40 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x4000000000000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:40 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000f00010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:40 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@rgrplvb='rgrplvb'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:40 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x7400}, 0x0) [ 1068.902069] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:40 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000001", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1068.949629] gfs2: invalid mount option: seclabel 17:13:40 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0xfeffff0700000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1068.983475] gfs2: can't parse mount arguments 17:13:40 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000600010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:40 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x553d) 17:13:40 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x700}, 0x0) [ 1069.038148] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:40 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000600", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:40 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@rgrplvb='rgrplvb'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:40 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x7, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:40 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x4004556a) 17:13:40 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000080607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:40 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x200000000000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:40 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:40 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x700000000000000}, 0x0) [ 1069.255499] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1069.311762] gfs2: invalid mount option: seclabel [ 1069.363147] gfs2: can't parse mount arguments [ 1069.367957] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:13:40 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x4004556e) 17:13:40 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24cb1900010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1069.417738] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:40 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x7400000000000000}, 0x0) 17:13:40 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x700000000000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:40 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00?', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:40 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@rgrplvb='rgrplvb'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:40 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0xc0045878) 17:13:41 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x6000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:41 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="244c0000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:41 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1069.620134] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:41 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x82110000}, 0x0) [ 1069.720653] gfs2: invalid mount option: seclabel 17:13:41 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x40045564) [ 1069.774916] gfs2: can't parse mount arguments 17:13:41 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0xc802, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1069.823580] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:41 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x7000000}, 0x0) 17:13:41 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="246c0000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:41 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:41 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@rgrplvb='rgrplvb'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:41 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x40049409) 17:13:41 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x600000000000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:41 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x4c00}, 0x0) [ 1070.048728] gfs2: invalid mount option: seclabel [ 1070.058734] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1070.075402] gfs2: can't parse mount arguments 17:13:41 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\a\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:41 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24004000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:41 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:41 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x1000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:41 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5460) 17:13:41 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x3f00}, 0x0) 17:13:41 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "6263736630000000000000000400", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1070.263773] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:41 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24004c00010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1070.353379] gfs2: invalid mount option: seclabel [ 1070.368010] gfs2: can't parse mount arguments 17:13:41 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x40000000, 0xff, 0xff, 0xff], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:41 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x40045566) [ 1070.424501] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:41 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x6c}, 0x0) 17:13:41 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "6263736630000000000000000500", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:41 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24ffffff1f0607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:41 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:42 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0xc802], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1070.590202] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:42 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:42 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0xffffff9e}, 0x0) 17:13:42 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24060000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1070.711467] gfs2: invalid mount option: seclabel [ 1070.752484] gfs2: can't parse mount arguments 17:13:42 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x4020940d) 17:13:42 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x1000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:42 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24050000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1070.803315] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:42 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "6263736630000000000000000200", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:42 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0xf00000000000000}, 0x0) 17:13:42 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:42 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x400c55cb) 17:13:42 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000200010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:42 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x40000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1071.004587] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1071.070242] gfs2: invalid mount option: seclabel 17:13:42 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "6263736630000000000000000300", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:42 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x1000000}, 0x0) [ 1071.140526] gfs2: can't parse mount arguments 17:13:42 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0xfeffff07], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:42 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400cb19010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:42 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5452) [ 1071.206642] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:42 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}, {@subj_type={'subj_type'}}]}) 17:13:42 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x3], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:42 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000500", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:42 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0xffffff7f}, 0x0) [ 1071.392378] gfs2: invalid mount option: seclabel 17:13:42 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400007a010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1071.416599] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1071.418425] gfs2: can't parse mount arguments 17:13:42 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x4004556d) 17:13:42 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x68000000}, 0x0) 17:13:42 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0xffffffff00000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:42 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:42 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}, {@uid_lt={'uid<'}}]}) 17:13:43 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240019cb010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:43 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x40000000}, 0x0) [ 1071.604358] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1071.698351] gfs2: invalid mount option: seclabel 17:13:43 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x3000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1071.733089] gfs2: can't parse mount arguments 17:13:43 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5525) [ 1071.792163] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000007fffffe", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:43 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000048010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:43 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x300], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:43 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x4000}, 0x0) 17:13:43 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}, {@obj_type={'obj_type', 0x3d, '\\nodevem1(,vboxnet1'}}]}) 17:13:43 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x68}, 0x0) 17:13:43 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24004c00010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1072.020028] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1072.086692] gfs2: invalid mount option: seclabel 17:13:43 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0xfeffff0700000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1072.173946] gfs2: can't parse mount arguments 17:13:43 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0xc06855c8) [ 1072.196959] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:43 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x600000000000000}, 0x0) 17:13:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000005", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:43 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24006c00010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:43 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}, {@uid_eq={'uid'}}]}) 17:13:43 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x2000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:43 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000700010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1072.343124] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1072.424374] gfs2: invalid mount option: seclabel [ 1072.463318] gfs2: can't parse mount arguments 17:13:43 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x40045567) 17:13:43 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x6c00000000000000}, 0x0) 17:13:43 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>'}}]}) [ 1072.555230] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:43 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000400010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000027800", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:44 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x7a000000}, 0x0) [ 1072.651484] gfs2: invalid mount option: seclabel [ 1072.673590] gfs2: can't parse mount arguments 17:13:44 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0xc8020000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:44 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x8004552d) 17:13:44 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x200000000000000}, 0x0) 17:13:44 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]}) 17:13:44 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24006800010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1072.792341] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:44 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000003", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:44 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x600], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1072.948400] gfs2: invalid mount option: seclabel 17:13:44 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x4004556b) 17:13:44 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x6000000}, 0x0) [ 1072.979176] gfs2: can't parse mount arguments 17:13:44 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000074010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:44 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x2c8], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1073.016710] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:44 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}, {@context={'context', 0x3d, 'user_u'}}]}) 17:13:44 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000feffff07", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:44 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x300}, 0x0) 17:13:44 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000780200", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:44 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400004c010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:44 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x2], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1073.187086] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1073.226228] gfs2: invalid mount option: seclabel [ 1073.231047] gfs2: can't parse mount arguments [ 1073.289798] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:44 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x2) 17:13:44 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}], [{@seclabel='seclabel'}]}) 17:13:44 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0xfffffffffffff000}, 0x0) 17:13:44 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:44 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000f00010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:44 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x600000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1073.484820] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1073.540061] gfs2: invalid mount option: seclabel [ 1073.549842] gfs2: can't parse mount arguments 17:13:44 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:44 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x20000000}, 0x0) 17:13:44 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0xff02) 17:13:45 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000f0010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:45 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x6], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) [ 1073.715846] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:45 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000003010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:45 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:45 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x42000, 0x0) ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f00000000c0)=""/172) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:45 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x400300}, 0x0) 17:13:45 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x200000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1073.868525] gfs2: not a GFS2 filesystem 17:13:45 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400f000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:45 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0xf000000}, 0x0) [ 1073.963871] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:45 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x4000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:45 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000feffff", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1074.044223] input: syz0 as /devices/virtual/input/input112 [ 1074.107424] input: syz0 as /devices/virtual/input/input113 [ 1074.116341] gfs2: not a GFS2 filesystem [ 1074.166458] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:45 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000300", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:45 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x700], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:45 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = accept4(0xffffffffffffffff, &(0x7f00000000c0)=@un=@abs, &(0x7f0000000000)=0x80, 0x80000) getsockopt$inet_udp_int(r1, 0x11, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) 17:13:45 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x3f00000000000000}, 0x0) 17:13:45 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000600010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:45 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x7fffffe], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:45 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1074.348403] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1074.436630] gfs2: not a GFS2 filesystem 17:13:45 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x1182}, 0x0) 17:13:45 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000006010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1074.487477] input: syz0 as /devices/virtual/input/input114 17:13:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:45 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x4000000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1074.577520] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:46 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x2000000000, 0x0, 0x2000000}, 'syz0\x00', 0xffffffffffffffff}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:46 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400003f010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:46 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x8211000000000000}, 0x0) 17:13:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1074.697725] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1074.763947] gfs2: not a GFS2 filesystem 17:13:46 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x6000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1074.839614] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1074.866857] input input116: cannot allocate more than FF_MAX_EFFECTS effects 17:13:46 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x48000000}, 0x0) 17:13:46 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000007010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1074.906691] input input117: cannot allocate more than FF_MAX_EFFECTS effects 17:13:46 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:46 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) write$uinput_user_dev(r0, &(0x7f00000000c0)={'syz0\x00', {0x8, 0x3, 0x7, 0x7f}, 0x3c, [0x1, 0x2, 0x3, 0x7fffffff, 0x8, 0x4, 0xff, 0x1, 0x401, 0x9, 0x6, 0x3, 0x9, 0x2, 0xff, 0x0, 0x8, 0x7, 0xfff, 0xffff, 0xdf, 0x3ff, 0xffff, 0x1ff, 0xf5b, 0x235, 0x2, 0x1f, 0x2, 0x0, 0x7af7f50e, 0x6, 0x4, 0x6, 0x1, 0x9, 0x7fff, 0x7, 0x20, 0x70aa, 0x9, 0xe6a, 0x0, 0x5, 0x1, 0x5, 0x4, 0x40000000, 0x1f, 0x1, 0xffffffffffffffff, 0x401, 0x6, 0x5, 0x5, 0xffffffffffffffff, 0x7ff, 0x7, 0x6, 0x1, 0x3, 0x6, 0x7, 0x5], [0x10001, 0x6, 0x5, 0x0, 0x4, 0x7fff, 0xffffffff, 0x0, 0x7ac, 0x2, 0xfffe0000000, 0xdd7, 0x3, 0x7ff, 0x3, 0x80000001, 0x7, 0x9, 0x8, 0x2, 0x0, 0xde0, 0x100000000, 0x9, 0x5, 0x7, 0x1f, 0x3f, 0x16d20000000000, 0x810000, 0x0, 0x5, 0x6, 0x100000000, 0xff, 0x0, 0x8, 0x5, 0x0, 0x2, 0x6, 0x4, 0x5, 0x6, 0x4, 0x83fe, 0x2, 0xdf1, 0x4, 0xfffffffffffffeff, 0x7fff, 0x7, 0x0, 0x1, 0xffffffffc36a10d5, 0x9, 0x81, 0xf61a, 0x2, 0x0, 0x8a, 0x3, 0x1669a892, 0x4], [0x8, 0x100000000, 0x905d, 0x7ff, 0x2, 0x82ab, 0x1, 0x2dad, 0x5, 0x6, 0x906, 0x2, 0x6, 0xa87, 0x20, 0x1f, 0x0, 0x8, 0x9, 0x80000000, 0x7c2, 0x7, 0x2, 0xffffffffffffff79, 0x1, 0x3, 0x1f, 0x0, 0xb2a, 0x80, 0x1, 0x0, 0x967, 0xfb71, 0x3f, 0x5, 0x601, 0xfffffffffffffc01, 0xffffffffffffffc0, 0x7, 0x10001, 0x0, 0x10000, 0x7ff, 0x4, 0x8, 0x101, 0xfffffffffffffffb, 0x400000000, 0x9, 0x8000, 0x9, 0x48, 0x80000000, 0x9, 0x0, 0xffffffff, 0xce1, 0x4, 0xe88e, 0xbc2, 0x0, 0x1ff, 0xff], [0xff, 0xf7e1, 0x401, 0x40, 0xff, 0x1000, 0xffffffffffffff62, 0x1, 0x3, 0x4, 0x0, 0xa4c, 0x6, 0x6, 0x6, 0x4, 0xff, 0x6, 0x3, 0x683f, 0x8, 0x5, 0x7fff, 0x8000, 0x0, 0x7, 0x5, 0x2, 0x9, 0x6, 0xbb834e2, 0x9, 0x800, 0x100000001, 0x1, 0x1f, 0x0, 0xb404, 0xfffffffffffff724, 0x2, 0xfffffffffffffff8, 0x3, 0x8, 0x4, 0x200, 0x9, 0xcdc60e7, 0x3, 0x101, 0x0, 0x800, 0x100000000, 0x5, 0x9, 0x2, 0xb, 0x0, 0x401, 0x8, 0x20000000000000, 0x5, 0xfff, 0x200, 0xad4]}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:46 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000300010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000200", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:46 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x4}, 0x0) [ 1075.016052] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1075.136449] gfs2: not a GFS2 filesystem 17:13:46 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x300000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:46 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:46 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x6000000000000000}, 0x0) [ 1075.214724] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:46 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000005010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1075.307159] input: syz0 as /devices/virtual/input/input118 17:13:46 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x7000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1075.376015] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1075.393014] gfs2: not a GFS2 filesystem [ 1075.431212] input: syz0 as /devices/virtual/input/input119 17:13:46 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x4c00000000000000}, 0x0) 17:13:46 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:46 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_GET_VERSION(r0, 0x8004552d, &(0x7f0000000000)) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:46 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000068010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:46 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x7], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:47 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x3000000}, 0x0) [ 1075.666575] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1075.723818] gfs2: not a GFS2 filesystem [ 1075.730791] input: syz0 as /devices/virtual/input/input120 17:13:47 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400006c010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:47 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:47 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x700000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1075.853607] input: syz0 as /devices/virtual/input/input121 17:13:47 executing program 2: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:47 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0x100000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:47 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x6800}, 0x0) [ 1075.924840] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:47 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24006000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:47 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) r1 = dup3(r0, r0, 0x80000) creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f00000000c0)={{0x7, 0x1ff}, {0x7f, 0xf483}, 0x2, 0x2, 0xfffffffffffffffa}) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:47 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000300", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:47 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000600", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:47 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000500010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1076.103049] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1076.154414] gfs2: not a GFS2 filesystem 17:13:47 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff, 0xc802000000000000], @link_local, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:47 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0xfffffff0}, 0x0) [ 1076.182484] input: syz0 as /devices/virtual/input/input122 [ 1076.284124] input: syz0 as /devices/virtual/input/input123 17:13:47 executing program 2: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) [ 1076.314636] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:47 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000780200", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:47 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24007a00010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1076.418712] gfs2: not a GFS2 filesystem 17:13:47 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x300}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:47 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x700}, 0x0) 17:13:47 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x2, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) r1 = memfd_create(&(0x7f00000024c0)='/dev/uinput\x00', 0x1) getsockopt$EBT_SO_GET_INIT_ENTRIES(r1, 0x0, 0x83, &(0x7f0000002640)={'broute\x00', 0x0, 0x3, 0xc5, [], 0x3, &(0x7f0000002500)=[{}, {}, {}], &(0x7f0000002540)=""/197}, &(0x7f00000026c0)=0x78) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:47 executing program 2: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:47 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1076.495898] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1076.556616] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1076.638105] input: syz0 as /devices/virtual/input/input124 [ 1076.653139] gfs2: not a GFS2 filesystem 17:13:48 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x6}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:48 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24004800010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1076.668031] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:48 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 17:13:48 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "6263736630000000000000000007ffff", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1076.760537] input: syz0 as /devices/virtual/input/input125 17:13:48 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:48 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24007400010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1076.831203] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:48 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x18c678}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1076.879926] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1076.952442] gfs2: not a GFS2 filesystem 17:13:48 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000002", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:48 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x0, 0x0, 0x0, 0xfffffffffffffffd}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x101000, 0x0) ioctl$FIONREAD(r1, 0x541b, &(0x7f00000000c0)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000140)={0x0}, &(0x7f0000000180)=0xc) getpgid(r2) ioctl$UI_DEV_CREATE(r0, 0x5501) write$eventfd(r1, &(0x7f0000000100)=0xeda, 0x8) 17:13:48 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xffffff9e}, 0x0) 17:13:48 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x2}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:48 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000060010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:48 