last executing test programs: 25.772031138s ago: executing program 3 (id=728): bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x48) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x16}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0xc0182101, 0x20000000) (fail_nth: 2) 25.26260867s ago: executing program 3 (id=730): socket$pppl2tp(0x18, 0x1, 0x1) (async) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) (async) socket$inet_udplite(0x2, 0x2, 0x88) connect$pppl2tp(r0, &(0x7f0000000280)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x4e21, @remote}, 0x1, 0x3, 0x4, 0x1}}, 0x2e) r2 = fcntl$dupfd(r0, 0x0, r1) recvmsg(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)=""/116, 0x74}], 0x1}, 0x64) r3 = socket$nl_route(0x10, 0x3, 0x0) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) (async) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) (async) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan0\x00', 0x0}) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000340)={@mcast1, r5}, 0x14) ioctl$FUSE_DEV_IOC_CLONE(r4, 0x8004e500, 0xffffffffffffffff) socket$inet6_udp(0xa, 0x2, 0x0) (async) r6 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000180)={{0x2, 0x2, 0xfffffff8, 0x3, 0x9212}, 0x727cb2f1, 0x4}) sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x24, 0x25, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff}}}, 0x24}}, 0x0) ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000000)) landlock_create_ruleset(&(0x7f00000002c0)={0x310, 0x2}, 0x10, 0x0) (async) landlock_create_ruleset(&(0x7f00000002c0)={0x310, 0x2}, 0x10, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r2) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x208c02, 0x0) (async) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x208c02, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) socket$igmp6(0xa, 0x3, 0x2) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r8, r9, 0x2, 0x2}, 0x10) (async) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r8, r9, 0x2, 0x2}, 0x10) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup, r10, 0x2, 0x2}, 0x10) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r11, 0x2, 0x0, 0x0, &(0x7f0000000140)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40) 25.14711505s ago: executing program 3 (id=731): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @link_local}) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @dev}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x18) 21.472372161s ago: executing program 3 (id=739): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mdstat\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = fcntl$dupfd(r0, 0x0, r1) mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', 0x0, 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}}) 12.56634235s ago: executing program 3 (id=739): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mdstat\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = fcntl$dupfd(r0, 0x0, r1) mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', 0x0, 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}}) 5.706960682s ago: executing program 3 (id=739): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mdstat\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = fcntl$dupfd(r0, 0x0, r1) mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', 0x0, 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}}) 4.502352831s ago: executing program 1 (id=849): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000000c0)) (async) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f00000001c0)={&(0x7f00000003c0)=@id, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000940)="5763f922081ae50887ede09da114c1daa077f9611f8aa83b1b6fa5f806897377d6aa8524a8b1d8c81597ae6a2411d62b43ead10f470c911e8223cee2d6745ff65b450f0b0b46f900c910f852", 0x4c}, {&(0x7f0000000280)="b57af26468ffde59db204ffaa467c0af523b9e6d93dd62dad3d2f90b45e80eb530982e2a1a0b9ebc2c7113d4f93982f87d0ced6312bdcaa996c13c02d027870ae0bdbed8b104a10605ae3939cfa8e7d4ae5e2f97b5958bed4a4430c01d04f980fac5e88de756ec949e14a35bfb3f32197c05b451", 0x74}, {&(0x7f0000000300)="3d408cd47846fd99d1d1a4df38e0afdd03a817bf3b4673e575b2c253bae12d98c4f3e4e6d317ba457f2d0de6e1fbc5a43bae0d257cda31fb579139135de49db225bf75a3dea059b4a7a9808dd72eb1bd84d0cf9959907ad6b1e1ec718aa8d5004fd0acd19045d8d6e0f04b6b4497bb3126e4ad0d033ef175a58f55d0993d32bb3a10246c0e9ed8956592d6b51d", 0x8d}, {&(0x7f0000000540)="a840c8a67da22f1b2c4e068bb1ad9c499f093b4480b55eb7b9408f5400cc74932ab986ca937640a84378eb6446626516e84b0055936bb61fac109e2624e86903d729b0b10b4f16db7da1fa3aaa808fe333de0c9316c2412cb9ed2d604f8b3fa52416302221487c294ae9dc54783573eb5e7c1027fc39fa60c39afee14fb7cf3e6ef0041470dfd6a4a356a1d7e20a437bcadc7f0b5afa9f9d68bccd88", 0x9c}, {&(0x7f0000000600)="c016c55101fc98bba00b0c2946a2b285871ce0494875c9d8979d34a99a409dcb328a6ff1e31414ec38af8d9348d49550faf55f18c1d9f281054ffbe9a13132e9a05e0542a376762a4d799b6b4f0311f62189f67e7708285a203492767e25e6bc4d28d6d3f8d9f50c2660483f8f942ecb733e84f8619101c2ec2ec357bec450d092e6068a319a9f761d766e6ac151f3f3cb790dda0a6dbc381be1a87e4d992bc55e39f166e65d1a5997bc4d255f00c45f6264f7b459ce6fc78a91f8935fa3aa5fe8be532e06387d82f07e", 0xca}, {&(0x7f0000000700)="f32ced1978f6103c6709573259e317066e84d42f18d090e52035bcf2ddcf8761f30c8179d42f2d06e49766e18561147a88e7ab4a817816b9da02e1744bc7eb653eb04ab70b5bf5111e01923c9bd0f4b72df99f19253083a444b5fbf214a2e9fbbc352a08731643692912aebd09546ccb28837254a30d1e53084dd7f6b7114fa3825fcbae9443ec15fb31bca97a87824d4bc8b632cf971bfb523a", 0x9a}], 0x6, &(0x7f0000000840)="a6d462c399e20d9d7ab19933a9b3d0e1d617be45eb50440e1e51f20cd773cd1b34e2669a511f6292d81a777376560dc1daae580d2419af271bdd485f32ddaa3679178bcbe6ff6f5d5d758535afbe2a930342eaa16108a32d9d31fbfe8bf4d89784440c3ff3fef2f998aebc9634", 0x6d}, 0x80) (async) sendmsg$tipc(r1, &(0x7f00000001c0)={&(0x7f00000003c0)=@id, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000940)="5763f922081ae50887ede09da114c1daa077f9611f8aa83b1b6fa5f806897377d6aa8524a8b1d8c81597ae6a2411d62b43ead10f470c911e8223cee2d6745ff65b450f0b0b46f900c910f852", 0x4c}, {&(0x7f0000000280)="b57af26468ffde59db204ffaa467c0af523b9e6d93dd62dad3d2f90b45e80eb530982e2a1a0b9ebc2c7113d4f93982f87d0ced6312bdcaa996c13c02d027870ae0bdbed8b104a10605ae3939cfa8e7d4ae5e2f97b5958bed4a4430c01d04f980fac5e88de756ec949e14a35bfb3f32197c05b451", 0x74}, {&(0x7f0000000300)="3d408cd47846fd99d1d1a4df38e0afdd03a817bf3b4673e575b2c253bae12d98c4f3e4e6d317ba457f2d0de6e1fbc5a43bae0d257cda31fb579139135de49db225bf75a3dea059b4a7a9808dd72eb1bd84d0cf9959907ad6b1e1ec718aa8d5004fd0acd19045d8d6e0f04b6b4497bb3126e4ad0d033ef175a58f55d0993d32bb3a10246c0e9ed8956592d6b51d", 0x8d}, {&(0x7f0000000540)="a840c8a67da22f1b2c4e068bb1ad9c499f093b4480b55eb7b9408f5400cc74932ab986ca937640a84378eb6446626516e84b0055936bb61fac109e2624e86903d729b0b10b4f16db7da1fa3aaa808fe333de0c9316c2412cb9ed2d604f8b3fa52416302221487c294ae9dc54783573eb5e7c1027fc39fa60c39afee14fb7cf3e6ef0041470dfd6a4a356a1d7e20a437bcadc7f0b5afa9f9d68bccd88", 0x9c}, {&(0x7f0000000600)="c016c55101fc98bba00b0c2946a2b285871ce0494875c9d8979d34a99a409dcb328a6ff1e31414ec38af8d9348d49550faf55f18c1d9f281054ffbe9a13132e9a05e0542a376762a4d799b6b4f0311f62189f67e7708285a203492767e25e6bc4d28d6d3f8d9f50c2660483f8f942ecb733e84f8619101c2ec2ec357bec450d092e6068a319a9f761d766e6ac151f3f3cb790dda0a6dbc381be1a87e4d992bc55e39f166e65d1a5997bc4d255f00c45f6264f7b459ce6fc78a91f8935fa3aa5fe8be532e06387d82f07e", 0xca}, {&(0x7f0000000700)="f32ced1978f6103c6709573259e317066e84d42f18d090e52035bcf2ddcf8761f30c8179d42f2d06e49766e18561147a88e7ab4a817816b9da02e1744bc7eb653eb04ab70b5bf5111e01923c9bd0f4b72df99f19253083a444b5fbf214a2e9fbbc352a08731643692912aebd09546ccb28837254a30d1e53084dd7f6b7114fa3825fcbae9443ec15fb31bca97a87824d4bc8b632cf971bfb523a", 0x9a}], 0x6, &(0x7f0000000840)="a6d462c399e20d9d7ab19933a9b3d0e1d617be45eb50440e1e51f20cd773cd1b34e2669a511f6292d81a777376560dc1daae580d2419af271bdd485f32ddaa3679178bcbe6ff6f5d5d758535afbe2a930342eaa16108a32d9d31fbfe8bf4d89784440c3ff3fef2f998aebc9634", 0x6d}, 0x80) close(r2) 4.469238824s ago: executing program 1 (id=850): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb8e, &(0x7f00000017c0)="$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") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) dup3(r1, r0, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0) faccessat(r2, &(0x7f0000000000)='./file0\x00', 0x5) 4.249749712s ago: executing program 1 (id=851): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f00000000c0)={[], [{@hash}]}, 0x1, 0xb8e, &(0x7f00000017c0)="$eJzs3M9vVNUeAPDvvZ2WQgstLy/vPchLbGIQo3EolGjCClwbNdEFS8Z2SpoOP+yUxDYsCu7VhTEuSAx/gol7ceHKxAUuDP4FxEgM0Q24qLnzo0zoTFthhoP4+SRn7jlzhvl+v3PD3HOSuQ3gH2uqeMgjDkTEmSxiovV8HhEjjd5oxFrzdffvXp4tWhbr6+/8mkUWEffuXp5tv1fWOo61BqMRcfP1LP714ea49ZXVxUqtVl1qjY8sn7t4pL6y+srCucrZ6tnq+eMzrx2feXVmpo+13r743uf//+HNF65e/2j6rc/2fZfFyRhvzXXW0S9TMbXxmXQqRUSl38ESGWrV01lnVkqYEAAAW8o71nD/iYkYigeLt4n49sekyQEAAAB9sT4UsQ4AAAA84zL7fwAAAHjGtX8HcO/u5dl2S/uLhCfrzqmImGzW376/uTlTirXGcTSGI2LPb1l03taaNf/ZY5sqIn31fbVoMaD7kLeydiUi/tft/GeN+icbd3Fvrj+PiOk+xJ96aNy9/m53UffH49R/sg/xd1Y/APTXjVPNC9nm61++sf6JLte/Updr16NIff1rr//ub1r/Pah/qMf67+0dxjj4x0s3e811rv9Of/zTXBG/OD5WUX/BnSsRB0vd6s826s961H9mhzHGZm9fa/bWNy3kivqLetvtSde/fj3iUHSvvy3b6u8THZlfqFWnm489Yhz65vThXvE7z3/RivjtvcCTUJz/PT3q3+78X9xhjMn//nKg19z29ec/j2TvNnojrWc+qCwvLx2NGMne2Pz8sa1zab+m/R5F/S8+v/X//271F98Ja63PodgLXGkdi/HVh2KOHTr25aPXP1hF/XOPeP4/2WGML76+9n6vudT1AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD3kEfEeGR5eaOf5+VyxFhE/Dv25LUL9eWX5y9cOj9XzEVMxnA+v1CrTkfERHOcFeOjjf6D8bGHxjMRsT8iPp3Y3RiXZy/U5lIXDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwIaxiBiPLC9HRB4Rv0/kebmcOisAAACg7yZTJwAAAAAMnP0/AAAAPPvs/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABiw/c/duJVFxNqJ3Y1WGGnNDSfNDBi0PHUCQDJDqRMAkimlTgBIxh4fyLaZH+05s6vvuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADw9Dp84MatLCLWTuxutMJIa244aWbAoOWpEwCSGUqdAJBMKXUCQDL2+EC2zfxoz5ldfc8FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKfXeKNleTki8kY/z8vliL0RMRnD2fxCrTodEfsi4tLeiGJ8NHXSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9F19ZXWxUqtVl3R0dHQ2Oqm/mQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASKG+srpYqdWqS/XUmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACp1VdWFyu1WnVpgJ3UNQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAkM6fAQAA//9A0Qap") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) setsockopt$inet6_dccp_buf(r0, 0x21, 0x2, &(0x7f0000000140)="517b0d3055c78030afa8709071b6859456331a9cbcec6576a1a4ecaf9d8eaa1ee09e3014cc90af240544d28faa281398bf8ff85d7b6c25b87b2f675d8f275e44e1737365ff53a0ff58fdea9a19de4f5ac941e0b9ccc12e418b31fd6314f31534c7d5cabcd024fa070db4eb37a76595ea9b10d84a4b44a8262944de27112473ac1be8290f98e1340b303a0e1f2e1b85110ecb9b125ad41aed5b494d550feab8e555d910a9", 0xa4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r2 = dup3(r1, r0, 0x0) openat$cgroup_int(r2, &(0x7f0000000080)='hugetlb.1GB.rsvd.max_usage_in_bytes\x00', 0x2, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000000c0)="055528b4a4439619", 0x8}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @broadcast}}}], 0x20}, 0x0) r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0) faccessat(r5, &(0x7f0000000000)='./file0\x00', 0x5) 3.974263444s ago: executing program 1 (id=852): socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1008800, &(0x7f0000000100)=ANY=[], 0x1, 0x1f1, &(0x7f0000000600)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17a) sync() symlinkat(&(0x7f00000001c0)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00') 3.837931815s ago: executing program 1 (id=853): openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file0\x00', 0x1000801, &(0x7f0000000080)=ANY=[@ANYRES16=0x0], 0x0, 0x1ca, &(0x7f00000008c0)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0/file0'}, 0x3a}], [], 0x2f}) mount$9p_fd(0x0, &(0x7f0000000480)='./file0/file0\x00', 0x0, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x6, &(0x7f0000000200)=0x8) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000ecffffff00000000000000008500000053000000850000002a0000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc0, &(0x7f0000000140)=""/192}, 0x80) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r4, &(0x7f0000000c40), 0x12) 3.487965884s ago: executing program 0 (id=855): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb8e, &(0x7f00000017c0)="$eJzs3M9vVNUeAPDvvZ2WQgstLy/vPchLbGIQo3EolGjCClwbNdEFS8Z2SpoOP+yUxDYsCu7VhTEuSAx/gol7ceHKxAUuDP4FxEgM0Q24qLnzo0zoTFthhoP4+SRn7jlzhvl+v3PD3HOSuQ3gH2uqeMgjDkTEmSxiovV8HhEjjd5oxFrzdffvXp4tWhbr6+/8mkUWEffuXp5tv1fWOo61BqMRcfP1LP714ea49ZXVxUqtVl1qjY8sn7t4pL6y+srCucrZ6tnq+eMzrx2feXVmpo+13r743uf//+HNF65e/2j6rc/2fZfFyRhvzXXW0S9TMbXxmXQqRUSl38ESGWrV01lnVkqYEAAAW8o71nD/iYkYigeLt4n49sekyQEAAAB9sT4UsQ4AAAA84zL7fwAAAHjGtX8HcO/u5dl2S/uLhCfrzqmImGzW376/uTlTirXGcTSGI2LPb1l03taaNf/ZY5sqIn31fbVoMaD7kLeydiUi/tft/GeN+icbd3Fvrj+PiOk+xJ96aNy9/m53UffH49R/sg/xd1Y/APTXjVPNC9nm61++sf6JLte/Updr16NIff1rr//ub1r/Pah/qMf67+0dxjj4x0s3e811rv9Of/zTXBG/OD5WUX/BnSsRB0vd6s826s961H9mhzHGZm9fa/bWNy3kivqLetvtSde/fj3iUHSvvy3b6u8THZlfqFWnm489Yhz65vThXvE7z3/RivjtvcCTUJz/PT3q3+78X9xhjMn//nKg19z29ec/j2TvNnojrWc+qCwvLx2NGMne2Pz8sa1zab+m/R5F/S8+v/X//271F98Ja63PodgLXGkdi/HVh2KOHTr25aPXP1hF/XOPeP4/2WGML76+9n6vudT1AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD3kEfEeGR5eaOf5+VyxFhE/Dv25LUL9eWX5y9cOj9XzEVMxnA+v1CrTkfERHOcFeOjjf6D8bGHxjMRsT8iPp3Y3RiXZy/U5lIXDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwIaxiBiPLC9HRB4Rv0/kebmcOisAAACg7yZTJwAAAAAMnP0/AAAAPPvs/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABiw/c/duJVFxNqJ3Y1WGGnNDSfNDBi0PHUCQDJDqRMAkimlTgBIxh4fyLaZH+05s6vvuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADw9Dp84MatLCLWTuxutMJIa244aWbAoOWpEwCSGUqdAJBMKXUCQDL2+EC2zfxoz5ldfc8FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKfXeKNleTki8kY/z8vliL0RMRnD2fxCrTodEfsi4tLeiGJ8NHXSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9F19ZXWxUqtVl3R0dHQ2Oqm/mQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASKG+srpYqdWqS/XUmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACp1VdWFyu1WnVpgJ3UNQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAkM6fAQAA//9A0Qap") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) dup3(r1, r0, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0) faccessat(r2, &(0x7f0000000000)='./file0\x00', 0x5) (fail_nth: 2) 3.409522611s ago: executing program 2 (id=856): r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYBLOB="680000001000030400"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000400012800c"], 0x68}}, 0x64000004) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 3.409370851s ago: executing program 4 (id=857): r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e"], 0x68}}, 0x64000004) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 3.317412248s ago: executing program 4 (id=858): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008000, &(0x7f0000000240)={[{@debug}, {@orlov}, {@nomblk_io_submit}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@init_itable_val}, {@usrquota}, {@usrquota}]}, 0x1, 0x5ba, &(0x7f0000001bc0)="$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") mount$nfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)=ANY=[@ANYBLOB='v3']) 3.220685476s ago: executing program 2 (id=859): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_ext={0x1c, 0x3, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xaf71}}, &(0x7f0000000080)='GPL\x00', 0x16, 0xc0, &(0x7f0000000280)=""/192, 0x40f00, 0x2c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x7, 0xcd53, 0x9}, 0x10, 0x10fd3, 0xffffffffffffffff, 0x6, &(0x7f0000000580)=[r0, r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f00000005c0)=[{0x1, 0x3, 0xe, 0xa}, {0x2, 0xfffffffd, 0x3, 0xa}, {0x3, 0x5, 0x1, 0x1}, {0x3, 0x4, 0x3, 0x2}, {0x3, 0x5, 0xd, 0xa}, {0x2, 0x3, 0xe, 0x5}], 0x10, 0x100}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x9d}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x20000000000003c9, &(0x7f0000000180)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) r4 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r4, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x0, @private}, 0x4}}, 0x26) syz_emit_ethernet(0x4c, &(0x7f0000000340)={@broadcast, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x16, 0x11, 0x0, @remote, @local, {[], {0x0, 0xe22, 0x16, 0x0, @gue={{0xb, 0x0, 0x0, 0x2}, "0a790cc55a8e"}}}}}}}, 0x0) 3.146386572s ago: executing program 2 (id=860): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008000, &(0x7f0000000240)={[{@debug}, {@orlov}, {@nomblk_io_submit}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@init_itable_val}, {@usrquota}, {@usrquota}]}, 0x1, 0x5ba, &(0x7f0000001bc0)="$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") mount$nfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)=ANY=[@ANYBLOB='v3']) (fail_nth: 2) 3.108081145s ago: executing program 0 (id=861): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000133, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r3, 0x0, 0x7, &(0x7f0000000180)=0x6, 0x4) 2.944629759s ago: executing program 2 (id=862): socket$nl_route(0x10, 0x3, 0x0) (async) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000004040)={0x0, 0x0, &(0x7f0000004000)={&(0x7f0000000840)=@newtaction={0xe78, 0x30, 0x1, 0x0, 0x0, {}, [{0xe64, 0x1, [@m_pedit={0xe60, 0x1, 0x0, 0x0, {{0xa}, {0xe34, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x10}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfffffffc}, {0x0, 0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x800000}]}}, @TCA_PEDIT_KEYS_EX={0x10, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}]}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe78}}, 0x0) 2.850322826s ago: executing program 4 (id=863): socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1008800, &(0x7f0000000100)=ANY=[], 0x1, 0x1f1, &(0x7f0000000600)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17a) sync() symlinkat(&(0x7f00000001c0)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00') 2.032904393s ago: executing program 0 (id=864): socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1008800, &(0x7f0000000100)=ANY=[], 0x1, 0x1f1, &(0x7f0000000600)="$eJzs201u00AYxvFn4jSJoUD5XCCkILGADUmaikqsWs7BKmrTqqoLCLNJhIS5AJyBc3AZDgALdqwIsmM3rT8aM61TSv+/jSfz5J1MmiYzsmwBuLQ29VBGRo3wwYPWyufbplRdo+qJAajcJD7+nthwraoA/CucX+meeAcQnM98ACzKjxfSN0nff77fkpPd1Yd5kOS1Zjb/KN2vx7lpyU3vL75Ij5N6cyVbX58ep/nV3PGfPEpef1nXdF03tKKbumUCmSjfPqy/Z7UHAgDgsjHqzMs7klOQhou3o+yuYGZJO1+zq/pMQzt73rA/J18rzJtR3tl67W2f8CoA8tRKff+LOdH3r1eY16N8NX7UspskgEr4o3FTnjd864/CRT5qjPcH3l81XKuqMg1T2cj5jUaqZ/JB0mHPpu3IEx3rcY/+ndt+23LOydma8f7ATM/SKP0cd+44tbAsL3pp8U43stGSpNN9KCawKl/+lP++TtfYUKknt3M+C+tGc0H//Mcb5/qzBGABuu8O3nT90fjp3sFgd7g7fNXv9Z6vP1tbXe93o5199+T9PYCLa7bo68jVQAAAAAAAAAAAAAAA4CK5o7vhIX3bLgAAAID/kG+k4CzuGaoX3EYWX1kMAAAAAAAAAAAAAAAAAADOzp8AAAD///TJAEg=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17a) sync() symlinkat(&(0x7f00000001c0)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00') 2.032668573s ago: executing program 1 (id=865): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000020000000000000000008500000017000000850000002a0000009500000000000000"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r3, 0x4) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x7101}) close(r4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) write$cgroup_devices(r6, &(0x7f0000000200)=ANY=[@ANYBLOB="1e0308003c5c980128876360864668f82ffdd569d2f630b5e033ff11edf1c5ffc733d2acb165fe588cd568cd1f31b87b68b00ad888f7"], 0xffdd) sendmsg$unix(r2, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x7a05, 0x1700) r7 