pass: 21120629 Run:21120800 [ 1053.657013][T22784] CPU: 1 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1053.666921][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1053.676994][T22784] Call Trace: [ 1053.680281][T22784] [ 1053.683236][T22784] dump_stack_lvl+0xd1/0x138 [ 1053.687884][T22784] mt_find.cold+0x8b/0x90 [ 1053.692220][T22784] ? mas_find+0x1d0/0x1d0 [ 1053.696561][T22784] find_vma+0x10c/0x1b0 [ 1053.700732][T22784] ? can_vma_merge_before+0x390/0x390 [ 1053.706135][T22784] ? walk_page_test+0x78/0x180 [ 1053.710931][T22784] walk_page_range+0x2b1/0x4a0 [ 1053.715699][T22784] ? __walk_page_range+0x780/0x780 [ 1053.720851][T22784] mlock_fixup+0x650/0x810 [ 1053.725336][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1053.730587][T22784] ? mlock_fixup+0x810/0x810 [ 1053.735223][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1053.741146][T22784] do_mlock+0x25a/0x6d0 [ 1053.745393][T22784] ? folio_evictable+0x270/0x270 [ 1053.750402][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1053.756341][T22784] __x64_sys_mlock+0x59/0x80 [ 1053.760950][T22784] do_syscall_64+0x39/0xb0 [ 1053.765418][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1053.771357][T22784] RIP: 0033:0x7feaf548c0c9 [ 1053.775790][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1053.795401][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1053.803828][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1053.811870][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1053.819852][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1053.827848][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1053.835830][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1053.838511][T24656] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1053.843830][T22784] [ 1053.846716][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1053.862081][T22784] BUG at mt_find:6473 (1) [ 1053.866438][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1053.875053][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1053.891611][T24656] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1053.912142][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1053.959279][ T5176] cdc_ncm 1-1:1.0: bind() failure [ 1053.979064][T22784] 0-536866815: 0000000000000000 [ 1053.981451][ T5176] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 1053.984303][T22784] 536866816-536870911: ffff888094eb2460 [ 1053.984334][T22784] 536870912-553631743: ffff888094eb2540 [ 1053.991843][ T5176] cdc_ncm 1-1:1.1: bind() failure [ 1054.005152][T22784] 553631744-553644031: 0000000000000000 [ 1054.022296][ T5176] usb 1-1: USB disconnect, device number 22 [ 1054.023330][T22784] 553644032-553631743: ffff888076c687e0 [ 1054.038454][T22784] 553631744-553648127: ffff888076c689a0 [ 1054.050264][T22784] 553648128-553652223: ffff888094eb2620 [ 1054.056211][T22784] 553652224-116820934655: 0000000000000000 [ 1054.062812][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1054.069681][T22784] 116825128960-93824997462015: 0000000000000000 [ 1054.076361][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1054.083416][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1054.090658][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1054.097730][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1054.155088][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1054.163516][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1054.171234][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1054.178269][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1054.185508][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1054.194028][ T1203] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.199389][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1054.200353][ T1203] ieee802154 phy1 wpan1: encryption failed: -22 [ 1054.207212][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1054.230486][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1054.237539][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1054.245028][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1054.252963][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1054.263649][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1054.271669][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1054.278652][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1054.285700][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1054.335628][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1054.342683][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1054.349754][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1054.356736][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1054.363770][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1054.374467][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1054.381665][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1054.388626][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1054.395642][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1054.403160][T22784] Pass: 