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) [ 1077.071867] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1077.146687] input: syz0 as /devices/virtual/input/input126 17:13:48 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x3}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:48 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000500", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1077.188154] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1077.227468] input: syz0 as /devices/virtual/input/input127 17:13:48 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000040010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1077.306492] gfs2: not a GFS2 filesystem [ 1077.319963] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:48 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x74}, 0x0) 17:13:48 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x5}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:48 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000400", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:48 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) [ 1077.444282] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:48 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x50000000000000, 0x101000) ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e22}, {0x306, @broadcast}, 0x30, {0x2, 0x4e22, @local}, 'bpq0\x00'}) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:48 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000020010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:48 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0xffffff1f}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:48 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6c}, 0x0) 17:13:48 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1077.565712] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1077.661504] gfs2: not a GFS2 filesystem [ 1077.670849] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1077.682599] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:49 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:49 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0xa}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1077.728786] input: syz0 as /devices/virtual/input/input128 17:13:49 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400000f010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:49 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x300000000000000}, 0x0) [ 1077.789068] input: syz0 as /devices/virtual/input/input129 17:13:49 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:49 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x24}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:49 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1077.905592] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1077.962403] gfs2: not a GFS2 filesystem 17:13:49 executing program 0: ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f00000000c0)={{0x0, 0x6, 0x80000001, 0x7}, 'syz0\x00', 0x2b}) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x0, 0x0, 0x3}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:49 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x5000000}, 0x0) 17:13:49 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400000f010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:49 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:49 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x21}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1078.112522] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1078.117346] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1078.137367] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:49 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000600", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:49 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400007a010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1078.207171] input: syz0 as /devices/virtual/input/input130 [ 1078.228018] gfs2: not a GFS2 filesystem [ 1078.288364] input: syz0 as /devices/virtual/input/input131 17:13:49 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4c000000}, 0x0) 17:13:49 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x4}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1078.331458] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:49 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:49 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1078.413465] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:49 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x4201, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21}}, 0x10000, 0x6}, &(0x7f0000000280)=0x90) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000002c0)={0x9, 0x2, 0x3ff, 0x8, r2}, 0x10) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x22000, 0x0) sendto$inet6(r3, &(0x7f00000000c0)="b1daeeedd2514b5d31c9c6ba0a64f8dc017f88ee7cd967c0c235b59c1786019d2033fc27d4d644694334210272d598ee2701c711a7684103867d5c72e21f3a36567f71cb56f5ed575299190ebf80da0d90c3d09da1508a31244422bded8e61f9589f697502f04601dae035f2697a", 0x6e, 0x8804, &(0x7f0000000140)={0xa, 0x4e24, 0x1f, @mcast1, 0xf5c6}, 0x1c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:49 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000000e0607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:49 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0xc}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:49 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000500", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:49 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x2000000000000000}, 0x0) [ 1078.519307] gfs2: not a GFS2 filesystem [ 1078.534427] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:50 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) [ 1078.651431] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1078.663465] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:50 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:50 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2b}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1078.709358] input: syz0 as /devices/virtual/input/input132 17:13:50 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000004000607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1078.764775] gfs2: not a GFS2 filesystem [ 1078.773809] input: syz0 as /devices/virtual/input/input133 [ 1078.849812] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:50 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:50 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x500000000000000}, 0x0) 17:13:50 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:50 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:50 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400004c010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:50 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x12}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1079.019010] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1079.034723] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:50 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1079.084227] gfs2: not a GFS2 filesystem [ 1079.096533] input: syz0 as /devices/virtual/input/input134 17:13:50 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6c000000}, 0x0) 17:13:50 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}, {@norecovery='norecovery'}]}) 17:13:50 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400006c010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1079.243441] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1079.247503] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:50 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2c}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:50 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0xfffffffffffffffc}, 'syz0\x00'}) preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/204, 0xcc}, {&(0x7f0000000180)=""/97, 0x61}], 0x2, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1079.304749] gfs2: not a GFS2 filesystem 17:13:50 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:50 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000007010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1079.417490] input: syz0 as /devices/virtual/input/input136 17:13:50 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}]}) 17:13:50 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0xb}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:50 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7a00}, 0x0) [ 1079.463472] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:50 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1079.544757] input: syz0 as /devices/virtual/input/input137 [ 1079.618621] gfs2: not a GFS2 filesystem 17:13:51 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000003000607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:51 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x2, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) sendfile(r0, r0, 0x0, 0x6) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:51 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xfffffffffffff000}, 0x0) 17:13:51 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}]}) 17:13:51 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x30}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1079.675321] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:51 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:51 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000005f0607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1079.850086] gfs2: not a GFS2 filesystem [ 1079.867789] input: syz0 as /devices/virtual/input/input138 17:13:51 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6000000000000000}, 0x0) 17:13:51 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2f}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1079.932431] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:51 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1080.000433] input: syz0 as /devices/virtual/input/input139 17:13:51 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@nodiscard='nodiscard'}]}) 17:13:51 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000060010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:51 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xfffff000}, 0x0) 17:13:51 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x19) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:51 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x31}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1080.130310] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:51 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1080.207062] gfs2: not a GFS2 filesystem 17:13:51 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000068010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:51 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x74000000}, 0x0) 17:13:51 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1080.299772] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:51 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000027800", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1080.389911] input: syz0 as /devices/virtual/input/input140 17:13:51 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x13}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:51 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000074010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:51 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x8211000000000000}, 0x0) [ 1080.473027] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1080.489266] gfs2: not a GFS2 filesystem [ 1080.513862] input: syz0 as /devices/virtual/input/input141 17:13:51 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:52 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x32}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:52 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x100000000, 0x8000) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100)='nbd\x00') sendmsg$NBD_CMD_CONNECT(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, r2, 0x400, 0x70bd25, 0x25dfdbff, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x20}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x20000010) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000005c0)={{0x1, 0x0, 0x8, 0x31, '\x00', 0xffff}, 0x1, [0x7, 0x7, 0x4c, 0x2, 0x3ff, 0x6, 0x9, 0x2, 0x6, 0x4, 0x7ff, 0x911c0, 0x7fffffff, 0xeb, 0x4, 0x3, 0x0, 0x9, 0x4, 0xfffffffffffffff7, 0x7ff, 0x7f, 0x1ff, 0x8, 0x0, 0x1, 0x6, 0x23d, 0x3f, 0x6, 0x8001, 0x8, 0x3, 0x8, 0xfffffffffffff7ab, 0x4, 0x7656, 0x2, 0x1, 0x9, 0x2, 0x6, 0x7, 0x30cd, 0x3, 0xd6e8, 0x800, 0xbc, 0x5, 0xab, 0x4, 0x1ff, 0x4, 0x4, 0x2, 0x4, 0x3, 0x1000, 0xfffffffffffffffb, 0x2, 0x0, 0x2, 0x5e4a, 0x9, 0x100, 0x100000001, 0xffffffffffffffc0, 0x7, 0x8, 0x7, 0x3, 0x12000000000000, 0x400, 0x0, 0x1000, 0x10000, 0x100000000, 0x4, 0xba2, 0x81, 0x9, 0x200, 0x80c, 0x401, 0x9, 0x6, 0x2, 0x4, 0x8f8, 0x83b, 0xffff, 0x6, 0x1, 0x8000, 0x80, 0xff, 0x2, 0x8, 0x1, 0x8001, 0x8a8, 0x6cea, 0x8, 0xffff, 0xbb68, 0x9, 0xffffffffffffcd40, 0x6c33, 0x100, 0x9, 0x2, 0x3, 0x1, 0x4, 0x9, 0x4, 0xfffffffffffffff9, 0x3, 0xdbe, 0xfffffffffffffffc, 0x800, 0x8000, 0x504, 0x1ff, 0x8, 0x2, 0xff, 0x9]}) 17:13:52 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000250607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:52 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4000000000000000}, 0x0) 17:13:52 executing program 2 (fault-call:2 fault-nth:0): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1080.697003] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:52 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1080.805001] FAULT_INJECTION: forcing a failure. [ 1080.805001] name failslab, interval 1, probability 0, space 0, times 0 17:13:52 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x3f000000}, 0x0) [ 1080.853835] CPU: 0 PID: 4758 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1080.861095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1080.870472] Call Trace: [ 1080.873100] dump_stack+0x1c4/0x2b4 [ 1080.876771] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1080.877708] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1080.882017] should_fail.cold.4+0xa/0x17 [ 1080.882046] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1080.899598] ? graph_lock+0x170/0x170 [ 1080.903432] ? lock_downgrade+0x900/0x900 [ 1080.903462] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1080.903478] ? proc_fail_nth_write+0x9e/0x210 [ 1080.903507] ? find_held_lock+0x36/0x1c0 [ 1080.913248] ? ___might_sleep+0x1ed/0x300 [ 1080.913269] ? arch_local_save_flags+0x40/0x40 [ 1080.913292] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1080.921881] __should_failslab+0x124/0x180 [ 1080.940387] should_failslab+0x9/0x14 [ 1080.944212] __kmalloc+0x2d4/0x760 [ 1080.947783] ? strncpy_from_user+0x510/0x510 [ 1080.952223] ? fput+0x130/0x1a0 [ 1080.955558] ? do_syscall_64+0x9a/0x820 [ 1080.959580] ? __x64_sys_memfd_create+0x142/0x4f0 [ 1080.964445] ? do_syscall_64+0x9a/0x820 [ 1080.968445] __x64_sys_memfd_create+0x142/0x4f0 [ 1080.968465] ? memfd_fcntl+0x1230/0x1230 [ 1080.968494] do_syscall_64+0x1b9/0x820 [ 1080.981119] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1080.986525] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1080.991517] ? trace_hardirqs_on_caller+0x310/0x310 [ 1080.996591] ? prepare_exit_to_usermode+0x3b0/0x3b0 17:13:52 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1081.001637] ? recalc_sigpending_tsk+0x180/0x180 [ 1081.006431] ? kasan_check_write+0x14/0x20 [ 1081.010717] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1081.015625] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1081.020879] RIP: 0033:0x457579 [ 1081.024103] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1081.043040] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 17:13:52 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000003f0607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:52 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x11}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:52 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x500}, 0x0) [ 1081.043061] RAX: ffffffffffffffda RBX: 0000000020001140 RCX: 0000000000457579 [ 1081.043069] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc7c9 [ 1081.043079] RBP: 000000000072bf00 R08: 0000000000000000 R09: 00000000fbad8001 [ 1081.043089] R10: 0000000020001140 R11: 0000000000000246 R12: 00007f2b9b2d06d4 [ 1081.043099] R13: 00000000004c4a5c R14: 00000000004d7db8 R15: 0000000000000005 [ 1081.113574] input: syz0 as /devices/virtual/input/input142 [ 1081.126217] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:52 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000002010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:52 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000400", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1081.205024] input: syz0 as /devices/virtual/input/input143 17:13:52 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x3f, {0x0, 0xf91, 0x0, 0x0, 0x20000}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:52 executing program 2 (fault-call:2 fault-nth:1): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:52 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x3}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:52 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4800}, 0x0) 17:13:52 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000003010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:52 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1081.349027] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1081.443609] FAULT_INJECTION: forcing a failure. [ 1081.443609] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.474626] CPU: 0 PID: 4795 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1081.481895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1081.491288] Call Trace: [ 1081.491321] dump_stack+0x1c4/0x2b4 [ 1081.491349] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1081.491386] should_fail.cold.4+0xa/0x17 [ 1081.506888] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1081.512037] ? graph_lock+0x170/0x170 [ 1081.515889] ? debug_smp_processor_id+0x1c/0x20 [ 1081.520603] ? perf_trace_lock+0x14d/0x7a0 [ 1081.524881] ? lock_downgrade+0x900/0x900 [ 1081.529059] ? check_preemption_disabled+0x48/0x200 [ 1081.531516] input: syz0 as /devices/virtual/input/input144 [ 1081.534105] ? find_held_lock+0x36/0x1c0 17:13:52 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x200000000000000}, 0x0) [ 1081.534147] ? ___might_sleep+0x1ed/0x300 [ 1081.534165] ? expand_files.part.8+0x571/0x9a0 [ 1081.534182] ? arch_local_save_flags+0x40/0x40 [ 1081.534204] ? find_held_lock+0x36/0x1c0 [ 1081.543923] __should_failslab+0x124/0x180 [ 1081.543943] should_failslab+0x9/0x14 [ 1081.543961] kmem_cache_alloc+0x2be/0x730 [ 1081.543988] ? shmem_destroy_callback+0xc0/0xc0 [ 1081.544008] shmem_alloc_inode+0x1b/0x40 [ 1081.544028] alloc_inode+0x63/0x190 [ 1081.557379] new_inode_pseudo+0x71/0x1a0 [ 1081.557400] ? prune_icache_sb+0x1c0/0x1c0 [ 1081.565715] ? _raw_spin_unlock+0x2c/0x50 [ 1081.565743] new_inode+0x1c/0x40 [ 1081.565761] shmem_get_inode+0xf1/0x920 [ 1081.565783] ? shmem_encode_fh+0x340/0x340 [ 1081.565804] ? lock_downgrade+0x900/0x900 [ 1081.614338] ? lock_release+0x970/0x970 [ 1081.618343] ? arch_local_save_flags+0x40/0x40 [ 1081.622961] ? usercopy_warn+0x110/0x110 [ 1081.627068] __shmem_file_setup.part.45+0x83/0x2a0 [ 1081.632044] shmem_file_setup+0x65/0x90 [ 1081.636056] __x64_sys_memfd_create+0x2af/0x4f0 [ 1081.640761] ? memfd_fcntl+0x1230/0x1230 17:13:53 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x40030000000000}, 0x0) 17:13:53 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x23}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1081.644883] do_syscall_64+0x1b9/0x820 [ 1081.648800] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1081.654190] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1081.659151] ? trace_hardirqs_on_caller+0x310/0x310 [ 1081.659172] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1081.659189] ? recalc_sigpending_tsk+0x180/0x180 [ 1081.659205] ? kasan_check_write+0x14/0x20 [ 1081.659229] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1081.683160] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1081.683175] RIP: 0033:0x457579 17:13:53 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000004010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1081.683198] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1081.710556] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1081.710576] RAX: ffffffffffffffda RBX: 0000000020001140 RCX: 0000000000457579 [ 1081.710585] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc7c9 [ 1081.710594] RBP: 000000000072bf00 R08: 0000000000000000 R09: 00000000fbad8001 17:13:53 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000400607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1081.710604] R10: 0000000020001140 R11: 0000000000000246 R12: 00007f2b9b2d06d4 [ 1081.710614] R13: 00000000004c4a5c R14: 00000000004d7db8 R15: 0000000000000005 [ 1081.730825] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:53 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1081.804424] nla_parse: 13 callbacks suppressed [ 1081.804436] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:13:53 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000022f}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fchmodat(r1, &(0x7f00000000c0)='./file0\x00', 0x100) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) r3 = request_key(&(0x7f0000000140)='ceph\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='\vC\x00', 0xfffffffffffffffb) r4 = add_key(&(0x7f0000000200)='id_legacy\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)="c7b61782c8d08285c9eb0f33092315f394ef1c285251fb8e3e41c4582b0afe4c0299ab26651914c834d6e05aae64b3669d6d50576d5e4f94962bd348098b232e86025f2b0873998c73ea51de14c583f5a08854e2c2b55f623a78ab9b425bf49f7046dd3a4c810bc94ecc04e36c5986ce1e3a76295935cb83fecab9640bda0d7330c6601af0554e339aba21bb1bb7fc480173988a40504da64f20b35f799169da92a78cd15e14dfaa86e1a2d70e605ef020218ee5c8c0fd648c7b", 0xba, 0x0) r5 = add_key(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f00000003c0)="f4faad97817c93d86947510e093a97ce7a31a047bb1551d1f27e9eca2fbd4ae150d2fba5dbb693456fcecb88604f764b1b64e174bf4b24f654a5b918ae0cb8430e7538ebca459f731f9e00ed8eb247a8846bee876404f7b5d3924bf7f438915b8954d6f0e8e07911c465ca529c3644a9dedc1c1687b07fa8be364bbb63b00432c9c7d5a5fa45ff1a6f2c86d9d1fe2b76df28a0f54d10d888534534a778c8c168b82439f349e0d710fa61ba3f4d08e0ef9a0ac97f0c53bb", 0xb7, 0xfffffffffffffffa) keyctl$dh_compute(0x17, &(0x7f0000000480)={r3, r4, r5}, &(0x7f00000005c0)=""/159, 0x9f, &(0x7f0000000500)={&(0x7f00000004c0)={'michael_mic-generic\x00'}}) ioctl$EXT4_IOC_RESIZE_FS(r2, 0x40086610, &(0x7f0000000100)=0x7) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:53 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:53 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000005010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:53 executing program 2 (fault-call:2 fault-nth:2): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:53 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x1000000}, 0x0) 17:13:53 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x17}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1082.003527] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:53 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:53 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000006010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1082.069713] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1082.088637] FAULT_INJECTION: forcing a failure. [ 1082.088637] name failslab, interval 1, probability 0, space 0, times 0 [ 1082.110118] input: syz0 as /devices/virtual/input/input146 17:13:53 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf000000}, 0x0) [ 1082.181570] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1082.211640] CPU: 1 PID: 4839 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1082.218877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1082.228260] Call Trace: [ 1082.230897] dump_stack+0x1c4/0x2b4 [ 1082.234580] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1082.239815] ? find_held_lock+0x36/0x1c0 [ 1082.243935] should_fail.cold.4+0xa/0x17 [ 1082.248039] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1082.253178] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1082.259010] ? kasan_check_read+0x11/0x20 [ 1082.263207] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1082.268526] ? rcu_bh_qs+0xc0/0xc0 [ 1082.268558] ? rcu_bh_qs+0xc0/0xc0 [ 1082.268576] ? unwind_dump+0x190/0x190 [ 1082.268606] ? is_bpf_text_address+0xd3/0x170 [ 1082.268628] ? kernel_text_address+0x79/0xf0 [ 1082.288559] ? __kernel_text_address+0xd/0x40 [ 1082.293108] ? unwind_get_return_address+0x61/0xa0 [ 1082.293132] ? __save_stack_trace+0x8d/0xf0 [ 1082.293164] ? ___might_sleep+0x1ed/0x300 [ 1082.293182] ? arch_local_save_flags+0x40/0x40 [ 1082.293199] ? save_stack+0x43/0xd0 [ 1082.293211] ? kasan_kmalloc+0xc7/0xe0 [ 1082.293224] ? kasan_slab_alloc+0x12/0x20 [ 1082.293246] ? kmem_cache_alloc+0x12e/0x730 [ 1082.311265] ? shmem_alloc_inode+0x1b/0x40 [ 1082.311293] __should_failslab+0x124/0x180 [ 1082.311311] should_failslab+0x9/0x14 [ 1082.311339] kmem_cache_alloc+0x2be/0x730 [ 1082.344333] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1082.349387] ? map_id_range_down+0x1ee/0x430 [ 1082.349419] new_inode_smack+0x20/0xb0 [ 1082.349440] smack_inode_alloc_security+0x92/0x100 [ 1082.349463] security_inode_alloc+0x73/0xd0 [ 1082.367232] inode_init_always+0x68f/0xd80 [ 1082.371508] ? __address_space_init_once+0x240/0x240 [ 1082.376658] ? rcu_pm_notify+0xc0/0xc0 [ 1082.376688] ? rcu_read_lock_sched_held+0x108/0x120 [ 1082.376706] ? kmem_cache_alloc+0x33a/0x730 [ 1082.376728] ? shmem_alloc_inode+0x1b/0x40 [ 1082.376745] ? shmem_destroy_callback+0xc0/0xc0 [ 1082.376768] alloc_inode+0x80/0x190 [ 1082.376786] new_inode_pseudo+0x71/0x1a0 [ 1082.376807] ? prune_icache_sb+0x1c0/0x1c0 [ 1082.398997] ? _raw_spin_unlock+0x2c/0x50 [ 1082.399022] new_inode+0x1c/0x40 [ 1082.399042] shmem_get_inode+0xf1/0x920 [ 1082.399065] ? shmem_encode_fh+0x340/0x340 [ 1082.415184] ? lock_downgrade+0x900/0x900 [ 1082.415211] ? lock_release+0x970/0x970 [ 1082.415227] ? arch_local_save_flags+0x40/0x40 [ 1082.415246] ? usercopy_warn+0x110/0x110 [ 1082.415277] __shmem_file_setup.part.45+0x83/0x2a0 [ 1082.415302] shmem_file_setup+0x65/0x90 17:13:53 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000048010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:53 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1082.439970] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1082.443689] __x64_sys_memfd_create+0x2af/0x4f0 [ 1082.443709] ? memfd_fcntl+0x1230/0x1230 [ 1082.443741] do_syscall_64+0x1b9/0x820 [ 1082.443759] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1082.443778] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1082.443798] ? trace_hardirqs_on_caller+0x310/0x310 [ 1082.443816] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1082.443840] ? recalc_sigpending_tsk+0x180/0x180 17:13:53 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2e}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1082.449024] input: syz0 as /devices/virtual/input/input147 [ 1082.452797] ? kasan_check_write+0x14/0x20 [ 1082.452827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1082.452854] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1082.452868] RIP: 0033:0x457579 [ 1082.452886] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1082.452903] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1082.452920] RAX: ffffffffffffffda RBX: 0000000020001140 RCX: 0000000000457579 [ 1082.452937] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc7c9 [ 1082.563391] RBP: 000000000072bf00 R08: 0000000000000000 R09: 00000000fbad8001 [ 1082.570709] R10: 0000000020001140 R11: 0000000000000246 R12: 00007f2b9b2d06d4 [ 1082.578007] R13: 00000000004c4a5c R14: 00000000004d7db8 R15: 0000000000000005 17:13:54 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x400000, 0x0) write$FUSE_IOCTL(r0, &(0x7f0000000300)={0x20, 0x0, 0x5, {0x7f, 0x0, 0x8, 0x7}}, 0x20) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000100)={0x8, 0x0, {0x53, 0xad71, 0x10000, {0x1, 0x7ff}, {0x9, 0x6}, @period={0x5b, 0x2eb, 0x5, 0x3ef, 0x2, {0x4, 0x9, 0x1, 0x40}, 0x3, &(0x7f0000000080)=[0x0, 0x3, 0x4]}}, {0x55, 0x3, 0x6, {0x10000, 0x80}, {0x3}, @rumble={0x8001}}}) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x1000000000802, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80040}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="80000000", @ANYRES16=r2, @ANYBLOB="080028bd7000ffdbdf250900000008000500060000001c00010008000800fcff0000080008000100008008000100000000002c00020008000b0002000000080007000180000008000b00020000000800070008000000080002004e20000014000200080002004e21000008000800030000000800050001000080"], 0x80}, 0x1, 0x0, 0x0, 0x4000080}, 0x40880) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000000)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = open(&(0x7f00000004c0)='./file0\x00', 0x14104a, 0x0) write$P9_RSYMLINK(r3, &(0x7f0000000140)={0x29a}, 0x14) r4 = inotify_init() inotify_add_watch(r4, &(0x7f0000000100)='.