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x8, 0x6, 0x0, 0x1}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r7, &(0x7f0000000140), 0x0}, 0x20) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008000, &(0x7f0000000080)={[{@discard}, {@orlov}, {@nomblk_io_submit}, {@block_validity}, {@nouser_xattr}, {@init_itable_val}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@usrquota}]}, 0x1, 0x5ba, &(0x7f0000001bc0)="$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") mount$nfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)=ANY=[@ANYBLOB='v3']) 1.838395179s ago: executing program 2 (id=866): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000133, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r3, 0x0, 0x7, &(0x7f0000000180)=0x6, 0x4) (fail_nth: 2) 1.818874981s ago: executing program 0 (id=867): r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0) socket$tipc(0x1e, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) write$sndseq(r0, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x4, 0x12}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote={{0xb, 0x7}, 0xa6f8, &(0x7f0000000040)={0x1, 0x6, 0xc1, 0x3, @tick=0x9eb, {0x2, 0x8}, {0x4, 0x5}, @raw8={"5dffbf87833e902601dfd240"}}}}, {0xf5, 0x0, 0x0, 0x0, @time, {}, {0x7}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time}], 0x70) 1.795335053s ago: executing program 4 (id=868): r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e"], 0x68}}, 0x64000004) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 334.901372ms ago: executing program 0 (id=869): r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYBLOB="680000001000030400"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000400012800c"], 0x68}}, 0x64000004) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 309.457654ms ago: executing program 2 (id=870): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x10) setsockopt$sock_int(r2, 0x1, 0xc, &(0x7f0000000000), 0x4) 70.345744ms ago: executing program 4 (id=871): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='attr/fscreate\x00') r2 = dup(r0) mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}}) 13.163259ms ago: executing program 4 (id=872): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000002900)='./file0\x00', 0x2000018, &(0x7f00000022c0)=ANY=[], 0x1, 0x6f0, &(0x7f0000000dc0)="$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") r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00'}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x25e, 0x2}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r1, &(0x7f0000000000), &(0x7f0000000080)=@udp}, 0x20) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r1, 0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r2, &(0x7f0000000300), 0x0}, 0x20) r3 = socket(0x1d, 0x2, 0x6) getsockopt$nfc_llcp(r3, 0x6a, 0x3, 0x0, 0x20000071) syz_usb_control_io$hid(r0, 0x0, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r4, 0x1, 0x2a, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r5 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x5}, 0x18) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r5, 0x800c6613, &(0x7f0000000200)=@v1={0x0, @aes256, 0x2, @auto="77e6c8a697c8b986"}) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r5, 0x8010661b, &(0x7f0000000000)=@v2={0x2, @aes256, 0x0, '\x00', @a}) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001ac0)=[{{&(0x7f00000002c0)={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000680)=[{&(0x7f0000000340)="6509a61e0effdf88cee2f16ee60cc8f4e1d6eb1f743d249bb0410791717bbf33956a0c3792dc12518caf73901583e38c825717d809e7df6929c8ff110cf41a65654e6de4f7ff59649dfcfdc59aade74fb5c24c5a", 0x54}, {&(0x7f0000000540)="8ce30b15b3ada27b791284107a186ec5c65218dca79d32cbdde5ee1a94e9649f9df4fbba94e5a0b83af6ef56c6ed1624fa67ee356c2134600bfb9b88b9fb3a5427447b2d67a6406437060f534db29c262bbc2e7aa6799eaea88d2af9abd779a9602caf", 0x63}, {&(0x7f00000003c0)='J', 0x1}, {&(0x7f0000002940)="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", 0x1000}, {&(0x7f00000005c0)="367c840066656897e066481daa812ec04ee8babd02ce9a85dd1eeeaf8d2caf5d91defa92301897786ec417ce2f774bf410a1ce436c13f2e0654d2c489d1ef91acd7f9f3c207101dd20521e01a89d4e34e495d54365ea2bd917380c8a0232c4d2d0be953634ba13a8dbb934f735304b8305e5bcc5c4ce7070d63ea2498c97d7c73fe24abc2e0fa19122109b3ef3e04f9a07f8a0bce400c9a2d3e742b9044a81b2a2f242ff155b6199a77e70d18f99aeb2f165b53f6a9673", 0xb7}], 0x5, &(0x7f0000000480)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x6876}}], 0x18}}, {{&(0x7f0000000700)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10, &(0x7f0000001a00)=[{&(0x7f0000000740)="37381f0884be1698bf519e9ff35722682bbaa112f5a5490249a0281ff903c033e46cb084d85fc710f9b07f3a394e11c97d73fd29c09251d369746c8d6e0a6303d1056ebf6f0e3c0b563fe4c2b268b8a8e8d29241159651e81da552e87bfbeea53da48c575d310877fb371b89041f2cddbebef07997acfc31fc8933cf6ad702963d1346f65964c0f73f036bf3b18e1d7ecb81e5935baf18564bcd634ad29f85e62f", 0xa1}, {&(0x7f0000000800)="701c2bcfd5f3a2e284f5f65b0dc7ef53525ac91bd05085b3b171b29709faeb40b1541963bdc5c47a00155b593f8808d03cee4c523caeed416b31c5a79656257f9cae22a81f252de5e72a892556a066f47f447296f69ac20cdbb6", 0x5a}, {&(0x7f0000003940)="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", 0x1000}, {&(0x7f0000000880)="186e4c3abe0fa676f9712718d004c5e4ff38b9aaafbe05ca86f9e96352a9efbc8496b65c982311519723e9fb3583c8d5d436528f118add21d9", 0x39}, {&(0x7f00000008c0)="539e49c709b9a823a7681ca47beaaef6a4c4c2911d9332c525bb9511e734e07110cfc30f14221bdfc31efa4263fc8898561affa392db258ca49ef6460c40d0071322a1f13f4d94a3b514a3e90052ce29f801f823e4", 0x55}, {&(0x7f0000000a00)="23a9c12d54b3f12b861e112253d411e56d5710c68b8a21599cfd8a8a3d0a81f45c3cecf18b572ec981422d69a5d3f6c525dee37e7a1f488be994e0ea90d144055340069fc83dc9234faccfa880cd59e8dea3e1d49d16bf701ef69e7b862b02bc07378cf88c6711f527b2ef7f97be7eb53ba204901c5451d850a2542320cef7c21df3f55050402dfb34cd34def7c09ed59214f59220ee3cb9183f33ba6fe5c3a46328cad472a02a749265a50c11caac22c1eb9914f7a16f51bedd5f23dcbb7ff8698db227cc9924340f28f6fb7e3578f7dcdbb5e686ef3808", 0xd8}, {&(0x7f0000000940)="8b30e8282449dc5471ba62abee5ea37da2c5539978f1b830bb8b155b8d9fe1ace67aaaf5e2644add4a1dac078208c45c9da133591450c2b4e65216d719a3a04374b4598661854531213727540471768df1680c2914ee7d493a42646bbd3adb6fae8ce921b76f7a57e96a9c014f2e257ec7afb6e89e3b3d2b2ae34f88303b", 0x7e}, {&(0x7f0000000b00)="77aa242f430b41915b7080251e7f8e143d50e822ebbc90a8a95bede8796650a5334b41a1d11cdb6d33351c03e5edb7865627efb1d406ac6a73a4cf11a065a1c22e0c8f12521890991f85c8463e81fd4b99cc73a71a60eee6c6c98767cefbee025321d19915", 0x65}, {&(0x7f0000000b80)="0226d50ff1d817779228f63d070f03ab98f4b2f439d40cf53338df28b6e1a53be070538bb153260222e644c1485b2eec95a45de172277851d918e2ab02ced909c6db6baf2ce9a8b59f23ce9c4a80ee5835cca2ab47ca567a30d3f87fd0e5d49b1a3287e7e866af5896d039497f8088941ebfbfab1f711920cc8e99ceb2e4c4557b136c7edfdccdaefb208dd7cb1263573c39c5fa5027496377d78f0b47fc6b80ded57a0f4e4d37ea3a8990928754d2cd1c7cc91d22a80acb1fbf44445ed8ad1bffd8246f2aa7cff5792a106780b49a568d7cc00698c5d747579b2d42f1dba574a83dc81fbe6f0e229087f56eb534", 0xee}, {&(0x7f0000001940)="def5e73cdcfd83779b887adfa7587b4ed8beae1abe7b85c0d2d70d3c190bd44354ff26b146fc37468aea1330fc6054ebc5f0e6c16db304b6d20d723dac74c62a1d296bcae50d95e7e58ba8e91230a08dc018f04617348a1c853aa4969ce2d0ab352c298d8b0d85701e1b3729fca8bbf25900b1d43ec5d5b0a9cbd45a85cb5a8b533aec5167f2df40bef58326d4f142f7caad1e4e9c14df7365068b86e29f4f6bd6a10c5f8cc24759f002f221a95d81", 0xaf}], 0xa, &(0x7f0000000c80)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}], 0x18}}], 0x2, 0x2000895) syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00222200000096231307f7940ef7070c0000000eb8ef0a1a7083000000000b00000001015d8c3dda"], 0x0}, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0) socket(0x10, 0x1, 0xe03) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000000180)=0xc) fchown(r6, r7, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x80, &(0x7f0000000400)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xb6}}, {@noacl}, {@noinit_itable}, {@barrier}, {@orlov}, {@dax_inode}, {@nogrpid}]}, 0xfe, 0x472, &(0x7f00000014c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 0s ago: executing program 0 (id=873): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x10) setsockopt$sock_int(r2, 0x1, 0xc, &(0x7f0000000000), 0x4) (fail_nth: 2) kernel console output (not intermixed with test programs): tack_lvl+0x108/0x170 [ 132.656853][ T6257] dump_stack+0x1c/0x58 [ 132.656861][ T6257] should_fail+0x3b8/0x514 [ 132.656873][ T6257] __should_failslab+0xbc/0x110 [ 132.656883][ T6257] should_failslab+0x10/0x28 [ 132.656894][ T6257] slab_pre_alloc_hook+0x64/0xe8 [ 132.656904][ T6257] __kmalloc+0xc0/0x4c8 [ 132.656912][ T6257] tomoyo_encode+0x270/0x4b0 [ 132.656924][ T6257] tomoyo_realpath_from_path+0x4b4/0x508 [ 132.656934][ T6257] tomoyo_path_number_perm+0x1f8/0x6b0 [ 132.656947][ T6257] tomoyo_file_ioctl+0x2c/0x3c [ 132.656957][ T6257] security_file_ioctl+0x80/0xbc [ 132.656968][ T6257] __arm64_sys_ioctl+0xa8/0x1c8 [ 132.656979][ T6257] invoke_syscall+0x98/0x2b8 [ 132.656990][ T6257] el0_svc_common+0x138/0x258 [ 132.657000][ T6257] do_el0_svc+0x58/0x14c [ 132.657009][ T6257] el0_svc+0x7c/0x1f0 [ 132.657019][ T6257] el0t_64_sync_handler+0x84/0xe4 [ 132.657029][ T6257] el0t_64_sync+0x1a0/0x1a4 [ 132.657136][ T6257] ERROR: Out of memory at tomoyo_realpath_from_path. [ 132.692361][ T6261] loop2: detected capacity change from 0 to 512 [ 132.727334][ T6261] EXT4-fs (loop2): Mount option "nouser_xattr" will be removed by 3.5 [ 132.727334][ T6261] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 132.727334][ T6261] [ 132.727367][ T6261] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 132.727381][ T6261] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 132.739548][ T6261] EXT4-fs (loop2): 1 orphan inode deleted [ 132.848321][ T6261] EXT4-fs (loop2): 1 truncate cleaned up [ 132.848353][ T6261] EXT4-fs (loop2): mounted filesystem without journal. Opts: discard,acl,dioread_nolock,errors=remount-ro,nouser_xattr,lazytime,. Quota mode: none. [ 133.046544][ T6273] device syzkaller1 entered promiscuous mode [ 133.081223][ T6276] FAULT_INJECTION: forcing a failure. [ 133.081223][ T6276] name failslab, interval 1, probability 0, space 0, times 0 [ 133.081262][ T6276] CPU: 0 PID: 6276 Comm: syz.1.609 Not tainted 5.15.164-syzkaller #0 [ 133.081275][ T6276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 133.081283][ T6276] Call trace: [ 133.081286][ T6276] dump_backtrace+0x0/0x530 [ 133.081301][ T6276] show_stack+0x2c/0x3c [ 133.081309][ T6276] dump_stack_lvl+0x108/0x170 [ 133.081320][ T6276] dump_stack+0x1c/0x58 [ 133.081328][ T6276] should_fail+0x3b8/0x514 [ 133.081340][ T6276] __should_failslab+0xbc/0x110 [ 133.081350][ T6276] should_failslab+0x10/0x28 [ 133.081360][ T6276] slab_pre_alloc_hook+0x64/0xe8 [ 133.081369][ T6276] __kmalloc+0xc0/0x4c8 [ 133.081378][ T6276] tomoyo_encode+0x270/0x4b0 [ 133.081389][ T6276] tomoyo_realpath_from_path+0x4b4/0x508 [ 133.081399][ T6276] tomoyo_path_number_perm+0x1f8/0x6b0 [ 133.081409][ T6276] tomoyo_file_ioctl+0x2c/0x3c [ 133.081419][ T6276] security_file_ioctl+0x80/0xbc [ 133.081430][ T6276] __arm64_sys_ioctl+0xa8/0x1c8 [ 133.081441][ T6276] invoke_syscall+0x98/0x2b8 [ 133.081451][ T6276] el0_svc_common+0x138/0x258 [ 133.081461][ T6276] do_el0_svc+0x58/0x14c [ 133.081471][ T6276] el0_svc+0x7c/0x1f0 [ 133.081479][ T6276] el0t_64_sync_handler+0x84/0xe4 [ 133.081489][ T6276] el0t_64_sync+0x1a0/0x1a4 [ 133.081508][ T6276] ERROR: Out of memory at tomoyo_realpath_from_path. [ 133.318837][ T6282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.612'. [ 133.326361][ T6286] FAULT_INJECTION: forcing a failure. [ 133.326361][ T6286] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 133.344397][ T6286] CPU: 0 PID: 6286 Comm: syz.4.614 Not tainted 5.15.164-syzkaller #0 [ 133.346536][ T6286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 133.349034][ T6286] Call trace: [ 133.349856][ T6286] dump_backtrace+0x0/0x530 [ 133.350985][ T6286] show_stack+0x2c/0x3c [ 133.352043][ T6286] dump_stack_lvl+0x108/0x170 [ 133.353235][ T6286] dump_stack+0x1c/0x58 [ 133.354379][ T6286] should_fail+0x3b8/0x514 [ 133.355579][ T6286] should_fail_usercopy+0x20/0x30 [ 133.357024][ T6286] iovec_from_user+0xcc/0x630 [ 133.358257][ T6286] __import_iovec+0x80/0x414 [ 133.359420][ T6286] import_iovec+0x88/0xa4 [ 133.360496][ T6286] ___sys_sendmsg+0x1dc/0x294 [ 133.361679][ T6286] __arm64_sys_sendmsg+0x1ac/0x25c [ 133.363048][ T6286] invoke_syscall+0x98/0x2b8 [ 133.364292][ T6286] el0_svc_common+0x138/0x258 [ 133.365597][ T6286] do_el0_svc+0x58/0x14c [ 133.366740][ T6286] el0_svc+0x7c/0x1f0 [ 133.367845][ T6286] el0t_64_sync_handler+0x84/0xe4 [ 133.369091][ T6286] el0t_64_sync+0x1a0/0x1a4 [ 133.457619][ T6291] loop4: detected capacity change from 0 to 16 [ 133.471486][ T6293] Option '§?ßÖ ó' to dns_resolver key: bad/missing value [ 133.493688][ T6291] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 133.523702][ T6296] loop1: detected capacity change from 0 to 16 [ 133.546618][ T6296] erofs: (device loop1): mounted with root inode @ nid 36. [ 133.572258][ T6291] cramfs: wrong endianness [ 133.633595][ T4410] Bluetooth: hci4: command 0x040f tx timeout [ 133.798328][ T6301] FAULT_INJECTION: forcing a failure. [ 133.798328][ T6301] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 133.808473][ T6300] loop4: detected capacity change from 0 to 512 [ 133.810603][ T6301] CPU: 1 PID: 6301 Comm: syz.2.618 Not tainted 5.15.164-syzkaller #0 [ 133.812629][ T6301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 133.815381][ T6301] Call trace: [ 133.816208][ T6301] dump_backtrace+0x0/0x530 [ 133.817471][ T6301] show_stack+0x2c/0x3c [ 133.818574][ T6301] dump_stack_lvl+0x108/0x170 [ 133.819830][ T6301] dump_stack+0x1c/0x58 [ 133.820991][ T6301] should_fail+0x3b8/0x514 [ 133.822212][ T6301] should_fail_alloc_page+0x74/0xa8 [ 133.823584][ T6301] prepare_alloc_pages+0x160/0x460 [ 133.824931][ T6301] __alloc_pages+0x138/0x674 [ 133.826112][ T6301] kmalloc_large_node+0x8c/0x190 [ 133.827449][ T6301] __kmalloc_node_track_caller+0x2dc/0x448 [ 133.829155][ T6301] kmalloc_reserve+0xe8/0x270 [ 133.830473][ T6301] __alloc_skb+0x1a4/0x584 [ 133.831688][ T6301] alloc_skb_with_frags+0xb4/0x58c [ 133.833058][ T6301] sock_alloc_send_pskb+0x7a8/0x8c0 [ 133.834417][ T6301] tun_get_user+0x898/0x3774 [ 133.835614][ T6301] tun_chr_write_iter+0xfc/0x20c [ 133.836923][ T6301] vfs_write+0x884/0xb44 [ 133.838164][ T6301] ksys_write+0x15c/0x26c [ 133.839390][ T6301] __arm64_sys_write+0x7c/0x90 [ 133.840667][ T6301] invoke_syscall+0x98/0x2b8 [ 133.841912][ T6301] el0_svc_common+0x138/0x258 [ 133.843150][ T6301] do_el0_svc+0x58/0x14c [ 133.844312][ T6301] el0_svc+0x7c/0x1f0 [ 133.845400][ T6301] el0t_64_sync_handler+0x84/0xe4 [ 133.846823][ T6301] el0t_64_sync+0x1a0/0x1a4 [ 133.884897][ T4209] IPVS: stopping backup sync thread 4709 ... [ 133.895311][ T6300] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.619: casefold flag without casefold feature [ 133.899505][ T6300] EXT4-fs error (device loop4): __ext4_iget:4861: inode #12: block 2: comm syz.4.619: invalid block [ 133.913823][ T6300] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.619: error while reading EA inode 12 err=-117 [ 133.918254][ T6300] EXT4-fs (loop4): 1 orphan inode deleted [ 133.930076][ T6300] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 134.107046][ T6308] loop2: detected capacity change from 0 to 512 [ 134.195500][ T6308] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.621: casefold flag without casefold feature [ 134.202583][ T6308] EXT4-fs error (device loop2): __ext4_iget:4861: inode #12: block 2: comm syz.2.621: invalid block [ 134.215984][ T6308] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.621: error while reading EA inode 12 err=-117 [ 134.226023][ T6308] EXT4-fs (loop2): 1 orphan inode deleted [ 134.227506][ T6308] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 134.416226][ T4209] device hsr_slave_0 left promiscuous mode [ 134.420739][ T6316] FAULT_INJECTION: forcing a failure. [ 134.420739][ T6316] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 134.456229][ T4209] device hsr_slave_1 left promiscuous mode [ 134.458522][ T6316] CPU: 1 PID: 6316 Comm: syz.2.621 Not tainted 5.15.164-syzkaller #0 [ 134.460664][ T6316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 134.464908][ T6316] Call trace: [ 134.464933][ T6316] dump_backtrace+0x0/0x530 [ 134.464950][ T6316] show_stack+0x2c/0x3c [ 134.464958][ T6316] dump_stack_lvl+0x108/0x170 [ 134.464969][ T6316] dump_stack+0x1c/0x58 [ 134.464978][ T6316] should_fail+0x3b8/0x514 [ 134.464989][ T6316] should_fail_alloc_page+0x74/0xa8 [ 134.465001][ T6316] prepare_alloc_pages+0x160/0x460 [ 134.465011][ T6316] __alloc_pages+0x138/0x674 [ 134.465021][ T6316] alloc_pages+0x368/0x5d4 [ 134.465031][ T6316] __page_cache_alloc+0x78/0x524 [ 134.465040][ T6316] pagecache_get_page+0xa1c/0xd94 [ 134.465050][ T6316] grab_cache_page_write_begin+0x68/0xb4 [ 134.465060][ T6316] ext4_write_begin+0x288/0xe84 [ 134.465071][ T6316] generic_perform_write+0x24c/0x520 [ 134.465081][ T6316] ext4_buffered_write_iter+0x3fc/0x528 [ 134.465096][ T6316] ext4_file_write_iter+0x688/0x162c [ 134.465107][ T6316] vfs_write+0x884/0xb44 [ 134.465117][ T6316] __arm64_sys_pwrite64+0x188/0x220 [ 134.465126][ T6316] invoke_syscall+0x98/0x2b8 [ 134.465137][ T6316] el0_svc_common+0x138/0x258 [ 134.465147][ T6316] do_el0_svc+0x58/0x14c [ 134.465157][ T6316] el0_svc+0x7c/0x1f0 [ 134.465165][ T6316] el0t_64_sync_handler+0x84/0xe4 [ 134.465175][ T6316] el0t_64_sync+0x1a0/0x1a4 [ 134.526416][ T6322] FAULT_INJECTION: forcing a failure. [ 134.526416][ T6322] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 134.526445][ T6322] CPU: 1 PID: 6322 Comm: syz.0.626 Not tainted 5.15.164-syzkaller #0 [ 134.526458][ T6322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 134.526465][ T6322] Call trace: [ 134.526469][ T6322] dump_backtrace+0x0/0x530 [ 134.526483][ T6322] show_stack+0x2c/0x3c [ 134.526491][ T6322] dump_stack_lvl+0x108/0x170 [ 134.526502][ T6322] dump_stack+0x1c/0x58 [ 134.526510][ T6322] should_fail+0x3b8/0x514 [ 134.526522][ T6322] should_fail_usercopy+0x20/0x30 [ 134.526531][ T6322] iovec_from_user+0xcc/0x630 [ 134.526541][ T6322] __import_iovec+0x80/0x414 [ 134.526549][ T6322] import_iovec+0x88/0xa4 [ 134.526558][ T6322] ___sys_sendmsg+0x1dc/0x294 [ 134.526570][ T6322] __arm64_sys_sendmsg+0x1ac/0x25c [ 134.526580][ T6322] invoke_syscall+0x98/0x2b8 [ 134.526590][ T6322] el0_svc_common+0x138/0x258 [ 134.526600][ T6322] do_el0_svc+0x58/0x14c [ 134.526610][ T6322] el0_svc+0x7c/0x1f0 [ 134.526619][ T6322] el0t_64_sync_handler+0x84/0xe4 [ 134.526628][ T6322] el0t_64_sync+0x1a0/0x1a4 [ 134.553016][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 134.553091][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 134.570289][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 134.570327][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 134.570845][ T4209] device bridge_slave_1 left promiscuous mode [ 134.570958][ T4209] bridge0: port 2(bridge_slave_1) entered disabled state [ 134.664898][ T4209] device bridge_slave_0 left promiscuous mode [ 134.665023][ T4209] bridge0: port 1(bridge_slave_0) entered disabled state [ 134.793300][ T4209] device veth1_macvtap left promiscuous mode [ 134.795147][ T4209] device veth0_macvtap left promiscuous mode [ 134.796732][ T4209] device veth1_vlan left promiscuous mode [ 134.798184][ T4209] device veth0_vlan left promiscuous mode [ 135.065092][ T6341] loop2: detected capacity change