21120653 Run:21120825 [ 1054.407847][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1054.417733][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1054.427782][T22784] Call Trace: [ 1054.431059][T22784] [ 1054.433984][T22784] dump_stack_lvl+0xd1/0x138 [ 1054.438589][T22784] mt_find.cold+0x8b/0x90 14:33:58 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000040)={0x0, @in={{0x2, 0x0, @empty}}}, 0x9c) 14:33:58 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x548, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a8) 14:33:58 executing program 3: prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000000)='-\'^#\x00') 14:33:58 executing program 5: r0 = syz_open_procfs(0x0, 0x0) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:58 executing program 2: io_setup(0x10000, &(0x7f0000000180)) io_setup(0x2, &(0x7f0000000040)) 14:33:58 executing program 4: socketpair(0xa, 0x3, 0xff, &(0x7f0000000040)) [ 1054.442921][T22784] ? mas_find+0x1d0/0x1d0 [ 1054.447260][T22784] find_vma+0x10c/0x1b0 [ 1054.451413][T22784] ? can_vma_merge_before+0x390/0x390 [ 1054.456782][T22784] ? walk_page_test+0x78/0x180 [ 1054.461563][T22784] walk_page_range+0x2b1/0x4a0 [ 1054.466377][T22784] ? __walk_page_range+0x780/0x780 [ 1054.471552][T22784] mlock_fixup+0x650/0x810 [ 1054.476043][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1054.481306][T22784] ? mlock_fixup+0x810/0x810 [ 1054.485949][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1054.491884][T22784] do_mlock+0x25a/0x6d0 [ 1054.496080][T22784] ? folio_evictable+0x270/0x270 [ 1054.501063][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1054.506988][T22784] __x64_sys_mlock+0x59/0x80 [ 1054.511603][T22784] do_syscall_64+0x39/0xb0 [ 1054.516053][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1054.521971][T22784] RIP: 0033:0x7feaf548c0c9 [ 1054.526405][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1054.546029][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1054.554460][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1054.562444][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1054.570428][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1054.578409][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1054.586394][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1054.594401][T22784] 14:33:58 executing program 4: socketpair(0xa, 0x3, 0xff, &(0x7f0000000040)) 14:33:58 executing program 3: socket$inet6_udplite(0xa, 0x2, 0x88) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) pselect6(0x40, &(0x7f0000001080), &(0x7f00000010c0)={0x1f}, 0x0, 0x0, 0x0) 14:33:58 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x3e0, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x1f0, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440) 14:33:59 executing program 0: r0 = socket(0xa, 0x3, 0x1) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0xb, 0x0, 0x0) [ 1054.679053][T22784] index not increased! 20ffc000 <= 20ffc000 14:33:59 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x3e0, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x1f0, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440) 14:33:59 executing program 4: pselect6(0x40, &(0x7f0000000000)={0x6}, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x3938700}, 0x0) 14:33:59 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1b, 0x0, 0x0, 0x2}, 0x48) 14:33:59 executing program 3: ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wg2\x00'}) capset(0x0, &(0x7f0000000080)) openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) pselect6(0x40, &(0x7f0000000580)={0x9}, &(0x7f00000005c0)={0x6, 0x4000000000, 0x0, 0x3, 0x8, 0x7}, 0x0, &(0x7f0000000640)={0x0, 0x3938700}, &(0x7f00000006c0)={&(0x7f0000000680)={[0x12a9]}, 0x8}) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000c40)={0x0}) 14:33:59 executing program 2: openat$binderfs(0xffffffffffffff9c, &(0x7f0000002280)='./binderfs/binder0\x00', 0x0, 0x0) [ 1054.804958][T22784] BUG at mt_find:6473 (1) 14:33:59 executing program 5: r0 = syz_open_procfs(0x0, 0x0) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:33:59 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x3e0, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x1f0, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x7fff, 0x0, 0x72}}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440) [ 1054.838230][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:33:59 executing