\x00', 0x40224000000b) sendfile(r3, r3, &(0x7f0000000080), 0x2000000800004c36) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000380)={{0x0, 0x800000000000000}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:13:54 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000080607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:54 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000003", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:54 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x10}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:54 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6}, 0x0) 17:13:54 executing program 2 (fault-call:2 fault-nth:3): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1082.757473] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1082.764084] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:13:54 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "6263736630000000000000000000feff", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:54 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x22}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1082.806600] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1082.816391] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1082.837734] FAULT_INJECTION: forcing a failure. [ 1082.837734] name failslab, interval 1, probability 0, space 0, times 0 [ 1082.880483] CPU: 1 PID: 4881 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1082.887747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1082.887756] Call Trace: [ 1082.887785] dump_stack+0x1c4/0x2b4 [ 1082.887812] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1082.887847] should_fail.cold.4+0xa/0x17 [ 1082.887873] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1082.887893] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1082.887915] ? check_preemption_disabled+0x48/0x200 17:13:54 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xfffffff0}, 0x0) [ 1082.887942] ? graph_lock+0x170/0x170 [ 1082.887964] ? perf_trace_lock+0x14d/0x7a0 [ 1082.936578] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1082.942156] ? zap_class+0x640/0x640 [ 1082.945920] ? find_held_lock+0x36/0x1c0 [ 1082.950027] ? ___might_sleep+0x1ed/0x300 [ 1082.954212] ? arch_local_save_flags+0x40/0x40 [ 1082.958849] __should_failslab+0x124/0x180 [ 1082.963122] should_failslab+0x9/0x14 [ 1082.966961] kmem_cache_alloc+0x2be/0x730 [ 1082.971148] ? mpol_shared_policy_init+0x235/0x650 [ 1082.976105] ? current_time+0x72/0x1b0 17:13:54 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x29}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1082.980036] __d_alloc+0xc8/0xcc0 [ 1082.983530] ? shrink_dcache_for_umount+0x2b0/0x2b0 [ 1082.988605] ? ktime_get_coarse_real_ts64+0x243/0x3b0 [ 1082.993834] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1082.999415] ? timespec64_trunc+0xea/0x180 [ 1083.003694] ? inode_init_owner+0x340/0x340 [ 1083.003715] ? _raw_spin_unlock+0x2c/0x50 [ 1083.003737] ? current_time+0x131/0x1b0 [ 1083.003757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1083.003776] ? __lockdep_init_map+0x105/0x590 [ 1083.003798] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1083.003822] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 1083.012346] d_alloc_pseudo+0x1d/0x30 [ 1083.012511] alloc_file_pseudo+0x158/0x3f0 [ 1083.046857] ? alloc_file+0x4d0/0x4d0 [ 1083.050954] ? usercopy_warn+0x110/0x110 [ 1083.055378] ? kasan_check_write+0x14/0x20 [ 1083.059913] __shmem_file_setup.part.45+0x110/0x2a0 [ 1083.065143] shmem_file_setup+0x65/0x90 [ 1083.069583] __x64_sys_memfd_create+0x2af/0x4f0 [ 1083.074604] ? memfd_fcntl+0x1230/0x1230 [ 1083.078821] do_syscall_64+0x1b9/0x820 [ 1083.083005] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1083.088882] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1083.094439] ? trace_hardirqs_on_caller+0x310/0x310 [ 1083.099750] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1083.104930] ? recalc_sigpending_tsk+0x180/0x180 [ 1083.104949] ? kasan_check_write+0x14/0x20 [ 1083.104976] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1083.105004] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1083.105018] RIP: 0033:0x457579 17:13:54 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000250607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1083.105035] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1083.105044] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1083.105061] RAX: ffffffffffffffda RBX: 0000000020001140 RCX: 0000000000457579 [ 1083.105070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc7c9 [ 1083.105088] RBP: 000000000072bf00 R08: 0000000000000000 R09: 00000000fbad8001 17:13:54 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x8}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1083.154007] R10: 0000000020001140 R11: 0000000000000246 R12: 00007f2b9b2d06d4 [ 1083.154018] R13: 00000000004c4a5c R14: 00000000004d7db8 R15: 0000000000000005 [ 1083.204485] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1083.236567] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1083.293422] input: syz0 as /devices/virtual/input/input148 [ 1083.433812] input: syz0 as /devices/virtual/input/input149 17:13:54 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0xfffffffffffffffd, 0x0) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000040)=0xfffffffffffff924, 0xf06, 0x2) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, &(0x7f0000000080)={0xf, 0x9, 0x4}) 17:13:54 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000300", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:54 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000005f0607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:54 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0xf}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:54 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4800000000000000}, 0x0) 17:13:54 executing program 2 (fault-call:2 fault-nth:4): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1083.570701] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1083.580971] FAULT_INJECTION: forcing a failure. [ 1083.580971] name failslab, interval 1, probability 0, space 0, times 0 [ 1083.583159] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1083.598176] CPU: 1 PID: 4915 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1083.613767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1083.623139] Call Trace: [ 1083.625767] dump_stack+0x1c4/0x2b4 [ 1083.629434] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1083.634674] should_fail.cold.4+0xa/0x17 [ 1083.638769] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1083.643896] ? perf_trace_lock+0x14d/0x7a0 [ 1083.648156] ? kasan_kmalloc+0xc7/0xe0 [ 1083.652060] ? kasan_slab_alloc+0x12/0x20 [ 1083.656242] ? graph_lock+0x170/0x170 [ 1083.660062] ? zap_class+0x640/0x640 [ 1083.663821] ? graph_lock+0x170/0x170 17:13:55 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xffffffff00000000}, 0x0) 17:13:55 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000000f0007031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1083.667661] ? find_held_lock+0x36/0x1c0 [ 1083.671768] ? ___might_sleep+0x1ed/0x300 [ 1083.675952] ? arch_local_save_flags+0x40/0x40 [ 1083.680610] ? lock_downgrade+0x900/0x900 [ 1083.684795] __should_failslab+0x124/0x180 [ 1083.689059] should_failslab+0x9/0x14 [ 1083.692887] kmem_cache_alloc+0x2be/0x730 [ 1083.697092] ? kasan_check_write+0x14/0x20 [ 1083.701382] __alloc_file+0xa8/0x470 [ 1083.705148] ? file_free_rcu+0xd0/0xd0 [ 1083.709076] ? d_instantiate+0x79/0xa0 [ 1083.711174] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1083.713019] ? lock_downgrade+0x900/0x900 [ 1083.713045] ? kasan_check_read+0x11/0x20 [ 1083.713062] ? do_raw_spin_unlock+0xa7/0x2f0 [ 1083.713080] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 1083.713101] alloc_empty_file+0x72/0x170 [ 1083.713120] alloc_file+0x5e/0x4d0 [ 1083.713142] ? _raw_spin_unlock+0x2c/0x50 [ 1083.725817] alloc_file_pseudo+0x261/0x3f0 [ 1083.734387] ? alloc_file+0x4d0/0x4d0 [ 1083.734409] ? usercopy_warn+0x110/0x110 [ 1083.734427] ? kasan_check_write+0x14/0x20 17:13:55 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000100007031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1083.734458] __shmem_file_setup.part.45+0x110/0x2a0 [ 1083.734481] shmem_file_setup+0x65/0x90 [ 1083.734506] __x64_sys_memfd_create+0x2af/0x4f0 [ 1083.739966] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1083.743204] ? memfd_fcntl+0x1230/0x1230 [ 1083.743237] do_syscall_64+0x1b9/0x820 [ 1083.743254] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1083.743276] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1083.763090] ? trace_hardirqs_on_caller+0x310/0x310 [ 1083.763111] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1083.763128] ? recalc_sigpending_tsk+0x180/0x180 [ 1083.763144] ? kasan_check_write+0x14/0x20 [ 1083.763175] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1083.776441] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1083.817733] RIP: 0033:0x457579 [ 1083.817751] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1083.817761] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 17:13:55 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:55 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x16) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/schedule_icmp\x00', 0x2, 0x0) ioctl$TIOCGETD(r1, 0x5424, &(0x7f00000000c0)) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:55 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x16}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:55 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x82110000}, 0x0) [ 1083.826785] RAX: ffffffffffffffda RBX: 0000000020001140 RCX: 0000000000457579 [ 1083.826796] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc7c9 [ 1083.826805] RBP: 000000000072bf00 R08: 0000000000000000 R09: 00000000fbad8001 [ 1083.826814] R10: 0000000020001140 R11: 0000000000000246 R12: 00007f2b9b2d06d4 [ 1083.826823] R13: 00000000004c4a5c R14: 00000000004d7db8 R15: 0000000000000005 [ 1083.898797] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1083.950403] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1083.985813] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:13:55 executing program 2 (fault-call:2 fault-nth:5): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:55 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x6}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:55 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1084.027522] input: syz0 as /devices/virtual/input/input150 [ 1084.084821] input: syz0 as /devices/virtual/input/input151 17:13:55 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf00}, 0x0) 17:13:55 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000000e0607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1084.141314] FAULT_INJECTION: forcing a failure. [ 1084.141314] name failslab, interval 1, probability 0, space 0, times 0 17:13:55 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x83}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1084.172692] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1084.211305] CPU: 1 PID: 4946 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1084.218572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1084.228041] Call Trace: [ 1084.228075] dump_stack+0x1c4/0x2b4 [ 1084.228100] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1084.228142] should_fail.cold.4+0xa/0x17 [ 1084.228169] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1084.228198] ? graph_lock+0x170/0x170 [ 1084.252610] ? current_time+0x72/0x1b0 [ 1084.256531] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.262140] ? check_preemption_disabled+0x48/0x200 [ 1084.267196] ? debug_smp_processor_id+0x1c/0x20 [ 1084.267213] ? perf_trace_lock+0x14d/0x7a0 [ 1084.267232] ? find_held_lock+0x36/0x1c0 [ 1084.267271] ? ___might_sleep+0x1ed/0x300 [ 1084.267291] ? arch_local_save_flags+0x40/0x40 [ 1084.267310] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.267337] __should_failslab+0x124/0x180 [ 1084.294641] should_failslab+0x9/0x14 [ 1084.294662] kmem_cache_alloc+0x2be/0x730 [ 1084.294683] ? do_sys_ftruncate+0x428/0x550 [ 1084.307018] ? lock_downgrade+0x900/0x900 [ 1084.315533] getname_flags+0xd0/0x5a0 [ 1084.315567] getname+0x19/0x20 [ 1084.315582] do_sys_open+0x383/0x700 [ 1084.315601] ? filp_open+0x80/0x80 17:13:55 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4c00}, 0x0) 17:13:55 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1084.315621] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1084.315636] ? do_sys_ftruncate+0x449/0x550 [ 1084.315657] __x64_sys_open+0x7e/0xc0 [ 1084.326865] do_syscall_64+0x1b9/0x820 [ 1084.335882] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1084.335907] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1084.335926] ? trace_hardirqs_on_caller+0x310/0x310 [ 1084.335941] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1084.335957] ? recalc_sigpending_tsk+0x180/0x180 [ 1084.335971] ? kasan_check_write+0x14/0x20 [ 1084.336000] ? trace_hardirqs_off_thunk+0x1a/0x1c 17:13:55 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1084.382851] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1084.388094] RIP: 0033:0x4111d1 [ 1084.391318] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1084.410278] RSP: 002b:00007f2b9b2cfa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 1084.418008] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004111d1 [ 1084.418019] RDX: 00007f2b9b2cfafa RSI: 0000000000000002 RDI: 00007f2b9b2cfaf0 [ 1084.418032] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1084.418041] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000006 [ 1084.418050] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1084.481723] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:55 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x77d04a1f) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:55 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0xd}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:55 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010507031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:55 executing program 2 (fault-call:2 fault-nth:6): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:55 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:55 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x2}, 0x0) [ 1084.665225] input: syz0 as /devices/virtual/input/input152 [ 1084.676943] FAULT_INJECTION: forcing a failure. [ 1084.676943] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1084.688811] CPU: 1 PID: 4984 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1084.691897] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1084.696018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1084.696026] Call Trace: [ 1084.696055] dump_stack+0x1c4/0x2b4 [ 1084.696079] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1084.696114] should_fail.cold.4+0xa/0x17 [ 1084.696139] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1084.716419] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.716440] ? check_preemption_disabled+0x48/0x200 [ 1084.716467] ? debug_smp_processor_id+0x1c/0x20 [ 1084.729375] ? mark_held_locks+0x130/0x130 [ 1084.729392] ? zap_class+0x640/0x640 [ 1084.729413] ? smk_access+0x53b/0x700 [ 1084.754074] ? print_usage_bug+0xc0/0xc0 [ 1084.754109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.754126] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.754143] ? check_preemption_disabled+0x48/0x200 [ 1084.754165] ? debug_smp_processor_id+0x1c/0x20 [ 1084.754179] ? perf_trace_lock+0x14d/0x7a0 [ 1084.754197] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.754218] ? should_fail+0x22d/0xd01 [ 1084.777013] ? zap_class+0x640/0x640 [ 1084.777035] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1084.777061] __alloc_pages_nodemask+0x34b/0xde0 [ 1084.791051] ? current_time+0x72/0x1b0 [ 1084.800495] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1084.800517] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1084.800541] ? debug_smp_processor_id+0x1c/0x20 [ 1084.814068] ? perf_trace_lock+0x14d/0x7a0 [ 1084.814090] ? find_held_lock+0x36/0x1c0 [ 1084.814134] ? ___might_sleep+0x1ed/0x300 [ 1084.814155] ? trace_hardirqs_off+0xb8/0x310 [ 1084.814177] cache_grow_begin+0x91/0x8c0 [ 1084.828654] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1084.838094] ? check_preemption_disabled+0x48/0x200 17:13:56 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000007802", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:56 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x15}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:56 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000015f07031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1084.838122] kmem_cache_alloc+0x665/0x730 [ 1084.838142] ? do_sys_ftruncate+0x428/0x550 [ 1084.846372] getname_flags+0xd0/0x5a0 [ 1084.846401] getname+0x19/0x20 [ 1084.846418] do_sys_open+0x383/0x700 [ 1084.846437] ? filp_open+0x80/0x80 [ 1084.846457] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1084.846473] ? do_sys_ftruncate+0x449/0x550 [ 1084.846494] __x64_sys_open+0x7e/0xc0 [ 1084.846514] do_syscall_64+0x1b9/0x820 [ 1084.846538] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1084.846569] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1084.846587] ? trace_hardirqs_on_caller+0x310/0x310 [ 1084.846603] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1084.846627] ? recalc_sigpending_tsk+0x180/0x180 [ 1084.846643] ? kasan_check_write+0x14/0x20 [ 1084.846667] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1084.855164] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1084.855177] RIP: 0033:0x4111d1 [ 1084.855195] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1084.855203] RSP: 002b:00007f2b9b2cfa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 1084.855220] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004111d1 [ 1084.855235] RDX: 00007f2b9b2cfafa RSI: 0000000000000002 RDI: 00007f2b9b2cfaf0 [ 1084.860932] input: syz0 as /devices/virtual/input/input153 [ 1084.865802] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1084.865812] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000006 17:13:56 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x18}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:56 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7400000000000000}, 0x0) [ 1084.865827] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1084.914046] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1085.051459] gfs2: not a GFS2 filesystem 17:13:56 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010907031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:56 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000140)={0x400000000002f, {0x0, 0x0, 0x7, 0x0, 0x7ff}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x13) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x200, 0x0) finit_module(r0, &(0x7f0000000040)='\x00', 0x3) ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f00000000c0)={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x11}}, {0x306, @remote}, 0x0, {0x2, 0x4e24, @loopback}, 'team_slave_0\x00'}) 17:13:56 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:56 executing program 2 (fault-call:2 fault-nth:7): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:56 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x19}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:56 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xffffff7f00000000}, 0x0) [ 1085.245706] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:56 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010b07031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:56 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:56 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2a}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:56 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x400000000000000}, 0x0) 17:13:56 executing program 0: r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, &(0x7f00000000c0)=0x10) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x3}, 0xfffffffffffffffd) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={r1, @in6={{0xa, 0x4e22, 0x8, @remote, 0x9}}, 0x100000001, 0x8, 0xb85, 0x8, 0x1}, &(0x7f0000000200)=0x98) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r2, 0x5501) [ 1085.412604] FAULT_INJECTION: forcing a failure. [ 1085.412604] name failslab, interval 1, probability 0, space 0, times 0 [ 1085.431799] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1085.440256] CPU: 1 PID: 5028 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 17:13:56 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x2d}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:56 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1085.455911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1085.465290] Call Trace: [ 1085.467918] dump_stack+0x1c4/0x2b4 [ 1085.471608] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1085.476876] should_fail.cold.4+0xa/0x17 [ 1085.480980] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1085.486115] ? graph_lock+0x170/0x170 [ 1085.489963] ? graph_lock+0x170/0x170 [ 1085.493800] ? __lock_acquire+0x7ec/0x4ec0 [ 1085.498076] ? find_held_lock+0x36/0x1c0 [ 1085.502194] ? ___might_sleep+0x1ed/0x300 [ 1085.506403] ? arch_local_save_flags+0x40/0x40 [ 1085.511034] __should_failslab+0x124/0x180 [ 1085.515321] should_failslab+0x9/0x14 [ 1085.519184] kmem_cache_alloc+0x2be/0x730 [ 1085.523364] ? graph_lock+0x170/0x170 [ 1085.523382] ? mark_held_locks+0x130/0x130 [ 1085.523404] __alloc_file+0xa8/0x470 [ 1085.523420] ? file_free_rcu+0xd0/0xd0 [ 1085.523440] ? find_held_lock+0x36/0x1c0 [ 1085.535275] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1085.535295] ? check_preemption_disabled+0x48/0x200 [ 1085.535310] ? lock_downgrade+0x900/0x900 [ 1085.535331] alloc_empty_file+0x72/0x170 17:13:56 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x25}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1085.535362] path_openat+0x170/0x5160 [ 1085.535379] ? zap_class+0x640/0x640 [ 1085.535403] ? __lock_is_held+0xb5/0x140 [ 1085.535422] ? graph_lock+0x170/0x170 [ 1085.576286] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1085.577585] ? path_lookupat.isra.43+0xc00/0xc00 [ 1085.577603] ? unwind_get_return_address+0x61/0xa0 [ 1085.577624] ? expand_files.part.8+0x571/0x9a0 [ 1085.577650] ? find_held_lock+0x36/0x1c0 [ 1085.604330] ? __alloc_fd+0x347/0x6e0 [ 1085.608181] ? lock_downgrade+0x900/0x900 17:13:56 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000200", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1085.612364] ? getname+0x19/0x20 [ 1085.615764] ? kasan_check_read+0x11/0x20 [ 1085.619949] ? do_raw_spin_unlock+0xa7/0x2f0 [ 1085.624419] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 1085.629029] ? __lock_is_held+0xb5/0x140 [ 1085.633134] ? _raw_spin_unlock+0x2c/0x50 [ 1085.637321] ? __alloc_fd+0x347/0x6e0 [ 1085.641159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1085.646743] do_filp_open+0x255/0x380 [ 1085.650591] ? may_open_dev+0x100/0x100 [ 1085.654625] ? get_unused_fd_flags+0x122/0x1a0 [ 1085.659233] ? __alloc_fd+0x6e0/0x6e0 [ 1085.659268] do_sys_open+0x568/0x700 [ 1085.659289] ? filp_open+0x80/0x80 [ 1085.659315] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1085.666841] ? do_sys_ftruncate+0x449/0x550 [ 1085.666865] __x64_sys_open+0x7e/0xc0 [ 1085.666888] do_syscall_64+0x1b9/0x820 [ 1085.666906] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1085.666927] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1085.698299] ? trace_hardirqs_on_caller+0x310/0x310 [ 1085.703358] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1085.708411] ? recalc_sigpending_tsk+0x180/0x180 [ 1085.713205] ? kasan_check_write+0x14/0x20 [ 1085.717477] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1085.722368] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1085.726845] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1085.727595] RIP: 0033:0x4111d1 [ 1085.727614] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1085.727624] RSP: 002b:00007f2b9b2aea80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 1085.727642] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004111d1 [ 1085.727652] RDX: 00007f2b9b2aeafa RSI: 0000000000000002 RDI: 00007f2b9b2aeaf0 [ 1085.727668] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1085.758120] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 1085.758131] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000003 [ 1085.814488] input: syz0 as /devices/virtual/input/input156 [ 1085.870709] input: syz0 as /devices/virtual/input/input157 17:13:57 executing program 2 (fault-call:2 fault-nth:8): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:57 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x28}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:57 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000500", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:57 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010604031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:57 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6000000}, 0x0) [ 1085.988231] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1086.020328] FAULT_INJECTION: forcing a failure. [ 1086.020328] name failslab, interval 1, probability 0, space 0, times 0 [ 1086.033833] CPU: 1 PID: 5064 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1086.041060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1086.050435] Call Trace: [ 1086.053069] dump_stack+0x1c4/0x2b4 [ 1086.056737] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1086.061980] should_fail.cold.4+0xa/0x17 [ 1086.066077] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1086.066095] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.066113] ? zap_class+0x640/0x640 [ 1086.066128] ? graph_lock+0x170/0x170 [ 1086.066146] ? check_preemption_disabled+0x48/0x200 [ 1086.066163] ? graph_lock+0x170/0x170 [ 1086.066184] ? debug_smp_processor_id+0x1c/0x20 [ 1086.097881] ? perf_trace_lock+0x14d/0x7a0 [ 1086.102164] ? find_held_lock+0x36/0x1c0 [ 1086.106265] ? __lock_is_held+0xb5/0x140 [ 1086.110391] ? ___might_sleep+0x1ed/0x300 [ 1086.114581] ? arch_local_save_flags+0x40/0x40 [ 1086.119222] __should_failslab+0x124/0x180 [ 1086.123472] should_failslab+0x9/0x14 [ 1086.127277] kmem_cache_alloc_trace+0x2d7/0x750 [ 1086.131952] ? check_preemption_disabled+0x48/0x200 [ 1086.136984] __kthread_create_on_node+0x137/0x540 [ 1086.141840] ? loop_get_status64+0x140/0x140 [ 1086.146274] ? __kthread_parkme+0x1a0/0x1a0 [ 1086.150621] ? __lockdep_init_map+0x105/0x590 [ 1086.155122] ? __lockdep_init_map+0x105/0x590 [ 1086.159631] ? loop_get_status64+0x140/0x140 [ 1086.164046] kthread_create_on_node+0xb1/0xe0 [ 1086.168557] ? __kthread_create_on_node+0x540/0x540 [ 1086.173591] ? graph_lock+0x170/0x170 [ 1086.177405] lo_ioctl+0x7f6/0x1d80 [ 1086.180962] ? lo_rw_aio_complete+0x470/0x470 [ 1086.185466] blkdev_ioctl+0x9ac/0x2010 [ 1086.189396] ? blkpg_ioctl+0xc10/0xc10 [ 1086.193284] ? lock_downgrade+0x900/0x900 [ 1086.197453] ? check_preemption_disabled+0x48/0x200 [ 1086.202499] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1086.208301] ? kasan_check_read+0x11/0x20 [ 1086.212459] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1086.217746] ? rcu_bh_qs+0xc0/0xc0 [ 1086.221307] ? __fget+0x4d1/0x740 [ 1086.224766] ? ksys_dup3+0x680/0x680 [ 1086.228486] ? kasan_check_write+0x14/0x20 [ 1086.232749] block_ioctl+0xee/0x130 [ 1086.236412] ? blkdev_fallocate+0x400/0x400 [ 1086.240747] do_vfs_ioctl+0x1de/0x1720 [ 1086.244637] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1086.250178] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1086.255463] ? ioctl_preallocate+0x300/0x300 [ 1086.259889] ? memset+0x31/0x40 [ 1086.263172] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.268738] ? smack_file_ioctl+0x210/0x3c0 [ 1086.273063] ? fget_raw+0x20/0x20 [ 1086.276520] ? smack_file_lock+0x2e0/0x2e0 [ 1086.280769] ? rcu_read_lock_sched_held+0x108/0x120 [ 1086.285792] ? do_syscall_64+0x9a/0x820 [ 1086.289766] ? do_syscall_64+0x9a/0x820 [ 1086.293757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.299308] ? security_file_ioctl+0x94/0xc0 [ 1086.303926] ksys_ioctl+0xa9/0xd0 [ 1086.307391] __x64_sys_ioctl+0x73/0xb0 [ 1086.311291] do_syscall_64+0x1b9/0x820 [ 1086.315180] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1086.320978] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1086.325920] ? trace_hardirqs_on_caller+0x310/0x310 [ 1086.331420] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1086.336439] ? recalc_sigpending_tsk+0x180/0x180 [ 1086.341215] ? kasan_check_write+0x14/0x20 [ 1086.345459] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1086.350365] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1086.355585] RIP: 0033:0x4573e7 [ 1086.358790] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1086.377692] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1086.385430] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 17:13:57 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="2400000001065f031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:57 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:57 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:57 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x400300}, 0x0) 17:13:57 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x7}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1086.392834] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1086.400336] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1086.407611] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1086.414902] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:13:57 executing program 2 (fault-call:2 fault-nth:9): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:57 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607021dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:57 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4c00000000000000}, 0x0) 17:13:57 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1086.472459] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:57 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x14}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1086.655486] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1086.656905] FAULT_INJECTION: forcing a failure. [ 1086.656905] name failslab, interval 1, probability 0, space 0, times 0 [ 1086.716341] CPU: 0 PID: 5086 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1086.723592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1086.732970] Call Trace: [ 1086.735601] dump_stack+0x1c4/0x2b4 [ 1086.739286] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1086.744532] should_fail.cold.4+0xa/0x17 [ 1086.748649] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1086.753814] ? print_usage_bug+0xc0/0xc0 [ 1086.753831] ? graph_lock+0x170/0x170 [ 1086.753848] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.753876] ? check_preemption_disabled+0x48/0x200 [ 1086.767342] ? pick_next_entity+0x197/0x390 [ 1086.776733] ? graph_lock+0x170/0x170 [ 1086.776753] ? print_usage_bug+0xc0/0xc0 [ 1086.776768] ? perf_trace_lock+0x14d/0x7a0 [ 1086.776791] ? find_held_lock+0x36/0x1c0 [ 1086.792989] ? __lock_is_held+0xb5/0x140 [ 1086.797061] input: syz0 as /devices/virtual/input/input158 [ 1086.797098] ? ___might_sleep+0x1ed/0x300 [ 1086.806899] ? arch_local_save_flags+0x40/0x40 [ 1086.811577] __should_failslab+0x124/0x180 [ 1086.815837] should_failslab+0x9/0x14 [ 1086.815864] kmem_cache_alloc+0x2be/0x730 [ 1086.815894] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1086.823862] __kernfs_new_node+0x127/0x8d0 [ 1086.823886] ? debug_smp_processor_id+0x1c/0x20 [ 1086.823904] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1086.823925] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.823952] ? perf_trace_lock+0x14d/0x7a0 [ 1086.823972] ? graph_lock+0x170/0x170 [ 1086.833242] ? zap_class+0x640/0x640 [ 1086.833258] ? graph_lock+0x170/0x170 [ 1086.833290] ? find_held_lock+0x36/0x1c0 [ 1086.833319] kernfs_new_node+0x95/0x120 [ 1086.833341] kernfs_create_dir_ns+0x4d/0x160 [ 1086.833370] internal_create_group+0x5fc/0xd80 [ 1086.852598] ? remove_files.isra.1+0x190/0x190 [ 1086.852614] ? up_write+0x7b/0x220 [ 1086.852632] ? up_read+0x110/0x110 [ 1086.872023] ? down_read+0x1d0/0x1d0 [ 1086.872063] sysfs_create_group+0x1f/0x30 [ 1086.872084] lo_ioctl+0x1310/0x1d80 [ 1086.872110] ? lo_rw_aio_complete+0x470/0x470 [ 1086.908833] blkdev_ioctl+0x9ac/0x2010 [ 1086.912766] ? blkpg_ioctl+0xc10/0xc10 [ 1086.916696] ? lock_downgrade+0x900/0x900 [ 1086.920901] ? check_preemption_disabled+0x48/0x200 [ 1086.925953] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1086.931780] ? kasan_check_read+0x11/0x20 [ 1086.936019] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1086.941328] ? rcu_bh_qs+0xc0/0xc0 [ 1086.944925] ? __fget+0x4d1/0x740 [ 1086.948420] ? ksys_dup3+0x680/0x680 [ 1086.952161] ? kasan_check_write+0x14/0x20 [ 1086.956436] block_ioctl+0xee/0x130 [ 1086.960088] ? blkdev_fallocate+0x400/0x400 [ 1086.964428] do_vfs_ioctl+0x1de/0x1720 [ 1086.968339] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1086.968361] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1086.979206] ? ioctl_preallocate+0x300/0x300 [ 1086.983644] ? memset+0x31/0x40 [ 1086.986948] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.986968] ? smack_file_ioctl+0x210/0x3c0 [ 1086.986983] ? fget_raw+0x20/0x20 [ 1086.987002] ? smack_file_lock+0x2e0/0x2e0 [ 1086.987018] ? rcu_read_lock_sched_held+0x108/0x120 [ 1086.987046] ? do_syscall_64+0x9a/0x820 [ 1086.996921] ? do_syscall_64+0x9a/0x820 17:13:58 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000007ff", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:58 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x3000000}, 0x0) 17:13:58 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607041dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1086.996943] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1086.996961] ? security_file_ioctl+0x94/0xc0 [ 1086.996985] ksys_ioctl+0xa9/0xd0 [ 1086.997006] __x64_sys_ioctl+0x73/0xb0 [ 1086.997026] do_syscall_64+0x1b9/0x820 [ 1087.038894] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1087.044297] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1087.049260] ? trace_hardirqs_on_caller+0x310/0x310 [ 1087.054304] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1087.054320] ? recalc_sigpending_tsk+0x180/0x180 [ 1087.054335] ? kasan_check_write+0x14/0x20 [ 1087.054359] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1087.054384] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1087.078437] RIP: 0033:0x4573e7 [ 1087.081652] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1087.100581] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1087.100600] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1087.100608] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1087.100616] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1087.100625] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1087.100634] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1087.146676] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1087.192739] gfs2: not a GFS2 filesystem [ 1087.218655] input: syz0 as /devices/virtual/input/input159 17:13:58 executing program 0: r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1f, 0x80) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f00000000c0), &(0x7f0000000140)=0x68) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:13:58 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="240000000106075f1dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:58 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7}, 0x0) 17:13:58 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x2c8}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:58 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000600", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:58 executing program 2 (fault-call:2 fault-nth:10): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1087.383112] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1087.388604] nla_parse: 18 callbacks suppressed [ 1087.388615] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1087.412950] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1087.429647] FAULT_INJECTION: forcing a failure. 17:13:58 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x100000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1087.429647] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.458062] input: syz0 as /devices/virtual/input/input160 [ 1087.470315] CPU: 1 PID: 5125 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1087.477570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1087.477579] Call Trace: [ 1087.477611] dump_stack+0x1c4/0x2b4 [ 1087.477637] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1087.477671] should_fail.cold.4+0xa/0x17 [ 1087.477696] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1087.477722] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1087.513271] ? graph_lock+0x170/0x170 [ 1087.517114] ? debug_smp_processor_id+0x1c/0x20 [ 1087.521814] ? graph_lock+0x170/0x170 [ 1087.525645] ? lock_release+0x970/0x970 [ 1087.529656] ? find_held_lock+0x36/0x1c0 [ 1087.533755] ? __lock_is_held+0xb5/0x140 [ 1087.537858] ? ___might_sleep+0x1ed/0x300 [ 1087.537879] ? arch_local_save_flags+0x40/0x40 [ 1087.537897] ? find_held_lock+0x36/0x1c0 [ 1087.537925] __should_failslab+0x124/0x180 [ 1087.537951] should_failslab+0x9/0x14 [ 1087.546710] kmem_cache_alloc+0x2be/0x730 [ 1087.546727] ? find_held_lock+0x36/0x1c0 [ 1087.546747] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1087.546768] __kernfs_new_node+0x127/0x8d0 [ 1087.546790] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1087.546806] ? kasan_check_write+0x14/0x20 [ 1087.546825] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 1087.546847] ? wait_for_completion+0x8a0/0x8a0 [ 1087.546873] ? kasan_check_write+0x14/0x20 [ 1087.594993] ? __lock_is_held+0xb5/0x140 [ 1087.595011] ? wait_for_completion+0x8a0/0x8a0 [ 1087.595043] ? mutex_unlock+0xd/0x10 [ 1087.603367] ? kernfs_activate+0x21a/0x2c0 [ 1087.603392] kernfs_new_node+0x95/0x120 [ 1087.603415] __kernfs_create_file+0x5a/0x340 [ 1087.603439] sysfs_add_file_mode_ns+0x222/0x530 [ 1087.603469] internal_create_group+0x3df/0xd80 [ 1087.603498] ? remove_files.isra.1+0x190/0x190 [ 1087.638260] ? up_write+0x7b/0x220 [ 1087.641824] ? up_read+0x110/0x110 [ 1087.645400] ? down_read+0x1d0/0x1d0 [ 1087.649186] sysfs_create_group+0x1f/0x30 [ 1087.649209] lo_ioctl+0x1310/0x1d80 [ 1087.649237] ? lo_rw_aio_complete+0x470/0x470 [ 1087.649259] blkdev_ioctl+0x9ac/0x2010 [ 1087.657052] ? blkpg_ioctl+0xc10/0xc10 [ 1087.657070] ? lock_downgrade+0x900/0x900 [ 1087.657089] ? check_preemption_disabled+0x48/0x200 [ 1087.657114] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1087.657133] ? kasan_check_read+0x11/0x20 [ 1087.688627] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1087.693929] ? rcu_bh_qs+0xc0/0xc0 [ 1087.693963] ? __fget+0x4d1/0x740 [ 1087.693990] ? ksys_dup3+0x680/0x680 [ 1087.694010] ? kasan_check_write+0x14/0x20 [ 1087.701029] block_ioctl+0xee/0x130 [ 1087.712597] ? blkdev_fallocate+0x400/0x400 [ 1087.716941] do_vfs_ioctl+0x1de/0x1720 [ 1087.720848] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1087.726409] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1087.731719] ? ioctl_preallocate+0x300/0x300 [ 1087.736147] ? memset+0x31/0x40 [ 1087.736168] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1087.736188] ? smack_file_ioctl+0x210/0x3c0 [ 1087.736203] ? fget_raw+0x20/0x20 [ 1087.736221] ? smack_file_lock+0x2e0/0x2e0 [ 1087.736243] ? rcu_read_lock_sched_held+0x108/0x120 [ 1087.740435] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1087.745132] ? do_syscall_64+0x9a/0x820 [ 1087.745150] ? do_syscall_64+0x9a/0x820 [ 1087.745173] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1087.745191] ? security_file_ioctl+0x94/0xc0 17:13:59 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607035ffffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:59 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:13:59 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x68}, 0x0) [ 1087.745212] ksys_ioctl+0xa9/0xd0 [ 1087.745234] __x64_sys_ioctl+0x73/0xb0 [ 1087.745262] do_syscall_64+0x1b9/0x820 [ 1087.753052] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1087.753074] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1087.753096] ? trace_hardirqs_on_caller+0x310/0x310 [ 1087.753115] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1087.753132] ? recalc_sigpending_tsk+0x180/0x180 [ 1087.753147] ? kasan_check_write+0x14/0x20 [ 1087.753170] ? trace_hardirqs_off_thunk+0x1a/0x1c 17:13:59 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x60}, 0x0) [ 1087.753200] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1087.762461] RIP: 0033:0x4573e7 [ 1087.762480] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1087.762489] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1087.762507] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1087.762517] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 17:13:59 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1087.762532] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1087.805765] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1087.805775] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1087.823974] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1087.871361] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1087.953015] gfs2: not a GFS2 filesystem [ 1087.956077] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1087.998995] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1088.027228] input: syz0 as /devices/virtual/input/input161 [ 1088.042242] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:13:59 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd940aa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:13:59 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x1000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:13:59 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1d) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r1 = memfd_create(&(0x7f0000000000)='syz0\x00', 0x3) ioctl$EVIOCGPROP(r1, 0x80404509, &(0x7f00000000c0)=""/106) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:13:59 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x48}, 0x0) 17:13:59 executing program 2 (fault-call:2 fault-nth:11): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:13:59 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1088.260595] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1088.275030] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1088.275788] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1088.292709] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1088.310514] FAULT_INJECTION: forcing a failure. [ 1088.310514] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.322465] CPU: 1 PID: 5164 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1088.329679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1088.339054] Call Trace: [ 1088.339085] dump_stack+0x1c4/0x2b4 [ 1088.339110] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1088.339130] ? __kernel_text_address+0xd/0x40 [ 1088.339150] ? unwind_get_return_address+0x61/0xa0 [ 1088.339184] should_fail.cold.4+0xa/0x17 [ 1088.364124] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1088.369260] ? save_stack+0xa9/0xd0 [ 1088.372911] ? kasan_kmalloc+0xc7/0xe0 [ 1088.376817] ? kasan_slab_alloc+0x12/0x20 [ 1088.380989] ? kmem_cache_alloc+0x12e/0x730 [ 1088.385336] ? radix_tree_node_alloc.constprop.18+0x1f7/0x370 [ 1088.391248] ? idr_get_free+0x725/0xec0 [ 1088.395240] ? idr_alloc_u32+0x201/0x3f0 [ 1088.399315] ? idr_alloc_cyclic+0x166/0x350 [ 1088.403657] ? kernfs_new_node+0x95/0x120 [ 1088.407818] ? kernfs_create_dir_ns+0x4d/0x160 [ 1088.412414] ? internal_create_group+0x5fc/0xd80 [ 1088.417182] ? sysfs_create_group+0x1f/0x30 [ 1088.421602] ? lo_ioctl+0x1310/0x1d80 [ 1088.425417] ? blkdev_ioctl+0x9ac/0x2010 [ 1088.429491] ? block_ioctl+0xee/0x130 [ 1088.433305] ? do_vfs_ioctl+0x1de/0x1720 [ 1088.437387] ? ksys_ioctl+0xa9/0xd0 [ 1088.441031] ? __x64_sys_ioctl+0x73/0xb0 [ 1088.445117] ? do_syscall_64+0x1b9/0x820 [ 1088.449200] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1088.455280] ? zap_class+0x640/0x640 [ 1088.459019] ? __update_load_avg_blocked_se+0x730/0x730 [ 1088.464407] ? graph_lock+0x170/0x170 [ 1088.468260] ? __update_load_avg_se+0xb90/0xb90 [ 1088.472946] ? graph_lock+0x170/0x170 [ 1088.476800] ? check_preemption_disabled+0x48/0x200 [ 1088.481841] ? check_preemption_disabled+0x48/0x200 [ 1088.486895] ? __lock_is_held+0xb5/0x140 [ 1088.490997] __should_failslab+0x124/0x180 [ 1088.495255] should_failslab+0x9/0x14 [ 1088.499084] kmem_cache_alloc+0x47/0x730 [ 1088.503182] ? plist_requeue+0x620/0x620 [ 1088.507276] ? radix_tree_node_alloc.constprop.18+0x1f7/0x370 [ 1088.513207] radix_tree_node_alloc.constprop.18+0x1f7/0x370 [ 1088.518961] idr_get_free+0x725/0xec0 [ 1088.522809] ? ida_pre_get+0x130/0x130 [ 1088.526736] ? save_stack+0xa9/0xd0 [ 1088.530385] ? save_stack+0x43/0xd0 [ 1088.534052] ? kasan_kmalloc+0xc7/0xe0 [ 1088.537960] ? kasan_slab_alloc+0x12/0x20 [ 1088.542128] ? kmem_cache_alloc+0x12e/0x730 [ 1088.546488] ? __kernfs_new_node+0x127/0x8d0 [ 1088.550916] ? kernfs_new_node+0x95/0x120 [ 1088.555085] ? internal_create_group+0x5fc/0xd80 [ 1088.559864] ? sysfs_create_group+0x1f/0x30 [ 1088.564215] ? blkdev_ioctl+0x9ac/0x2010 [ 1088.568300] ? block_ioctl+0xee/0x130 [ 1088.572139] ? do_vfs_ioctl+0x1de/0x1720 [ 1088.576223] ? ksys_ioctl+0xa9/0xd0 [ 1088.579877] ? do_syscall_64+0x1b9/0x820 [ 1088.583962] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1088.589378] idr_alloc_u32+0x201/0x3f0 [ 1088.593305] ? __fprop_inc_percpu_max+0x2d0/0x2d0 [ 1088.598205] ? lock_acquire+0x1ed/0x520 [ 1088.602204] ? __kernfs_new_node+0x14e/0x8d0 [ 1088.606729] ? __lock_is_held+0xb5/0x140 [ 1088.610832] idr_alloc_cyclic+0x166/0x350 [ 1088.615007] ? idr_alloc+0x1b0/0x1b0 [ 1088.618743] ? kasan_check_write+0x14/0x20 [ 1088.623019] ? do_raw_spin_lock+0xc1/0x200 [ 1088.627294] __kernfs_new_node+0x1ee/0x8d0 [ 1088.631566] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1088.636379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1088.641961] ? perf_trace_lock+0x14d/0x7a0 [ 1088.646241] ? graph_lock+0x170/0x170 [ 1088.650073] ? zap_class+0x640/0x640 [ 1088.653808] ? graph_lock+0x170/0x170 [ 1088.657652] ? find_held_lock+0x36/0x1c0 [ 1088.661781] kernfs_new_node+0x95/0x120 [ 1088.665798] kernfs_create_dir_ns+0x4d/0x160 [ 1088.670251] internal_create_group+0x5fc/0xd80 [ 1088.674887] ? remove_files.isra.1+0x190/0x190 [ 1088.679496] ? up_write+0x7b/0x220 [ 1088.683061] ? up_read+0x110/0x110 [ 1088.686644] ? down_read+0x1d0/0x1d0 [ 1088.690412] sysfs_create_group+0x1f/0x30 [ 1088.694598] lo_ioctl+0x1310/0x1d80 [ 1088.698267] ? lo_rw_aio_complete+0x470/0x470 [ 1088.702810] blkdev_ioctl+0x9ac/0x2010 [ 1088.706736] ? blkpg_ioctl+0xc10/0xc10 [ 1088.710648] ? lock_downgrade+0x900/0x900 [ 1088.714823] ? check_preemption_disabled+0x48/0x200 [ 1088.719875] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1088.725694] ? kasan_check_read+0x11/0x20 [ 1088.729866] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1088.735208] ? rcu_bh_qs+0xc0/0xc0 [ 1088.738782] ? __fget+0x4d1/0x740 [ 1088.742261] ? ksys_dup3+0x680/0x680 [ 1088.746018] ? kasan_check_write+0x14/0x20 [ 1088.750296] block_ioctl+0xee/0x130 [ 1088.753950] ? blkdev_fallocate+0x400/0x400 [ 1088.758298] do_vfs_ioctl+0x1de/0x1720 [ 1088.762245] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1088.767987] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1088.773294] ? ioctl_preallocate+0x300/0x300 [ 1088.777734] ? memset+0x31/0x40 [ 1088.781062] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1088.786626] ? smack_file_ioctl+0x210/0x3c0 [ 1088.790973] ? fget_raw+0x20/0x20 [ 1088.794450] ? smack_file_lock+0x2e0/0x2e0 [ 1088.798711] ? rcu_read_lock_sched_held+0x108/0x120 [ 1088.803860] ? do_syscall_64+0x9a/0x820 [ 1088.807876] ? do_syscall_64+0x9a/0x820 [ 1088.811892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1088.817463] ? security_file_ioctl+0x94/0xc0 [ 1088.821907] ksys_ioctl+0xa9/0xd0 [ 1088.825412] __x64_sys_ioctl+0x73/0xb0 [ 1088.829325] do_syscall_64+0x1b9/0x820 [ 1088.833236] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1088.838624] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1088.843592] ? trace_hardirqs_on_caller+0x310/0x310 [ 1088.848629] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1088.853668] ? recalc_sigpending_tsk+0x180/0x180 [ 1088.858444] ? kasan_check_write+0x14/0x20 [ 1088.862707] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1088.867593] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1088.872797] RIP: 0033:0x4573e7 [ 1088.876024] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1088.894945] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1088.902677] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 17:14:00 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x1182}, 0x0) 17:14:00 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x300}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1088.909966] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1088.917249] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1088.924532] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1088.931834] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:00 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00?', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1088.970991] gfs2: not a GFS2 filesystem [ 1089.004077] input: syz0 as /devices/virtual/input/input162 17:14:00 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd9425a2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:00 executing program 2 (fault-call:2 fault-nth:12): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1089.078192] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1089.088310] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:00 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x600}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:00 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1089.131066] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:00 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf00000000000000}, 0x0) [ 1089.272772] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1089.275829] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1089.285039] FAULT_INJECTION: forcing a failure. [ 1089.285039] name failslab, interval 1, probability 0, space 0, times 0 [ 1089.343198] CPU: 1 PID: 5191 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1089.350431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1089.359811] Call Trace: [ 1089.359843] dump_stack+0x1c4/0x2b4 [ 1089.359871] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1089.359904] should_fail.cold.4+0xa/0x17 [ 1089.359928] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1089.359946] ? perf_trace_lock+0x14d/0x7a0 [ 1089.359964] ? lock_release+0x970/0x970 [ 1089.359983] ? arch_local_save_flags+0x40/0x40 [ 1089.360001] ? graph_lock+0x170/0x170 [ 1089.360016] ? zap_class+0x640/0x640 [ 1089.360033] ? check_preemption_disabled+0x48/0x200 [ 1089.360051] ? graph_lock+0x170/0x170 [ 1089.360081] ? find_held_lock+0x36/0x1c0 [ 1089.360102] ? __lock_is_held+0xb5/0x140 [ 1089.360136] ? ___might_sleep+0x1ed/0x300 [ 1089.373348] input: syz0 as /devices/virtual/input/input163 [ 1089.376294] ? arch_local_save_flags+0x40/0x40 [ 1089.376323] ? kernfs_activate+0x21a/0x2c0 [ 1089.376362] __should_failslab+0x124/0x180 [ 1089.394291] should_failslab+0x9/0x14 [ 1089.394311] kmem_cache_alloc+0x2be/0x730 [ 1089.394329] ? lock_downgrade+0x900/0x900 [ 1089.394344] ? do_raw_spin_lock+0xc1/0x200 [ 1089.394373] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1089.401914] __kernfs_new_node+0x127/0x8d0 [ 1089.401936] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1089.401954] ? graph_lock+0x170/0x170 [ 1089.401982] ? __lock_is_held+0xb5/0x140 [ 1089.410807] ? wait_for_completion+0x8a0/0x8a0 [ 1089.418957] ? mutex_unlock+0xd/0x10 [ 1089.418975] ? kernfs_activate+0x21a/0x2c0 [ 1089.418995] ? kernfs_walk_and_get_ns+0x340/0x340 [ 1089.437702] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1089.445745] ? kernfs_link_sibling+0x1d2/0x3b0 [ 1089.445769] kernfs_new_node+0x95/0x120 [ 1089.445790] __kernfs_create_file+0x5a/0x340 [ 1089.445812] sysfs_add_file_mode_ns+0x222/0x530 [ 1089.445840] internal_create_group+0x3df/0xd80 [ 1089.525398] ? remove_files.isra.1+0x190/0x190 [ 1089.529980] ? up_write+0x7b/0x220 [ 1089.533520] ? up_read+0x110/0x110 [ 1089.537069] ? down_read+0x1d0/0x1d0 [ 1089.540793] sysfs_create_group+0x1f/0x30 [ 1089.544968] lo_ioctl+0x1310/0x1d80 [ 1089.548599] ? lo_rw_aio_complete+0x470/0x470 [ 1089.553145] blkdev_ioctl+0x9ac/0x2010 [ 1089.557069] ? blkpg_ioctl+0xc10/0xc10 [ 1089.560967] ? lock_downgrade+0x900/0x900 [ 1089.565199] ? check_preemption_disabled+0x48/0x200 [ 1089.570218] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1089.576008] ? kasan_check_read+0x11/0x20 [ 1089.580158] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1089.585435] ? rcu_bh_qs+0xc0/0xc0 [ 1089.588982] ? __fget+0x4d1/0x740 [ 1089.592465] ? ksys_dup3+0x680/0x680 [ 1089.596205] ? kasan_check_write+0x14/0x20 [ 1089.600445] block_ioctl+0xee/0x130 [ 1089.604084] ? blkdev_fallocate+0x400/0x400 [ 1089.608422] do_vfs_ioctl+0x1de/0x1720 [ 1089.612311] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1089.617858] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1089.623147] ? ioctl_preallocate+0x300/0x300 [ 1089.627576] ? memset+0x31/0x40 [ 1089.630857] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1089.636410] ? smack_file_ioctl+0x210/0x3c0 [ 1089.640729] ? fget_raw+0x20/0x20 [ 1089.644188] ? smack_file_lock+0x2e0/0x2e0 [ 1089.648417] ? rcu_read_lock_sched_held+0x108/0x120 [ 1089.653454] ? do_syscall_64+0x9a/0x820 [ 1089.657426] ? do_syscall_64+0x9a/0x820 [ 1089.661409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1089.666947] ? security_file_ioctl+0x94/0xc0 [ 1089.671386] ksys_ioctl+0xa9/0xd0 [ 1089.674842] __x64_sys_ioctl+0x73/0xb0 [ 1089.678738] do_syscall_64+0x1b9/0x820 [ 1089.682626] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1089.688009] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1089.692956] ? trace_hardirqs_on_caller+0x310/0x310 [ 1089.697973] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1089.702983] ? recalc_sigpending_tsk+0x180/0x180 [ 1089.707746] ? kasan_check_write+0x14/0x20 [ 1089.711994] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1089.716846] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1089.722035] RIP: 0033:0x4573e7 [ 1089.725222] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1089.744118] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1089.751831] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1089.759094] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1089.766367] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1089.773631] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1089.780909] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1089.800803] gfs2: not a GFS2 filesystem 17:14:01 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r1 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x8, 0x10000) ioctl$DRM_IOCTL_GET_MAGIC(r1, 0x80046402, &(0x7f00000000c0)=0x1ff) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:01 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283000a200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:01 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x7fffffe}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:01 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x9effffff}, 0x0) 17:14:01 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:01 executing program 2 (fault-call:2 fault-nth:13): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1089.909458] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1089.910959] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1089.925397] FAULT_INJECTION: forcing a failure. [ 1089.925397] name failslab, interval 1, probability 0, space 0, times 0 [ 1089.943189] CPU: 1 PID: 5212 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1089.952275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1089.961644] Call Trace: [ 1089.964263] dump_stack+0x1c4/0x2b4 [ 1089.967928] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1089.973165] should_fail.cold.4+0xa/0x17 [ 1089.977258] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1089.982401] ? perf_trace_lock+0x14d/0x7a0 [ 1089.986664] ? lock_release+0x970/0x970 [ 1089.990669] ? arch_local_save_flags+0x40/0x40 [ 1089.995279] ? graph_lock+0x170/0x170 [ 1089.999109] ? zap_class+0x640/0x640 [ 1090.002843] ? check_preemption_disabled+0x48/0x200 [ 1090.002864] ? graph_lock+0x170/0x170 [ 1090.002901] ? find_held_lock+0x36/0x1c0 [ 1090.011762] ? __lock_is_held+0xb5/0x140 [ 1090.019912] ? ___might_sleep+0x1ed/0x300 [ 1090.024097] ? arch_local_save_flags+0x40/0x40 [ 1090.028704] ? kernfs_activate+0x21a/0x2c0 [ 1090.032986] __should_failslab+0x124/0x180 [ 1090.033005] should_failslab+0x9/0x14 [ 1090.033022] kmem_cache_alloc+0x2be/0x730 [ 1090.033040] ? lock_downgrade+0x900/0x900 [ 1090.033064] ? do_raw_spin_lock+0xc1/0x200 [ 1090.045269] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1090.045291] __kernfs_new_node+0x127/0x8d0 [ 1090.045313] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1090.058747] ? graph_lock+0x170/0x170 [ 1090.058776] ? __lock_is_held+0xb5/0x140 [ 1090.058799] ? wait_for_completion+0x8a0/0x8a0 [ 1090.075703] ? mutex_unlock+0xd/0x10 [ 1090.075721] ? kernfs_activate+0x21a/0x2c0 [ 1090.075741] ? kernfs_walk_and_get_ns+0x340/0x340 [ 1090.093143] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1090.093160] ? kernfs_link_sibling+0x1d2/0x3b0 [ 1090.093184] kernfs_new_node+0x95/0x120 [ 1090.093207] __kernfs_create_file+0x5a/0x340 [ 1090.093230] sysfs_add_file_mode_ns+0x222/0x530 [ 1090.105007] input: syz0 as /devices/virtual/input/input164 [ 1090.107411] internal_create_group+0x3df/0xd80 [ 1090.107444] ? remove_files.isra.1+0x190/0x190 [ 1090.107463] ? up_write+0x7b/0x220 [ 1090.122312] ? up_read+0x110/0x110 [ 1090.122330] ? down_read+0x1d0/0x1d0 [ 1090.122371] sysfs_create_group+0x1f/0x30 [ 1090.131378] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1090.131581] lo_ioctl+0x1310/0x1d80 [ 1090.142424] ? lo_rw_aio_complete+0x470/0x470 [ 1090.142455] blkdev_ioctl+0x9ac/0x2010 [ 1090.142486] ? blkpg_ioctl+0xc10/0xc10 [ 1090.142509] ? lock_downgrade+0x900/0x900 [ 1090.163155] ? check_preemption_disabled+0x48/0x200 [ 1090.163182] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1090.163196] ? kasan_check_read+0x11/0x20 [ 1090.163214] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1090.163236] ? rcu_bh_qs+0xc0/0xc0 [ 1090.171067] ? __fget+0x4d1/0x740 [ 1090.171092] ? ksys_dup3+0x680/0x680 [ 1090.171112] ? kasan_check_write+0x14/0x20 [ 1090.186225] block_ioctl+0xee/0x130 [ 1090.186244] ? blkdev_fallocate+0x400/0x400 [ 1090.186261] do_vfs_ioctl+0x1de/0x1720 [ 1090.186278] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1090.186300] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1090.222514] ? ioctl_preallocate+0x300/0x300 [ 1090.222538] ? memset+0x31/0x40 [ 1090.241102] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1090.241123] ? smack_file_ioctl+0x210/0x3c0 [ 1090.241145] ? fget_raw+0x20/0x20 [ 1090.254498] ? smack_file_lock+0x2e0/0x2e0 [ 1090.258760] ? rcu_read_lock_sched_held+0x108/0x120 [ 1090.263806] ? do_syscall_64+0x9a/0x820 [ 1090.263824] ? do_syscall_64+0x9a/0x820 [ 1090.263846] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1090.263876] ? security_file_ioctl+0x94/0xc0 [ 1090.281824] ksys_ioctl+0xa9/0xd0 [ 1090.285330] __x64_sys_ioctl+0x73/0xb0 [ 1090.289253] do_syscall_64+0x1b9/0x820 [ 1090.293168] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1090.293189] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1090.293209] ? trace_hardirqs_on_caller+0x310/0x310 17:14:01 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x7}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:01 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830060200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:01 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:01 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0xc802000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:01 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2836c20200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:01 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1090.293231] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1090.303582] ? recalc_sigpending_tsk+0x180/0x180 [ 1090.303601] ? kasan_check_write+0x14/0x20 [ 1090.303624] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1090.303650] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1090.303669] RIP: 0033:0x4573e7 [ 1090.328111] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1090.355727] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1090.355746] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1090.355754] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1090.355762] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1090.355770] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1090.355779] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1090.404392] gfs2: not a GFS2 filesystem [ 1090.410066] input: syz0 as /devices/virtual/input/input165 [ 1090.451093] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:01 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0xc) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:01 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf0ffff}, 0x0) 17:14:01 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x2000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:01 executing program 2 (fault-call:2 fault-nth:14): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:01 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2837a20200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:01 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000006", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1090.590902] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1090.622156] FAULT_INJECTION: forcing a failure. [ 1090.622156] name failslab, interval 1, probability 0, space 0, times 0 [ 1090.643294] CPU: 0 PID: 5258 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1090.650539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1090.659927] Call Trace: [ 1090.662563] dump_stack+0x1c4/0x2b4 [ 1090.666233] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1090.671477] should_fail.cold.4+0xa/0x17 [ 1090.675593] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1090.680734] ? perf_trace_lock+0x14d/0x7a0 [ 1090.685007] ? lock_release+0x970/0x970 [ 1090.689009] ? arch_local_save_flags+0x40/0x40 [ 1090.693629] ? graph_lock+0x170/0x170 [ 1090.697459] ? zap_class+0x640/0x640 [ 1090.701206] ? check_preemption_disabled+0x48/0x200 [ 1090.706252] ? graph_lock+0x170/0x170 [ 1090.710093] ? find_held_lock+0x36/0x1c0 [ 1090.714185] ? __lock_is_held+0xb5/0x140 [ 1090.718287] ? ___might_sleep+0x1ed/0x300 [ 1090.722471] ? arch_local_save_flags+0x40/0x40 [ 1090.727082] ? kernfs_activate+0x21a/0x2c0 [ 1090.731369] __should_failslab+0x124/0x180 [ 1090.735636] should_failslab+0x9/0x14 [ 1090.739467] kmem_cache_alloc+0x2be/0x730 [ 1090.743655] ? lock_downgrade+0x900/0x900 [ 1090.747832] ? do_raw_spin_lock+0xc1/0x200 [ 1090.752111] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1090.757159] __kernfs_new_node+0x127/0x8d0 [ 1090.761426] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1090.761447] ? graph_lock+0x170/0x170 [ 1090.761476] ? __lock_is_held+0xb5/0x140 [ 1090.761500] ? wait_for_completion+0x8a0/0x8a0 [ 1090.778762] ? mutex_unlock+0xd/0x10 [ 1090.778781] ? kernfs_activate+0x21a/0x2c0 [ 1090.778809] ? kernfs_walk_and_get_ns+0x340/0x340 [ 1090.791963] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1090.797539] ? kernfs_link_sibling+0x1d2/0x3b0 [ 1090.797580] kernfs_new_node+0x95/0x120 [ 1090.797605] __kernfs_create_file+0x5a/0x340 [ 1090.797629] sysfs_add_file_mode_ns+0x222/0x530 17:14:02 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283005f200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:02 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000278", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:02 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x3000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1090.797655] internal_create_group+0x3df/0xd80 [ 1090.805868] input: syz0 as /devices/virtual/input/input166 [ 1090.806460] ? remove_files.isra.1+0x190/0x190 [ 1090.820513] ? up_write+0x7b/0x220 [ 1090.820530] ? up_read+0x110/0x110 [ 1090.820560] ? down_read+0x1d0/0x1d0 [ 1090.820596] sysfs_create_group+0x1f/0x30 [ 1090.820618] lo_ioctl+0x1310/0x1d80 [ 1090.849507] ? lo_rw_aio_complete+0x470/0x470 [ 1090.854048] blkdev_ioctl+0x9ac/0x2010 [ 1090.857975] ? blkpg_ioctl+0xc10/0xc10 [ 1090.861907] ? lock_downgrade+0x900/0x900 [ 1090.866115] ? check_preemption_disabled+0x48/0x200 [ 1090.871172] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1090.877007] ? kasan_check_read+0x11/0x20 [ 1090.881192] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1090.886503] ? rcu_bh_qs+0xc0/0xc0 [ 1090.890097] ? __fget+0x4d1/0x740 [ 1090.893596] ? ksys_dup3+0x680/0x680 [ 1090.893618] ? kasan_check_write+0x14/0x20 [ 1090.893647] block_ioctl+0xee/0x130 [ 1090.893664] ? blkdev_fallocate+0x400/0x400 [ 1090.893684] do_vfs_ioctl+0x1de/0x1720 [ 1090.901668] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1090.901684] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1090.901710] ? ioctl_preallocate+0x300/0x300 [ 1090.901727] ? memset+0x31/0x40 [ 1090.901745] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1090.901769] ? smack_file_ioctl+0x210/0x3c0 [ 1090.942060] ? fget_raw+0x20/0x20 [ 1090.945539] ? smack_file_lock+0x2e0/0x2e0 [ 1090.945569] ? rcu_read_lock_sched_held+0x108/0x120 [ 1090.945601] ? do_syscall_64+0x9a/0x820 [ 1090.945622] ? do_syscall_64+0x9a/0x820 [ 1090.955167] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1090.955186] ? security_file_ioctl+0x94/0xc0 [ 1090.955208] ksys_ioctl+0xa9/0xd0 [ 1090.955231] __x64_sys_ioctl+0x73/0xb0 [ 1090.955250] do_syscall_64+0x1b9/0x820 [ 1090.955266] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1090.955284] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1090.955305] ? trace_hardirqs_on_caller+0x310/0x310 [ 1090.955321] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1090.955338] ? recalc_sigpending_tsk+0x180/0x180 [ 1090.955370] ? kasan_check_write+0x14/0x20 17:14:02 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x3f00}, 0x0) 17:14:02 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830720200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:02 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0xc802}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1090.973449] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1090.973476] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1090.973490] RIP: 0033:0x4573e7 [ 1090.973509] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1090.973519] RSP: 002b:00007f2b9b2aea88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1090.973537] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1090.973559] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1090.973568] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1090.973577] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1090.973586] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1090.987171] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1091.104042] input: syz0 as /devices/virtual/input/input167 [ 1091.216241] gfs2: not a GFS2 filesystem 17:14:02 executing program 0: getresuid(&(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)=0x0) ioprio_set$uid(0x3, r0, 0x7fff) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f00000000c0)={{{@in6=@mcast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000000000)=0xe8) r2 = geteuid() getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) setresuid(r1, r2, r3) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r4, 0x5501) 17:14:02 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000005", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:02 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7a00000000000000}, 0x0) 17:14:02 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830f20200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:02 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x700}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:02 executing program 2 (fault-call:2 fault-nth:15): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:02 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830220200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:02 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:02 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0xfeffff07}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1091.305331] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1091.393522] input: syz0 as /devices/virtual/input/input168 [ 1091.406214] FAULT_INJECTION: forcing a failure. [ 1091.406214] name failslab, interval 1, probability 0, space 0, times 0 [ 1091.434712] CPU: 1 PID: 5299 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1091.441958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1091.441972] Call Trace: [ 1091.453990] dump_stack+0x1c4/0x2b4 [ 1091.454025] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1091.454057] should_fail.cold.4+0xa/0x17 [ 1091.454084] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1091.462935] ? perf_trace_lock+0x14d/0x7a0 [ 1091.462951] ? lock_release+0x970/0x970 [ 1091.462966] ? arch_local_save_flags+0x40/0x40 [ 1091.462983] ? graph_lock+0x170/0x170 [ 1091.463002] ? zap_class+0x640/0x640 [ 1091.472217] ? check_preemption_disabled+0x48/0x200 [ 1091.472240] ? graph_lock+0x170/0x170 [ 1091.476565] input: syz0 as /devices/virtual/input/input169 [ 1091.480492] ? find_held_lock+0x36/0x1c0 [ 1091.511270] ? __lock_is_held+0xb5/0x140 [ 1091.515387] ? ___might_sleep+0x1ed/0x300 [ 1091.519591] ? arch_local_save_flags+0x40/0x40 [ 1091.524204] ? kernfs_activate+0x21a/0x2c0 [ 1091.528491] __should_failslab+0x124/0x180 [ 1091.532763] should_failslab+0x9/0x14 [ 1091.536743] kmem_cache_alloc+0x2be/0x730 [ 1091.541027] ? lock_downgrade+0x900/0x900 [ 1091.545652] ? do_raw_spin_lock+0xc1/0x200 [ 1091.550111] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1091.555689] __kernfs_new_node+0x127/0x8d0 [ 1091.560362] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1091.565248] ? graph_lock+0x170/0x170 [ 1091.569382] ? __lock_is_held+0xb5/0x140 [ 1091.573707] ? wait_for_completion+0x8a0/0x8a0 [ 1091.578621] ? mutex_unlock+0xd/0x10 [ 1091.582790] ? kernfs_activate+0x21a/0x2c0 [ 1091.587341] ? kernfs_walk_and_get_ns+0x340/0x340 [ 1091.592688] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1091.598708] ? kernfs_link_sibling+0x1d2/0x3b0 [ 1091.603502] kernfs_new_node+0x95/0x120 [ 1091.607621] __kernfs_create_file+0x5a/0x340 [ 1091.612333] sysfs_add_file_mode_ns+0x222/0x530 [ 1091.617164] internal_create_group+0x3df/0xd80 [ 1091.622215] ? remove_files.isra.1+0x190/0x190 [ 1091.627052] ? up_write+0x7b/0x220 [ 1091.630618] ? up_read+0x110/0x110 [ 1091.634186] ? down_read+0x1d0/0x1d0 [ 1091.637946] sysfs_create_group+0x1f/0x30 [ 1091.642133] lo_ioctl+0x1310/0x1d80 [ 1091.645807] ? lo_rw_aio_complete+0x470/0x470 [ 1091.650337] blkdev_ioctl+0x9ac/0x2010 [ 1091.654268] ? blkpg_ioctl+0xc10/0xc10 [ 1091.658183] ? lock_downgrade+0x900/0x900 [ 1091.662382] ? check_preemption_disabled+0x48/0x200 [ 1091.667435] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1091.673348] ? kasan_check_read+0x11/0x20 [ 1091.677539] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1091.683128] ? rcu_bh_qs+0xc0/0xc0 [ 1091.687143] ? __fget+0x4d1/0x740 [ 1091.691112] ? ksys_dup3+0x680/0x680 [ 1091.694861] ? kasan_check_write+0x14/0x20 [ 1091.699765] block_ioctl+0xee/0x130 [ 1091.703800] ? blkdev_fallocate+0x400/0x400 [ 1091.708347] do_vfs_ioctl+0x1de/0x1720 [ 1091.712594] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1091.718275] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1091.723595] ? ioctl_preallocate+0x300/0x300 [ 1091.728058] ? memset+0x31/0x40 [ 1091.731379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1091.736960] ? smack_file_ioctl+0x210/0x3c0 [ 1091.741329] ? fget_raw+0x20/0x20 [ 1091.744811] ? smack_file_lock+0x2e0/0x2e0 [ 1091.749097] ? rcu_read_lock_sched_held+0x108/0x120 [ 1091.754159] ? do_syscall_64+0x9a/0x820 [ 1091.758170] ? do_syscall_64+0x9a/0x820 [ 1091.762283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1091.767892] ? security_file_ioctl+0x94/0xc0 [ 1091.772344] ksys_ioctl+0xa9/0xd0 [ 1091.775840] __x64_sys_ioctl+0x73/0xb0 [ 1091.779806] do_syscall_64+0x1b9/0x820 [ 1091.783728] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1091.789130] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1091.794091] ? trace_hardirqs_on_caller+0x310/0x310 [ 1091.799168] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1091.804226] ? recalc_sigpending_tsk+0x180/0x180 [ 1091.809014] ? kasan_check_write+0x14/0x20 [ 1091.813296] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1091.818194] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1091.823588] RIP: 0033:0x4573e7 [ 1091.826807] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1091.845743] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1091.853488] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1091.860807] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1091.868215] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1091.875515] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 17:14:03 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x3}, 0x0) [ 1091.882830] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1091.917209] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1091.972230] gfs2: not a GFS2 filesystem 17:14:03 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:03 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830320200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:03 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x4, 0xa69, 0x6}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000180)={0x0, 0x7ff}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000200)={r1, 0x6, 0xba, 0x7fffffff, 0xffffffffffffff00, 0x7, 0x63bc15f9, 0x1, {r2, @in6={{0xa, 0x4e22, 0x5, @remote, 0x2}}, 0x80000001, 0x8, 0x800, 0xab66, 0x2}}, &(0x7f00000002c0)=0xb0) r3 = memfd_create(&(0x7f0000000000)='/dev/uinput\x00', 0x4) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r3, 0x28, 0x6, &(0x7f0000000080), 0x10) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000300)={r2, 0xfffffffffffffe57}, &(0x7f0000000340)=0x8) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:03 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x4000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:03 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4c}, 0x0) 17:14:03 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0xfeffff0700000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:03 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1092.140394] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1092.230726] input: syz0 as /devices/virtual/input/input170 17:14:03 executing program 2 (fault-call:2 fault-nth:16): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:03 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x600000000000000}, 0x0) 17:14:03 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2836820200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:03 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x700000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:03 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x2, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) r1 = accept(0xffffffffffffffff, &(0x7f0000000140), &(0x7f00000001c0)=0x80) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000240)='trusted.overlay.redirect\x00', &(0x7f0000000280)='./file0\x00', 0x8, 0x1) connect$bt_sco(r1, &(0x7f0000000200)={0x1f, {0x3, 0x0, 0x9, 0x100, 0x0, 0x5}}, 0x8) r2 = socket(0x2, 0xa, 0x2) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000000c0)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x18) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x400108, 0x0) [ 1092.324821] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:03 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1092.416382] nla_parse: 17 callbacks suppressed [ 1092.416394] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1092.431491] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:03 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0xc8020000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1092.483700] input: syz0 as /devices/virtual/input/input172 [ 1092.488639] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1092.537866] FAULT_INJECTION: forcing a failure. [ 1092.537866] name failslab, interval 1, probability 0, space 0, times 0 [ 1092.563139] CPU: 0 PID: 5364 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1092.570598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1092.570613] Call Trace: [ 1092.582609] dump_stack+0x1c4/0x2b4 [ 1092.586275] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1092.591519] should_fail.cold.4+0xa/0x17 [ 1092.595641] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1092.600774] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1092.606389] ? wake_up_klogd+0x11a/0x180 [ 1092.610481] ? preempt_schedule_common+0x1f/0xd0 [ 1092.615270] ? console_device+0xc0/0xc0 [ 1092.615288] ? graph_lock+0x170/0x170 [ 1092.615307] ? graph_lock+0x170/0x170 [ 1092.615333] ? find_held_lock+0x36/0x1c0 [ 1092.615353] ? __lock_is_held+0xb5/0x140 [ 1092.615386] ? ___might_sleep+0x1ed/0x300 [ 1092.635222] ? arch_local_save_flags+0x40/0x40 [ 1092.635246] ? vprintk_default+0x28/0x30 [ 1092.635268] __should_failslab+0x124/0x180 [ 1092.635285] should_failslab+0x9/0x14 [ 1092.635309] kmem_cache_alloc_trace+0x2d7/0x750 [ 1092.660971] kobject_uevent_env+0x2f3/0x101e [ 1092.665435] kobject_uevent+0x1f/0x24 [ 1092.669273] lo_ioctl+0x138e/0x1d80 [ 1092.672936] ? lo_rw_aio_complete+0x470/0x470 [ 1092.672955] blkdev_ioctl+0x9ac/0x2010 [ 1092.672974] ? blkpg_ioctl+0xc10/0xc10 17:14:03 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x9effffff00000000}, 0x0) 17:14:03 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:04 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2837420200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1092.672991] ? lock_downgrade+0x900/0x900 [ 1092.673008] ? check_preemption_disabled+0x48/0x200 [ 1092.673031] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1092.673050] ? kasan_check_read+0x11/0x20 [ 1092.704500] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1092.709832] ? rcu_bh_qs+0xc0/0xc0 [ 1092.713437] ? __fget+0x4d1/0x740 [ 1092.717042] ? ksys_dup3+0x680/0x680 [ 1092.720787] ? kasan_check_write+0x14/0x20 [ 1092.724938] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1092.725061] block_ioctl+0xee/0x130 [ 1092.737739] ? blkdev_fallocate+0x400/0x400 [ 1092.742094] do_vfs_ioctl+0x1de/0x1720 [ 1092.742114] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1092.742130] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1092.742152] ? ioctl_preallocate+0x300/0x300 [ 1092.747601] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1092.751641] ? memset+0x31/0x40 [ 1092.751661] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1092.751680] ? smack_file_ioctl+0x210/0x3c0 [ 1092.751702] ? fget_raw+0x20/0x20 17:14:04 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x300000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1092.778775] ? smack_file_lock+0x2e0/0x2e0 [ 1092.778792] ? rcu_read_lock_sched_held+0x108/0x120 [ 1092.778820] ? do_syscall_64+0x9a/0x820 [ 1092.778847] ? do_syscall_64+0x9a/0x820 [ 1092.786667] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1092.786686] ? security_file_ioctl+0x94/0xc0 [ 1092.786708] ksys_ioctl+0xa9/0xd0 [ 1092.786730] __x64_sys_ioctl+0x73/0xb0 [ 1092.813958] do_syscall_64+0x1b9/0x820 [ 1092.813976] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1092.813994] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1092.814013] ? trace_hardirqs_on_caller+0x310/0x310 [ 1092.814031] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1092.814046] ? recalc_sigpending_tsk+0x180/0x180 [ 1092.814061] ? kasan_check_write+0x14/0x20 [ 1092.814084] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1092.830750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1092.830765] RIP: 0033:0x4573e7 [ 1092.830789] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 17:14:04 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1092.853585] input: syz0 as /devices/virtual/input/input173 [ 1092.854769] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1092.854789] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1092.854799] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1092.854809] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1092.854818] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1092.854828] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1092.895691] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1092.984787] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1093.033947] gfs2: not a GFS2 filesystem 17:14:04 executing program 2 (fault-call:2 fault-nth:17): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:04 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x600000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:04 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:04 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2834c20200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1093.146039] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1093.167503] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:04 executing program 0: timer_create(0x7, &(0x7f0000000000)={0x0, 0x23, 0x5, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=0x0) timer_delete(r0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:14:04 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x60000000}, 0x0) 17:14:04 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0xffffffff00000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1093.189027] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1093.203210] FAULT_INJECTION: forcing a failure. [ 1093.203210] name failslab, interval 1, probability 0, space 0, times 0 17:14:04 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1093.255977] input: syz0 as /devices/virtual/input/input174 [ 1093.262318] CPU: 0 PID: 5418 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1093.269554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1093.278929] Call Trace: [ 1093.278962] dump_stack+0x1c4/0x2b4 [ 1093.278989] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1093.279029] should_fail.cold.4+0xa/0x17 [ 1093.285280] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1093.285297] ? perf_trace_lock+0x14d/0x7a0 17:14:04 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2836020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1093.285312] ? lock_release+0x970/0x970 [ 1093.285326] ? arch_local_save_flags+0x40/0x40 [ 1093.285342] ? graph_lock+0x170/0x170 [ 1093.285357] ? zap_class+0x640/0x640 [ 1093.285373] ? check_preemption_disabled+0x48/0x200 [ 1093.285390] ? graph_lock+0x170/0x170 [ 1093.285418] ? find_held_lock+0x36/0x1c0 [ 1093.312658] ? __lock_is_held+0xb5/0x140 [ 1093.333182] ? ___might_sleep+0x1ed/0x300 [ 1093.333204] ? arch_local_save_flags+0x40/0x40 [ 1093.333220] ? kernfs_activate+0x21a/0x2c0 [ 1093.333247] __should_failslab+0x124/0x180 [ 1093.333265] should_failslab+0x9/0x14 [ 1093.333281] kmem_cache_alloc+0x2be/0x730 [ 1093.333298] ? lock_downgrade+0x900/0x900 [ 1093.333313] ? do_raw_spin_lock+0xc1/0x200 [ 1093.333339] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1093.350464] __kernfs_new_node+0x127/0x8d0 [ 1093.363022] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1093.366866] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 1093.366887] ? graph_lock+0x170/0x170 [ 1093.366916] ? __lock_is_held+0xb5/0x140 [ 1093.366932] ? wait_for_completion+0x8a0/0x8a0 [ 1093.366962] ? mutex_unlock+0xd/0x10 [ 1093.376246] ? kernfs_activate+0x21a/0x2c0 [ 1093.376269] ? kernfs_walk_and_get_ns+0x340/0x340 [ 1093.376292] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1093.376307] ? kernfs_link_sibling+0x1d2/0x3b0 [ 1093.376331] kernfs_new_node+0x95/0x120 [ 1093.419103] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1093.424844] __kernfs_create_file+0x5a/0x340 [ 1093.424880] sysfs_add_file_mode_ns+0x222/0x530 [ 1093.424909] internal_create_group+0x3df/0xd80 17:14:04 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1093.433452] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1093.433510] ? remove_files.isra.1+0x190/0x190 [ 1093.464170] ? up_write+0x7b/0x220 [ 1093.464187] ? up_read+0x110/0x110 [ 1093.464203] ? down_read+0x1d0/0x1d0 [ 1093.464234] sysfs_create_group+0x1f/0x30 [ 1093.464253] lo_ioctl+0x1310/0x1d80 [ 1093.464279] ? lo_rw_aio_complete+0x470/0x470 [ 1093.464297] blkdev_ioctl+0x9ac/0x2010 [ 1093.464318] ? blkpg_ioctl+0xc10/0xc10 [ 1093.476034] ? lock_downgrade+0x900/0x900 17:14:04 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x40000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1093.487311] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1093.487566] ? check_preemption_disabled+0x48/0x200 [ 1093.501925] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1093.504056] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1093.504071] ? kasan_check_read+0x11/0x20 [ 1093.504088] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1093.504105] ? rcu_bh_qs+0xc0/0xc0 [ 1093.504139] ? __fget+0x4d1/0x740 [ 1093.504162] ? ksys_dup3+0x680/0x680 [ 1093.504180] ? kasan_check_write+0x14/0x20 17:14:04 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7a}, 0x0) [ 1093.504205] block_ioctl+0xee/0x130 [ 1093.504219] ? blkdev_fallocate+0x400/0x400 [ 1093.504241] do_vfs_ioctl+0x1de/0x1720 [ 1093.568385] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1093.573963] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1093.579292] ? ioctl_preallocate+0x300/0x300 [ 1093.583774] ? memset+0x31/0x40 [ 1093.587086] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1093.587956] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1093.592658] ? smack_file_ioctl+0x210/0x3c0 [ 1093.592674] ? fget_raw+0x20/0x20 [ 1093.592692] ? smack_file_lock+0x2e0/0x2e0 [ 1093.592708] ? rcu_read_lock_sched_held+0x108/0x120 [ 1093.592742] ? do_syscall_64+0x9a/0x820 [ 1093.618168] ? do_syscall_64+0x9a/0x820 [ 1093.626152] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1093.626170] ? security_file_ioctl+0x94/0xc0 [ 1093.626190] ksys_ioctl+0xa9/0xd0 [ 1093.626210] __x64_sys_ioctl+0x73/0xb0 [ 1093.626229] do_syscall_64+0x1b9/0x820 [ 1093.626246] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1093.626275] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1093.657806] ? trace_hardirqs_on_caller+0x310/0x310 [ 1093.662878] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1093.667933] ? recalc_sigpending_tsk+0x180/0x180 [ 1093.672729] ? kasan_check_write+0x14/0x20 [ 1093.677058] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1093.681945] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1093.687160] RIP: 0033:0x4573e7 [ 1093.690388] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1093.709528] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1093.717281] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1093.724581] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1093.731882] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1093.739180] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1093.746495] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1093.764539] input: syz0 as /devices/virtual/input/input175 [ 1093.855783] gfs2: not a GFS2 filesystem 17:14:05 executing program 2 (fault-call:2 fault-nth:18): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:05 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830420200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:05 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:05 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf}, 0x0) 17:14:05 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x3}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:05 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:05 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830520200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1093.975898] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1094.022538] input: syz0 as /devices/virtual/input/input176 [ 1094.038367] FAULT_INJECTION: forcing a failure. 