from 0 to 512 [ 135.147507][ T6341] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.628: invalid indirect mapped block 10 (level 1) [ 135.160272][ T6341] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.628: invalid indirect mapped block 8 (level 1) [ 135.180657][ T6323] loop4: detected capacity change from 0 to 32768 [ 135.181221][ T6341] EXT4-fs (loop2): 1 truncate cleaned up [ 135.188276][ T6341] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 135.231831][ T6323] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.623 (6323) [ 135.239177][ T6323] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 135.241480][ T6323] BTRFS info (device loop4): using free space tree [ 135.255275][ T6323] BTRFS info (device loop4): has skinny extents [ 135.377942][ T4209] team0 (unregistering): Port device team_slave_1 removed [ 135.398043][ T4209] team0 (unregistering): Port device team_slave_0 removed [ 135.413296][ T4209] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 135.425697][ T6323] BTRFS info (device loop4): enabling ssd optimizations [ 135.480382][ T4209] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 135.525181][ T6365] loop2: detected capacity change from 0 to 256 [ 135.527501][ T6365] FAT-fs (loop2): Unrecognized mount option "00000000000000000000000" or missing value [ 135.613975][ T6367] FAULT_INJECTION: forcing a failure. [ 135.613975][ T6367] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 135.617491][ T6367] CPU: 0 PID: 6367 Comm: syz.1.631 Not tainted 5.15.164-syzkaller #0 [ 135.619576][ T6367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 135.622065][ T6367] Call trace: [ 135.622905][ T6367] dump_backtrace+0x0/0x530 [ 135.624136][ T6367] show_stack+0x2c/0x3c [ 135.625293][ T6367] dump_stack_lvl+0x108/0x170 [ 135.626592][ T6367] dump_stack+0x1c/0x58 [ 135.627728][ T6367] should_fail+0x3b8/0x514 [ 135.628869][ T6367] should_fail_usercopy+0x20/0x30 [ 135.630287][ T6367] iovec_from_user+0xcc/0x630 [ 135.631710][ T6367] __import_iovec+0x80/0x414 [ 135.632963][ T6367] import_iovec+0x88/0xa4 [ 135.634092][ T6367] ___sys_sendmsg+0x1dc/0x294 [ 135.635425][ T6367] __arm64_sys_sendmsg+0x1ac/0x25c [ 135.636791][ T6367] invoke_syscall+0x98/0x2b8 [ 135.638046][ T6367] el0_svc_common+0x138/0x258 [ 135.639351][ T6367] do_el0_svc+0x58/0x14c [ 135.640448][ T6367] el0_svc+0x7c/0x1f0 [ 135.641492][ T6367] el0t_64_sync_handler+0x84/0xe4 [ 135.642947][ T6367] el0t_64_sync+0x1a0/0x1a4 [ 135.669843][ T6365] loop2: detected capacity change from 0 to 64 [ 135.694281][ T6365] hfs: uid requires an argument [ 135.695646][ T6365] hfs: unable to parse mount options [ 135.713039][ T4403] Bluetooth: hci4: command 0x0419 tx timeout [ 135.803094][ T6370] loop2: detected capacity change from 0 to 512 [ 135.805566][ T4209] bond0 (unregistering): Released all slaves [ 135.846750][ T6370] EXT2-fs (loop2): error: couldn't mount because of unsupported optional features (4740) [ 135.938966][ T6325] netlink: 8 bytes leftover after parsing attributes in process `syz.0.627'. [ 136.164815][ T6374] netlink: 72 bytes leftover after parsing attributes in process `syz.0.634'. [ 136.185295][ T6374] netlink: 72 bytes leftover after parsing attributes in process `syz.0.634'. [ 136.625489][ T6389] FAULT_INJECTION: forcing a failure. [ 136.625489][ T6389] name failslab, interval 1, probability 0, space 0, times 0 [ 136.642694][ T6389] CPU: 1 PID: 6389 Comm: syz.3.640 Not tainted 5.15.164-syzkaller #0 [ 136.644893][ T6389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 136.647493][ T6389] Call trace: [ 136.648327][ T6389] dump_backtrace+0x0/0x530 [ 136.649473][ T6389] show_stack+0x2c/0x3c [ 136.650515][ T6389] dump_stack_lvl+0x108/0x170 [ 136.651698][ T6389] dump_stack+0x1c/0x58 [ 136.652804][ T6389] should_fail+0x3b8/0x514 [ 136.654043][ T6389] __should_failslab+0xbc/0x110 [ 136.655424][ T6389] should_failslab+0x10/0x28 [ 136.656712][ T6389] slab_pre_alloc_hook+0x64/0xe8 [ 136.658050][ T6389] __kmalloc_node+0xbc/0x5b8 [ 136.659321][ T6389] __bpf_map_area_alloc+0xac/0x264 [ 136.660628][ T6389] bpf_map_area_alloc+0x2c/0x3c [ 136.661930][ T6389] array_map_alloc+0x200/0x5ac [ 136.663323][ T6389] map_create+0x438/0xc98 [ 136.664534][ T6389] __sys_bpf+0x240/0x610 [ 136.665667][ T6389] __arm64_sys_bpf+0x80/0x98 [ 136.666971][ T6389] invoke_syscall+0x98/0x2b8 [ 136.668348][ T6389] el0_svc_common+0x138/0x258 [ 136.669715][ T6389] do_el0_svc+0x58/0x14c [ 136.670886][ T6389] el0_svc+0x7c/0x1f0 [ 136.671966][ T6389] el0t_64_sync_handler+0x84/0xe4 [ 136.673384][ T6389] el0t_64_sync+0x1a0/0x1a4 [ 136.674643][ C1] vkms_vblank_simulate: vblank timer overrun [ 136.693143][ T6393] loop0: detected capacity change from 0 to 64 [ 136.708387][ T6396] loop2: detected capacity change from 0 to 16 [ 136.766429][ T6396] erofs: (device loop2): mounted with root inode @ nid 36. [ 136.945859][ T6404] loop4: detected capacity change from 0 to 256 [ 136.963942][ T6402] netlink: 72 bytes leftover after parsing attributes in process `syz.3.645'. [ 137.003683][ T6402] netlink: 72 bytes leftover after parsing attributes in process `syz.3.645'. [ 137.015504][ T6406] FAULT_INJECTION: forcing a failure. [ 137.015504][ T6406] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 137.029313][ T6406] CPU: 1 PID: 6406 Comm: syz.1.648 Not tainted 5.15.164-syzkaller #0 [ 137.031379][ T6406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 137.033980][ T6406] Call trace: [ 137.034782][ T6406] dump_backtrace+0x0/0x530 [ 137.035930][ T6406] show_stack+0x2c/0x3c [ 137.036965][ T6406] dump_stack_lvl+0x108/0x170 [ 137.038153][ T6406] dump_stack+0x1c/0x58 [ 137.039216][ T6406] should_fail+0x3b8/0x514 [ 137.040476][ T6406] should_fail_usercopy+0x20/0x30 [ 137.041864][ T6406] __arm64_sys_clock_adjtime+0x2ec/0x490 [ 137.043443][ T6406] invoke_syscall+0x98/0x2b8 [ 137.044645][ T6406] el0_svc_common+0x138/0x258 [ 137.045857][ T6406] do_el0_svc+0x58/0x14c [ 137.046959][ T6406] el0_svc+0x7c/0x1f0 [ 137.048020][ T6406] el0t_64_sync_handler+0x84/0xe4 [ 137.049409][ T6406] el0t_64_sync+0x1a0/0x1a4 [ 137.191727][ T6422] FAULT_INJECTION: forcing a failure. [ 137.191727][ T6422] name failslab, interval 1, probability 0, space 0, times 0 [ 137.207876][ T6422] CPU: 0 PID: 6422 Comm: syz.0.651 Not tainted 5.15.164-syzkaller #0 [ 137.210050][ T6422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 137.212664][ T6422] Call trace: [ 137.213544][ T6422] dump_backtrace+0x0/0x530 [ 137.214684][ T6422] show_stack+0x2c/0x3c [ 137.215731][ T6422] dump_stack_lvl+0x108/0x170 [ 137.216879][ T6422] dump_stack+0x1c/0x58 [ 137.218122][ T6422] should_fail+0x3b8/0x514 [ 137.219349][ T6422] __should_failslab+0xbc/0x110 [ 137.220758][ T6422] should_failslab+0x10/0x28 [ 137.221974][ T6422] slab_pre_alloc_hook+0x64/0xe8 [ 137.223239][ T6422] kmem_cache_alloc_node+0x9c/0x49c [ 137.224610][ T6422] __alloc_skb+0x174/0x584 [ 137.225810][ T6422] alloc_skb_with_frags+0xb4/0x58c [ 137.227211][ T6422] sock_alloc_send_pskb+0x7a8/0x8c0 [ 137.228709][ T6422] unix_dgram_sendmsg+0x48c/0x1654 [ 137.230260][ T6422] unix_seqpacket_sendmsg+0x108/0x1d0 [ 137.231769][ T6422] ____sys_sendmsg+0x584/0x870 [ 137.233183][ T6422] ___sys_sendmsg+0x214/0x294 [ 137.234605][ T6422] __arm64_sys_sendmsg+0x1ac/0x25c [ 137.236058][ T6422] invoke_syscall+0x98/0x2b8 [ 137.237315][ T6422] el0_svc_common+0x138/0x258 [ 137.238523][ T6422] do_el0_svc+0x58/0x14c [ 137.239699][ T6422] el0_svc+0x7c/0x1f0 [ 137.240821][ T6422] el0t_64_sync_handler+0x84/0xe4 [ 137.242296][ T6422] el0t_64_sync+0x1a0/0x1a4 [ 137.247527][ T6418] netlink: 48 bytes leftover after parsing attributes in process `syz.4.646'. [ 137.493966][ T6438] 9pnet: Insufficient options for proto=fd [ 137.963292][ T6452] kAFS: unable to lookup cell '.' [ 138.054252][ T6452] loop4: detected capacity change from 0 to 1024 [ 138.085595][ T6452] hfsplus: session requires an argument [ 138.100121][ T6452] hfsplus: unable to parse mount options [ 138.138244][ T6457] netlink: 72 bytes leftover after parsing attributes in process `syz.0.659'. [ 138.166112][ T6457] netlink: 72 bytes leftover after parsing attributes in process `syz.0.659'. [ 138.260113][ T6466] FAULT_INJECTION: forcing a failure. [ 138.260113][ T6466] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 138.277945][ T6468] loop3: detected capacity change from 0 to 164 [ 138.281949][ T6466] CPU: 1 PID: 6466 Comm: syz.1.662 Not tainted 5.15.164-syzkaller #0 [ 138.284176][ T6466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 138.286878][ T6466] Call trace: [ 138.287762][ T6466] dump_backtrace+0x0/0x530 [ 138.288944][ T6466] show_stack+0x2c/0x3c [ 138.290011][ T6466] dump_stack_lvl+0x108/0x170 [ 138.291240][ T6466] dump_stack+0x1c/0x58 [ 138.292420][ T6466] should_fail+0x3b8/0x514 [ 138.293648][ T6466] should_fail_usercopy+0x20/0x30 [ 138.295089][ T6466] simple_read_from_buffer+0xd8/0x26c [ 138.296698][ T6466] proc_fail_nth_read+0x1a0/0x248 [ 138.298103][ T6466] vfs_read+0x278/0xb18 [ 138.299275][ T6466] ksys_read+0x15c/0x26c [ 138.300496][ T6466] __arm64_sys_read+0x7c/0x90 [ 138.301773][ T6466] invoke_syscall+0x98/0x2b8 [ 138.303110][ T6466] el0_svc_common+0x138/0x258 [ 138.304588][ T6466] do_el0_svc+0x58/0x14c [ 138.305741][ T6466] el0_svc+0x7c/0x1f0 [ 138.306799][ T6466] el0t_64_sync_handler+0x84/0xe4 [ 138.308188][ T6466] el0t_64_sync+0x1a0/0x1a4 [ 138.326563][ T6469] netlink: 4 bytes leftover after parsing attributes in process `syz.0.664'. [ 138.359586][ T6469] ubi0: attaching mtd0 [ 138.361946][ T6469] ubi0: scanning is finished [ 138.372786][ T6469] ubi0: empty MTD device detected [ 138.472029][ T6472] loop4: detected capacity change from 0 to 2048 [ 138.484031][ T6475] 9pnet: Insufficient options for proto=fd [ 138.692036][ T4026] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh [ 138.704890][ T4026] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh [ 138.724293][ T6469] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 138.743624][ T6469] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 138.750324][ T6469] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 138.768003][ T6469] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 138.770179][ T6469] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 138.790247][ T6469] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 138.805096][ T6469] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2550973804 [ 138.830354][ T6469] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 138.852112][ T6482] ubi0: background thread "ubi_bgt0d" started, PID 6482 [ 138.859365][ T6484] FAULT_INJECTION: forcing a failure. [ 138.859365][ T6484] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 138.888579][ T6484] CPU: 1 PID: 6484 Comm: syz.3.670 Not tainted 5.15.164-syzkaller #0 [ 138.890770][ T6484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 138.893347][ T6484] Call trace: [ 138.894200][ T6484] dump_backtrace+0x0/0x530 [ 138.895341][ T6484] show_stack+0x2c/0x3c [ 138.896411][ T6484] dump_stack_lvl+0x108/0x170 [ 138.897557][ T6484] dump_stack+0x1c/0x58 [ 138.898684][ T6484] should_fail+0x3b8/0x514 [ 138.899815][ T6484] should_fail_usercopy+0x20/0x30 [ 138.901155][ T6484] iovec_from_user+0xcc/0x630 [ 138.902393][ T6484] __import_iovec+0x80/0x414 [ 138.903542][ T6484] import_iovec+0x88/0xa4 [ 138.904625][ T6484] ___sys_recvmsg+0x1e8/0x2cc [ 138.905817][ T6484] do_recvmmsg+0x310/0x9a4 [ 138.906909][ T6484] __arm64_sys_recvmmsg+0x180/0x23c [ 138.908307][ T6484] invoke_syscall+0x98/0x2b8 [ 138.909542][ T6484] el0_svc_common+0x138/0x258 [ 138.910842][ T6484] do_el0_svc+0x58/0x14c [ 138.911991][ T6484] el0_svc+0x7c/0x1f0 [ 138.913042][ T6484] el0t_64_sync_handler+0x84/0xe4 [ 138.914416][ T6484] el0t_64_sync+0x1a0/0x1a4 [ 138.915651][ C1] vkms_vblank_simulate: vblank timer overrun [ 138.981441][ T6486] loop1: detected capacity change from 0 to 2048 [ 139.182549][ T5670] UDF-fs: error (device loop1): udf_read_inode: (ino 1317) failed !bh [ 139.185701][ T5670] UDF-fs: error (device loop1): udf_read_inode: (ino 1317) failed !bh [ 139.290256][ T6490] netlink: 72 bytes leftover after parsing attributes in process `syz.3.674'. [ 139.297916][ T6490] netlink: 72 bytes leftover after parsing attributes in process `syz.3.674'. [ 139.446755][ T6492] loop3: detected capacity change from 0 to 256 [ 140.015255][ T4028] Bluetooth: hci4: SCO packet for unknown connection handle 137 [ 140.695847][ T6500] bridge0: port 3(erspan0) entered blocking state [ 140.697506][ T6500] bridge0: port 3(erspan0) entered disabled state [ 140.699878][ T6500] device erspan0 entered promiscuous mode [ 140.701711][ T6500] bridge0: port 3(erspan0) entered blocking state [ 140.703503][ T6500] bridge0: port 3(erspan0) entered forwarding state [ 140.842121][ T6505] FAULT_INJECTION: forcing a failure. [ 140.842121][ T6505] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 140.845741][ T6505] CPU: 0 PID: 6505 Comm: syz.3.681 Not tainted 5.15.164-syzkaller #0 [ 140.847835][ T6505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 140.850432][ T6505] Call trace: [ 140.851287][ T6505] dump_backtrace+0x0/0x530 [ 140.852542][ T6505] show_stack+0x2c/0x3c [ 140.853761][ T6505] dump_stack_lvl+0x108/0x170 [ 140.854944][ T6505] dump_stack+0x1c/0x58 [ 140.856176][ T6505] should_fail+0x3b8/0x514 [ 140.857308][ T6505] should_fail_usercopy+0x20/0x30 [ 140.858639][ T6505] iovec_from_user+0xcc/0x630 [ 140.859975][ T6505] __import_iovec+0x80/0x414 [ 140.861160][ T6505] import_iovec+0x88/0xa4 [ 140.862402][ T6505] ___sys_recvmsg+0x1e8/0x2cc [ 140.863603][ T6505] __arm64_sys_recvmsg+0x1a8/0x258 [ 140.865130][ T6505] invoke_syscall+0x98/0x2b8 [ 140.866342][ T6505] el0_svc_common+0x138/0x258 [ 140.867573][ T6505] do_el0_svc+0x58/0x14c [ 140.868738][ T6505] el0_svc+0x7c/0x1f0 [ 140.869831][ T6505] el0t_64_sync_handler+0x84/0xe4 [ 140.871147][ T6505] el0t_64_sync+0x1a0/0x1a4 [ 140.926843][ T6494] loop0: detected capacity change from 0 to 32768 [ 141.944575][ T6504] chnl_net:caif_netlink_parms(): no params data found [ 142.101363][ T6528] netlink: 72 bytes leftover after parsing attributes in process `syz.3.685'. [ 142.104225][ T6530] netlink: 72 bytes leftover after parsing attributes in process `syz.3.685'. [ 142.109524][ T6516] chnl_net:caif_netlink_parms(): no params data found [ 142.268177][ T6540] 9pnet: Insufficient options for proto=fd [ 142.308365][ T6541] FAULT_INJECTION: forcing a failure. [ 142.308365][ T6541] name failslab, interval 1, probability 0, space 0, times 0 [ 142.355413][ T6541] CPU: 1 PID: 6541 Comm: syz.0.686 Not tainted 5.15.164-syzkaller #0 [ 142.357700][ T6541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 142.360479][ T6541] Call trace: [ 142.361478][ T6541] dump_backtrace+0x0/0x530 [ 142.362699][ T6541] show_stack+0x2c/0x3c [ 142.363858][ T6541] dump_stack_lvl+0x108/0x170 [ 142.365132][ T6541] dump_stack+0x1c/0x58 [ 142.366372][ T6541] should_fail+0x3b8/0x514 [ 142.367646][ T6541] __should_failslab+0xbc/0x110 [ 142.369023][ T6541] should_failslab+0x10/0x28 [ 142.370271][ T6541] slab_pre_alloc_hook+0x64/0xe8 [ 142.371623][ T6541] kmem_cache_alloc+0x98/0x45c [ 142.372940][ T6541] flock_lock_inode+0x1ac/0x1298 [ 142.374274][ T6541] locks_lock_inode_wait+0xfc/0x410 [ 142.375719][ T6541] __arm64_sys_flock+0x418/0x718 [ 142.377179][ T6541] invoke_syscall+0x98/0x2b8 [ 142.378518][ T6541] el0_svc_common+0x138/0x258 [ 142.379815][ T6541] do_el0_svc+0x58/0x14c [ 142.380966][ T6541] el0_svc+0x7c/0x1f0 [ 142.382022][ T6541] el0t_64_sync_handler+0x84/0xe4 [ 142.383457][ T6541] el0t_64_sync+0x1a0/0x1a4 [ 142.385220][ C1] vkms_vblank_simulate: vblank timer overrun [ 142.496887][ T6504] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.498990][ T6504] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.516775][ T6504] device bridge_slave_0 entered promiscuous mode [ 142.575134][ T6545] loop3: detected capacity change from 0 to 16 [ 142.628703][ T6545] erofs: (device loop3): mounted with root inode @ nid 36. [ 143.701513][ C0] sched: RT throttling activated [ 143.713150][ T5561] Bluetooth: hci2: command 0x0409 tx timeout [ 143.720618][ T4408] Bluetooth: hci0: command 0x0409 tx timeout [ 143.784125][ T6504] bridge0: port 2(bridge_slave_1) entered blocking state [ 143.786061][ T6504] bridge0: port 2(bridge_slave_1) entered disabled state [ 143.789129][ T6504] device bridge_slave_1 entered promiscuous mode [ 144.056836][ T6564] FAULT_INJECTION: forcing a failure. [ 144.056836][ T6564] name failslab, interval 1, probability 0, space 0, times 0 [ 144.071500][ T6564] CPU: 1 PID: 6564 Comm: syz.2.694 Not tainted 5.15.164-syzkaller #0 [ 144.073643][ T6564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 144.076241][ T6564] Call trace: [ 144.077123][ T6564] dump_backtrace+0x0/0x530 [ 144.078279][ T6564] show_stack+0x2c/0x3c [ 144.079353][ T6564] dump_stack_lvl+0x108/0x170 [ 144.080558][ T6564] dump_stack+0x1c/0x58 [ 144.081757][ T6564] should_fail+0x3b8/0x514 [ 144.082963][ T6564] __should_failslab+0xbc/0x110 [ 144.084326][ T6564] should_failslab+0x10/0x28 [ 144.085608][ T6564] slab_pre_alloc_hook+0x64/0xe8 [ 144.086863][ T6564] __kmalloc+0xc0/0x4c8 [ 144.088064][ T6564] tomoyo_encode+0x270/0x4b0 [ 144.089302][ T6564] tomoyo_realpath_from_path+0x4b4/0x508 [ 144.090822][ T6564] tomoyo_path_number_perm+0x1f8/0x6b0 [ 144.092248][ T6564] tomoyo_file_ioctl+0x2c/0x3c [ 144.093575][ T6564] security_file_ioctl+0x80/0xbc [ 144.094899][ T6564] __arm64_sys_ioctl+0xa8/0x1c8 [ 144.096267][ T6564] invoke_syscall+0x98/0x2b8 [ 144.097593][ T6564] el0_svc_common+0x138/0x258 [ 144.098886][ T6564] do_el0_svc+0x58/0x14c [ 144.100131][ T6564] el0_svc+0x7c/0x1f0 [ 144.101213][ T6564] el0t_64_sync_handler+0x84/0xe4 [ 144.102540][ T6564] el0t_64_sync+0x1a0/0x1a4 [ 144.136555][ T6564] ERROR: Out of memory at tomoyo_realpath_from_path. [ 144.573221][ T6504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 144.591925][ T6504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 144.634237][ T4209] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.677597][ T6516] bridge0: port 1(bridge_slave_0) entered blocking state [ 144.679508][ T6516] bridge0: port 1(bridge_slave_0) entered disabled state [ 144.689750][ T6516] device bridge_slave_0 entered promiscuous mode [ 144.706682][ T6504] team0: Port device team_slave_0 added [ 144.708821][ T6575] netlink: 72 bytes leftover after parsing attributes in process `syz.2.697'. [ 144.714761][ T6575] netlink: 72 bytes leftover after parsing attributes in process `syz.2.697'. [ 144.780736][ T6516] bridge0: port 2(bridge_slave_1) entered blocking state [ 144.782859][ T6516] bridge0: port 2(bridge_slave_1) entered disabled state [ 144.785623][ T6516] device bridge_slave_1 entered promiscuous mode [ 144.789545][ T6504] team0: Port device team_slave_1 added [ 144.803721][ T6578] 9pnet: Insufficient options for proto=fd [ 144.828635][ T6579] loop2: detected capacity change from 0 to 512 [ 144.834436][ T4209] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.844931][ T6504] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 144.846776][ T6504] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 144.868763][ T6504] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 144.892959][ T6504] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 144.894824][ T6504] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 144.903173][ T6504] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 144.910140][ T6516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 144.915986][ T6583] netlink: 'syz.0.701': attribute type 4 has an invalid length. [ 144.917931][ T6583] netlink: 'syz.0.701': attribute type 1 has an invalid length. [ 