program 2: capset(&(0x7f0000000800)={0x20071026}, 0x0) [ 1054.875384][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:33:59 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x0, 0x9c4a62e34f547be3}, 0x14}}, 0x0) 14:33:59 executing program 0: pselect6(0x40, &(0x7f0000000ac0), 0x0, &(0x7f0000000b40)={0x8}, 0x0, &(0x7f0000000c40)={&(0x7f0000000c00)={[0xfffffffffffffff8]}, 0x8}) [ 1054.923269][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:33:59 executing program 4: syz_open_dev$usbmon(&(0x7f0000000100), 0x0, 0x0) timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0) 14:33:59 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x4b8, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x2a0, 0x2c8, 0x0, {0xff0f000000000000}, [@common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x518) 14:33:59 executing program 0: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), 0xffffffffffffffff) [ 1055.005893][T24708] capability: warning: `syz-executor.2' uses deprecated v2 capabilities in a way that may be insecure 14:33:59 executing program 2: openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) pselect6(0x40, &(0x7f0000000580), 0x0, &(0x7f0000000600)={0x9}, &(0x7f0000000640)={0x0, 0x3938700}, 0x0) 14:33:59 executing program 5: r0 = syz_open_procfs(0x0, 0x0) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) [ 1055.160438][T22784] 0-536866815: 0000000000000000 [ 1055.167071][T22784] 536866816-536870911: ffff888094eb2460 [ 1055.177088][T22784] 536870912-553631743: ffff888094eb2540 [ 1055.189559][T22784] 553631744-553644031: 0000000000000000 [ 1055.195684][T22784] 553644032-553631743: ffff888076c687e0 [ 1055.204489][T22784] 553631744-553648127: ffff888076c689a0 [ 1055.217769][T22784] 553648128-553652223: ffff888094eb2620 [ 1055.225922][T22784] 553652224-116820934655: 0000000000000000 [ 1055.239231][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1055.245800][T22784] 116825128960-93824997462015: 0000000000000000 [ 1055.252589][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1055.260201][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1055.267136][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1055.274247][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1055.330863][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1055.337957][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1055.345254][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1055.353380][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1055.360644][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1055.367678][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1055.374945][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1055.382302][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1055.390718][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1055.397752][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1055.405355][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1055.412517][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1055.419630][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1055.426659][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1055.433757][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1055.485379][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1055.495936][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1055.503330][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1055.510639][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1055.517679][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1055.525165][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1055.532728][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1055.540044][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1055.547076][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1055.554982][T22784] Pass: 21131962 Run:21132135 [ 1055.560050][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1055.569977][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1055.580046][T22784] Call Trace: [ 1055.583323][T22784] [ 1055.586248][T22784] dump_stack_lvl+0xd1/0x138 [ 1055.590871][T22784] mt_find.cold+0x8b/0x90 [ 1055.595212][T22784] ? mas_find+0x1d0/0x1d0 [ 1055.599550][T22784] find_vma+0x10c/0x1b0 [ 1055.603704][T22784] ? can_vma_merge_before+0x390/0x390 [ 1055.609073][T22784] ? walk_page_test+0x78/0x180 [ 1055.613838][T22784] walk_page_range+0x2b1/0x4a0 [ 1055.618606][T22784] ? __walk_page_range+0x780/0x780 [ 1055.623758][T22784] mlock_fixup+0x650/0x810 [ 1055.628242][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1055.633504][T22784] ? mlock_fixup+0x810/0x810 [ 1055.638120][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1055.644017][T22784] do_mlock+0x25a/0x6d0 [ 1055.648179][T22784] ? folio_evictable+0x270/0x270 [ 1055.653124][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1055.659033][T22784] __x64_sys_mlock+0x59/0x80 [ 1055.663619][T22784] do_syscall_64+0x39/0xb0 [ 1055.668040][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1055.673956][T22784] RIP: 0033:0x7feaf548c0c9 [ 1055.678405][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1055.698045][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1055.706459][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 14:34:00 executing program 3: keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f00000006c0), &(0x7f0000000700)={'enc=', 'pkcs1', ' hash=', {'sha224-avx\x00'}}, 0x0, 0x0) 14:34:00 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x4b8, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x2a0, 0x2c8, 0x0, {0xff0f000000000000}, [@common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x518) 14:34:00 executing program 4: openat$null(0xffffffffffffff9c, &(0x7f00000006c0), 0x40400, 0x0) 14:34:00 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) 14:34:00 executing program 5: syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:34:00 executing program 2: syz_usb_connect$uac1(0x0, 0x71, &(0x7f00000002c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0) [ 1055.714428][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1055.722408][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1055.730421][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1055.738432][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1055.746449][T22784] 14:34:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000bc0), 0x0, 0x0) ioctl$BLKTRACESTART(r0, 0x2201, 0x0) 14:34:00 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x4b8, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x2a0, 0x2c8, 0x0, {0xff0f000000000000}, [@common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x518) 14:34:00 executing program 4: openat$sw_sync(0xffffffffffffff9c, &(0x7f00000000c0), 0x242, 0x0) 14:34:00 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14}, 0x14}, 0x300}, 0x0) 14:34:00 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:34:00 executing program 4: madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r0 = gettid() process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/258, 0x102}], 0x1, &(0x7f0000000040)=[{&(0x7f0000217f28)=""/231, 0xe7}], 0x1, 0x0) move_pages(0x0, 0x1, &(0x7f0000000200)=[&(0x7f0000336000/0x1000)=nil], &(0x7f000026bfec), &(0x7f0000000140)=[0x0], 0x0) [ 1055.849113][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1055.866885][T22784] BUG at mt_find:6473 (1) 14:34:00 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000180)={0x13, 0x10, 0xfa00, {&(0x7f00000003c0), r1}}, 0x18) [ 1055.904018][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e 14:34:00 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000000)={'bridge0\x00', &(0x7f0000000040)=@ethtool_ringparam={0x10}}) [ 1055.946841][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 14:34:00 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:34:00 executing program 0: setregid(0xee01, 0xee00) setregid(0xee00, 0x0) [ 1055.994411][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c 14:34:00 executing program 3: setregid(0xee01, 0xee00) setregid(0xee01, 0xee00) [ 1056.069892][ T5203] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 1056.095052][T22784] 0-536866815: 0000000000000000 [ 1056.121341][T22784] 536866816-536870911: ffff888094eb2460 [ 1056.131519][T22784] 536870912-553631743: ffff888094eb2540 [ 1056.149131][T22784] 553631744-553644031: 0000000000000000 [ 1056.186892][T22784] 553644032-553631743: ffff888076c687e0 [ 1056.193472][T22784] 553631744-553648127: ffff888076c689a0 [ 1056.200937][T22784] 553648128-553652223: ffff888094eb2620 [ 1056.207062][T22784] 553652224-116820934655: 0000000000000000 [ 1056.213873][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1056.220855][T22784] 116825128960-93824997462015: 0000000000000000 [ 1056.227542][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1056.234514][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1056.241542][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1056.248502][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1056.316004][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1056.323068][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1056.330135][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1056.337102][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1056.344115][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1056.351115][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1056.358058][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1056.359182][ T5203] usb 3-1: Using ep0 maxpacket: 32 [ 1056.365095][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1056.377139][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1056.384193][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1056.391197][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1056.398155][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1056.405201][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1056.415012][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1056.422095][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1056.472156][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1056.479403][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1056.486393][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1056.493675][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1056.500864][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1056.507955][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1056.516863][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1056.525250][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1056.533061][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1056.539270][ T5203] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1056.540696][T22784] Pass: 21139843 Run:21140017 [ 1056.550959][ T5203] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1056.554076][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1056.570577][ T5203] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1056.573834][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1056.573854][T22784] Call Trace: [ 1056.573863][T22784] [ 1056.573875][T22784] dump_stack_lvl+0xd1/0x138 [ 1056.603532][T22784] mt_find.cold+0x8b/0x90 [ 1056.607871][T22784] ? mas_find+0x1d0/0x1d0 [ 1056.612230][T22784] find_vma+0x10c/0x1b0 [ 1056.616409][T22784] ? can_vma_merge_before+0x390/0x390 [ 1056.621810][T22784] ? walk_page_test+0x78/0x180 [ 1056.626609][T22784] walk_page_range+0x2b1/0x4a0 [ 1056.631405][T22784] ? __walk_page_range+0x780/0x780 [ 1056.636564][T22784] mlock_fixup+0x650/0x810 [ 1056.641020][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1056.646253][T22784] ? mlock_fixup+0x810/0x810 [ 1056.650886][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1056.656810][T22784] do_mlock+0x25a/0x6d0 [ 1056.661003][T22784] ? folio_evictable+0x270/0x270 [ 1056.665980][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1056.671902][T22784] __x64_sys_mlock+0x59/0x80 [ 1056.676507][T22784] do_syscall_64+0x39/0xb0 [ 1056.680956][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1056.686869][T22784] RIP: 0033:0x7feaf548c0c9 [ 1056.691297][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1056.710918][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1056.719352][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1056.727336][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1056.735317][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1056.743298][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1056.751294][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1056.759306][T22784] [ 1056.769311][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1056.775251][T22784] BUG at mt_find:6473 (1) [ 1056.782703][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1056.791490][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1056.829393][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1056.881073][T22784] 0-536866815: 0000000000000000 [ 1056.886333][T22784] 536866816-536870911: ffff888094eb2460 [ 1056.892404][T22784] 536870912-553631743: ffff888094eb2540 [ 1056.898476][T22784] 553631744-553644031: 0000000000000000 [ 1056.904693][T22784] 553644032-553631743: ffff888076c687e0 [ 1056.911122][T22784] 553631744-553648127: ffff888076c689a0 [ 1056.917050][T22784] 553648128-553652223: ffff888094eb2620 [ 1056.923072][T22784] 553652224-116820934655: 0000000000000000 [ 1056.930002][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1056.936458][T22784] 116825128960-93824997462015: 0000000000000000 [ 1056.943145][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1056.950217][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1056.957092][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1056.964075][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1057.019641][ T5203] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1057.029427][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1057.036426][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1057.043574][ T5203] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1057.051669][ T5203] usb 3-1: Product: syz [ 1057.055707][T22784] 140647103201280-140647105298431: [ 1057.055834][ T5203] usb 3-1: Manufacturer: syz [ 1057.055859][ T5203] usb 3-1: SerialNumber: syz [ 1057.062061][T22784] ffff888094eb2b60 [ 1057.077989][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1057.085127][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1057.093142][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1057.100717][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1057.107691][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1057.115643][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1057.123380][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1057.132200][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1057.139322][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1057.146305][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1057.153514][T22784] 140647115325440-140647127171071: ffff88802218f000 [ 1057.160596][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1057.211987][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1057.219042][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1057.226020][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1057.234399][T22784] 140647128190976-140732348923903: 0000000000000000 [ 1057.241457][T22784] 140732348923904-140732349059071: ffff88807b4c50e0 [ 1057.248419][T22784] 140732349059072-140732349100031: 0000000000000000 [ 1057.255454][T22784] 140732349100032-140732349116415: ffff88807b4c5000 [ 1057.262449][T22784] 140732349116416-140732349124607: ffff88807b4c5ee0 [ 1057.269581][T22784] 140732349124608-18446744073709551615: 0000000000000000 [ 1057.277010][T22784] Pass: 21139843 Run:21140018 [ 1057.281899][T22784] CPU: 0 PID: 22784 Comm: syz-executor.5 Not tainted 6.2.0-rc3-next-20230110-syzkaller #0 [ 1057.291809][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1057.301854][T22784] Call Trace: [ 1057.305123][T22784] [ 1057.308047][T22784] dump_stack_lvl+0xd1/0x138 [ 1057.312642][T22784] mt_find.cold+0x8b/0x90 [ 1057.316972][T22784] ? mas_find+0x1d0/0x1d0 [ 1057.321307][T22784] find_vma+0x10c/0x1b0 [ 1057.325464][T22784] ? can_vma_merge_before+0x390/0x390 [ 1057.330833][T22784] ? walk_page_test+0x78/0x180 [ 1057.335600][T22784] walk_page_range+0x2b1/0x4a0 [ 1057.340391][T22784] ? __walk_page_range+0x780/0x780 [ 1057.345561][T22784] mlock_fixup+0x650/0x810 [ 1057.350026][T22784] apply_vma_lock_flags+0x23d/0x350 [ 1057.355262][T22784] ? mlock_fixup+0x810/0x810 [ 1057.359903][T22784] ? __ia32_sys_get_robust_list+0x400/0x400 [ 1057.365832][T22784] do_mlock+0x25a/0x6d0 [ 1057.370024][T22784] ? folio_evictable+0x270/0x270 [ 1057.375003][T22784] ? syscall_enter_from_user_mode+0x26/0xb0 [ 1057.380924][T22784] __x64_sys_mlock+0x59/0x80 [ 1057.385530][T22784] do_syscall_64+0x39/0xb0 [ 1057.389977][T22784] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1057.395911][T22784] RIP: 0033:0x7feaf548c0c9 [ 1057.400348][T22784] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1057.419972][T22784] RSP: 002b:00007feaf61d4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 1057.428407][T22784] RAX: ffffffffffffffda RBX: 00007feaf55abf80 RCX: 00007feaf548c0c9 [ 1057.436390][T22784] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 1057.444372][T22784] RBP: 00007feaf54e7ae9 R08: 0000000000000000 R09: 0000000000000000 [ 1057.452372][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1057.460357][T22784] R13: 00007ffecdac66bf R14: 00007feaf61d4300 R15: 0000000000022000 [ 1057.468361][T22784] [ 1057.489270][T22784] index not increased! 20ffc000 <= 20ffc000 [ 1057.495214][T22784] BUG at mt_find:6473 (1) [ 1057.499996][T22784] maple_tree(ffff888075ab3f00) flags 309, height 2 root ffff88807d73081e [ 1057.508440][T22784] 0-18446744073709551615: node ffff88807d730800 depth 0 type 3 parent ffff888075ab3f01 contents: 93708172333056 20480 18446603341360427008 0 0 0 0 0 0 0 | 02 02| ffff88807938bc0c 140647092715519 ffff88807938be0c 140647127171071 ffff888079c0a20c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 [ 1057.545897][T22784] 0-140647092715519: node ffff88807938bc00 depth 1 type 1 parent ffff88807d730806 contents: 0000000000000000 536866815 ffff888094eb2460 536870911 ffff888094eb2540 553631743 0000000000000000 553644031 ffff888076c687e0 553631743 ffff888076c689a0 553648127 ffff888094eb2620 553652223 0000000000000000 116820934655 ffff888094eb2700 116825128959 0000000000000000 93824997462015 ffff888094eb27e0 93824997601279 0000000000000000 140647092711423 ffff888094eb28c0 140647092715519 0000000000000000 0 0000000000000000 0 000000000000000c [ 1057.597337][T22784] 0-536866815: 0000000000000000 [ 1057.603610][T22784] 536866816-536870911: ffff888094eb2460 [ 1057.609980][ T5203] usb 3-1: 0:2 : does not exist [ 1057.616085][T22784] 536870912-553631743: ffff888094eb2540 [ 1057.626211][T22784] 553631744-553644031: 