144.934838][ T4209] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.961449][ T6583] netlink: 88156 bytes leftover after parsing attributes in process `syz.0.701'. [ 144.977834][ T6516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 145.006817][ T6590] loop0: detected capacity change from 0 to 512 [ 145.012851][ T6579] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 145.054933][ T4209] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.085869][ T6590] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 145.134961][ T6516] team0: Port device team_slave_0 added [ 145.166174][ T6504] device hsr_slave_0 entered promiscuous mode [ 145.178316][ T6595] FAULT_INJECTION: forcing a failure. [ 145.178316][ T6595] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 145.190548][ T6595] CPU: 1 PID: 6595 Comm: syz.0.702 Not tainted 5.15.164-syzkaller #0 [ 145.192829][ T6595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 145.195511][ T6595] Call trace: [ 145.196351][ T6595] dump_backtrace+0x0/0x530 [ 145.197507][ T6595] show_stack+0x2c/0x3c [ 145.198591][ T6595] dump_stack_lvl+0x108/0x170 [ 145.199815][ T6595] dump_stack+0x1c/0x58 [ 145.200884][ T6595] should_fail+0x3b8/0x514 [ 145.202137][ T6595] should_fail_usercopy+0x20/0x30 [ 145.203568][ T6595] iovec_from_user+0xcc/0x630 [ 145.204829][ T6595] __import_iovec+0x80/0x414 [ 145.206087][ T6595] import_iovec+0x88/0xa4 [ 145.207219][ T6595] do_preadv+0x1b8/0x324 [ 145.208337][ T6595] __arm64_sys_preadv+0xa0/0xb8 [ 145.209625][ T6595] invoke_syscall+0x98/0x2b8 [ 145.210874][ T6595] el0_svc_common+0x138/0x258 [ 145.212167][ T6595] do_el0_svc+0x58/0x14c [ 145.213258][ T6595] el0_svc+0x7c/0x1f0 [ 145.214306][ T6595] el0t_64_sync_handler+0x84/0xe4 [ 145.215663][ T6595] el0t_64_sync+0x1a0/0x1a4 [ 145.225735][ T6504] device hsr_slave_1 entered promiscuous mode [ 145.254013][ T6597] loop2: detected capacity change from 0 to 256 [ 145.261867][ T6504] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 145.263949][ T6504] Cannot create hsr debugfs directory [ 145.267844][ T6516] team0: Port device team_slave_1 added [ 145.283104][ T6597] FAT-fs (loop2): Unrecognized mount option " [ 145.283104][ T6597] " or missing value [ 145.338872][ T6516] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 145.340822][ T6516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 145.347240][ T6516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 145.414684][ T6516] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 145.416592][ T6516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 145.424592][ T6599] FAULT_INJECTION: forcing a failure. [ 145.424592][ T6599] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 145.428155][ T6599] CPU: 0 PID: 6599 Comm: syz.2.705 Not tainted 5.15.164-syzkaller #0 [ 145.430326][ T6599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 145.432915][ T6599] Call trace: [ 145.433738][ T6599] dump_backtrace+0x0/0x530 [ 145.434989][ T6599] show_stack+0x2c/0x3c [ 145.436189][ T6599] dump_stack_lvl+0x108/0x170 [ 145.437447][ T6599] dump_stack+0x1c/0x58 [ 145.438548][ T6599] should_fail+0x3b8/0x514 [ 145.439728][ T6599] should_fail_usercopy+0x20/0x30 [ 145.441045][ T6599] iovec_from_user+0xcc/0x630 [ 145.442245][ T6599] __import_iovec+0x80/0x414 [ 145.443536][ T6599] import_iovec+0x88/0xa4 [ 145.444792][ T6599] ___sys_sendmsg+0x1dc/0x294 [ 145.446233][ T6599] __arm64_sys_sendmsg+0x1ac/0x25c [ 145.447687][ T6599] invoke_syscall+0x98/0x2b8 [ 145.448909][ T6599] el0_svc_common+0x138/0x258 [ 145.450090][ T6599] do_el0_svc+0x58/0x14c [ 145.451251][ T6599] el0_svc+0x7c/0x1f0 [ 145.452247][ T6599] el0t_64_sync_handler+0x84/0xe4 [ 145.453684][ T6599] el0t_64_sync+0x1a0/0x1a4 [ 145.466116][ T6516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 145.484419][ T6601] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 145.610163][ T6603] loop2: detected capacity change from 0 to 16 [ 145.615148][ T6603] erofs: (device loop2): mounted with root inode @ nid 36. [ 145.656634][ T4209] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.766251][ T6516] device hsr_slave_0 entered promiscuous mode [ 145.804667][ T5561] Bluetooth: hci0: command 0x041b tx timeout [ 145.806326][ T5561] Bluetooth: hci2: command 0x041b tx timeout [ 145.807220][ T6608] 9pnet: Insufficient options for proto=fd [ 145.808409][ T6516] device hsr_slave_1 entered promiscuous mode [ 145.849408][ T6516] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 145.852893][ T6516] Cannot create hsr debugfs directory [ 145.890070][ T4209] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.905851][ T6605] netlink: 8 bytes leftover after parsing attributes in process `syz.0.707'. [ 145.908112][ T6605] netlink: 48 bytes leftover after parsing attributes in process `syz.0.707'. [ 145.910329][ T6609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.707'. [ 145.919692][ T6609] netlink: 48 bytes leftover after parsing attributes in process `syz.0.707'. [ 145.995388][ T4209] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.004294][ T6613] FAULT_INJECTION: forcing a failure. [ 146.004294][ T6613] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 146.036480][ T6613] CPU: 0 PID: 6613 Comm: syz.3.710 Not tainted 5.15.164-syzkaller #0 [ 146.038529][ T6613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 146.041012][ T6613] Call trace: [ 146.041848][ T6613] dump_backtrace+0x0/0x530 [ 146.043047][ T6613] show_stack+0x2c/0x3c [ 146.044088][ T6613] dump_stack_lvl+0x108/0x170 [ 146.045254][ T6613] dump_stack+0x1c/0x58 [ 146.046332][ T6613] should_fail+0x3b8/0x514 [ 146.047574][ T6613] should_fail_usercopy+0x20/0x30 [ 146.048953][ T6613] kstrtouint_from_user+0xd8/0x384 [ 146.050296][ T6613] proc_fail_nth_write+0xa8/0x288 [ 146.051665][ T6613] vfs_write+0x280/0xb44 [ 146.052776][ T6613] ksys_write+0x15c/0x26c [ 146.053855][ T6613] __arm64_sys_write+0x7c/0x90 [ 146.055104][ T6613] invoke_syscall+0x98/0x2b8 [ 146.056312][ T6613] el0_svc_common+0x138/0x258 [ 146.057645][ T6613] do_el0_svc+0x58/0x14c [ 146.058855][ T6613] el0_svc+0x7c/0x1f0 [ 146.059977][ T6613] el0t_64_sync_handler+0x84/0xe4 [ 146.061360][ T6613] el0t_64_sync+0x1a0/0x1a4 [ 146.072634][ T6615] loop0: detected capacity change from 0 to 16 [ 146.114931][ T6615] erofs: (device loop0): mounted with root inode @ nid 36. [ 146.238578][ T4209] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.926296][ T6713] loop3: detected capacity change from 0 to 1024 [ 147.929465][ T3604] Bluetooth: hci2: command 0x040f tx timeout [ 147.934055][ T3604] Bluetooth: hci0: command 0x040f tx timeout [ 148.111911][ T6713] hfsplus: unable to find HFS+ superblock [ 148.912677][ T6716] loop2: detected capacity change from 0 to 1024 [ 149.423568][ T6716] hfsplus: unable to find HFS+ superblock [ 149.444712][ T6717] netlink: 8 bytes leftover after parsing attributes in process `syz.3.717'. [ 149.448153][ T6717] netlink: 48 bytes leftover after parsing attributes in process `syz.3.717'. [ 149.475712][ T6717] netlink: 8 bytes leftover after parsing attributes in process `syz.3.717'. [ 149.761368][ T6504] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 149.803921][ T6727] loop2: detected capacity change from 0 to 2048 [ 149.812374][ T6504] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 149.825972][ T6730] loop3: detected capacity change from 0 to 64 [ 149.885406][ T6504] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 149.920688][ T6504] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 149.948737][ T5075] Bluetooth: hci0: command 0x0419 tx timeout [ 149.950452][ T5075] Bluetooth: hci2: command 0x0419 tx timeout [ 149.974628][ T6516] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 150.031232][ T6516] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 150.096550][ T6745] FAULT_INJECTION: forcing a failure. [ 150.096550][ T6745] name failslab, interval 1, probability 0, space 0, times 0 [ 150.103499][ T6745] CPU: 1 PID: 6745 Comm: syz.2.722 Not tainted 5.15.164-syzkaller #0 [ 150.105710][ T6745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 150.108395][ T6745] Call trace: [ 150.109318][ T6745] dump_backtrace+0x0/0x530 [ 150.110475][ T6745] show_stack+0x2c/0x3c [ 150.111584][ T6745] dump_stack_lvl+0x108/0x170 [ 150.112935][ T6745] dump_stack+0x1c/0x58 [ 150.114033][ T6745] should_fail+0x3b8/0x514 [ 150.115208][ T6745] __should_failslab+0xbc/0x110 [ 150.116495][ T6745] should_failslab+0x10/0x28 [ 150.117743][ T6745] slab_pre_alloc_hook+0x64/0xe8 [ 150.119009][ T6745] kmem_cache_alloc+0x98/0x45c [ 150.120336][ T6745] xfrm_state_alloc+0x2c/0x23c [ 150.121658][ T6745] xfrm_state_find+0x1b54/0x25e8 [ 150.122971][ T6745] xfrm_resolve_and_create_bundle+0x590/0x2844 [ 150.124581][ T6745] xfrm_lookup_with_ifid+0x278/0x22f8 [ 150.126228][ T6745] xfrm_lookup_route+0x4c/0x1c0 [ 150.127512][ T6745] ip6_dst_lookup_flow+0x118/0x174 [ 150.128901][ T6745] rawv6_sendmsg+0xc5c/0x1bcc [ 150.130162][ T6745] inet_sendmsg+0x15c/0x290 [ 150.131385][ T6745] sock_write_iter+0x2b0/0x3f8 [ 150.132613][ T6745] vfs_write+0x884/0xb44 [ 150.133703][ T6745] ksys_write+0x15c/0x26c [ 150.134906][ T6745] __arm64_sys_write+0x7c/0x90 [ 150.136297][ T6745] invoke_syscall+0x98/0x2b8 [ 150.137535][ T6745] el0_svc_common+0x138/0x258 [ 150.138816][ T6745] do_el0_svc+0x58/0x14c [ 150.139911][ T6745] el0_svc+0x7c/0x1f0 [ 150.140956][ T6745] el0t_64_sync_handler+0x84/0xe4 [ 150.142361][ T6745] el0t_64_sync+0x1a0/0x1a4 [ 150.235251][ T6516] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 150.277752][ T6516] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 150.401006][ T6770] loop0: detected capacity change from 0 to 16 [ 150.469242][ T6770] erofs: (device loop0): mounted with root inode @ nid 36. [ 150.732286][ T6504] 8021q: adding VLAN 0 to HW filter on device bond0 [ 150.798699][ T6516] 8021q: adding VLAN 0 to HW filter on device bond0 [ 150.813653][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 150.816256][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 150.830552][ T6504] 8021q: adding VLAN 0 to HW filter on device team0 [ 150.839981][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 150.842408][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 150.849889][ T6516] 8021q: adding VLAN 0 to HW filter on device team0 [ 150.939702][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 150.942502][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 150.944926][ T4069] bridge0: port 1(bridge_slave_0) entered blocking state [ 150.946740][ T4069] bridge0: port 1(bridge_slave_0) entered forwarding state [ 151.128248][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 151.131005][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 151.134002][ T4069] bridge0: port 2(bridge_slave_1) entered blocking state [ 151.135845][ T4069] bridge0: port 2(bridge_slave_1) entered forwarding state [ 151.144651][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 151.147571][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 151.150998][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 151.158471][ T4069] bridge0: port 1(bridge_slave_0) entered blocking state [ 151.160414][ T4069] bridge0: port 1(bridge_slave_0) entered forwarding state [ 151.162834][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 151.165477][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 151.257969][ T6813] FAULT_INJECTION: forcing a failure. [ 151.257969][ T6813] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 151.261507][ T6813] CPU: 1 PID: 6813 Comm: syz.0.725 Not tainted 5.15.164-syzkaller #0 [ 151.263596][ T6813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 151.266157][ T6813] Call trace: [ 151.266981][ T6813] dump_backtrace+0x0/0x530 [ 151.268199][ T6813] show_stack+0x2c/0x3c [ 151.269449][ T6813] dump_stack_lvl+0x108/0x170 [ 151.270784][ T6813] dump_stack+0x1c/0x58 [ 151.271913][ T6813] should_fail+0x3b8/0x514 [ 151.273129][ T6813] should_fail_usercopy+0x20/0x30 [ 151.274407][ T6813] simple_read_from_buffer+0xd8/0x26c [ 151.275849][ T6813] proc_fail_nth_read+0x1a0/0x248 [ 151.277223][ T6813] vfs_read+0x278/0xb18 [ 151.278322][ T6813] ksys_read+0x15c/0x26c [ 151.279480][ T6813] __arm64_sys_read+0x7c/0x90 [ 151.280792][ T6813] invoke_syscall+0x98/0x2b8 [ 151.282098][ T6813] el0_svc_common+0x138/0x258 [ 151.283366][ T6813] do_el0_svc+0x58/0x14c [ 151.284457][ T6813] el0_svc+0x7c/0x1f0 [ 151.285537][ T6813] el0t_64_sync_handler+0x84/0xe4 [ 151.286871][ T6813] el0t_64_sync+0x1a0/0x1a4 [ 151.307756][ T4069] bridge0: port 2(bridge_slave_1) entered blocking state [ 151.309698][ T4069] bridge0: port 2(bridge_slave_1) entered forwarding state [ 151.311996][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 151.314923][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 151.344105][ T6504] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 151.346703][ T6504] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 151.643969][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 151.643982][ T26] audit: type=1326 audit(151.604:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6819 comm="syz.3.728" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffbe8969a8 code=0x0 [ 151.687008][ T6823] FAULT_INJECTION: forcing a failure. [ 151.687008][ T6823] name failslab, interval 1, probability 0, space 0, times 0 [ 151.690749][ T6823] CPU: 1 PID: 6823 Comm: syz.3.728 Not tainted 5.15.164-syzkaller #0 [ 151.692898][ T6823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 151.695496][ T6823] Call trace: [ 151.696338][ T6823] dump_backtrace+0x0/0x530 [ 151.697551][ T6823] show_stack+0x2c/0x3c [ 151.698758][ T6823] dump_stack_lvl+0x108/0x170 [ 151.700107][ T6823] dump_stack+0x1c/0x58 [ 151.701214][ T6823] should_fail+0x3b8/0x514 [ 151.702436][ T6823] __should_failslab+0xbc/0x110 [ 151.703737][ T6823] should_failslab+0x10/0x28 [ 151.704938][ T6823] slab_pre_alloc_hook+0x64/0xe8 [ 151.706324][ T6823] __kmalloc+0xc0/0x4c8 [ 151.707430][ T6823] tomoyo_encode+0x270/0x4b0 [ 151.708690][ T6823] tomoyo_realpath_from_path+0x4b4/0x508 [ 151.710273][ T6823] tomoyo_path_number_perm+0x1f8/0x6b0 [ 151.711826][ T6823] tomoyo_file_ioctl+0x2c/0x3c [ 151.713138][ T6823] security_file_ioctl+0x80/0xbc [ 151.714665][ T6823] __arm64_sys_ioctl+0xa8/0x1c8 [ 151.716067][ T6823] invoke_syscall+0x98/0x2b8 [ 151.717322][ T6823] el0_svc_common+0x138/0x258 [ 151.718622][ T6823] do_el0_svc+0x58/0x14c [ 151.719774][ T6823] el0_svc+0x7c/0x1f0 [ 151.720841][ T6823] el0t_64_sync_handler+0x84/0xe4 [ 151.722250][ T6823] el0t_64_sync+0x1a0/0x1a4 [ 151.764409][ T6809] __nla_validate_parse: 3 callbacks suppressed [ 151.764424][ T6809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.726'. [ 151.770078][ T6809] netlink: 48 bytes leftover after parsing attributes in process `syz.2.726'. [ 151.778308][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 151.778746][ T6823] ERROR: Out of memory at tomoyo_realpath_from_path. [ 151.781501][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 151.788765][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 151.809772][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 151.813613][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 151.816428][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 151.830629][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 151.838353][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 151.848240][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 151.851114][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 151.853747][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 151.863923][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 151.868749][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 151.872993][ T6812] netlink: 8 bytes leftover after parsing attributes in process `syz.2.726'. [ 151.875421][ T6812] netlink: 48 bytes leftover after parsing attributes in process `syz.2.726'. [ 151.948880][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 151.952490][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 151.954993][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 151.958945][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 151.961750][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 151.970673][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 151.973478][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 151.989870][ T6840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.738'. [ 151.992260][ T6840] netlink: 48 bytes leftover after parsing attributes in process `syz.0.738'. [ 152.032331][ T4072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 152.035008][ T4072] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 152.046683][ T6840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.738'. [ 152.049494][ T6840] netlink: 48 bytes leftover after parsing attributes in process `syz.0.738'. [ 152.052478][ T6843] netlink: 8 bytes leftover after parsing attributes in process `syz.2.729'. [ 152.054709][ T6843] netlink: 48 bytes leftover after parsing attributes in process `syz.2.729'. [ 152.057958][ T6516] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 152.162505][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 152.164574][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 152.202353][ T6849] loop2: detected capacity change from 0 to 16 [ 152.208277][ T6849] erofs: (device loop2): mounted with root inode @ nid 36. [ 152.315132][ T4209] device hsr_slave_0 left promiscuous mode [ 152.388755][ T4209] device hsr_slave_1 left promiscuous mode [ 152.487379][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.489491][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.491990][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.493914][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.502155][ T4209] device bridge_slave_1 left promiscuous mode [ 152.503952][ T4209] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.570423][ T4209] device bridge_slave_0 left promiscuous mode [ 152.573726][ T4209] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.625710][ T4209] device hsr_slave_0 left promiscuous mode [ 152.677761][ T4209] device hsr_slave_1 left promiscuous mode [ 152.757140][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.760680][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.767597][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.769653][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.772272][ T4209] device bridge_slave_1 left promiscuous mode [ 152.774096][ T4209] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.819204][ T4209] device bridge_slave_0 left promiscuous mode [ 152.821172][ T4209] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.964556][ T4209] device veth1_macvtap left promiscuous mode [ 152.967254][ T4209] device veth0_macvtap left promiscuous mode [ 152.969145][ T4209] device veth1_vlan left promiscuous mode [ 152.970946][ T4209] device veth0_vlan left promiscuous mode [ 153.047865][ T4209] device veth1_macvtap left promiscuous mode [ 153.049456][ T4209] device veth0_macvtap left promiscuous mode [ 153.051038][ T4209] device veth1_vlan left promiscuous mode [ 153.052679][ T4209] device veth0_vlan left promiscuous mode [ 153.473992][ T4209] team0 (unregistering): Port device team_slave_1 removed [ 153.486152][ T4209] team0 (unregistering): Port device team_slave_0 removed [ 153.495482][ T4209] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 153.550420][ T4209] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 153.624284][ T6857] loop2: detected capacity change from 0 to 16 [ 153.636812][ T6857] erofs: (device loop2): mounted