0000000000000000 [ 1057.631680][ T5203] usb 3-1: USB disconnect, device number 17 [ 1057.640243][T22784] 553644032-553631743: ffff888076c687e0 [ 1057.659580][T22784] 553631744-553648127: ffff888076c689a0 [ 1057.660261][T24408] udevd[24408]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1057.668465][T22784] 553648128-553652223: ffff888094eb2620 [ 1057.704793][T22784] 553652224-116820934655: 0000000000000000 [ 1057.712042][T22784] 116820934656-116825128959: ffff888094eb2700 [ 1057.718562][T22784] 116825128960-93824997462015: 0000000000000000 [ 1057.726245][T22784] 93824997462016-93824997601279: ffff888094eb27e0 [ 1057.733593][T22784] 93824997601280-140647092711423: 0000000000000000 [ 1057.741138][T22784] 140647092711424-140647092715519: ffff888094eb28c0 [ 1057.748340][T22784] 140647092715520-140647127171071: node ffff88807938be00 depth 1 type 1 parent ffff88807d73080e contents: ffff888094eb29a0 140647101104127 ffff888094eb2a80 140647103201279 ffff888094eb2b60 140647105298431 ffff888094eb2c40 140647107395583 ffff888094eb2d20 140647109492735 ffff888094eb2e00 140647113687039 ffff888094eb2ee0 140647113834495 ffff888029235c40 140647114563583 ffff888029235ee0 140647114899455 0000000000000000 140647114903551 ffff88807687fee0 140647115268095 ffff88807a3a2380 140647115304959 0000000000000000 140647115325439 ffff88802218f000 140647127171071 0000000000000000 0 000000000000000d [ 1057.806632][T22784] 140647092715520-140647101104127: ffff888094eb29a0 [ 1057.814785][T22784] 140647101104128-140647103201279: ffff888094eb2a80 [ 1057.823151][T22784] 140647103201280-140647105298431: ffff888094eb2b60 [ 1057.830543][T22784] 140647105298432-140647107395583: ffff888094eb2c40 [ 1057.837567][T22784] 140647107395584-140647109492735: ffff888094eb2d20 [ 1057.844983][T22784] 140647109492736-140647113687039: ffff888094eb2e00 [ 1057.852546][T22784] 140647113687040-140647113834495: ffff888094eb2ee0 [ 1057.859896][T22784] 140647113834496-140647114563583: ffff888029235c40 [ 1057.866922][T22784] 140647114563584-140647114899455: ffff888029235ee0 [ 1057.874132][T22784] 140647114899456-140647114903551: 0000000000000000 [ 1057.881376][T22784] 140647114903552-140647115268095: ffff88807687fee0 [ 1057.888389][T22784] 140647115268096-140647115304959: ffff88807a3a2380 [ 1057.895585][T22784] 140647115304960-140647115325439: 0000000000000000 [ 1057.903768][T22784] 140647115325440-140647127171071: ffff88802218f000 14:34:02 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000100)=@abs={0x1}, 0x67) 14:34:02 executing program 5: syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)='0', 0x1}], 0x1) 14:34:02 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:34:02 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000180)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @multicast1}}}], 0x20}, 0x0) 14:34:02 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001380)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg$unix(r0, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) connect$unix(r0, &(0x7f00000013c0)=@file={0x0, './file0\x00'}, 0x6e) 14:34:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r1, 0x1, 0x0, 0x0, {0x5}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}}, 0x0) [ 1057.911118][T22784] 140647127171072-18446744073709551615: node ffff888079c0a200 depth 1 type 1 parent ffff88807d730816 contents: 0000000000000000 140647128055807 ffff888076c68000 140647128059903 ffff888076c680e0 140647128190975 0000000000000000 140732348923903 ffff88807b4c50e0 140732349059071 0000000000000000 140732349100031 ffff88807b4c5000 140732349116415 ffff88807b4c5ee0 140732349124607 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008 [ 1057.964909][T22784] 140647127171072-140647128055807: 0000000000000000 [ 1057.972491][T22784] 140647128055808-140647128059903: ffff888076c68000 [ 1057.980376][T22784] 140647128059904-140647128190975: ffff888076c680e0 [ 1057.987510][T22784] 140647128190976-140732348923903: 0000000000000000 14:34:02 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x610, 0x420, 0xb, 0x148, 0x420, 0x148, 0x578, 0x240, 0x240, 0x578, 0x215, 0x3, 0x0, {[{{@uncond, 0x0, 0x3f8, 0x420, 0x0, {0xff0f000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_1\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xea, 0x0, 0x0, 0x72}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'vlan0\x00'}, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv4=@multicast2, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv4=@remote}}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x670) 14:34:02 executing program 4: r0 = fsopen(&(0x7f0000000100)='tracefs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) [ 1058.019042][T22784] 140732348923904-140732349059071: ffff88807b4c50e0