with root inode @ nid 36. [ 153.772959][ T4209] bond0 (unregistering): Released all slaves [ 154.073350][ T6867] FAULT_INJECTION: forcing a failure. [ 154.073350][ T6867] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 154.083416][ T6867] CPU: 1 PID: 6867 Comm: syz.2.734 Not tainted 5.15.164-syzkaller #0 [ 154.085700][ T6867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 154.088262][ T6867] Call trace: [ 154.089092][ T6867] dump_backtrace+0x0/0x530 [ 154.090287][ T6867] show_stack+0x2c/0x3c [ 154.091392][ T6867] dump_stack_lvl+0x108/0x170 [ 154.092614][ T6867] dump_stack+0x1c/0x58 [ 154.093730][ T6867] should_fail+0x3b8/0x514 [ 154.094943][ T6867] should_fail_alloc_page+0x74/0xa8 [ 154.096407][ T6867] prepare_alloc_pages+0x160/0x460 [ 154.097786][ T6867] __alloc_pages+0x138/0x674 [ 154.099095][ T6867] alloc_pages_vma+0x294/0x7c0 [ 154.100276][ T6867] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 154.101995][ T6867] handle_mm_fault+0x1f0c/0x3424 [ 154.103365][ T6867] do_page_fault+0x700/0xb60 [ 154.104656][ T6867] do_translation_fault+0xe8/0x138 [ 154.106039][ T6867] do_mem_abort+0x70/0x1d8 [ 154.107227][ T6867] el1_abort+0x3c/0x5c [ 154.108359][ T6867] el1h_64_sync_handler+0x60/0xac [ 154.109769][ T6867] el1h_64_sync+0x78/0x7c [ 154.110975][ T6867] do_notify_resume+0xbf0/0x32b8 [ 154.112371][ T6867] el0_da+0x118/0x20c [ 154.113521][ T6867] el0t_64_sync_handler+0xc0/0xe4 [ 154.114904][ T6867] el0t_64_sync+0x1a0/0x1a4 [ 154.165051][ T4209] team0 (unregistering): Port device team_slave_1 removed [ 154.178430][ T4209] team0 (unregistering): Port device team_slave_0 removed [ 154.192964][ T4209] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 154.223466][ T4209] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 154.374150][ T4209] bond0 (unregistering): Released all slaves [ 154.472846][ T6504] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 154.525017][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 154.528273][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 154.543832][ T6516] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 154.628647][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 154.631437][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 154.639015][ T6516] device veth0_vlan entered promiscuous mode [ 154.667437][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 154.670121][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 154.673570][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 154.698970][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 154.710911][ T6516] device veth1_vlan entered promiscuous mode [ 154.763906][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 154.777034][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 154.779624][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 154.782195][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 155.311560][ T6877] usb usb8: check_ctrlrecip: process 6877 (syz.0.735) requesting ep 01 but needs 81 [ 155.314136][ T6877] usb usb8: usbfs: process 6877 (syz.0.735) did not claim interface 0 before use [ 155.734221][ T6516] device veth0_macvtap entered promiscuous mode [ 155.738118][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 155.740821][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 155.767408][ T6516] device veth1_macvtap entered promiscuous mode [ 155.776373][ T6504] device veth0_vlan entered promiscuous mode [ 155.785015][ T6879] loop0: detected capacity change from 0 to 64 [ 155.796896][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 155.799588][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 155.807152][ T6504] device veth1_vlan entered promiscuous mode [ 155.810977][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 155.813654][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.825589][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 155.835300][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.846950][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 155.849791][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.880407][ T6516] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 155.882584][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 155.885003][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 155.887926][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 155.898808][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 155.906041][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 155.921472][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 155.924241][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.929394][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 155.932273][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.939280][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 155.945756][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.954380][ T6516] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 155.973536][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 155.976513][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 155.979380][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 155.986420][ T6516] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.988751][ T6516] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.991012][ T6516] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.993241][ T6516] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.016003][ T6504] device veth0_macvtap entered promiscuous mode [ 156.031584][ T6504] device veth1_macvtap entered promiscuous mode [ 156.040746][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 156.043509][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 156.048276][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 156.072793][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 156.108603][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.111278][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.113743][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.139658][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.142620][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.148211][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.159403][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.162071][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.172580][ T6504] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 156.177178][ T5075] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 156.180658][ T5075] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 156.235842][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.238552][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.241053][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.243549][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.264414][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.284556][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.290614][ T6504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.293212][ T6504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.324042][ T6504] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 156.338025][ T4208] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.340196][ T4208] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.353426][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 156.356372][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 156.359037][ T5561] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 156.370103][ T6504] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.372349][ T6504] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.374501][ T6504] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.384583][ T6504] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.397783][ T4263] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.400020][ T4263] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.417619][ T4072] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 156.574461][ T26] audit: type=1326 audit(156.537:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6887 comm="syz.0.741" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa4f239a8 code=0x0 [ 156.679476][ T153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.690252][ T153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.740008][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 156.779579][ T6550] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.781896][ T6550] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.792368][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 156.828450][ T6881] chnl_net:caif_netlink_parms(): no params data found [ 156.957416][ T6881] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.959438][ T6881] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.962022][ T6881] device bridge_slave_0 entered promiscuous mode [ 156.967260][ T6881] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.969330][ T6881] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.971939][ T6881] device bridge_slave_1 entered promiscuous mode [ 156.990707][ T6881] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 157.002516][ T6881] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 157.053130][ T6881] team0: Port device team_slave_0 added [ 157.076920][ T6881] team0: Port device team_slave_1 added [ 157.114494][ T6881] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 157.124457][ T6881] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.134249][ T6881] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 157.158871][ T6881] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 157.163232][ T6881] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.180270][ T6881] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 157.181791][ T6896] loop1: detected capacity change from 0 to 32768 [ 157.273074][ T6881] device hsr_slave_0 entered promiscuous mode [ 157.293303][ T6896] XFS (loop1): Mounting V5 Filesystem [ 157.315643][ T6881] device hsr_slave_1 entered promiscuous mode [ 157.344819][ T6881] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 157.347164][ T6881] Cannot create hsr debugfs directory [ 157.425629][ T6912] loop2: detected capacity change from 0 to 16 [ 157.444149][ T6896] XFS (loop1): Ending clean mount [ 157.488010][ T6912] erofs: (device loop2): mounted with root inode @ nid 36. [ 157.610049][ T6914] __nla_validate_parse: 10 callbacks suppressed [ 157.610064][ T6914] netlink: 8 bytes leftover after parsing attributes in process `syz.0.746'. [ 157.613849][ T6914] netlink: 48 bytes leftover after parsing attributes in process `syz.0.746'. [ 157.629946][ T6915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.746'. [ 157.644442][ T6915] netlink: 48 bytes leftover after parsing attributes in process `syz.0.746'. [ 157.796174][ T6922] loop4: detected capacity change from 0 to 16 [ 157.800662][ T6922] erofs: (device loop4): mounted with root inode @ nid 36. [ 157.817182][ T6881] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.974914][ T6921] netlink: 8 bytes leftover after parsing attributes in process `syz.0.757'. [ 157.977382][ T6921] netlink: 48 bytes leftover after parsing attributes in process `syz.0.757'. [ 158.001911][ T6923] netlink: 8 bytes leftover after parsing attributes in process `syz.0.757'. [ 158.044261][ T6923] netlink: 48 bytes leftover after parsing attributes in process `syz.0.757'. [ 158.067774][ T6516] XFS (loop1): Unmounting Filesystem [ 158.139940][ T6881] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.176318][ T6928] loop2: detected capacity change from 0 to 64 [ 158.184664][ T4406] Bluetooth: hci4: command 0x0409 tx timeout [ 158.220690][ T6931] loop0: detected capacity change from 0 to 2048 [ 158.229428][ T6881] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.323671][ T6931] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 158.352451][ T6881] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.379333][ T6931] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 158.421092][ T6931] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 10 with max blocks 1 with error 28 [ 158.463897][ T6931] EXT4-fs (loop0): This should not happen!! Data will be lost [ 158.463897][ T6931] [ 158.477504][ T6931] EXT4-fs (loop0): Total free blocks count 0 [ 158.489531][ T6936] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 4 with max blocks 1 with error 28 [ 158.491133][ T6931] EXT4-fs (loop0): Free/Dirty block details [ 158.505520][ T6936] EXT4-fs (loop0): This should not happen!! Data will be lost [ 158.505520][ T6936] [ 158.508032][ T6936] EXT4-fs (loop0): Total free blocks count 0 [ 158.513581][ T6931] EXT4-fs (loop0): free_blocks=2415919120 [ 158.524282][ T6931] EXT4-fs (loop0): dirty_blocks=16 [ 158.525652][ T6931] EXT4-fs (loop0): Block reservation details [ 158.602893][ T6881] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 158.677387][ T6881] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 158.736142][ T6938] FAULT_INJECTION: forcing a failure. [ 158.736142][ T6938] name failslab, interval 1, probability 0, space 0, times 0 [ 158.739445][ T6938] CPU: 1 PID: 6938 Comm: syz.0.752 Not tainted 5.15.164-syzkaller #0 [ 158.741541][ T6938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 158.744218][ T6938] Call trace: [ 158.745052][ T6938] dump_backtrace+0x0/0x530 [ 158.746296][ T6938] show_stack+0x2c/0x3c [ 158.747447][ T6938] dump_stack_lvl+0x108/0x170 [ 158.748737][ T6938] dump_stack+0x1c/0x58 [ 158.749907][ T6938] should_fail+0x3b8/0x514 [ 158.751127][ T6938] __should_failslab+0xbc/0x110 [ 158.752434][ T6938] should_failslab+0x10/0x28 [ 158.753707][ T6938] slab_pre_alloc_hook+0x64/0xe8 [ 158.755036][ T6938] __kmalloc+0xc0/0x4c8 [ 158.756193][ T6938] bpf_test_init+0xf8/0x2e0 [ 158.757457][ T6938] bpf_prog_test_run_xdp+0x1d0/0x998 [ 158.758815][ T6938] bpf_prog_test_run+0x2e0/0x374 [ 158.760093][ T6938] __sys_bpf+0x350/0x610 [ 158.761206][ T6938] __arm64_sys_bpf+0x80/0x98 [ 158.762498][ T6938] invoke_syscall+0x98/0x2b8 [ 158.763744][ T6938] el0_svc_common+0x138/0x258 [ 158.765032][ T6938] do_el0_svc+0x58/0x14c [ 158.766183][ T6938] el0_svc+0x7c/0x1f0 [ 158.767252][ T6938] el0t_64_sync_handler+0x84/0xe4 [ 158.768611][ T6938] el0t_64_sync+0x1a0/0x1a4 [ 158.796145][ T6881] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 158.817018][ T6881] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 158.844661][ T6942] FAULT_INJECTION: forcing a failure. [ 158.844661][ T6942] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 158.848507][ T6942] CPU: 1 PID: 6942 Comm: syz.2.753 Not tainted 5.15.164-syzkaller #0 [ 158.850569][ T6942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 158.853151][ T6942] Call trace: [ 158.854012][ T6942] dump_backtrace+0x0/0x530 [ 158.855255][ T6942] show_stack+0x2c/0x3c [ 158.856429][ T6942] dump_stack_lvl+0x108/0x170 [ 158.857625][ T6942] dump_stack+0x1c/0x58 [ 158.858779][ T6942] should_fail+0x3b8/0x514 [ 158.859907][ T6942] should_fail_alloc_page+0x74/0xa8 [ 158.861260][ T6942] prepare_alloc_pages+0x160/0x460 [ 158.862678][ T6942] __alloc_pages+0x138/0x674 [ 158.863912][ T6942] alloc_pages_vma+0x294/0x7c0 [ 158.865145][ T6942] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 158.866717][ T6942] handle_mm_fault+0x1f0c/0x3424 [ 158.868045][ T6942] do_page_fault+0x700/0xb60 [ 158.869296][ T6942] do_translation_fault+0xe8/0x138 [ 158.870666][ T6942] do_mem_abort+0x70/0x1d8 [ 158.871884][ T6942] el1_abort+0x3c/0x5c [ 158.872965][ T6942] el1h_64_sync_handler+0x60/0xac [ 158.874419][ T6942] el1h_64_sync+0x78/0x7c [ 158.875594][ T6942] __arch_copy_to_user+0x190/0x218 [ 158.876935][ T6942] simple_copy_to_iter+0x5c/0x80 [ 158.878298][ T6942] __skb_datagram_iter+0xdc/0x69c [ 158.879626][ T6942] skb_copy_datagram_iter+0x108/0x2fc [ 158.881015][ T6942] rawv6_recvmsg+0x354/0xb3c [ 158.882333][ T6942] sock_common_recvmsg+0x10c/0x1f0 [ 158.883659][ T6942] sock_read_iter+0x2b4/0x3c0 [ 158.884974][ T6942] vfs_read+0x874/0xb18 [ 158.885992][ T6942] ksys_read+0x15c/0x26c [ 158.887181][ T6942] __arm64_sys_read+0x7c/0x90 [ 158.888439][ T6942] invoke_syscall+0x98/0x2b8 [ 158.889735][ T6942] el0_svc_common+0x138/0x258 [ 158.890908][ T6942] do_el0_svc+0x58/0x14c [ 158.892058][ T6942] el0_svc+0x7c/0x1f0 [ 158.893176][ T6942] el0t_64_sync_handler+0x84/0xe4 [ 158.894481][ T6942] el0t_64_sync+0x1a0/0x1a4 [ 158.996238][ T6944] netlink: 8 bytes leftover after parsing attributes in process `syz.1.754'. [ 158.998741][ T6944] netlink: 48 bytes leftover after parsing attributes in process `syz.1.754'. [ 159.107170][ T6946] loop0: detected capacity change from 0 to 2048 [ 159.148510][ T6881] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.187106][ T6946] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 159.195943][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 159.198504][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 159.212248][ T6955] loop2: detected capacity change from 0 to 16 [ 159.224223][ T6881] 8021q: adding VLAN 0 to HW filter on device team0 [ 159.234019][ T1534] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 159.236626][ T1534] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 159.238961][ T1534] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.240751][ T1534] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.243099][ T1534] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 159.322033][ T6955] erofs: (device loop2): mounted with root inode @ nid 36. [ 159.488417][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 159.491110][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 159.493945][ T4068] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.495887][ T4068] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.498458][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 159.501308][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 159.504287][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 159.507682][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 159.510314][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 159.513067][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 159.515950][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 159.518645][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 159.521673][ T4068] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 159.526596][ T6951] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.530207][ T6951] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.593946][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 159.596651][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 159.601077][ T6881] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 159.941705][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 159.946620][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 159.973173][ T6881] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 159.985351][ T6976] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551614) [ 159.988080][ T6976] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647 [ 160.067909][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 160.070693][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 160.092199][ T6978] loop1: detected capacity change from 0 to 64 [ 160.111486][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 160.114731][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 160.117871][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 160.120380][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 160.138582][ T6881] device veth0_vlan entered promiscuous mode [ 160.179855][ T6881] device veth1_vlan entered promiscuous mode [ 160.194002][ T6980] FAULT_INJECTION: forcing a failure. [ 160.194002][ T6980] name failslab, interval 1, probability 0, space 0, times 0 [ 160.197268][ T6980] CPU: 0 PID: 6980 Comm: syz.0.766 Not tainted 5.15.164-syzkaller #0 [ 160.199266][ T6980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 160.201808][ T6980] Call trace: [ 160.202620][ T6980] dump_backtrace+0x0/0x530 [ 160.203725][ T6980] show_stack+0x2c/0x3c [ 160.204862][ T6980] dump_stack_lvl+0x108/0x170 [ 160.206213][ T6980] dump_stack+0x1c/0x58 [ 160.207296][ T6980] should_fail+0x3b8/0x514 [ 160.208406][ T6980] __should_failslab+0xbc/0x110 [ 160.209635][ T6980] should_failslab+0x10/0x28 [ 160.210788][ T6980] slab_pre_alloc_hook+0x64/0xe8 [ 160.212038][ T6980] __kmalloc+0xc0/0x4c8 [ 160.213129][ T6980] tomoyo_encode+0x270/0x4b0 [ 160.214331][ T6980] tomoyo_realpath_from_path+0x4b4/0x508 [ 160.215987][ T6980] tomoyo_path_number_perm+0x1f8/0x6b0 [ 160.217398][ T6980] tomoyo_file_ioctl+0x2c/0x3c [ 160.218610][ T6980] security_file_ioctl+0x80/0xbc [ 160.219862][ T6980] __arm64_sys_ioctl+0xa8/0x1c8 [ 160.221115][ T6980] invoke_syscall+0x98/0x2b8 [ 160.222376][ T6980] el0_svc_common+0x138/0x258 [ 160.223736][ T6980] do_el0_svc+0x58/0x14c [ 160.224836][ T6980] el0_svc+0x7c/0x1f0 [ 160.225903][ T6980] el0t_64_sync_handler+0x84/0xe4 [ 160.227136][ T6980] el0t_64_sync+0x1a0/0x1a4 [ 160.234331][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 160.244453][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 160.263397][ T5075] Bluetooth: hci4: command 0x041b tx timeout [ 160.296396][ T6980] ERROR: Out of memory at tomoyo_realpath_from_path. [ 160.296859][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 160.301377][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 160.314861][ T6980] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.317028][ T6980] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.339713][ T6881] device veth0_macvtap entered promiscuous mode [ 160.361844][ T6881] device veth1_macvtap entered promiscuous mode [ 160.395362][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.398038][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.410562][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.430150][ T6985] loop0: detected capacity change from 0 to 512 [ 160.433472][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.435987][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.438594][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.441216][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.483181][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.486273][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.488917][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.509628][ T6881] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 160.530060][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 160.532761][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 160.536733][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 160.539286][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 160.543728][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.552585][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.564676][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.572555][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.575805][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.576916][ T6985] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.768: casefold flag without casefold feature [ 160.578547][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.589276][ T6985] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.768: missing EA_INODE flag [ 160.603196][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.605859][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.609808][ T6985] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.768: error while reading EA inode 12 err=-117 [ 160.620715][ T6985] EXT4-fs (loop0): 1 orphan inode deleted [ 160.621858][ T6881] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.622763][ T6985] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 160.660491][ T6881] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.664912][ T6881] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 160.671080][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 160.674989][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 160.683294][ T6881] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.685899][ T6881] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.688199][ T6881] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.690806][ T6881] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.860400][ T6995] loop0: detected capacity change from 0 to 512 [ 160.982126][ T6995] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.770: casefold flag without casefold feature [ 160.996892][ T6995] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.770: missing EA_INODE flag [ 161.004099][ T6991] netlink: 'syz.1.769': attribute type 10 has an invalid length. [ 161.017142][ T6995] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.770: error while reading EA inode 12 err=-117 [ 161.043344][ T6995] EXT4-fs (loop0): 1 orphan inode deleted [ 161.045640][ T6991] team0: Port device dummy0 added [ 161.074732][ T6995] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 161.144401][ T6550] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 161.146766][ T6550] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 161.153453][ T5075] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 161.239086][ T4208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 161.241390][ T4208] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 161.275907][ T5075] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 161.347291][ T7002] loop1: detected capacity change from 0 to 4096 [ 161.363503][ T7005] FAULT_INJECTION: forcing a failure. [ 161.363503][ T7005] name failslab, interval 1, probability 0, space 0, times 0 [ 161.378844][ T7005] CPU: 0 PID: 7005 Comm: syz.4.775 Not tainted 5.15.164-syzkaller #0 [ 161.380975][ T7005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 161.383517][ T7005] Call trace: [ 161.384343][ T7005] dump_backtrace+0x0/0x530 [ 161.385479][ T7005] show_stack+0x2c/0x3c [ 161.386520][ T7005] dump_stack_lvl+0x108/0x170 [ 161.387681][ T7005] dump_stack+0x1c/0x58 [ 161.388767][ T7005] should_fail+0x3b8/0x514 [ 161.389939][ T7005] __should_failslab+0xbc/0x110 [ 161.391326][ T7005] should_failslab+0x10/0x28 [ 161.392493][ T7005] slab_pre_alloc_hook+0x64/0xe8 [ 161.393760][ T7005] __kmalloc+0xc0/0x4c8 [ 161.394852][ T7005] bpf_test_init+0xf8/0x2e0 [ 161.395977][ T7005] bpf_prog_test_run_xdp+0x1d0/0x998 [ 161.397333][ T7005] bpf_prog_test_run+0x2e0/0x374 [ 161.398671][ T7005] __sys_bpf+0x350/0x610 [ 161.399841][ T7005] __arm64_sys_bpf+0x80/0x98 [ 161.401078][ T7005] invoke_syscall+0x98/0x2b8 [ 161.402280][ T7005] el0_svc_common+0x138/0x258 [ 161.403480][ T7005] do_el0_svc+0x58/0x14c [ 161.404605][ T7005] el0_svc+0x7c/0x1f0 [ 161.405661][ T7005] el0t_64_sync_handler+0x84/0xe4 [ 161.407034][ T7005] el0t_64_sync+0x1a0/0x1a4 [ 161.454523][ T7008] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 161.756953][ T7015] loop0: detected capacity change from 0 to 16 [ 161.813359][ T7015] erofs: Unknown parameter '18446744073709551615' [ 161.933995][ T7022] loop2: detected capacity change from 0 to 512 [ 161.968591][ T7022] EXT4-fs (loop2): Mount option "dax=always" incompatible with ext3 [ 162.094317][ T7016] loop4: detected capacity change from 0 to 32768 [ 162.141664][ T7028] FAULT_INJECTION: forcing a failure. [ 162.141664][ T7028] name failslab, interval 1, probability 0, space 0, times 0 [ 162.146268][ T7028] CPU: 0 PID: 7028 Comm: syz.2.782 Not tainted 5.15.164-syzkaller #0 [ 162.148390][ T7028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 162.150991][ T7028] Call trace: [ 162.151915][ T7028] dump_backtrace+0x0/0x530 [ 162.153171][ T7028] show_stack+0x2c/0x3c [ 162.154276][ T7028] dump_stack_lvl+0x108/0x170 [ 162.155538][ T7028] dump_stack+0x1c/0x58 [ 162.156718][ T7028] should_fail+0x3b8/0x514 [ 162.157937][ T7028] __should_failslab+0xbc/0x110 [ 162.159277][ T7028] should_failslab+0x10/0x28 [ 162.160527][ T7028] slab_pre_alloc_hook+0x64/0xe8 [ 162.161813][ T7028] __kmalloc+0xc0/0x4c8 [ 162.162962][ T7028] security_prepare_creds+0x54/0x140 [ 162.164506][ T7028] prepare_creds+0x438/0x71c [ 162.165793][ T7028] do_faccessat+0xe0/0x7b4 [ 162.166953][ T7028] __arm64_sys_faccessat+0x80/0x94 [ 162.168347][ T7028] invoke_syscall+0x98/0x2b8 [ 162.169559][ T7028] el0_svc_common+0x138/0x258 [ 162.170831][ T7028] do_el0_svc+0x58/0x14c [ 162.172057][ T7028] el0_svc+0x7c/0x1f0 [ 162.173114][ T7028] el0t_64_sync_handler+0x84/0xe4 [ 162.174446][ T7028] el0t_64_sync+0x1a0/0x1a4 [ 162.206070][ T7016] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 scanned by syz.4.778 (7016) [ 162.236261][ T7016] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 162.238971][ T7016] BTRFS info (device loop4): using free space tree [ 162.248531][ T7016] BTRFS info (device loop4): has skinny extents [ 162.336656][ T7016] BTRFS info (device loop4): enabling ssd optimizations [ 162.771921][ T7050] loop1: detected capacity change from 0 to 128 [ 162.877332][ T7058] __nla_validate_parse: 13 callbacks suppressed [ 162.877350][ T7058] netlink: 8 bytes leftover after parsing attributes in process `syz.1.785'. [ 162.887261][ T7058] netlink: 48 bytes leftover after parsing attributes in process `syz.1.785'. [ 162.900046][ T7058] netlink: 8 bytes leftover after parsing attributes in process `syz.1.785'. [ 162.914132][ T7058] netlink: 48 bytes leftover after parsing attributes in process `syz.1.785'. [ 162.954841][ T7062] netlink: 16 bytes leftover after parsing attributes in process `syz.1.787'. [ 162.994788][ T4209] device hsr_slave_0 left promiscuous mode [ 163.024652][ T7067] loop2: detected capacity change from 0 to 16 [ 163.030385][ T7063] FAULT_INJECTION: forcing a failure. [ 163.030385][ T7063] name failslab, interval 1, probability 0, space 0, times 0 [ 163.035236][ T7063] CPU: 1 PID: 7063 Comm: syz.4.786 Not tainted 5.15.164-syzkaller #0 [ 163.037438][ T7063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 163.040188][ T7063] Call trace: [ 163.041081][ T7063] dump_backtrace+0x0/0x530 [ 163.042292][ T7063] show_stack+0x2c/0x3c [ 163.043388][ T7063] dump_stack_lvl+0x108/0x170 [ 163.044705][ T7063] dump_stack+0x1c/0x58 [ 163.045763][ T7063] should_fail+0x3b8/0x514 [ 163.046972][ T7063] __should_failslab+0xbc/0x110 [ 163.048330][ T7063] should_failslab+0x10/0x28 [ 163.049559][ T7063] slab_pre_alloc_hook+0x64/0xe8 [ 163.050903][ T7063] kmem_cache_alloc+0x98/0x45c [ 163.052323][ T7063] ep_insert+0x394/0x1528 [ 163.053467][ T7063] do_epoll_ctl+0x6b4/0xbe8 [ 163.054677][ T7063] __arm64_sys_epoll_ctl+0x240/0x2c4 [ 163.056146][ T7063] invoke_syscall+0x98/0x2b8 [ 163.057485][ T7063] el0_svc_common+0x138/0x258 [ 163.058727][ T7063] do_el0_svc+0x58/0x14c [ 163.059810][ T7063] el0_svc+0x7c/0x1f0 [ 163.060898][ T7063] el0t_64_sync_handler+0x84/0xe4 [ 163.062272][ T7063] el0t_64_sync+0x1a0/0x1a4 [ 163.094489][ T4209] device hsr_slave_1 left promiscuous mode [ 163.106541][ T7067] erofs: (device loop2): mounted with root inode @ nid 36. [ 163.292099][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 163.294327][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 163.297767][ T4209] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 163.300024][ T4209] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 163.303242][ T4209] device bridge_slave_1 left promiscuous mode [ 163.305179][ T4209] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.343151][ T4209] device bridge_slave_0 left promiscuous mode [ 163.344926][ T4209] bridge0: port 1(bridge_slave_0) entered disabled state [ 163.471953][ T4209] device veth1_macvtap left promiscuous mode [ 163.473650][ T4209] device veth0_macvtap left promiscuous mode [ 163.475262][ T4209] device veth1_vlan left promiscuous mode [ 163.476767][ T4209] device veth0_vlan left promiscuous mode [ 163.854953][ T4209] team0 (unregistering): Port device team_slave_1 removed [ 163.875075][ T4209] team0 (unregistering): Port device team_slave_0 removed [ 163.884907][ T4209] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 163.929535][ T4209] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 164.119328][ T4209] bond0 (unregistering): Released all slaves [ 164.234417][ T7078] FAULT_INJECTION: forcing a failure. [ 164.234417][ T7078] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 164.245558][ T7075] netlink: 8 bytes leftover after parsing attributes in process `syz.4.791'. [ 164.247847][ T7075] netlink: 48 bytes leftover after parsing attributes in process `syz.4.791'. [ 164.250427][ T7078] CPU: 1 PID: 7078 Comm: syz.2.792 Not tainted 5.15.164-syzkaller #0 [ 164.252523][ T7078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 164.255217][ T7078] Call trace: [ 164.256095][ T7078] dump_backtrace+0x0/0x530 [ 164.257338][ T7078] show_stack+0x2c/0x3c [ 164.258503][ T7078] dump_stack_lvl+0x108/0x170 [ 164.259856][ T7078] dump_stack+0x1c/0x58 [ 164.261038][ T7078] should_fail+0x3b8/0x514 [ 164.262250][ T7078] should_fail_usercopy+0x20/0x30 [ 164.263623][ T7078] iovec_from_user+0xcc/0x630 [ 164.264899][ T7078] __import_iovec+0x80/0x414 [ 164.266167][ T7078] import_iovec+0x88/0xa4 [ 164.267405][ T7078] ___sys_sendmsg+0x1dc/0x294 [ 164.268723][ T7078] __arm64_sys_sendmsg+0x1ac/0x25c [ 164.270147][ T7078] invoke_syscall+0x98/0x2b8 [ 164.271381][ T7078] el0_svc_common+0x138/0x258 [ 164.272700][ T7078] do_el0_svc+0x58/0x14c [ 164.273828][ T7078] el0_svc+0x7c/0x1f0 [ 164.274943][ T7078] el0t_64_sync_handler+0x84/0xe4 [ 164.276379][ T7078] el0t_64_sync+0x1a0/0x1a4 [ 164.582115][ T7092] netlink: 60 bytes leftover after parsing attributes in process `syz.0.797'. [ 164.587448][ T7092] netlink: 60 bytes leftover after parsing attributes in process `syz.0.797'. [ 164.676693][ T7094] loop0: detected capacity change from 0 to 512 [ 164.802250][ T7085] loop2: detected capacity change from 0 to 32768 [ 164.861062][ T7085] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.795 (7085) [ 164.913921][ T7085] BTRFS info (device loop2): using crc32c (crc32c-generic) checksum algorithm [ 164.916193][ T7085] BTRFS info (device loop2): setting nodatacow, compression disabled [ 164.918173][ T7085] BTRFS info (device loop2): turning on flush-on-commit [ 164.930390][ T7085] BTRFS info (device loop2): enabling auto defrag [ 164.932538][ T7085] BTRFS info (device loop2): max_inline at 0 [ 164.934097][ T7085] BTRFS info (device loop2): using free space tree [ 164.935714][ T7085] BTRFS info (device loop2): has skinny extents [ 165.088385][ T7107] chnl_net:caif_netlink_parms(): no params data found [ 165.106606][ T7085] BTRFS info (device loop2): enabling ssd optimizations [ 165.250339][ T7138] loop1: detected capacity change from 0 to 16 [ 165.260575][ T7107] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.268002][ T7107] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.270903][ T7107] device bridge_slave_0 entered promiscuous mode [ 165.274738][ T7138] erofs: (device loop1): mounted with root inode @ nid 36. [ 165.278764][ T7107] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.281236][ T7107] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.283905][ T7107] device bridge_slave_1 entered promiscuous mode [ 165.403426][ T7107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 165.407992][ T7107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 165.533654][ T7107] team0: Port device team_slave_0 added [ 165.537303][ T7107] team0: Port device team_slave_1 added [ 165.583423][ T7107] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 165.589932][ T7107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 165.611257][ T7107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 165.615451][ T7107] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 165.630667][ T7107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 165.637088][ T7107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 165.762741][ T7107] device hsr_slave_0 entered promiscuous mode [ 165.801030][ T7107] device hsr_slave_1 entered promiscuous mode [ 165.805954][ T7144] netlink: 16 bytes leftover after parsing attributes in process `syz.2.795'. [ 165.840778][ T7107] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 165.842767][ T7107] Cannot create hsr debugfs directory [ 166.124635][ T7107] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.209023][ T7107] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.309681][ T7107] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.377036][ T7107] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.621068][ T7107] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 166.672218][ T7107] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 166.732140][ T7107] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 166.770116][ T7107] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 166.776410][ T7154] FAULT_INJECTION: forcing a failure. [ 166.776410][ T7154] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 166.792174][ T7154] CPU: 0 PID: 7154 Comm: syz.2.809 Not tainted 5.15.164-syzkaller #0 [ 166.794211][ T7154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 166.796634][ T7154] Call trace: [ 166.797468][ T7154] dump_backtrace+0x0/0x530 [ 166.798593][ T7154] show_stack+0x2c/0x3c [ 166.799682][ T7154] dump_stack_lvl+0x108/0x170 [ 166.800870][ T7154] dump_stack+0x1c/0x58 [ 166.801963][ T7154] should_fail+0x3b8/0x514 [ 166.803136][ T7154] should_fail_alloc_page+0x74/0xa8 [ 166.804530][ T7154] prepare_alloc_pages+0x160/0x460 [ 166.805918][ T7154] __alloc_pages+0x138/0x674 [ 166.807193][ T7154] alloc_pages_vma+0x294/0x7c0 [ 166.808442][ T7154] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 166.810082][ T7154] handle_mm_fault+0x1f0c/0x3424 [ 166.811414][ T7154] do_page_fault+0x700/0xb60 [ 166.812715][ T7154] do_translation_fault+0xe8/0x138 [ 166.814062][ T7154] do_mem_abort+0x70/0x1d8 [ 166.815314][ T7154] el1_abort+0x3c/0x5c [ 166.816509][ T7154] el1h_64_sync_handler+0x60/0xac [ 166.817847][ T7154] el1h_64_sync+0x78/0x7c [ 166.819008][ T7154] __arch_clear_user+0x10/0x60 [ 166.820288][ T7154] read_iter_zero+0x84/0x1c4 [ 166.821394][ T7154] do_iter_readv_writev+0x420/0x5f8 [ 166.822783][ T7154] do_iter_read+0x1c4/0x684 [ 166.823965][ T7154] do_readv+0x218/0x3dc [ 166.825069][ T7154] __arm64_sys_readv+0x80/0x94 [ 166.826381][ T7154] invoke_syscall+0x98/0x2b8 [ 166.827581][ T7154] el0_svc_common+0x138/0x258 [ 166.828871][ T7154] do_el0_svc+0x58/0x14c [ 166.830006][ T7154] el0_svc+0x7c/0x1f0 [ 166.831039][ T7154] el0t_64_sync_handler+0x84/0xe4 [ 166.832500][ T7154] el0t_64_sync+0x1a0/0x1a4 [ 166.903906][ T4068] Bluetooth: hci4: command 0x0409 tx timeout [ 166.980250][ T7107] 8021q: adding VLAN 0 to HW filter on device bond0 [ 166.993095][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 166.995570][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 167.004602][ T7166] loop2: detected capacity change from 0 to 64 [ 167.019321][ T7107] 8021q: adding VLAN 0 to HW filter on device team0 [ 167.049406][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 167.051315][ T7168] FAULT_INJECTION: forcing a failure. [ 167.051315][ T7168] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.052365][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 167.057997][ T4103] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.060115][ T4103] bridge0: port 1(bridge_slave_0) entered forwarding state [ 167.060704][ T7168] CPU: 0 PID: 7168 Comm: syz.1.813 Not tainted 5.15.164-syzkaller #0 [ 167.064264][ T7168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 167.066937][ T7168] Call trace: [ 167.067842][ T7168] dump_backtrace+0x0/0x530 [ 167.069057][ T7168] show_stack+0x2c/0x3c [ 167.070139][ T7168] dump_stack_lvl+0x108/0x170 [ 167.071200][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 167.071363][ T7168] dump_stack+0x1c/0x58 [ 167.074602][ T7168] should_fail+0x3b8/0x514 [ 167.075794][ T7168] should_fail_usercopy+0x20/0x30 [ 167.077178][ T7168] strncpy_from_user+0x48/0x580 [ 167.078542][ T7168] bpf_prog_load+0x168/0x15c8 [ 167.079822][ T7168] __sys_bpf+0x2e8/0x610 [ 167.081023][ T7168] __arm64_sys_bpf+0x80/0x98 [ 167.082364][ T7168] invoke_syscall+0x98/0x2b8 [ 167.083587][ T7168] el0_svc_common+0x138/0x258 [ 167.084889][ T7168] do_el0_svc+0x58/0x14c [ 167.086029][ T7168] el0_svc+0x7c/0x1f0 [ 167.087145][ T7168] el0t_64_sync_handler+0x84/0xe4 [ 167.088537][ T7168] el0t_64_sync+0x1a0/0x1a4 [ 167.132027][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 167.134825][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 167.137939][ T4103] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.139906][ T4103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 167.153816][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 167.160675][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 167.166365][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 167.181124][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.184156][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.187023][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.284401][ T7107] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 167.287371][ T7107] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 167.295967][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 167.298630][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 167.301325][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 167.304075][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 167.308012][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 167.337946][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 167.497685][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 167.500973][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 167.515856][ T7107] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 167.542863][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 167.548193][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 167.592463][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 167.595519][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 167.598423][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 167.617625][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 167.617753][ T7184] loop4: detected capacity change from 0 to 16 [ 167.621899][ T7107] device veth0_vlan entered promiscuous mode [ 167.629193][ T7107] device veth1_vlan entered promiscuous mode [ 167.656825][ T7186] FAULT_INJECTION: forcing a failure. [ 167.656825][ T7186] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.663433][ T7186] CPU: 0 PID: 7186 Comm: syz.0.819 Not tainted 5.15.164-syzkaller #0 [ 167.665512][ T7186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 167.668321][ T7186] Call trace: [ 167.669212][ T7186] dump_backtrace+0x0/0x530 [ 167.670407][ T7186] show_stack+0x2c/0x3c [ 167.671465][ T7186] dump_stack_lvl+0x108/0x170 [ 167.672747][ T7186] dump_stack+0x1c/0x58 [ 167.673957][ T7186] should_fail+0x3b8/0x514 [ 167.675133][ T7186] should_fail_usercopy+0x20/0x30 [ 167.676532][ T7186] __copy_msghdr_from_user+0xbc/0x5d0 [ 167.678008][ T7186] ___sys_sendmsg+0x154/0x294 [ 167.679205][ T7186] __sys_sendmmsg+0x23c/0x648 [ 167.680374][ T7186] __arm64_sys_sendmmsg+0xa0/0xbc [ 167.681647][ T7186] invoke_syscall+0x98/0x2b8 [ 167.682946][ T7186] el0_svc_common+0x138/0x258 [ 167.684176][ T7186] do_el0_svc+0x58/0x14c [ 167.685577][ T7186] el0_svc+0x7c/0x1f0 [ 167.686622][ T7186] el0t_64_sync_handler+0x84/0xe4 [ 167.687982][ T7186] el0t_64_sync+0x1a0/0x1a4 [ 167.699736][ T7184] erofs: (device loop4): mounted with root inode @ nid 36. [ 167.712094][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 167.714899][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 167.717943][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 167.730655][ T4069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 167.749685][ T7107] device veth0_macvtap entered promiscuous mode [ 167.755057][ T7107] device veth1_macvtap entered promiscuous mode [ 167.843480][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.868138][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.878926][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.889756][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.892460][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.895091][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.897599][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.931847][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.936896][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.953884][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.963293][ T7107] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 167.974812][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 167.977621][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 167.981176][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 167.985139][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 167.988371][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 167.992180][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.994838][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 167.997730][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 168.004989][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 168.031475][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 168.040059][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 168.042970][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 168.058319][ T7107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 168.072340][ T7107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 168.083147][ T7107] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 168.087938][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 168.091376][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 168.095540][ T7194] __nla_validate_parse: 6 callbacks suppressed [ 168.095551][ T7194] netlink: 60 bytes leftover after parsing attributes in process `syz.1.822'. [ 168.116475][ T7107] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.118729][ T7107] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.126314][ T7107] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.128720][ T7107] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.145507][ T7194] netlink: 60 bytes leftover after parsing attributes in process `syz.1.822'. [ 168.171028][ T7196] loop0: detected capacity change from 0 to 256 [ 168.177751][ T7178] loop2: detected capacity change from 0 to 40427 [ 168.245046][ T7198] loop1: detected capacity change from 0 to 256 [ 168.245495][ T7178] F2FS-fs (loop2): invalid crc value [ 168.267297][ T7196] FAT-fs (loop0): Directory bread(block 64) failed [ 168.269109][ T7196] FAT-fs (loop0): Directory bread(block 65) failed [ 168.275488][ T153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.277992][ T153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 168.285688][ T7178] F2FS-fs (loop2): Found nat_bits in checkpoint [ 168.288642][ T3320] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 168.292822][ T7198] exfat: Deprecated parameter 'namecase' [ 168.294632][ T7198] exfat: Deprecated parameter 'utf8' [ 168.296275][ T7198] exfat: Deprecated parameter 'namecase' [ 168.297822][ T7198] exfat: Deprecated parameter 'utf8' [ 168.309524][ T7196] FAT-fs (loop0): Directory bread(block 66) failed [ 168.311281][ T7196] FAT-fs (loop0): Directory bread(block 67) failed [ 168.322170][ T7196] FAT-fs (loop0): Directory bread(block 68) failed [ 168.323904][ T7196] FAT-fs (loop0): Directory bread(block 69) failed [ 168.325595][ T7196] FAT-fs (loop0): Directory bread(block 70) failed [ 168.327309][ T7196] FAT-fs (loop0): Directory bread(block 71) failed [ 168.328993][ T7196] FAT-fs (loop0): Directory bread(block 72) failed [ 168.332338][ T4263] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.334751][ T4263] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 168.349954][ T7198] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 168.361174][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 168.368681][ T7198] netlink: 399 bytes leftover after parsing attributes in process `syz.1.824'. [ 168.371879][ T7196] FAT-fs (loop0): Directory bread(block 73) failed [ 168.390383][ T7178] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 168.395048][ T7198] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16) [ 168.397245][ T7198] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 168.475308][ T7178] attempt to access beyond end of device [ 168.475308][ T7178] loop2: rw=2049, want=45112, limit=40427 [ 168.514330][ T7178] attempt to access beyond end of device [ 168.514330][ T7178] loop2: rw=2049, want=77880, limit=40427 [ 168.557055][ T7178] attempt to access beyond end of device [ 168.557055][ T7178] loop2: rw=2049, want=78016, limit=40427 [ 168.597966][ T7204] loop1: detected capacity change from 0 to 64 [ 168.990234][ T4412] Bluetooth: hci4: command 0x041b tx timeout [ 168.993207][ T4412] Bluetooth: hci3: command 0x0406 tx timeout [ 168.994971][ T4412] Bluetooth: hci1: command 0x0406 tx timeout [ 169.337714][ T7211] loop1: detected capacity change from 0 to 256 [ 169.422695][ T4027] attempt to access beyond end of device [ 169.422695][ T4027] loop2: rw=2049, want=45120, limit=40427 [ 169.425114][ T7211] FAT-fs (loop1): Unrecognized mount option "nonu" or missing value [ 169.542983][ T7209] netlink: 8 bytes leftover after parsing attributes in process `syz.4.826'. [ 169.545385][ T7209] netlink: 48 bytes leftover after parsing attributes in process `syz.4.826'. [ 169.956898][ T7224] FAULT_INJECTION: forcing a failure. [ 169.956898][ T7224] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 169.968125][ T7224] CPU: 1 PID: 7224 Comm: syz.2.830 Not tainted 5.15.164-syzkaller #0 [ 169.970302][ T7224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 169.972889][ T7224] Call trace: [ 169.973742][ T7224] dump_backtrace+0x0/0x530 [ 169.974959][ T7224] show_stack+0x2c/0x3c [ 169.976002][ T7224] dump_stack_lvl+0x108/0x170 [ 169.977229][ T7224] dump_stack+0x1c/0x58 [ 169.978357][ T7224] should_fail+0x3b8/0x514 [ 169.979514][ T7224] should_fail_usercopy+0x20/0x30 [ 169.980863][ T7224] simple_read_from_buffer+0xd8/0x26c [ 169.982317][ T7224] proc_fail_nth_read+0x1a0/0x248 [ 169.983645][ T7224] vfs_read+0x278/0xb18 [ 169.984719][ T7224] ksys_read+0x15c/0x26c [ 169.985828][ T7224] __arm64_sys_read+0x7c/0x90 [ 169.987012][ T7224] invoke_syscall+0x98/0x2b8 [ 169.988284][ T7224] el0_svc_common+0x138/0x258 [ 169.989583][ T7224] do_el0_svc+0x58/0x14c [ 169.990788][ T7224] el0_svc+0x7c/0x1f0 [ 169.991848][ T7224] el0t_64_sync_handler+0x84/0xe4 [ 169.993228][ T7224] el0t_64_sync+0x1a0/0x1a4 [ 170.124626][ T7221] loop0: detected capacity change from 0 to 32768 [ 170.266619][ T7231] loop1: detected capacity change from 0 to 16 [ 170.289823][ T7221] XFS (loop0): Mounting V5 Filesystem [ 170.328858][ T7231] erofs: (device loop1): mounted with root inode @ nid 36. [ 170.378491][ T7240] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 171.240854][ T7221] XFS (loop0): Ending clean mount [ 171.268957][ T7221] XFS (loop0): Quotacheck needed: Please wait. [ 171.289784][ T7245] loop2: detected capacity change from 0 to 64 [ 171.301891][ T7247] FAULT_INJECTION: forcing a failure. [ 171.301891][ T7247] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.305779][ T7247] CPU: 1 PID: 7247 Comm: syz.4.839 Not tainted 5.15.164-syzkaller #0 [ 171.307910][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 171.310483][ T7247] Call trace: [ 171.311402][ T7247] dump_backtrace+0x0/0x530 [ 171.312584][ T7247] show_stack+0x2c/0x3c [ 171.313734][ T7247] dump_stack_lvl+0x108/0x170 [ 171.315073][ T7247] dump_stack+0x1c/0x58 [ 171.316218][ T7247] should_fail+0x3b8/0x514 [ 171.317396][ T7247] should_fail_usercopy+0x20/0x30 [ 171.318655][ T7247] strncpy_from_user+0x48/0x580 [ 171.320012][ T7247] getname_flags+0x104/0x480 [ 171.321294][ T7247] __arm64_sys_mkdirat+0x80/0xa8 [ 171.322571][ T7247] invoke_syscall+0x98/0x2b8 [ 171.323888][ T7247] el0_svc_common+0x138/0x258 [ 171.325160][ T7247] do_el0_svc+0x58/0x14c [ 171.326297][ T7247] el0_svc+0x7c/0x1f0 [ 171.327369][ T7247] el0t_64_sync_handler+0x84/0xe4 [ 171.328678][ T7247] el0t_64_sync+0x1a0/0x1a4 [ 171.385641][ T7221] XFS (loop0): Quotacheck: Done. [ 171.535198][ T4021] XFS (loop0): Unmounting Filesystem [ 171.770350][ T7255] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'. [ 171.772667][ T7255] netlink: 48 bytes leftover after parsing attributes in process `syz.1.843'. [ 171.972918][ T7271] kcapi: manufacturer command 0 unknown. [ 172.003508][ T7268] device syzkaller0 entered promiscuous mode [ 172.023651][ T7266] device syzkaller0 entered promiscuous mode [ 172.250098][ T4263] device hsr_slave_0 left promiscuous mode [ 172.288280][ T4263] device hsr_slave_1 left promiscuous mode [ 172.367530][ T4263] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 172.369551][ T4263] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 172.372491][ T4263] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 172.374517][ T4263] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 172.378816][ T4263] device bridge_slave_1 left promiscuous mode [ 172.380686][ T4263] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.433049][ T4263] device bridge_slave_0 left promiscuous mode [ 172.434757][ T4263] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.469392][ T7267] loop1: detected capacity change from 0 to 32768 [ 172.508052][ T7267] gfs2: Unknown parameter 'obj_rose_typeimasig' [ 172.577459][ T4263] device veth1_macvtap left promiscuous mode [ 172.579149][ T4263] device veth0_macvtap left promiscuous mode [ 172.580769][ T4263] device veth1_vlan left promiscuous mode [ 172.582296][ T4263] device veth0_vlan left promiscuous mode [ 172.831649][ T7275] loop0: detected capacity change from 0 to 32768 [ 172.855738][ T7285] loop1: detected capacity change from 0 to 4096 [ 172.867851][ T7275] XFS: noattr2 mount option is deprecated. [ 172.869842][ T7275] xfs: Unknown parameter 'fsname' [ 172.911851][ T7285] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 173.124266][ T4263] team0 (unregistering): Port device team_slave_1 removed [ 173.134541][ T4263] team0 (unregistering): Port device team_slave_0 removed [ 173.156038][ T7290] loop1: detected capacity change from 0 to 4096 [ 173.161450][ T4263] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 173.194294][ T7290] EXT4-fs (loop1): Unrecognized mount option "hash" or missing value [ 173.211102][ T4263] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 173.279457][ T7292] loop1: detected capacity change from 0 to 64 [ 173.424150][ T4263] bond0 (unregistering): Released all slaves [ 173.502465][ T7295] loop1: detected capacity change from 0 to 16 [ 173.507677][ T7295] erofs: (device loop1): mounted with root inode @ nid 36. [ 173.652470][ T7297] netlink: 48 bytes leftover after parsing attributes in process `syz.4.854'. [ 173.687545][ T7277] device syzkaller0 entered promiscuous mode [ 173.763525][ T7297] netlink: 4 bytes leftover after parsing attributes in process `syz.4.854'. [ 173.791792][ T7306] loop0: detected capacity change from 0 to 4096 [ 173.801536][ T7262] chnl_net:caif_netlink_parms(): no params data found [ 173.872253][ T7306] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 173.903692][ T7306] FAULT_INJECTION: forcing a failure. [ 173.903692][ T7306] name failslab, interval 1, probability 0, space 0, times 0 [ 173.924203][ T7306] CPU: 1 PID: 7306 Comm: syz.0.855 Not tainted 5.15.164-syzkaller #0 [ 173.926339][ T7306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 173.928986][ T7306] Call trace: [ 173.929812][ T7306] dump_backtrace+0x0/0x530 [ 173.930983][ T7306] show_stack+0x2c/0x3c [ 173.932049][ T7306] dump_stack_lvl+0x108/0x170 [ 173.933264][ T7306] dump_stack+0x1c/0x58 [ 173.934360][ T7306] should_fail+0x3b8/0x514 [ 173.935623][ T7306] __should_failslab+0xbc/0x110 [ 173.936973][ T7306] should_failslab+0x10/0x28 [ 173.938210][ T7306] slab_pre_alloc_hook+0x64/0xe8 [ 173.939640][ T7306] __kmalloc+0xc0/0x4c8 [ 173.940766][ T7306] security_prepare_creds+0x54/0x140 [ 173.942232][ T7306] prepare_creds+0x438/0x71c [ 173.943551][ T7306] do_faccessat+0xe0/0x7b4 [ 173.944738][ T7306] __arm64_sys_faccessat+0x80/0x94 [ 173.946095][ T7306] invoke_syscall+0x98/0x2b8 [ 173.947300][ T7306] el0_svc_common+0x138/0x258 [ 173.948576][ T7306] do_el0_svc+0x58/0x14c [ 173.949768][ T7306] el0_svc+0x7c/0x1f0 [ 173.950878][ T7306] el0t_64_sync_handler+0x84/0xe4 [ 173.952168][ T7306] el0t_64_sync+0x1a0/0x1a4 [ 173.956143][ T4103] Bluetooth: hci4: command 0x0409 tx timeout [ 173.974545][ T7315] netlink: 8 bytes leftover after parsing attributes in process `syz.2.856'. [ 173.977070][ T7315] netlink: 48 bytes leftover after parsing attributes in process `syz.2.856'. [ 173.980103][ T7262] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.982149][ T7262] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.987174][ T7318] loop4: detected capacity change from 0 to 1024 [ 173.991381][ T7262] device bridge_slave_0 entered promiscuous mode [ 174.002581][ T7262] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.005342][ T7262] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.019417][ T7262] device bridge_slave_1 entered promiscuous mode [ 174.042546][ T7318] EXT4-fs (loop4): Ignoring removed orlov option [ 174.044262][ T7318] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 174.088851][ T7318] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec018, mo2=0002] [ 174.092289][ T7318] System zones: 0-1, 3-36 [ 174.095941][ T7323] loop2: detected capacity change from 0 to 1024 [ 174.119937][ T7318] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,orlov,nomblk_io_submit,block_validity,debug_want_extra_isize=0x0000000000000006,init_itable=0x0000000000000000,usrquota,usrquota,,errors=continue. Quota mode: writeback. [ 174.127452][ T7262] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.135862][ T7323] EXT4-fs (loop2): Ignoring removed orlov option [ 174.139548][ T7323] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 174.162741][ T7262] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.174488][ T7323] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec018, mo2=0002] [ 174.186495][ T7323] System zones: 0-1, 3-36 [ 174.232432][ T7323] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,orlov,nomblk_io_submit,block_validity,debug_want_extra_isize=0x0000000000000006,init_itable=0x0000000000000000,usrquota,usrquota,,errors=continue. Quota mode: writeback. [ 174.244195][ T7323] FAULT_INJECTION: forcing a failure. [ 174.244195][ T7323] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.253149][ T7323] CPU: 1 PID: 7323 Comm: syz.2.860 Not tainted 5.15.164-syzkaller #0 [ 174.255326][ T7323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 174.258021][ T7323] Call trace: [ 174.258878][ T7323] dump_backtrace+0x0/0x530 [ 174.260044][ T7323] show_stack+0x2c/0x3c [ 174.261133][ T7323] dump_stack_lvl+0x108/0x170 [ 174.262433][ T7323] dump_stack+0x1c/0x58 [ 174.263574][ T7323] should_fail+0x3b8/0x514 [ 174.264806][ T7323] should_fail_usercopy+0x20/0x30 [ 174.266168][ T7323] memdup_user+0x110/0x2c8 [ 174.267344][ T7323] strndup_user+0x78/0xe0 [ 174.268480][ T7323] __arm64_sys_mount+0x118/0x5e0 [ 174.269893][ T7323] invoke_syscall+0x98/0x2b8 [ 174.271143][ T7323] el0_svc_common+0x138/0x258 [ 174.272380][ T7323] do_el0_svc+0x58/0x14c [ 174.273591][ T7323] el0_svc+0x7c/0x1f0 [ 174.274614][ T7323] el0t_64_sync_handler+0x84/0xe4 [ 174.275915][ T7323] el0t_64_sync+0x1a0/0x1a4 [ 174.410282][ T7262] team0: Port device team_slave_0 added [ 175.126166][ T7262] team0: Port device team_slave_1 added [ 175.185575][ T7262] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.202707][ T7262] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 175.209394][ T7262] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.213458][ T7262] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.215389][ T7262] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 175.222228][ T7262] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 175.248747][ T7330] loop0: detected capacity change from 0 to 64 [ 175.305270][ T7335] loop4: detected capacity change from 0 to 64 [ 175.388489][ T7262] device hsr_slave_0 entered promiscuous mode [ 175.409405][ T7262] device hsr_slave_1 entered promiscuous mode [ 175.446425][ T7262] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 175.448398][ T7262] Cannot create hsr debugfs directory [ 175.806512][ T7346] FAULT_INJECTION: forcing a failure. [ 175.806512][ T7346] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.809907][ T7346] CPU: 0 PID: 7346 Comm: syz.2.866 Not tainted 5.15.164-syzkaller #0 [ 175.811956][ T7346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 175.814397][ T7346] Call trace: [ 175.815207][ T7346] dump_backtrace+0x0/0x530 [ 175.816407][ T7346] show_stack+0x2c/0x3c [ 175.817590][ T7346] dump_stack_lvl+0x108/0x170 [ 175.818840][ T7346] dump_stack+0x1c/0x58 [ 175.819928][ T7346] should_fail+0x3b8/0x514 [ 175.821147][ T7346] should_fail_usercopy+0x20/0x30 [ 175.822422][ T7346] simple_read_from_buffer+0xd8/0x26c [ 175.823825][ T7346] proc_fail_nth_read+0x1a0/0x248 [ 175.825070][ T7346] vfs_read+0x278/0xb18 [ 175.826197][ T7346] ksys_read+0x15c/0x26c [ 175.827378][ T7346] __arm64_sys_read+0x7c/0x90 [ 175.828682][ T7346] invoke_syscall+0x98/0x2b8 [ 175.829907][ T7346] el0_svc_common+0x138/0x258 [ 175.831149][ T7346] do_el0_svc+0x58/0x14c [ 175.832228][ T7346] el0_svc+0x7c/0x1f0 [ 175.833231][ T7346] el0t_64_sync_handler+0x84/0xe4 [ 175.834505][ T7346] el0t_64_sync+0x1a0/0x1a4 [ 175.843317][ T7337] loop1: detected capacity change from 0 to 1024 [ 175.916762][ T7348] dlm: no local IP address has been set [ 175.918527][ T7348] dlm: cannot start dlm midcomms -107 [ 176.928907][ T1534] Bluetooth: hci4: command 0x041b tx timeout [ 177.114509][ T7337] EXT4-fs (loop1): Ignoring removed orlov option [ 177.116586][ T7337] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 177.119564][ T7337] EXT4-fs (loop1): Mount option "nouser_xattr" will be removed by 3.5 [ 177.119564][ T7337] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 177.119564][ T7337] [ 177.142213][ T7351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.869'. [ 177.144549][ T7351] netlink: 48 bytes leftover after parsing attributes in process `syz.0.869'. [ 177.170667][ T7337] EXT4-fs (loop1): mounted filesystem without journal. Opts: discard,orlov,nomblk_io_submit,block_validity,nouser_xattr,init_itable=0x0000000000000000,max_dir_size_kb=0x0000000000000008,usrquota,,errors=continue. Quota mode: writeback. [ 177.206701][ T1534] kernel write not supported for file /74/attr/fscreate (pid: 1534 comm: kworker/0:2) [ 177.246322][ T7361] loop4: detected capacity change from 0 to 1024 [ 177.393807][ T7262] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.408025][ T7361] [ 177.408689][ T7361] ====================================================== [ 177.410514][ T7361] WARNING: possible circular locking dependency detected [ 177.412377][ T7361] 5.15.164-syzkaller #0 Not tainted [ 177.413722][ T7361] ------------------------------------------------------ [ 177.415510][ T7361] syz.4.872/7361 is trying to acquire lock: [ 177.417016][ T7361] ffff0000d912cb48 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_extend+0x198/0x14e0 [ 177.420103][ T7361] [ 177.420103][ T7361] but task is already holding lock: [ 177.422081][ T7361] ffff0000ed2140b0 (&tree->tree_lock#2){+.+.}-{3:3}, at: hfsplus_find_init+0x144/0x1bc [ 177.424685][ T7361] [ 177.424685][ T7361] which lock already depends on the new lock. [ 177.424685][ T7361] [ 177.427453][ T7361] [ 177.427453][ T7361] the existing dependency chain (in reverse order) is: [ 177.429960][ T7361] [ 177.429960][ T7361] -> #1 (&tree->tree_lock#2){+.+.}-{3:3}: [ 177.432099][ T7361] __mutex_lock_common+0x194/0x2154 [ 177.433605][ T7361] mutex_lock_nested+0xa4/0xf8 [ 177.434986][ T7361] hfsplus_file_truncate+0x6d4/0x9cc [ 177.436542][ T7361] hfsplus_delete_inode+0x154/0x200 [ 177.438075][ T7361] hfsplus_unlink+0x414/0x6a0 [ 177.439470][ T7361] vfs_unlink+0x2f0/0x508 [ 177.440876][ T7361] do_unlinkat+0x4cc/0x830 [ 177.442221][ T7361] __arm64_sys_unlinkat+0xcc/0xfc [ 177.443692][ T7361] invoke_syscall+0x98/0x2b8 [ 177.445088][ T7361] el0_svc_common+0x138/0x258 [ 177.446553][ T7361] do_el0_svc+0x58/0x14c [ 177.447858][ T7361] el0_svc+0x7c/0x1f0 [ 177.449055][ T7361] el0t_64_sync_handler+0x84/0xe4 [ 177.450621][ T7361] el0t_64_sync+0x1a0/0x1a4 [ 177.451886][ T7361] [ 177.451886][ T7361] -> #0 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}: [ 177.454237][ T7361] __lock_acquire+0x32d4/0x7638 [ 177.455740][ T7361] lock_acquire+0x240/0x77c [ 177.457070][ T7361] __mutex_lock_common+0x194/0x2154 [ 177.458604][ T7361] mutex_lock_nested+0xa4/0xf8 [ 177.460049][ T7361] hfsplus_file_extend+0x198/0x14e0 [ 177.461572][ T7361] hfsplus_bmap_reserve+0xec/0x474 [ 177.463058][ T7361] hfsplus_create_cat+0x18c/0x1330 [ 177.464511][ T7361] hfsplus_fill_super+0xf64/0x167c [ 177.465992][ T7361] mount_bdev+0x274/0x370 [ 177.467260][ T7361] hfsplus_mount+0x44/0x58 [ 177.468581][ T7361] legacy_get_tree+0xd4/0x16c [ 177.470020][ T7361] vfs_get_tree+0x90/0x274 [ 177.471281][ T7361] do_new_mount+0x278/0x8fc [ 177.472642][ T7361] path_mount+0x594/0x101c [ 177.473960][ T7361] __arm64_sys_mount+0x510/0x5e0 [ 177.475452][ T7361] invoke_syscall+0x98/0x2b8 [ 177.476848][ T7361] el0_svc_common+0x138/0x258 [ 177.478205][ T7361] do_el0_svc+0x58/0x14c [ 177.479433][ T7361] el0_svc+0x7c/0x1f0 [ 177.480603][ T7361] el0t_64_sync_handler+0x84/0xe4 [ 177.482166][ T7361] el0t_64_sync+0x1a0/0x1a4 [ 177.483515][ T7361] [ 177.483515][ T7361] other info that might help us debug this: [ 177.483515][ T7361] [ 177.486157][ T7361] Possible unsafe locking scenario: [ 177.486157][ T7361] [ 177.488137][ T7361] CPU0 CPU1 [ 177.489553][ T7361] ---- ---- [ 177.491026][ T7361] lock(&tree->tree_lock#2); [ 177.492342][ T7361] lock(&HFSPLUS_I(inode)->extents_lock); [ 177.494537][ T7361] lock(&tree->tree_lock#2); [ 177.496520][ T7361] lock(&HFSPLUS_I(inode)->extents_lock); [ 177.498033][ T7361] [ 177.498033][ T7361] *** DEADLOCK *** [ 177.498033][ T7361] [ 177.500225][ T7361] 3 locks held by syz.4.872/7361: [ 177.501565][ T7361] #0: ffff0000c99840e0 (&type->s_umount_key#78/1){+.+.}-{3:3}, at: alloc_super+0x1b8/0x844 [ 177.504328][ T7361] #1: ffff0000d5b90998 (&sbi->vh_mutex){+.+.}-{3:3}, at: hfsplus_fill_super+0xf0c/0x167c [ 177.507039][ T7361] #2: ffff0000ed2140b0 (&tree->tree_lock#2){+.+.}-{3:3}, at: hfsplus_find_init+0x144/0x1bc [ 177.509760][ T7361] [ 177.509760][ T7361] stack backtrace: [ 177.511357][ T7361] CPU: 1 PID: 7361 Comm: syz.4.872 Not tainted 5.15.164-syzkaller #0 [ 177.513555][ T7361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 177.516203][ T7361] Call trace: [ 177.517126][ T7361] dump_backtrace+0x0/0x530 [ 177.518351][ T7361] show_stack+0x2c/0x3c [ 177.519481][ T7361] dump_stack_lvl+0x108/0x170 [ 177.520771][ T7361] dump_stack+0x1c/0x58 [ 177.521923][ T7361] print_circular_bug+0x150/0x1b8 [ 177.523348][ T7361] check_noncircular+0x2cc/0x378 [ 177.524636][ T7361] __lock_acquire+0x32d4/0x7638 [ 177.525935][ T7361] lock_acquire+0x240/0x77c [ 177.527146][ T7361] __mutex_lock_common+0x194/0x2154 [ 177.528585][ T7361] mutex_lock_nested+0xa4/0xf8 [ 177.529923][ T7361] hfsplus_file_extend+0x198/0x14e0 [ 177.531357][ T7361] hfsplus_bmap_reserve+0xec/0x474 [ 177.532776][ T7361] hfsplus_create_cat+0x18c/0x1330 [ 177.534181][ T7361] hfsplus_fill_super+0xf64/0x167c [ 177.535614][ T7361] mount_bdev+0x274/0x370 [ 177.536767][ T7361] hfsplus_mount+0x44/0x58 [ 177.537934][ T7361] legacy_get_tree+0xd4/0x16c [ 177.539212][ T7361] vfs_get_tree+0x90/0x274 [ 177.540395][ T7361] do_new_mount+0x278/0x8fc [ 177.541655][ T7361] path_mount+0x594/0x101c [ 177.542862][ T7361] __arm64_sys_mount+0x510/0x5e0 [ 177.544268][ T7361] invoke_syscall+0x98/0x2b8 [ 177.545462][ T7361] el0_svc_common+0x138/0x258 [ 177.546770][ T7361] do_el0_svc+0x58/0x14c [ 177.547991][ T7361] el0_svc+0x7c/0x1f0 [ 177.549063][ T7361] el0t_64_sync_handler+0x84/0xe4 [ 177.550479][ T7361] el0t_64_sync+0x1a0/0x1a4 [ 177.605886][ T7364] FAULT_INJECTION: forcing a failure. [ 177.605886][ T7364] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 177.609268][ T7364] CPU: 0 PID: 7364 Comm: syz.0.873 Not tainted 5.15.164-syzkaller #0 [ 177.611282][ T7364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 177.613696][ T7364] Call trace: [ 177.614492][ T7364] dump_backtrace+0x0/0x530 [ 177.615646][ T7364] show_stack+0x2c/0x3c [ 177.616777][ T7364] dump_stack_lvl+0x108/0x170 [ 177.618010][ T7364] dump_stack+0x1c/0x58 [ 177.619154][ T7364] should_fail+0x3b8/0x514 [ 177.620358][ T7364] should_fail_usercopy+0x20/0x30 [ 177.621631][ T7364] simple_read_from_buffer+0xd8/0x26c [ 177.622991][ T7364] proc_fail_nth_read+0x1a0/0x248 [ 177.624217][ T7364] vfs_read+0x278/0xb18 [ 177.625363][ T7364] ksys_read+0x15c/0x26c [ 177.626502][ T7364] __arm64_sys_read+0x7c/0x90 [ 177.627744][ T7364] invoke_syscall+0x98/0x2b8 [ 177.628922][ T7364] el0_svc_common+0x138/0x258 [ 177.630144][ T7364] do_el0_svc+0x58/0x14c [ 177.631196][ T7364] el0_svc+0x7c/0x1f0 [ 177.632192][ T7364] el0t_64_sync_handler+0x84/0xe4 [ 177.633401][ T7364] el0t_64_sync+0x1a0/0x1a4 [ 177.648112][ T7361] udc-core: couldn't find an available UDC or it's busy [ 177.650114][ T7361] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 177.665859][ T7361] hfsplus: xattr searching failed [ 177.701325][ T7262] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.750697][ T7262] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.822995][ T7262] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.988379][ T7262] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 178.219495][ T153] hfsplus: b-tree write err: -5, ino 3 [ 178.271539][ T7262] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 178.306100][ T7262] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 178.360607][ T7262] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 178.459758][ T7262] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.474199][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 178.476538][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 178.481286][ T7262] 8021q: adding VLAN 0 to HW filter on device team0 [ 178.486724][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 178.489784][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 178.492206][ T4103] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.493980][ T4103] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.505562][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 178.508101][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 178.510677][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 178.513186][ T4103] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.515112][ T4103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.524444][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 178.527845][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 178.530658][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 178.533493][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 178.547579][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 178.550126][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 178.552741][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 178.556854][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 178.559525][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 178.562150][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 178.565201][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 178.569289][ T7262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 178.637629][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 178.639735][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 178.646177][ T7262] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 178.657120][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 178.659706][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 178.681522][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 178.683920][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 178.687228][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 178.689451][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 178.693577][ T7262] device veth0_vlan entered promiscuous mode [ 178.707331][ T7262] device veth1_vlan entered promiscuous mode [ 178.719435][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 178.721815][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 178.724569][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 178.726929][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 178.731502][ T7262] device veth0_macvtap entered promiscuous mode [ 178.735476][ T7262] device veth1_macvtap entered promiscuous mode [ 178.744538][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 178.747787][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.750252][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 178.752754][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.756753][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 178.759577][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.761991][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 178.764660][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.767140][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 178.769769][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.773381][ T7262] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 178.783302][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 178.786206][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 178.788477][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 178.791001][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 178.795146][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 178.797790][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.800338][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 178.802911][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.809404][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 178.812256][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.815451][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 178.818012][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.820715][ T7262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 178.823467][ T7262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 178.827185][ T7262] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 178.829960][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 178.832682][ T4070] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 178.843600][ T7262] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.845957][ T7262] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.848069][ T7262] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.850190][ T7262] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.870348][ T7262] ieee80211 phy25: Selected rate control algorithm 'minstrel_ht' [ 178.881867][ T6550] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 178.882601][ T7262] ieee80211 phy26: Selected rate control algorithm 'minstrel_ht' [ 178.888279][ T6550] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 178.893001][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 178.902735][ T6550] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 178.913513][ T6550] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 178.920443][ T4103] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 178.974297][ T4070] Bluetooth: hci4: command 0x040f tx timeout [ 179.419136][ T4208] device hsr_slave_0 left promiscuous mode [ 179.464188][ T4208] device hsr_slave_1 left promiscuous mode [ 179.553746][ T4208] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 179.555739][ T4208] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 179.558904][ T4208] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 179.560784][ T4208] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 179.563112][ T4208] device bridge_slave_1 left promiscuous mode [ 179.565071][ T4208] bridge0: port 2(bridge_slave_1) entered disabled state [ 179.615458][ T4208] device bridge_slave_0 left promiscuous mode [ 179.617274][ T4208] bridge0: port 1(bridge_slave_0) entered disabled state [ 179.743826][ T4208] device veth1_macvtap left promiscuous mode [ 179.745558][ T4208] device veth0_macvtap left promiscuous mode [ 179.747225][ T4208] device veth1_vlan left promiscuous mode [ 179.748764][ T4208] device veth0_vlan left promiscuous mode [ 179.910497][ T4208] team0 (unregistering): Port device team_slave_1 removed [ 179.921255][ T4208] team0 (unregistering): Port device team_slave_0 removed [ 179.927863][ T4208] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 179.959955][ T4208] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 180.091429][ T4208] bond0 (unregistering): Released all slaves [ 182.116861][ T4208] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.367249][ T4208] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.426812][ T4208] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.466831][ T4208] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.123153][ T4208] device hsr_slave_0 left promiscuous mode [ 186.150936][ T4208] device hsr_slave_1 left promiscuous mode [ 186.240479][ T4208] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 186.242608][ T4208] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 186.245711][ T4208] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 186.247709][ T4208] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 186.254406][ T4208] device bridge_slave_1 left promiscuous mode [ 186.256054][ T4208] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.291247][ T4208] device bridge_slave_0 left promiscuous mode [ 186.292889][ T4208] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.420413][ T4208] device veth1_macvtap left promiscuous mode [ 186.422067][ T4208] device veth0_macvtap left promiscuous mode [ 186.423675][ T4208] device veth1_vlan left promiscuous mode [ 186.425202][ T4208] device veth0_vlan left promiscuous mode [ 186.623722][ T4208] team0 (unregistering): Port device team_slave_1 removed [ 186.634020][ T4208] team0 (unregistering): Port device team_slave_0 removed [ 186.644658][ T4208] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 186.687691][ T4208] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 186.825598][ T4208] bond0 (unregistering): Released all slaves