17:14:05 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x200000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1094.038367] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1094.050341] CPU: 0 PID: 5461 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1094.057565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1094.066941] Call Trace: [ 1094.069585] dump_stack+0x1c4/0x2b4 [ 1094.073259] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1094.073284] ? lock_downgrade+0x900/0x900 [ 1094.073311] should_fail.cold.4+0xa/0x17 [ 1094.073337] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1094.082760] ? mark_held_locks+0xc7/0x130 [ 1094.096132] ? lock_downgrade+0x900/0x900 [ 1094.100337] ? mark_held_locks+0x130/0x130 [ 1094.104621] ? vprintk_emit+0x33d/0x930 [ 1094.108660] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1094.114156] ? kasan_check_write+0x14/0x20 [ 1094.118427] ? do_raw_spin_lock+0xc1/0x200 [ 1094.122707] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1094.128282] ? check_preemption_disabled+0x48/0x200 [ 1094.133347] ? debug_smp_processor_id+0x1c/0x20 [ 1094.138050] ? perf_trace_lock+0x14d/0x7a0 17:14:05 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830620200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1094.142326] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1094.147906] ? should_fail+0x22d/0xd01 [ 1094.151826] ? zap_class+0x640/0x640 [ 1094.155608] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1094.160750] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1094.166375] ? wake_up_klogd+0x11a/0x180 [ 1094.170478] __alloc_pages_nodemask+0x34b/0xde0 [ 1094.175183] ? __down_trylock_console_sem+0x155/0x200 [ 1094.180420] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1094.185493] ? find_held_lock+0x36/0x1c0 [ 1094.189697] ? ___might_sleep+0x1ed/0x300 17:14:05 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x2}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1094.193890] ? trace_hardirqs_off+0xb8/0x310 [ 1094.198340] cache_grow_begin+0x91/0x8c0 [ 1094.202438] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1094.208007] ? check_preemption_disabled+0x48/0x200 [ 1094.213255] kmem_cache_alloc_trace+0x67e/0x750 [ 1094.218006] kobject_uevent_env+0x2f3/0x101e [ 1094.222484] kobject_uevent+0x1f/0x24 [ 1094.226335] lo_ioctl+0x138e/0x1d80 [ 1094.230006] ? lo_rw_aio_complete+0x470/0x470 [ 1094.234557] blkdev_ioctl+0x9ac/0x2010 [ 1094.238484] ? blkpg_ioctl+0xc10/0xc10 [ 1094.242404] ? lock_downgrade+0x900/0x900 17:14:05 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6c00000000000000}, 0x0) [ 1094.246593] ? check_preemption_disabled+0x48/0x200 [ 1094.246619] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1094.246634] ? kasan_check_read+0x11/0x20 [ 1094.246652] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1094.246670] ? rcu_bh_qs+0xc0/0xc0 [ 1094.246703] ? __fget+0x4d1/0x740 [ 1094.270658] ? ksys_dup3+0x680/0x680 [ 1094.270680] ? kasan_check_write+0x14/0x20 [ 1094.270707] block_ioctl+0xee/0x130 [ 1094.270725] ? blkdev_fallocate+0x400/0x400 [ 1094.270744] do_vfs_ioctl+0x1de/0x1720 [ 1094.270762] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1094.270784] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1094.282404] ? ioctl_preallocate+0x300/0x300 [ 1094.282426] ? memset+0x31/0x40 [ 1094.290412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1094.290433] ? smack_file_ioctl+0x210/0x3c0 [ 1094.290448] ? fget_raw+0x20/0x20 [ 1094.290466] ? smack_file_lock+0x2e0/0x2e0 [ 1094.290482] ? rcu_read_lock_sched_held+0x108/0x120 [ 1094.290509] ? do_syscall_64+0x9a/0x820 [ 1094.339861] ? do_syscall_64+0x9a/0x820 17:14:05 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2834820200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1094.343910] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1094.349488] ? security_file_ioctl+0x94/0xc0 [ 1094.349512] ksys_ioctl+0xa9/0xd0 [ 1094.349536] __x64_sys_ioctl+0x73/0xb0 [ 1094.349569] do_syscall_64+0x1b9/0x820 [ 1094.349586] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1094.349618] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1094.375652] ? trace_hardirqs_on_caller+0x310/0x310 [ 1094.380711] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1094.385767] ? recalc_sigpending_tsk+0x180/0x180 [ 1094.390573] ? kasan_check_write+0x14/0x20 [ 1094.394889] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1094.399777] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1094.399793] RIP: 0033:0x4573e7 [ 1094.399811] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1094.399820] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1094.399837] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1094.399846] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1094.399863] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1094.449518] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1094.449534] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1094.501152] gfs2: not a GFS2 filesystem [ 1094.507475] input: syz0 as /devices/virtual/input/input177 17:14:05 executing program 2 (fault-call:2 fault-nth:19): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:05 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:05 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x6}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:05 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0) 17:14:05 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830025200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:06 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f00000000c0)={'syz1\x00', {0x0, 0x1, 0x40, 0x2}, 0x30, [0x1, 0x3, 0x3, 0x74, 0xb28, 0x3f, 0x6, 0x79fd4c47, 0x3, 0x1, 0x1000, 0x20, 0x7, 0x8001, 0x2, 0x99, 0x3ff, 0x0, 0x401, 0x3ff, 0x2, 0x2, 0x1ed600000, 0x0, 0x7, 0x3, 0x5, 0x7ff, 0x4, 0x7, 0xc98, 0x0, 0x5, 0x1d, 0x5, 0x0, 0x8, 0x0, 0x4, 0x7, 0x200000000000, 0x7, 0x5, 0x2, 0x4, 0x8, 0x401c5643, 0x800, 0xfffffffffffffffd, 0x9, 0x4, 0x3, 0x0, 0x4, 0x6, 0x1, 0x100000001, 0x0, 0xea21, 0x5, 0x9, 0x1, 0x9, 0x5], [0x4, 0x6, 0x3f, 0x5, 0x1c, 0xfffffffffffffe01, 0x280000000000, 0x2dc, 0x6, 0x2, 0x1ee10000, 0x3, 0x8f, 0x3, 0x2, 0x9, 0xfbc6, 0x7, 0x43, 0x1, 0x81, 0x6, 0x1f, 0x10000, 0x40, 0x401, 0xe2, 0x40, 0x3ff, 0x20, 0x8, 0x0, 0x6, 0x7, 0x3, 0x9, 0x8, 0x6, 0x6, 0x4, 0x5, 0x2, 0x7ff, 0x3f, 0x8, 0x7, 0x100000000, 0x80, 0x0, 0x40, 0x0, 0x7, 0x2, 0x2df1, 0x7fffffff, 0xf9, 0x8001, 0x2a, 0x4, 0x0, 0x200, 0x7, 0x10000, 0x7], [0xffffffffffffffff, 0xff, 0x3f, 0xea0, 0x7ff, 0xff7, 0x80000001, 0xa0f3, 0x0, 0x8, 0x4, 0x1, 0x6, 0xfffffffffffffffc, 0x2, 0x7f, 0x807e, 0x9, 0x8, 0x200, 0x0, 0x200, 0x14, 0x8, 0x0, 0x6, 0x800, 0xebdd, 0x100000000, 0x7, 0x7, 0x7, 0x1ff, 0x100, 0x62a, 0x11, 0x5, 0x2, 0x7, 0xdb75, 0x0, 0x8000, 0xa703, 0x1, 0x5d35f057, 0x1, 0x1, 0x1, 0x3, 0x0, 0x7, 0x9, 0x10001, 0x80000000, 0x4, 0x8, 0x9, 0x0, 0x40, 0x200, 0xb1, 0xf581, 0x4, 0x7], [0x1d4800000000000, 0x7f, 0x101, 0x7, 0x6a, 0x100, 0xffffffffffffaedf, 0x6, 0x0, 0x0, 0x7, 0x1b07686d, 0x1, 0xfb2, 0x7ff, 0xfffffffffffffff7, 0xffffffff, 0x6, 0x6, 0x6, 0x5, 0xffff, 0x8, 0x3, 0xc0000, 0x800, 0x3, 0x2, 0xffffffffffff0000, 0x6d, 0x5, 0x8, 0xffffffffffffffff, 0x8727, 0x401, 0x2, 0x4, 0x2, 0x8000, 0xfffffffffffff801, 0x3, 0xfffffffffffffff9, 0x7, 0x5, 0x0, 0x5, 0xfffffffffffffffe, 0x5, 0x1000, 0x3, 0x392b, 0x2, 0x9, 0x1, 0x7, 0x6, 0x8, 0x7, 0x40004000000, 0x81, 0x40, 0x40, 0x3, 0x401]}, 0x45c) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:06 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf0}, 0x0) 17:14:06 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x4000000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:06 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:06 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830025200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1094.665359] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1094.742212] FAULT_INJECTION: forcing a failure. [ 1094.742212] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.757403] input: syz0 as /devices/virtual/input/input178 [ 1094.775670] CPU: 1 PID: 5499 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1094.782939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1094.792328] Call Trace: [ 1094.794964] dump_stack+0x1c4/0x2b4 [ 1094.798640] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1094.803890] should_fail.cold.4+0xa/0x17 [ 1094.808000] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1094.810709] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1094.813158] ? __save_stack_trace+0x8d/0xf0 [ 1094.825960] ? graph_lock+0x170/0x170 [ 1094.829812] ? graph_lock+0x170/0x170 [ 1094.833664] ? save_stack+0x43/0xd0 [ 1094.837322] ? kasan_kmalloc+0xc7/0xe0 [ 1094.841252] ? find_held_lock+0x36/0x1c0 [ 1094.845347] ? __lock_is_held+0xb5/0x140 [ 1094.849470] ? ___might_sleep+0x1ed/0x300 [ 1094.853652] ? graph_lock+0x170/0x170 [ 1094.857497] ? arch_local_save_flags+0x40/0x40 [ 1094.862116] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1094.867699] __should_failslab+0x124/0x180 [ 1094.871968] should_failslab+0x9/0x14 [ 1094.875799] kmem_cache_alloc_node_trace+0x270/0x740 [ 1094.880950] __kmalloc_node_track_caller+0x33/0x70 [ 1094.885934] __kmalloc_reserve.isra.39+0x41/0xe0 [ 1094.890747] __alloc_skb+0x155/0x770 [ 1094.894503] ? skb_scrub_packet+0x490/0x490 [ 1094.898897] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1094.903847] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1094.904724] ? kasan_check_read+0x11/0x20 [ 1094.904747] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1094.904765] ? rcu_bh_qs+0xc0/0xc0 [ 1094.904834] ? netlink_has_listeners+0x2cb/0x4a0 [ 1094.930948] ? netlink_tap_init_net+0x3d0/0x3d0 [ 1094.935673] alloc_uevent_skb+0x84/0x1da [ 1094.939781] kobject_uevent_env+0xa52/0x101e [ 1094.944230] kobject_uevent+0x1f/0x24 [ 1094.948065] lo_ioctl+0x138e/0x1d80 [ 1094.951738] ? lo_rw_aio_complete+0x470/0x470 [ 1094.956273] blkdev_ioctl+0x9ac/0x2010 [ 1094.960202] ? blkpg_ioctl+0xc10/0xc10 [ 1094.964136] ? lock_downgrade+0x900/0x900 [ 1094.968316] ? check_preemption_disabled+0x48/0x200 17:14:06 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x8211}, 0x0) 17:14:06 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1094.973403] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1094.979242] ? kasan_check_read+0x11/0x20 [ 1094.984209] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1094.989525] ? rcu_bh_qs+0xc0/0xc0 [ 1094.993128] ? __fget+0x4d1/0x740 [ 1094.996627] ? ksys_dup3+0x680/0x680 [ 1095.000387] ? kasan_check_write+0x14/0x20 [ 1095.004660] block_ioctl+0xee/0x130 [ 1095.008293] ? blkdev_fallocate+0x400/0x400 [ 1095.012618] do_vfs_ioctl+0x1de/0x1720 [ 1095.016512] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1095.022097] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1095.027420] ? ioctl_preallocate+0x300/0x300 [ 1095.031880] ? memset+0x31/0x40 [ 1095.035174] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1095.040730] ? smack_file_ioctl+0x210/0x3c0 [ 1095.045080] ? fget_raw+0x20/0x20 [ 1095.048577] ? smack_file_lock+0x2e0/0x2e0 [ 1095.052838] ? rcu_read_lock_sched_held+0x108/0x120 [ 1095.057898] ? do_syscall_64+0x9a/0x820 [ 1095.061892] ? do_syscall_64+0x9a/0x820 [ 1095.065888] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1095.071472] ? security_file_ioctl+0x94/0xc0 [ 1095.075930] ksys_ioctl+0xa9/0xd0 [ 1095.079405] __x64_sys_ioctl+0x73/0xb0 [ 1095.083324] do_syscall_64+0x1b9/0x820 [ 1095.087255] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1095.092640] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1095.097595] ? trace_hardirqs_on_caller+0x310/0x310 [ 1095.102625] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1095.107653] ? recalc_sigpending_tsk+0x180/0x180 [ 1095.112426] ? kasan_check_write+0x14/0x20 [ 1095.116693] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1095.121554] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1095.126747] RIP: 0033:0x4573e7 [ 1095.129957] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1095.148861] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.156588] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1095.163880] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1095.171169] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1095.178444] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1095.185732] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1095.197224] gfs2: not a GFS2 filesystem [ 1095.215015] input: syz0 as /devices/virtual/input/input179 17:14:06 executing program 2 (fault-call:2 fault-nth:20): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:06 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830060200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:06 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000002", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:06 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x7000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:06 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6800000000000000}, 0x0) 17:14:06 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, "73797a310000000000000000000000000000000000080300880a00000000000000000008860000000000000000fec53bd6000000000002000000000000018000"}) io_setup(0x1, &(0x7f0000000000)=0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) io_pgetevents(r1, 0x7, 0x4, &(0x7f00000000c0)=[{}, {}, {}, {}], &(0x7f0000000180)={r2, r3+30000000}, &(0x7f0000000200)={&(0x7f00000001c0)={0xaa8a}, 0x8}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:06 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:06 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x20000000}, 0x0) 17:14:06 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283005f200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:06 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x6000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1095.372783] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1095.527341] FAULT_INJECTION: forcing a failure. [ 1095.527341] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.566460] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1095.578072] CPU: 1 PID: 5542 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1095.593650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1095.603029] Call Trace: [ 1095.605653] dump_stack+0x1c4/0x2b4 [ 1095.609332] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1095.614617] should_fail.cold.4+0xa/0x17 [ 1095.618730] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1095.623880] ? graph_lock+0x170/0x170 17:14:06 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:06 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x3}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1095.627721] ? lock_release+0x970/0x970 [ 1095.631754] ? arch_local_save_flags+0x40/0x40 [ 1095.636416] ? graph_lock+0x170/0x170 [ 1095.640263] ? find_held_lock+0x36/0x1c0 [ 1095.644372] ? __lock_is_held+0xb5/0x140 [ 1095.648488] ? ___might_sleep+0x1ed/0x300 [ 1095.652677] ? put_dec+0x3b/0xf0 [ 1095.656106] ? arch_local_save_flags+0x40/0x40 [ 1095.660724] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1095.666303] ? graph_lock+0x170/0x170 [ 1095.670159] __should_failslab+0x124/0x180 [ 1095.674433] should_failslab+0x9/0x14 [ 1095.678311] kmem_cache_alloc_node+0x26e/0x730 [ 1095.682938] ? find_held_lock+0x36/0x1c0 [ 1095.687035] __alloc_skb+0x119/0x770 [ 1095.690798] ? skb_scrub_packet+0x490/0x490 [ 1095.695153] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1095.700963] ? kasan_check_read+0x11/0x20 [ 1095.705124] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1095.710425] ? rcu_bh_qs+0xc0/0xc0 [ 1095.714063] ? netlink_has_listeners+0x2cb/0x4a0 [ 1095.718835] ? netlink_tap_init_net+0x3d0/0x3d0 [ 1095.723537] alloc_uevent_skb+0x84/0x1da [ 1095.727621] kobject_uevent_env+0xa52/0x101e [ 1095.732063] kobject_uevent+0x1f/0x24 [ 1095.735890] lo_ioctl+0x138e/0x1d80 [ 1095.739529] ? lo_rw_aio_complete+0x470/0x470 [ 1095.744065] blkdev_ioctl+0x9ac/0x2010 [ 1095.747977] ? blkpg_ioctl+0xc10/0xc10 [ 1095.751896] ? lock_downgrade+0x900/0x900 [ 1095.756128] ? check_preemption_disabled+0x48/0x200 [ 1095.761695] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1095.767807] ? kasan_check_read+0x11/0x20 [ 1095.771974] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1095.777285] ? rcu_bh_qs+0xc0/0xc0 [ 1095.780838] ? __fget+0x4d1/0x740 [ 1095.784433] ? ksys_dup3+0x680/0x680 [ 1095.788185] ? kasan_check_write+0x14/0x20 [ 1095.792453] block_ioctl+0xee/0x130 [ 1095.796106] ? blkdev_fallocate+0x400/0x400 [ 1095.800853] do_vfs_ioctl+0x1de/0x1720 [ 1095.804750] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1095.810292] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1095.815590] ? ioctl_preallocate+0x300/0x300 [ 1095.820004] ? memset+0x31/0x40 [ 1095.823306] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1095.828878] ? smack_file_ioctl+0x210/0x3c0 [ 1095.833201] ? fget_raw+0x20/0x20 [ 1095.836667] ? smack_file_lock+0x2e0/0x2e0 [ 1095.840914] ? rcu_read_lock_sched_held+0x108/0x120 [ 1095.845967] ? do_syscall_64+0x9a/0x820 [ 1095.849961] ? do_syscall_64+0x9a/0x820 [ 1095.853953] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1095.859498] ? security_file_ioctl+0x94/0xc0 [ 1095.863918] ksys_ioctl+0xa9/0xd0 [ 1095.867390] __x64_sys_ioctl+0x73/0xb0 [ 1095.871295] do_syscall_64+0x1b9/0x820 [ 1095.875206] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1095.880601] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1095.885540] ? trace_hardirqs_on_caller+0x310/0x310 [ 1095.890608] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1095.895656] ? recalc_sigpending_tsk+0x180/0x180 [ 1095.900416] ? kasan_check_write+0x14/0x20 [ 1095.904659] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1095.909530] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1095.914729] RIP: 0033:0x4573e7 [ 1095.917962] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1095.936891] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.944605] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1095.951874] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1095.959144] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1095.966411] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1095.973681] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1095.988025] gfs2: not a GFS2 filesystem [ 1095.992413] input: syz1 as /devices/virtual/input/input180 [ 1096.003926] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1096.014323] input: syz1 as /devices/virtual/input/input181 17:14:07 executing program 2 (fault-call:2 fault-nth:21): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:07 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x40000000}, 0x0) 17:14:07 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283000a200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:07 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x600}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:07 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1096.107667] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1096.238097] FAULT_INJECTION: forcing a failure. [ 1096.238097] name failslab, interval 1, probability 0, space 0, times 0 [ 1096.253111] CPU: 0 PID: 5577 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1096.260358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.269742] Call Trace: [ 1096.272370] dump_stack+0x1c4/0x2b4 [ 1096.276046] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1096.281289] should_fail.cold.4+0xa/0x17 [ 1096.285423] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1096.290571] ? rcu_bh_qs+0xc0/0xc0 [ 1096.294180] ? unwind_dump+0x190/0x190 [ 1096.298102] ? graph_lock+0x170/0x170 [ 1096.301954] ? is_bpf_text_address+0xd3/0x170 [ 1096.306485] ? graph_lock+0x170/0x170 [ 1096.310320] ? check_preemption_disabled+0x48/0x200 [ 1096.315414] ? find_held_lock+0x36/0x1c0 [ 1096.319949] ? __lock_is_held+0xb5/0x140 [ 1096.324060] ? ___might_sleep+0x1ed/0x300 [ 1096.328247] ? kobject_uevent+0x1f/0x24 [ 1096.332265] ? arch_local_save_flags+0x40/0x40 [ 1096.336890] ? do_vfs_ioctl+0x1de/0x1720 [ 1096.341005] ? ksys_ioctl+0xa9/0xd0 [ 1096.344652] ? __x64_sys_ioctl+0x73/0xb0 [ 1096.348729] __should_failslab+0x124/0x180 [ 1096.353002] should_failslab+0x9/0x14 [ 1096.356826] kmem_cache_alloc+0x2be/0x730 [ 1096.361019] skb_clone+0x1bb/0x500 [ 1096.364578] ? skb_split+0x11e0/0x11e0 [ 1096.368494] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1096.373551] ? netlink_trim+0x1b4/0x380 [ 1096.377542] ? netlink_skb_destructor+0x210/0x210 [ 1096.382428] netlink_broadcast_filtered+0x110f/0x1680 [ 1096.387647] ? __netlink_sendskb+0xd0/0xd0 [ 1096.391913] ? kasan_check_read+0x11/0x20 [ 1096.396098] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1096.401406] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1096.406969] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 1096.412551] ? refcount_add_not_zero_checked+0x330/0x330 [ 1096.418055] ? netlink_has_listeners+0x2cb/0x4a0 [ 1096.422830] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1096.427882] netlink_broadcast+0x3a/0x50 [ 1096.432063] kobject_uevent_env+0xa83/0x101e [ 1096.436514] kobject_uevent+0x1f/0x24 [ 1096.440333] lo_ioctl+0x138e/0x1d80 [ 1096.443976] ? lo_rw_aio_complete+0x470/0x470 [ 1096.448483] blkdev_ioctl+0x9ac/0x2010 [ 1096.452382] ? blkpg_ioctl+0xc10/0xc10 [ 1096.456276] ? lock_downgrade+0x900/0x900 [ 1096.460437] ? check_preemption_disabled+0x48/0x200 [ 1096.465464] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1096.471270] ? kasan_check_read+0x11/0x20 [ 1096.475444] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1096.480727] ? rcu_bh_qs+0xc0/0xc0 [ 1096.484275] ? __fget+0x4d1/0x740 [ 1096.487733] ? ksys_dup3+0x680/0x680 [ 1096.491452] ? kasan_check_write+0x14/0x20 [ 1096.495699] block_ioctl+0xee/0x130 [ 1096.499333] ? blkdev_fallocate+0x400/0x400 [ 1096.503681] do_vfs_ioctl+0x1de/0x1720 [ 1096.507581] ? rcu_lockdep_current_cpu_online+0x1f0/0x2d0 [ 1096.513126] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1096.518413] ? ioctl_preallocate+0x300/0x300 [ 1096.522847] ? memset+0x31/0x40 [ 1096.526156] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1096.531698] ? smack_file_ioctl+0x210/0x3c0 [ 1096.536030] ? fget_raw+0x20/0x20 [ 1096.539485] ? smack_file_lock+0x2e0/0x2e0 [ 1096.543725] ? rcu_read_lock_sched_held+0x108/0x120 [ 1096.548750] ? do_syscall_64+0x9a/0x820 [ 1096.552725] ? do_syscall_64+0x9a/0x820 [ 1096.556725] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1096.562283] ? security_file_ioctl+0x94/0xc0 [ 1096.566700] ksys_ioctl+0xa9/0xd0 [ 1096.570193] __x64_sys_ioctl+0x73/0xb0 [ 1096.574109] do_syscall_64+0x1b9/0x820 [ 1096.578030] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1096.583422] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1096.588366] ? trace_hardirqs_on_caller+0x310/0x310 [ 1096.593392] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1096.598419] ? recalc_sigpending_tsk+0x180/0x180 [ 1096.603195] ? kasan_check_write+0x14/0x20 [ 1096.607443] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1096.612314] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1096.617513] RIP: 0033:0x4573e7 [ 1096.620705] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1096.639619] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1096.647592] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004573e7 [ 1096.654877] RDX: 0000000000000006 RSI: 0000000000004c00 RDI: 0000000000000007 [ 1096.662162] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1096.669436] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1096.676722] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:08 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:08 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x7}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:08 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6800}, 0x0) 17:14:08 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000003", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:08 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa28300200a0a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1096.690217] gfs2: not a GFS2 filesystem 17:14:08 executing program 2 (fault-call:2 fault-nth:22): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:08 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:08 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020250a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1096.712713] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1096.774906] input: syz0 as /devices/virtual/input/input182 [ 1096.815523] FAULT_INJECTION: forcing a failure. [ 1096.815523] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1096.827403] CPU: 0 PID: 5595 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1096.834911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.844300] Call Trace: [ 1096.846924] dump_stack+0x1c4/0x2b4 [ 1096.850595] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1096.855844] should_fail.cold.4+0xa/0x17 [ 1096.859950] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1096.865104] ? kobject_uevent_env+0xf76/0x101e [ 1096.869721] ? wait_for_completion+0x8a0/0x8a0 [ 1096.874349] ? mark_held_locks+0x130/0x130 [ 1096.878623] ? kobject_uevent_env+0x100d/0x101e [ 1096.883336] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1096.883358] ? check_preemption_disabled+0x48/0x200 [ 1096.883379] ? debug_smp_processor_id+0x1c/0x20 [ 1096.883395] ? perf_trace_lock+0x14d/0x7a0 [ 1096.883413] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1096.883430] ? should_fail+0x22d/0xd01 [ 1096.883444] ? zap_class+0x640/0x640 [ 1096.883462] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1096.883484] ? blkpg_ioctl+0xc10/0xc10 [ 1096.897217] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1096.898829] ? lock_downgrade+0x900/0x900 [ 1096.898878] __alloc_pages_nodemask+0x34b/0xde0 [ 1096.916269] ? kasan_check_read+0x11/0x20 [ 1096.916291] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1096.916314] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1096.956989] ? find_held_lock+0x36/0x1c0 [ 1096.961107] ? ___might_sleep+0x1ed/0x300 [ 1096.965290] ? trace_hardirqs_off+0xb8/0x310 [ 1096.965315] cache_grow_begin+0x91/0x8c0 [ 1096.965332] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1096.965351] ? check_preemption_disabled+0x48/0x200 [ 1096.965374] kmem_cache_alloc+0x665/0x730 [ 1096.965391] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1096.965408] ? fget_raw+0x20/0x20 [ 1096.965430] getname_flags+0xd0/0x5a0 [ 1096.988653] do_mkdirat+0xc5/0x310 [ 1097.001505] ? __ia32_sys_mknod+0xb0/0xb0 [ 1097.001523] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1097.001560] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1097.020099] ? ksys_ioctl+0x81/0xd0 [ 1097.023767] __x64_sys_mkdir+0x5c/0x80 [ 1097.027692] do_syscall_64+0x1b9/0x820 [ 1097.031606] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1097.037021] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1097.037042] ? trace_hardirqs_on_caller+0x310/0x310 [ 1097.037058] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1097.037074] ? recalc_sigpending_tsk+0x180/0x180 [ 1097.037089] ? kasan_check_write+0x14/0x20 [ 1097.037112] ? trace_hardirqs_off_thunk+0x1a/0x1c 17:14:08 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x600}, 0x0) 17:14:08 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0xfeffff07}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:08 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6c00}, 0x0) 17:14:08 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020600a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1097.037137] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1097.056946] RIP: 0033:0x4569b7 [ 1097.056965] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1097.056974] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1097.093413] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1097.093424] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1097.093433] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1097.093440] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1097.093449] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1097.095587] gfs2: not a GFS2 filesystem [ 1097.165477] input: syz0 as /devices/virtual/input/input183 17:14:08 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x100000000000, 0x0, 0x0, 0x0, 0x200000000000}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1e) r1 = dup(r0) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000000000005704000600000040000000000000000020000000ffffffff9614000000000000000000000000000000000000000000009e1caa4b5b304258ee165dacb96358ee2875e06bff3ac70ca9d683d73a9babe5aa44640055ee6b42fafe25ccb4f5f033c5f94db7b30000000087c0a146e19b789ca7e8adeb62fb18ef558f5c8588526da7a1a17fe2c3dedece2800000000000000"]) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:08 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:08 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x4000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:08 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x34000}, 0x0) 17:14:08 executing program 2 (fault-call:2 fault-nth:23): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:08 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa28300205f0a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1097.264324] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1097.311051] FAULT_INJECTION: forcing a failure. [ 1097.311051] name failslab, interval 1, probability 0, space 0, times 0 [ 1097.331988] input: syz0 as /devices/virtual/input/input184 [ 1097.344602] input: syz0 as /devices/virtual/input/input185 [ 1097.350666] CPU: 1 PID: 5618 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1097.357887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1097.367264] Call Trace: [ 1097.369919] dump_stack+0x1c4/0x2b4 [ 1097.373588] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1097.373619] should_fail.cold.4+0xa/0x17 [ 1097.373641] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1097.382945] ? blkpg_ioctl+0xc10/0xc10 [ 1097.382962] ? lock_downgrade+0x900/0x900 [ 1097.382978] ? check_preemption_disabled+0x48/0x200 [ 1097.382996] ? graph_lock+0x170/0x170 [ 1097.383009] ? kasan_check_read+0x11/0x20 [ 1097.383034] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1097.414473] ? find_held_lock+0x36/0x1c0 [ 1097.418700] ? ___might_sleep+0x1ed/0x300 [ 1097.422884] ? arch_local_save_flags+0x40/0x40 [ 1097.427500] ? block_ioctl+0xee/0x130 [ 1097.431355] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1097.436933] __should_failslab+0x124/0x180 [ 1097.441204] should_failslab+0x9/0x14 [ 1097.445041] kmem_cache_alloc+0x2be/0x730 [ 1097.449226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1097.454807] ? smack_file_ioctl+0x210/0x3c0 [ 1097.459232] ? fget_raw+0x20/0x20 [ 1097.462718] ? smack_file_lock+0x2e0/0x2e0 [ 1097.467092] getname_flags+0xd0/0x5a0 [ 1097.470936] do_mkdirat+0xc5/0x310 [ 1097.474519] ? __ia32_sys_mknod+0xb0/0xb0 [ 1097.478706] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1097.484106] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1097.489613] ? ksys_ioctl+0x81/0xd0 [ 1097.493282] __x64_sys_mkdir+0x5c/0x80 [ 1097.497220] do_syscall_64+0x1b9/0x820 [ 1097.501147] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1097.506557] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1097.511528] ? trace_hardirqs_on_caller+0x310/0x310 [ 1097.516604] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1097.521678] ? recalc_sigpending_tsk+0x180/0x180 [ 1097.526483] ? kasan_check_write+0x14/0x20 [ 1097.530761] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1097.535678] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1097.540901] RIP: 0033:0x4569b7 [ 1097.544119] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1097.563154] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1097.571004] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1097.578303] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1097.585607] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a 17:14:08 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf0ffffffffffff}, 0x0) 17:14:08 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x7000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:08 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283002020050012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:08 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1097.592906] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1097.600211] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1097.634585] nla_parse: 29 callbacks suppressed 17:14:09 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x700}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:09 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x68000000}, 0x0) [ 1097.634596] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1097.664147] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1097.686112] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1097.732572] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:09 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_stats={0x7}}) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01"]) close(r1) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x7, {0x400, 0x0, 0x4, 0x3, 0x7f}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x3ef44248}, 'syz0\x00'}) r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x985, 0x200) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000100)=[{0x3, 0x1f}], 0x1) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:09 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283002020100012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:09 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:09 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x6}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:09 executing program 2 (fault-call:2 fault-nth:24): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:09 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf000}, 0x0) 17:14:09 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x2}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1097.831638] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1097.849521] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:09 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000002", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:09 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283002020250012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1097.905654] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1097.964388] FAULT_INJECTION: forcing a failure. [ 1097.964388] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1097.976385] CPU: 1 PID: 5650 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1097.983618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1097.993002] Call Trace: [ 1097.995627] dump_stack+0x1c4/0x2b4 [ 1097.999533] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1098.005501] should_fail.cold.4+0xa/0x17 [ 1098.009783] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1098.015069] ? kobject_uevent_env+0xf76/0x101e [ 1098.019725] ? wait_for_completion+0x8a0/0x8a0 [ 1098.024557] ? mark_held_locks+0x130/0x130 [ 1098.028834] ? kobject_uevent_env+0x100d/0x101e [ 1098.034092] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1098.039949] ? check_preemption_disabled+0x48/0x200 [ 1098.039977] ? debug_smp_processor_id+0x1c/0x20 [ 1098.039998] ? perf_trace_lock+0x14d/0x7a0 [ 1098.054145] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1098.059891] ? should_fail+0x22d/0xd01 [ 1098.059910] ? zap_class+0x640/0x640 [ 1098.059941] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1098.072977] ? blkpg_ioctl+0xc10/0xc10 [ 1098.076903] ? lock_downgrade+0x900/0x900 [ 1098.080376] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1098.081101] __alloc_pages_nodemask+0x34b/0xde0 [ 1098.081131] ? kasan_check_read+0x11/0x20 [ 1098.099158] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1098.105127] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1098.110481] ? find_held_lock+0x36/0x1c0 [ 1098.110526] ? ___might_sleep+0x1ed/0x300 [ 1098.119048] ? trace_hardirqs_off+0xb8/0x310 [ 1098.123506] cache_grow_begin+0x91/0x8c0 [ 1098.127797] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1098.133383] ? check_preemption_disabled+0x48/0x200 [ 1098.133409] kmem_cache_alloc+0x665/0x730 [ 1098.133427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1098.133443] ? fget_raw+0x20/0x20 [ 1098.133465] getname_flags+0xd0/0x5a0 [ 1098.156609] do_mkdirat+0xc5/0x310 [ 1098.160186] ? __ia32_sys_mknod+0xb0/0xb0 [ 1098.164378] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1098.169776] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1098.175263] ? ksys_ioctl+0x81/0xd0 [ 1098.178934] __x64_sys_mkdir+0x5c/0x80 [ 1098.182865] do_syscall_64+0x1b9/0x820 [ 1098.187263] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1098.192669] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1098.197640] ? trace_hardirqs_on_caller+0x310/0x310 [ 1098.202720] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1098.208221] ? recalc_sigpending_tsk+0x180/0x180 17:14:09 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0xfeffff0700000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:09 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x6000}, 0x0) 17:14:09 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0xffffffff00000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1098.208239] ? kasan_check_write+0x14/0x20 [ 1098.208264] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1098.208290] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1098.222407] RIP: 0033:0x4569b7 [ 1098.222426] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1098.222434] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1098.222451] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1098.222467] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1098.231184] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1098.231195] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1098.231203] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1098.269013] gfs2: not a GFS2 filesystem [ 1098.274589] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1098.291320] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1098.322109] input: syz0 as /devices/virtual/input/input186 [ 1098.353375] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1098.389611] input: syz0 as /devices/virtual/input/input187 17:14:09 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f00000000c0)={0x4, 0x9, {0x0, 0x20, 0x8, {0x7, 0x10001}, {0x9, 0x8}, @cond=[{0x7ff, 0x7ff, 0x7, 0x583, 0x9}, {0x600, 0x3ff, 0x8a, 0x7bb36ab, 0x2, 0x6}]}, {0x0, 0x8, 0x9, {0xc7, 0x3}, {0x10001, 0x2}, @ramp={0x5, 0x2, {0x8, 0x100000001, 0x7, 0x10001}}}}) 17:14:09 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x2c8}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:09 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x2000}, 0x0) 17:14:09 executing program 2 (fault-call:2 fault-nth:25): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:09 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200c0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:09 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000005", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1098.519182] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1098.520902] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1098.539532] FAULT_INJECTION: forcing a failure. [ 1098.539532] name failslab, interval 1, probability 0, space 0, times 0 [ 1098.539631] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1098.552497] CPU: 0 PID: 5673 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 17:14:09 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1098.566984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1098.576554] Call Trace: [ 1098.579177] dump_stack+0x1c4/0x2b4 [ 1098.582836] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1098.588091] should_fail.cold.4+0xa/0x17 [ 1098.593092] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1098.598234] ? debug_smp_processor_id+0x1c/0x20 [ 1098.602930] ? perf_trace_lock+0x14d/0x7a0 [ 1098.607198] ? graph_lock+0x170/0x170 [ 1098.611040] ? graph_lock+0x170/0x170 [ 1098.614887] ? smk_curacc+0x7f/0xa0 [ 1098.618572] ? find_held_lock+0x36/0x1c0 [ 1098.622763] ? __lock_is_held+0xb5/0x140 [ 1098.627236] ? ___might_sleep+0x1ed/0x300 [ 1098.631858] ? arch_local_save_flags+0x40/0x40 [ 1098.631892] __should_failslab+0x124/0x180 [ 1098.631912] should_failslab+0x9/0x14 [ 1098.644578] kmem_cache_alloc+0x2be/0x730 [ 1098.648772] __d_alloc+0xc8/0xcc0 [ 1098.648796] ? shrink_dcache_for_umount+0x2b0/0x2b0 [ 1098.648825] ? d_alloc_parallel+0x1f40/0x1f40 [ 1098.661827] ? d_lookup+0x269/0x340 [ 1098.665503] ? d_lookup+0x269/0x340 17:14:10 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020205f0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1098.669181] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1098.673809] ? lookup_dcache+0x22/0x140 [ 1098.678283] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1098.683785] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1098.689010] d_alloc+0x96/0x380 [ 1098.692317] ? __d_lookup+0x9e0/0x9e0 [ 1098.696240] ? __d_alloc+0xcc0/0xcc0 [ 1098.698194] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1098.700179] __lookup_hash+0xd9/0x190 [ 1098.700202] filename_create+0x1e5/0x5b0 [ 1098.700225] ? kern_path_mountpoint+0x40/0x40 [ 1098.700246] ? fget_raw+0x20/0x20 [ 1098.725135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1098.730822] ? getname_flags+0x26e/0x5a0 [ 1098.734930] do_mkdirat+0xda/0x310 [ 1098.734955] ? __ia32_sys_mknod+0xb0/0xb0 [ 1098.734972] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1098.734991] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1098.735006] ? ksys_ioctl+0x81/0xd0 [ 1098.735027] __x64_sys_mkdir+0x5c/0x80 [ 1098.735049] do_syscall_64+0x1b9/0x820 [ 1098.735070] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe 17:14:10 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1098.735089] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1098.735105] ? trace_hardirqs_on_caller+0x310/0x310 [ 1098.735122] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1098.735145] ? recalc_sigpending_tsk+0x180/0x180 [ 1098.742871] ? kasan_check_write+0x14/0x20 [ 1098.742900] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1098.742925] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1098.742939] RIP: 0033:0x4569b7 17:14:10 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0xc802000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1098.742956] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1098.742964] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1098.742988] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1098.795129] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1098.795207] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1098.828533] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a 17:14:10 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283002020090012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:10 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x48000000}, 0x0) [ 1098.828554] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1098.828563] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1098.896727] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1098.928300] input: syz0 as /devices/virtual/input/input188 [ 1098.941798] input: syz0 as /devices/virtual/input/input189 17:14:10 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x400000000002f, {0xfffffffffffffffe, 0x7fff, 0x1fffffffffc, 0x0, 0x1}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x10000, 0x0) ioctl$EVIOCGABS3F(r1, 0x8018457f, &(0x7f00000000c0)=""/105) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:10 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:10 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xffffff7f}, 0x0) 17:14:10 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x600000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:10 executing program 2 (fault-call:2 fault-nth:26): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:10 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa283002020630012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:10 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a4812000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1099.142668] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1099.180011] input: syz0 as /devices/virtual/input/input190 17:14:10 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4000000}, 0x0) 17:14:10 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000006", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:10 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x1000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1099.205823] FAULT_INJECTION: forcing a failure. [ 1099.205823] name failslab, interval 1, probability 0, space 0, times 0 [ 1099.229690] input: syz0 as /devices/virtual/input/input191 [ 1099.249696] CPU: 1 PID: 5697 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1099.256945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1099.256955] Call Trace: [ 1099.256987] dump_stack+0x1c4/0x2b4 [ 1099.257015] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1099.257034] ? mark_held_locks+0xc7/0x130 [ 1099.257064] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1099.288409] should_fail.cold.4+0xa/0x17 [ 1099.288426] ? kasan_check_read+0x11/0x20 [ 1099.288448] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1099.301836] ? kasan_check_write+0x14/0x20 [ 1099.301861] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 1099.301879] ? graph_lock+0x170/0x170 [ 1099.301906] ? vfs_mkdir+0x42e/0x6b0 [ 1099.318889] ? do_mkdirat+0x27a/0x310 [ 1099.322724] ? __x64_sys_mkdir+0x5c/0x80 [ 1099.322757] ? do_syscall_64+0x1b9/0x820 [ 1099.322785] ? debug_object_free+0x690/0x690 [ 1099.322810] ? check_preemption_disabled+0x48/0x200 [ 1099.322840] ? __lock_is_held+0xb5/0x140 [ 1099.322869] ? graph_lock+0x170/0x170 [ 1099.331301] ? ___might_sleep+0x1ed/0x300 [ 1099.344996] ? arch_local_save_flags+0x40/0x40 [ 1099.345017] ? __lock_is_held+0xb5/0x140 [ 1099.345045] __should_failslab+0x124/0x180 [ 1099.345064] should_failslab+0x9/0x14 [ 1099.353064] kmem_cache_alloc+0x2be/0x730 [ 1099.353083] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1099.353098] ? map_id_range_down+0x1ee/0x430 [ 1099.353125] new_inode_smack+0x20/0xb0 [ 1099.353146] smack_inode_alloc_security+0x92/0x100 [ 1099.392825] security_inode_alloc+0x73/0xd0 [ 1099.397406] inode_init_always+0x68f/0xd80 [ 1099.401774] ? __address_space_init_once+0x240/0x240 [ 1099.406969] ? get_cached_acl+0x35c/0x460 [ 1099.411336] ? lock_downgrade+0x900/0x900 [ 1099.411365] ? check_preemption_disabled+0x48/0x200 [ 1099.411395] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1099.411416] ? kasan_check_read+0x11/0x20 [ 1099.432304] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1099.438261] ? rcu_bh_qs+0xc0/0xc0 [ 1099.442371] ? graph_lock+0x170/0x170 [ 1099.446217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1099.451971] ? check_preemption_disabled+0x48/0x200 [ 1099.457114] ? check_preemption_disabled+0x48/0x200 [ 1099.462609] alloc_inode+0x80/0x190 [ 1099.466287] new_inode_pseudo+0x71/0x1a0 [ 1099.470395] ? prune_icache_sb+0x1c0/0x1c0 [ 1099.474772] new_inode+0x1c/0x40 [ 1099.478268] __ext4_new_inode+0x4cd/0x65b0 [ 1099.482605] ? perf_trace_lock+0x14d/0x7a0 [ 1099.482637] ? ext4_free_inode+0x1a10/0x1a10 [ 1099.482659] ? find_held_lock+0x36/0x1c0 [ 1099.482688] ? is_bpf_text_address+0xac/0x170 [ 1099.491396] ? lock_downgrade+0x900/0x900 [ 1099.491417] ? check_preemption_disabled+0x48/0x200 [ 1099.491448] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1099.491468] ? kasan_check_read+0x11/0x20 [ 1099.520764] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1099.526077] ? rcu_bh_qs+0xc0/0xc0 [ 1099.529651] ? rcu_bh_qs+0xc0/0xc0 [ 1099.533228] ? unwind_dump+0x190/0x190 [ 1099.537343] ? is_bpf_text_address+0xd3/0x170 [ 1099.541888] ? kernel_text_address+0x79/0xf0 [ 1099.546340] ? __kernel_text_address+0xd/0x40 [ 1099.550887] ? unwind_get_return_address+0x61/0xa0 [ 1099.555878] ? __save_stack_trace+0x8d/0xf0 [ 1099.560241] ? smk_access+0x53b/0x700 [ 1099.564089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1099.569834] ? smack_log+0x423/0x590 [ 1099.573596] ? smk_access_entry+0x310/0x310 [ 1099.577955] ? print_usage_bug+0xc0/0xc0 [ 1099.582406] ? __x64_sys_mkdir+0x5c/0x80 [ 1099.586510] ? do_syscall_64+0x1b9/0x820 [ 1099.590800] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1099.596389] ? smk_tskacc+0x3dd/0x520 [ 1099.600410] ? trace_hardirqs_on+0x310/0x310 [ 1099.604861] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1099.610439] ? __dquot_initialize+0x629/0xdd0 [ 1099.615509] ? smack_privileged+0xd0/0xd0 [ 1099.619731] ? dquot_get_next_dqblk+0x180/0x180 [ 1099.624523] ext4_mkdir+0x2e1/0xe60 [ 1099.628324] ? putname+0xf2/0x130 [ 1099.631845] ? ext4_init_dot_dotdot+0x510/0x510 [ 1099.636567] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1099.642506] ? security_inode_permission+0xd2/0x100 [ 1099.647752] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1099.653329] ? security_inode_mkdir+0xe8/0x120 [ 1099.658308] vfs_mkdir+0x42e/0x6b0 [ 1099.662161] do_mkdirat+0x27a/0x310 [ 1099.666101] ? __ia32_sys_mknod+0xb0/0xb0 [ 1099.670299] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1099.675711] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1099.681252] ? ksys_ioctl+0x81/0xd0 [ 1099.685011] __x64_sys_mkdir+0x5c/0x80 [ 1099.689111] do_syscall_64+0x1b9/0x820 [ 1099.693128] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1099.698640] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1099.703614] ? trace_hardirqs_on_caller+0x310/0x310 [ 1099.708808] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1099.714037] ? recalc_sigpending_tsk+0x180/0x180 [ 1099.718826] ? kasan_check_write+0x14/0x20 [ 1099.723116] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1099.728717] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1099.734109] RIP: 0033:0x4569b7 [ 1099.737335] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 17:14:10 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x4000000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:10 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x100000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1099.757882] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1099.766062] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1099.773981] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1099.781377] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1099.788937] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1099.796409] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1099.817312] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:11 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:11 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0xc802}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:11 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0612000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:11 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "62637366300000000000000000000004", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:11 executing program 2 (fault-call:2 fault-nth:27): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:11 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x7000000}, 0x0) 17:14:11 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a6812000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:11 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x3000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:11 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1099.925519] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:11 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x40000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:11 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4000}, 0x0) 17:14:11 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0003000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1100.063766] FAULT_INJECTION: forcing a failure. [ 1100.063766] name failslab, interval 1, probability 0, space 0, times 0 17:14:11 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x604100, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:11 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1100.086204] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1100.113581] CPU: 0 PID: 5736 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1100.120828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1100.130653] Call Trace: [ 1100.133631] dump_stack+0x1c4/0x2b4 [ 1100.137304] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1100.142531] ? mark_held_locks+0xc7/0x130 [ 1100.146737] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1100.152072] should_fail.cold.4+0xa/0x17 [ 1100.156431] ? kasan_check_read+0x11/0x20 [ 1100.160616] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1100.165931] ? kasan_check_write+0x14/0x20 [ 1100.170234] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 1100.175376] ? graph_lock+0x170/0x170 [ 1100.179212] ? vfs_mkdir+0x42e/0x6b0 [ 1100.182958] ? do_mkdirat+0x27a/0x310 [ 1100.186798] ? __x64_sys_mkdir+0x5c/0x80 [ 1100.190900] ? do_syscall_64+0x1b9/0x820 [ 1100.191229] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:11 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x4}, 0x0) [ 1100.195012] ? debug_object_free+0x690/0x690 [ 1100.195031] ? check_preemption_disabled+0x48/0x200 [ 1100.195057] ? __lock_is_held+0xb5/0x140 [ 1100.195069] ? graph_lock+0x170/0x170 [ 1100.195098] ? ___might_sleep+0x1ed/0x300 [ 1100.195116] ? arch_local_save_flags+0x40/0x40 [ 1100.195133] ? __lock_is_held+0xb5/0x140 [ 1100.195159] __should_failslab+0x124/0x180 [ 1100.195184] should_failslab+0x9/0x14 [ 1100.242927] kmem_cache_alloc+0x2be/0x730 [ 1100.247284] ? __sanitizer_cov_trace_cmp4+0x16/0x20 17:14:11 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a7412000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1100.252337] ? map_id_range_down+0x1ee/0x430 [ 1100.256789] new_inode_smack+0x20/0xb0 [ 1100.260725] smack_inode_alloc_security+0x92/0x100 [ 1100.265885] security_inode_alloc+0x73/0xd0 [ 1100.270249] inode_init_always+0x68f/0xd80 [ 1100.274875] ? __address_space_init_once+0x240/0x240 [ 1100.280587] ? get_cached_acl+0x35c/0x460 [ 1100.284779] ? lock_downgrade+0x900/0x900 [ 1100.288967] ? check_preemption_disabled+0x48/0x200 [ 1100.294127] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1100.299964] ? kasan_check_read+0x11/0x20 [ 1100.304160] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1100.309476] ? rcu_bh_qs+0xc0/0xc0 [ 1100.313251] ? graph_lock+0x170/0x170 [ 1100.317093] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1100.323132] ? check_preemption_disabled+0x48/0x200 [ 1100.328535] ? check_preemption_disabled+0x48/0x200 [ 1100.333610] alloc_inode+0x80/0x190 [ 1100.337448] new_inode_pseudo+0x71/0x1a0 [ 1100.341558] ? prune_icache_sb+0x1c0/0x1c0 [ 1100.345921] new_inode+0x1c/0x40 [ 1100.349330] __ext4_new_inode+0x4cd/0x65b0 [ 1100.353877] ? perf_trace_lock+0x14d/0x7a0 [ 1100.353913] ? ext4_free_inode+0x1a10/0x1a10 [ 1100.353936] ? find_held_lock+0x36/0x1c0 [ 1100.353962] ? is_bpf_text_address+0xac/0x170 [ 1100.353979] ? lock_downgrade+0x900/0x900 [ 1100.353996] ? check_preemption_disabled+0x48/0x200 [ 1100.354019] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1100.354032] ? kasan_check_read+0x11/0x20 [ 1100.354055] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1100.371843] ? rcu_bh_qs+0xc0/0xc0 [ 1100.371870] ? rcu_bh_qs+0xc0/0xc0 [ 1100.371886] ? unwind_dump+0x190/0x190 [ 1100.371915] ? is_bpf_text_address+0xd3/0x170 [ 1100.371937] ? kernel_text_address+0x79/0xf0 [ 1100.391722] ? __kernel_text_address+0xd/0x40 [ 1100.391742] ? unwind_get_return_address+0x61/0xa0 [ 1100.391763] ? __save_stack_trace+0x8d/0xf0 [ 1100.391785] ? smk_access+0x53b/0x700 [ 1100.391811] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1100.417269] ? smack_log+0x423/0x590 [ 1100.417290] ? smk_access_entry+0x310/0x310 [ 1100.417307] ? print_usage_bug+0xc0/0xc0 [ 1100.417323] ? __x64_sys_mkdir+0x5c/0x80 [ 1100.417340] ? do_syscall_64+0x1b9/0x820 [ 1100.417371] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1100.431878] ? smk_tskacc+0x3dd/0x520 [ 1100.431902] ? trace_hardirqs_on+0x310/0x310 [ 1100.431920] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1100.431942] ? __dquot_initialize+0x629/0xdd0 [ 1100.441320] ? smack_privileged+0xd0/0xd0 [ 1100.441345] ? dquot_get_next_dqblk+0x180/0x180 [ 1100.441385] ext4_mkdir+0x2e1/0xe60 [ 1100.441405] ? putname+0xf2/0x130 [ 1100.449495] ? ext4_init_dot_dotdot+0x510/0x510 [ 1100.449521] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1100.449540] ? security_inode_permission+0xd2/0x100 [ 1100.449572] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1100.449592] ? security_inode_mkdir+0xe8/0x120 [ 1100.457962] vfs_mkdir+0x42e/0x6b0 [ 1100.457986] do_mkdirat+0x27a/0x310 [ 1100.458009] ? __ia32_sys_mknod+0xb0/0xb0 [ 1100.458025] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1100.458045] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1100.458060] ? ksys_ioctl+0x81/0xd0 [ 1100.458081] __x64_sys_mkdir+0x5c/0x80 [ 1100.467585] do_syscall_64+0x1b9/0x820 [ 1100.467605] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1100.467624] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1100.467648] ? trace_hardirqs_on_caller+0x310/0x310 [ 1100.476096] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1100.476113] ? recalc_sigpending_tsk+0x180/0x180 [ 1100.476128] ? kasan_check_write+0x14/0x20 [ 1100.476150] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1100.476175] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1100.476188] RIP: 0033:0x4569b7 [ 1100.476207] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1100.476217] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1100.476234] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1100.476243] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 17:14:12 executing program 2 (fault-call:2 fault-nth:28): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:12 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:12 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x100000000000000}, 0x0) 17:14:12 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a6012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:12 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x7fffffe}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:12 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x10000, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r2 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$setperm(0x5, r2, 0x1000) fcntl$notify(r1, 0x402, 0x22) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0xf00, 0x43fc, 0xffff}) write$P9_RCREATE(r1, &(0x7f00000001c0)={0x18, 0x73, 0x1, {{0x0, 0x0, 0x4}, 0xb62}}, 0x18) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x2000, 0x0) [ 1100.476252] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1100.476267] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1100.486608] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:12 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x300000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:12 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf0ffffff00000000}, 0x0) [ 1100.754916] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1100.779023] input: syz0 as /devices/virtual/input/input196 17:14:12 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a4c12000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:12 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00x', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1100.821568] FAULT_INJECTION: forcing a failure. [ 1100.821568] name failslab, interval 1, probability 0, space 0, times 0 [ 1100.846266] input: syz0 as /devices/virtual/input/input197 [ 1100.865750] CPU: 0 PID: 5766 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1100.872994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1100.882398] Call Trace: [ 1100.885019] dump_stack+0x1c4/0x2b4 [ 1100.888757] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1100.893991] ? mark_held_locks+0x130/0x130 [ 1100.898260] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1100.903861] should_fail.cold.4+0xa/0x17 [ 1100.908303] ? debug_smp_processor_id+0x1c/0x20 [ 1100.913095] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1100.918240] ? check_preemption_disabled+0x48/0x200 [ 1100.923298] ? debug_smp_processor_id+0x1c/0x20 [ 1100.928265] ? perf_trace_lock+0x14d/0x7a0 [ 1100.933050] ? graph_lock+0x170/0x170 [ 1100.933065] ? zap_class+0x640/0x640 [ 1100.933081] ? check_preemption_disabled+0x48/0x200 [ 1100.933102] ? debug_smp_processor_id+0x1c/0x20 [ 1100.933125] ? __lock_is_held+0xb5/0x140 [ 1100.933153] ? ___might_sleep+0x1ed/0x300 [ 1100.933174] ? arch_local_save_flags+0x40/0x40 [ 1100.963644] __should_failslab+0x124/0x180 [ 1100.967924] should_failslab+0x9/0x14 [ 1100.971763] __kmalloc_track_caller+0x2d0/0x750 [ 1100.976461] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1100.981768] ? rcu_bh_qs+0xc0/0xc0 [ 1100.985608] ? smack_inode_init_security+0x32e/0x630 [ 1100.990748] kstrdup+0x39/0x70 [ 1100.993973] smack_inode_init_security+0x32e/0x630 [ 1100.998951] security_inode_init_security+0x15d/0x3d0 [ 1101.004532] ? ext4_init_acl+0x300/0x300 [ 1101.008648] ? unregister_lsm_notifier+0x20/0x20 [ 1101.013435] ? ext4_init_acl+0x1d6/0x300 [ 1101.017535] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.023459] ? check_preemption_disabled+0x48/0x200 [ 1101.028508] ext4_init_security+0x34/0x40 [ 1101.028541] __ext4_new_inode+0x4a6a/0x65b0 [ 1101.028596] ? ext4_free_inode+0x1a10/0x1a10 [ 1101.028622] ? find_held_lock+0x36/0x1c0 [ 1101.045783] ? is_bpf_text_address+0xac/0x170 [ 1101.050311] ? lock_downgrade+0x900/0x900 [ 1101.054862] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1101.061034] ? kasan_check_read+0x11/0x20 [ 1101.065392] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 17:14:12 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0xf0ffffff}, 0x0) [ 1101.070701] ? rcu_bh_qs+0xc0/0xc0 [ 1101.074269] ? rcu_bh_qs+0xc0/0xc0 [ 1101.077833] ? unwind_dump+0x190/0x190 [ 1101.081767] ? is_bpf_text_address+0xd3/0x170 [ 1101.086822] ? kernel_text_address+0x79/0xf0 [ 1101.091270] ? __kernel_text_address+0xd/0x40 [ 1101.095807] ? unwind_get_return_address+0x61/0xa0 [ 1101.100783] ? __save_stack_trace+0x8d/0xf0 [ 1101.105149] ? smk_access+0x53b/0x700 [ 1101.108999] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.114746] ? smack_log+0x423/0x590 [ 1101.118507] ? smk_access_entry+0x310/0x310 [ 1101.123583] ? print_usage_bug+0xc0/0xc0 [ 1101.127845] ? __x64_sys_mkdir+0x5c/0x80 [ 1101.131938] ? do_syscall_64+0x1b9/0x820 [ 1101.136300] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1101.141718] ? smk_tskacc+0x3dd/0x520 [ 1101.145555] ? trace_hardirqs_on+0x310/0x310 [ 1101.150174] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.151481] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1101.156004] ? __dquot_initialize+0x629/0xdd0 [ 1101.156024] ? smack_privileged+0xd0/0xd0 [ 1101.156047] ? dquot_get_next_dqblk+0x180/0x180 [ 1101.156085] ext4_mkdir+0x2e1/0xe60 [ 1101.156102] ? putname+0xf2/0x130 [ 1101.156129] ? ext4_init_dot_dotdot+0x510/0x510 [ 1101.156150] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.156167] ? security_inode_permission+0xd2/0x100 [ 1101.156191] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.206651] ? security_inode_mkdir+0xe8/0x120 [ 1101.211740] vfs_mkdir+0x42e/0x6b0 [ 1101.215489] do_mkdirat+0x27a/0x310 [ 1101.219200] ? __ia32_sys_mknod+0xb0/0xb0 17:14:12 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', "626373663000000000000000000000fe", 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1101.223389] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1101.228789] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1101.234567] ? ksys_ioctl+0x81/0xd0 [ 1101.238233] __x64_sys_mkdir+0x5c/0x80 [ 1101.242158] do_syscall_64+0x1b9/0x820 [ 1101.246070] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1101.246094] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1101.246116] ? trace_hardirqs_on_caller+0x310/0x310 [ 1101.246134] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1101.246151] ? recalc_sigpending_tsk+0x180/0x180 [ 1101.246177] ? kasan_check_write+0x14/0x20 [ 1101.256534] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1101.256575] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1101.256589] RIP: 0033:0x4569b7 [ 1101.256607] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1101.256622] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 [ 1101.283344] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1101.286179] ORIG_RAX: 0000000000000053 [ 1101.286190] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1101.286199] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1101.286208] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1101.286218] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1101.286228] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:12 executing program 2 (fault-call:2 fault-nth:29): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:12 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x700000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:12 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x5}, 0x0) 17:14:12 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0712000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:12 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:12 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) write$binfmt_elf32(r0, &(0x7f0000000140)={{0x7f, 0x45, 0x4c, 0x46, 0x5, 0x1, 0x2020000, 0xe1b3, 0x9, 0x2, 0x3e, 0x7, 0x20a, 0x38, 0x341, 0x800, 0x4a7, 0x20, 0x1, 0x8, 0x4, 0x1}, [{0x60000007, 0xe5, 0x100000000, 0x7, 0x200, 0xfffffffffffffff7, 0x8, 0x8}], "321dedd47879f39d63d2d92bb919415625b9394acdd7e0e0a6e1e9a1c417a64de5ea400aa53fdd2266a933a7289cb2a99603893ff5fd366ef367e3cc4af5f41dcb4527020fe310bfe8c1c669f621e4a0ec9d49b0251d3f557e4530b4833c4cac0b996d2cc9dcf699c423fc24e5eb7546e2b1de", [[], []]}, 0x2cb) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) fcntl$setownex(r0, 0xf, &(0x7f00000000c0)={0x2, r1}) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:12 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x700000000000000}, 0x0) 17:14:12 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x6000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1101.482206] FAULT_INJECTION: forcing a failure. [ 1101.482206] name failslab, interval 1, probability 0, space 0, times 0 17:14:12 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a7a12000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:12 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', '%ql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1101.516307] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1101.562100] CPU: 0 PID: 5792 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1101.569343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1101.578895] Call Trace: [ 1101.581515] dump_stack+0x1c4/0x2b4 [ 1101.585188] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1101.585210] ? mark_held_locks+0x130/0x130 [ 1101.585238] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 17:14:12 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x3f00000000000000}, 0x0) [ 1101.585266] should_fail.cold.4+0xa/0x17 [ 1101.585287] ? debug_smp_processor_id+0x1c/0x20 [ 1101.585318] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1101.585337] ? check_preemption_disabled+0x48/0x200 [ 1101.585376] ? debug_smp_processor_id+0x1c/0x20 [ 1101.623966] ? perf_trace_lock+0x14d/0x7a0 [ 1101.628235] ? graph_lock+0x170/0x170 [ 1101.632071] ? zap_class+0x640/0x640 [ 1101.635826] ? check_preemption_disabled+0x48/0x200 [ 1101.640900] ? debug_smp_processor_id+0x1c/0x20 [ 1101.645963] ? __lock_is_held+0xb5/0x140 [ 1101.650072] ? ___might_sleep+0x1ed/0x300 [ 1101.654255] ? arch_local_save_flags+0x40/0x40 [ 1101.654287] __should_failslab+0x124/0x180 [ 1101.654304] should_failslab+0x9/0x14 [ 1101.654320] __kmalloc_track_caller+0x2d0/0x750 [ 1101.654337] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1101.654355] ? rcu_bh_qs+0xc0/0xc0 [ 1101.654374] ? smack_inode_init_security+0x32e/0x630 [ 1101.654395] kstrdup+0x39/0x70 [ 1101.654415] smack_inode_init_security+0x32e/0x630 [ 1101.665908] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:13 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0212000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1101.667086] security_inode_init_security+0x15d/0x3d0 [ 1101.667107] ? ext4_init_acl+0x300/0x300 [ 1101.667128] ? unregister_lsm_notifier+0x20/0x20 [ 1101.687487] input: syz0 as /devices/virtual/input/input198 [ 1101.689154] ? ext4_init_acl+0x1d6/0x300 [ 1101.689185] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.689205] ? check_preemption_disabled+0x48/0x200 [ 1101.689228] ext4_init_security+0x34/0x40 [ 1101.711752] __ext4_new_inode+0x4a6a/0x65b0 [ 1101.711796] ? ext4_free_inode+0x1a10/0x1a10 [ 1101.711820] ? find_held_lock+0x36/0x1c0 [ 1101.711847] ? is_bpf_text_address+0xac/0x170 [ 1101.731869] ? lock_downgrade+0x900/0x900 [ 1101.731898] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1101.731912] ? kasan_check_read+0x11/0x20 [ 1101.731931] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1101.731949] ? rcu_bh_qs+0xc0/0xc0 [ 1101.731966] ? rcu_bh_qs+0xc0/0xc0 [ 1101.731986] ? unwind_dump+0x190/0x190 [ 1101.758833] ? is_bpf_text_address+0xd3/0x170 [ 1101.758862] ? kernel_text_address+0x79/0xf0 [ 1101.758881] ? __kernel_text_address+0xd/0x40 [ 1101.758899] ? unwind_get_return_address+0x61/0xa0 [ 1101.758920] ? __save_stack_trace+0x8d/0xf0 [ 1101.758941] ? smk_access+0x53b/0x700 [ 1101.782143] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.794418] ? smack_log+0x423/0x590 [ 1101.794440] ? smk_access_entry+0x310/0x310 [ 1101.794457] ? print_usage_bug+0xc0/0xc0 [ 1101.794473] ? __x64_sys_mkdir+0x5c/0x80 [ 1101.794491] ? do_syscall_64+0x1b9/0x820 [ 1101.794507] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1101.794530] ? smk_tskacc+0x3dd/0x520 [ 1101.794558] ? trace_hardirqs_on+0x310/0x310 [ 1101.794577] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.794598] ? __dquot_initialize+0x629/0xdd0 [ 1101.803880] ? smack_privileged+0xd0/0xd0 [ 1101.803905] ? dquot_get_next_dqblk+0x180/0x180 [ 1101.803942] ext4_mkdir+0x2e1/0xe60 [ 1101.803960] ? putname+0xf2/0x130 [ 1101.803988] ? ext4_init_dot_dotdot+0x510/0x510 [ 1101.804015] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.813454] ? security_inode_permission+0xd2/0x100 [ 1101.813477] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1101.813492] ? security_inode_mkdir+0xe8/0x120 [ 1101.813512] vfs_mkdir+0x42e/0x6b0 [ 1101.813533] do_mkdirat+0x27a/0x310 [ 1101.813567] ? __ia32_sys_mknod+0xb0/0xb0 [ 1101.813583] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1101.813601] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1101.813622] ? ksys_ioctl+0x81/0xd0 [ 1101.823003] __x64_sys_mkdir+0x5c/0x80 [ 1101.823026] do_syscall_64+0x1b9/0x820 [ 1101.823043] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1101.823061] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1101.823080] ? trace_hardirqs_on_caller+0x310/0x310 [ 1101.823098] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1101.823113] ? recalc_sigpending_tsk+0x180/0x180 [ 1101.823128] ? kasan_check_write+0x14/0x20 [ 1101.823151] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1101.831247] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1101.831262] RIP: 0033:0x4569b7 [ 1101.831280] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1101.831290] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1101.831306] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1101.831322] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1101.854099] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1101.854110] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 17:14:13 executing program 2 (fault-call:2 fault-nth:30): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:13 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eq%\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:13 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x200000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:13 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a005f000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:13 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x2000000}, 0x0) [ 1101.854120] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1101.945062] input: syz0 as /devices/virtual/input/input199 17:14:13 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:13 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x2000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:13 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:13 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x300}, 0x0) 17:14:13 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0f12000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1102.156156] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1102.210248] FAULT_INJECTION: forcing a failure. [ 1102.210248] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.221795] CPU: 0 PID: 5821 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1102.229460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1102.239022] Call Trace: [ 1102.241642] dump_stack+0x1c4/0x2b4 [ 1102.245312] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1102.250530] ? mark_held_locks+0x130/0x130 [ 1102.254816] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1102.260392] should_fail.cold.4+0xa/0x17 [ 1102.260411] ? debug_smp_processor_id+0x1c/0x20 [ 1102.260439] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1102.274307] ? check_preemption_disabled+0x48/0x200 [ 1102.279355] ? debug_smp_processor_id+0x1c/0x20 [ 1102.284226] ? perf_trace_lock+0x14d/0x7a0 [ 1102.284246] ? graph_lock+0x170/0x170 [ 1102.284262] ? zap_class+0x640/0x640 [ 1102.284281] ? check_preemption_disabled+0x48/0x200 [ 1102.284306] ? debug_smp_processor_id+0x1c/0x20 [ 1102.284332] ? __lock_is_held+0xb5/0x140 [ 1102.284371] ? ___might_sleep+0x1ed/0x300 [ 1102.284388] ? arch_local_save_flags+0x40/0x40 [ 1102.284419] __should_failslab+0x124/0x180 [ 1102.284436] should_failslab+0x9/0x14 [ 1102.284452] __kmalloc_track_caller+0x2d0/0x750 [ 1102.284469] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1102.284487] ? rcu_bh_qs+0xc0/0xc0 [ 1102.284505] ? smack_inode_init_security+0x32e/0x630 [ 1102.284526] kstrdup+0x39/0x70 [ 1102.284557] smack_inode_init_security+0x32e/0x630 [ 1102.292622] security_inode_init_security+0x15d/0x3d0 [ 1102.292644] ? ext4_init_acl+0x300/0x300 [ 1102.292665] ? unregister_lsm_notifier+0x20/0x20 [ 1102.292681] ? ext4_init_acl+0x1d6/0x300 [ 1102.292710] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1102.292732] ? check_preemption_disabled+0x48/0x200 [ 1102.302029] ext4_init_security+0x34/0x40 [ 1102.302054] __ext4_new_inode+0x4a6a/0x65b0 [ 1102.302096] ? ext4_free_inode+0x1a10/0x1a10 [ 1102.302121] ? find_held_lock+0x36/0x1c0 [ 1102.302149] ? is_bpf_text_address+0xac/0x170 [ 1102.302170] ? lock_downgrade+0x900/0x900 [ 1102.310967] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1102.310983] ? kasan_check_read+0x11/0x20 [ 1102.311002] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1102.311020] ? rcu_bh_qs+0xc0/0xc0 [ 1102.311039] ? rcu_bh_qs+0xc0/0xc0 [ 1102.311054] ? unwind_dump+0x190/0x190 [ 1102.311082] ? is_bpf_text_address+0xd3/0x170 [ 1102.311103] ? kernel_text_address+0x79/0xf0 [ 1102.320482] ? __kernel_text_address+0xd/0x40 [ 1102.320503] ? unwind_get_return_address+0x61/0xa0 [ 1102.320524] ? __save_stack_trace+0x8d/0xf0 [ 1102.320558] ? smk_access+0x53b/0x700 [ 1102.320585] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1102.320600] ? smack_log+0x423/0x590 [ 1102.320619] ? smk_access_entry+0x310/0x310 [ 1102.320640] ? print_usage_bug+0xc0/0xc0 [ 1102.484816] ? __x64_sys_mkdir+0x5c/0x80 [ 1102.488916] ? do_syscall_64+0x1b9/0x820 [ 1102.493362] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1102.498940] ? smk_tskacc+0x3dd/0x520 [ 1102.502768] ? trace_hardirqs_on+0x310/0x310 [ 1102.507207] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1102.512771] ? __dquot_initialize+0x629/0xdd0 [ 1102.517301] ? smack_privileged+0xd0/0xd0 [ 1102.521503] ? dquot_get_next_dqblk+0x180/0x180 [ 1102.526238] ext4_mkdir+0x2e1/0xe60 [ 1102.529909] ? putname+0xf2/0x130 [ 1102.533597] ? ext4_init_dot_dotdot+0x510/0x510 [ 1102.538487] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1102.544150] ? security_inode_permission+0xd2/0x100 [ 1102.549201] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1102.554775] ? security_inode_mkdir+0xe8/0x120 [ 1102.559587] vfs_mkdir+0x42e/0x6b0 [ 1102.563170] do_mkdirat+0x27a/0x310 [ 1102.566835] ? __ia32_sys_mknod+0xb0/0xb0 [ 1102.571015] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1102.576419] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1102.581905] ? ksys_ioctl+0x81/0xd0 [ 1102.585579] __x64_sys_mkdir+0x5c/0x80 [ 1102.589504] do_syscall_64+0x1b9/0x820 [ 1102.593784] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1102.599187] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1102.604329] ? trace_hardirqs_on_caller+0x310/0x310 [ 1102.609380] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1102.614514] ? recalc_sigpending_tsk+0x180/0x180 [ 1102.619314] ? kasan_check_write+0x14/0x20 [ 1102.623757] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1102.628634] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1102.633845] RIP: 0033:0x4569b7 17:14:14 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0xc8020000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1102.637070] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1102.656081] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1102.663910] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1102.671201] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1102.678934] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1102.678945] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1102.678953] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:14 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1102.707254] input: syz0 as /devices/virtual/input/input200 [ 1102.713481] nla_parse: 24 callbacks suppressed [ 1102.713492] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1102.727312] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:14 executing program 2 (fault-call:2 fault-nth:31): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:14 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x300}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:14 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0312000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:14 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:14 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r1 = memfd_create(&(0x7f00000000c0)='\x00', 0x5) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000100)=0x1000000, 0x4) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x40000, 0x0) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f00000003c0)) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x0, 0x0, 0x400000000000000}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$DRM_IOCTL_VERSION(r1, 0xc0406400, &(0x7f0000000380)={0xf4, 0x3a17, 0x1, 0x2b, &(0x7f00000001c0)=""/43, 0xdf, &(0x7f0000000200)=""/223, 0x74, &(0x7f0000000300)=""/116}) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000140)={0x6, 0x3, 0x200, 0x7f}) syz_open_dev$evdev(&(0x7f0000000180)='/dev/input/event#\x00', 0xa17, 0x0) 17:14:14 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x4000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1102.857570] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1102.860760] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1102.883933] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1102.886894] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:14 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a6c12000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1102.918639] FAULT_INJECTION: forcing a failure. [ 1102.918639] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.943049] CPU: 0 PID: 5846 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1102.950313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1102.959686] Call Trace: [ 1102.962310] dump_stack+0x1c4/0x2b4 17:14:14 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:14 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1102.965975] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1102.971200] ? rcu_bh_qs+0xc0/0xc0 [ 1102.974783] should_fail.cold.4+0xa/0x17 [ 1102.978893] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1102.984021] ? kernel_text_address+0x79/0xf0 [ 1102.988479] ? __kernel_text_address+0xd/0x40 [ 1102.993022] ? __save_stack_trace+0x8d/0xf0 [ 1102.997377] ? graph_lock+0x170/0x170 [ 1103.001251] ? save_stack+0xa9/0xd0 [ 1103.004944] ? __lock_is_held+0xb5/0x140 [ 1103.010010] ? print_usage_bug+0xc0/0xc0 [ 1103.013026] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1103.014800] ? trace_hardirqs_off+0xb8/0x310 [ 1103.028090] ? ___might_sleep+0x1ed/0x300 [ 1103.032268] ? trace_hardirqs_on+0x310/0x310 [ 1103.036712] ? arch_local_save_flags+0x40/0x40 [ 1103.041495] ? kasan_check_write+0x14/0x20 [ 1103.045771] __should_failslab+0x124/0x180 [ 1103.049023] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1103.050405] should_failslab+0x9/0x14 [ 1103.050424] __kmalloc+0x2d4/0x760 [ 1103.050447] ? ext4_find_extent+0x757/0x9b0 [ 1103.050476] ext4_find_extent+0x757/0x9b0 [ 1103.062122] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1103.063670] ext4_ext_map_blocks+0x2ad/0x6330 [ 1103.063693] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.063724] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 1103.063742] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.063761] ? check_preemption_disabled+0x48/0x200 [ 1103.063784] ? debug_smp_processor_id+0x1c/0x20 17:14:14 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0412000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:14 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1103.076238] ? find_held_lock+0x36/0x1c0 [ 1103.076255] ? graph_lock+0x170/0x170 [ 1103.076274] ? zap_class+0x640/0x640 [ 1103.076291] ? graph_lock+0x170/0x170 [ 1103.076313] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.123912] ? check_preemption_disabled+0x48/0x200 [ 1103.123931] ? check_preemption_disabled+0x48/0x200 [ 1103.123953] ? graph_lock+0x170/0x170 [ 1103.123984] ? lock_acquire+0x1ed/0x520 [ 1103.137765] ? ext4_map_blocks+0x88f/0x1b50 [ 1103.161208] ? lock_release+0x970/0x970 [ 1103.165238] ? arch_local_save_flags+0x40/0x40 17:14:14 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1103.169869] ? ext4_map_blocks+0x66e/0x1b50 [ 1103.174225] ? lock_downgrade+0x900/0x900 [ 1103.174263] ? down_write+0x8a/0x130 [ 1103.174278] ? ext4_map_blocks+0x88f/0x1b50 [ 1103.174294] ? down_read+0x1d0/0x1d0 [ 1103.174320] ext4_map_blocks+0x8f7/0x1b50 [ 1103.174337] ? __save_stack_trace+0x8d/0xf0 [ 1103.174364] ? ext4_issue_zeroout+0x190/0x190 [ 1103.174388] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.194657] ext4_getblk+0x10e/0x630 [ 1103.194679] ? ext4_iomap_begin+0x1390/0x1390 [ 1103.194700] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.194718] ? __dquot_initialize+0x629/0xdd0 [ 1103.194739] ext4_bread+0x95/0x2b0 [ 1103.194757] ? ext4_getblk+0x630/0x630 [ 1103.194770] ? dquot_get_next_dqblk+0x180/0x180 [ 1103.194797] ext4_append+0x14e/0x370 [ 1103.218580] ext4_mkdir+0x532/0xe60 [ 1103.218597] ? putname+0xf2/0x130 [ 1103.218627] ? ext4_init_dot_dotdot+0x510/0x510 [ 1103.218649] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.218673] ? security_inode_permission+0xd2/0x100 [ 1103.256706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.256725] ? security_inode_mkdir+0xe8/0x120 [ 1103.256747] vfs_mkdir+0x42e/0x6b0 [ 1103.256771] do_mkdirat+0x27a/0x310 [ 1103.256799] ? __ia32_sys_mknod+0xb0/0xb0 [ 1103.267662] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1103.267734] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1103.278046] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1103.278066] ? ksys_ioctl+0x81/0xd0 [ 1103.278089] __x64_sys_mkdir+0x5c/0x80 [ 1103.278110] do_syscall_64+0x1b9/0x820 [ 1103.278127] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1103.278153] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1103.285333] ? trace_hardirqs_on_caller+0x310/0x310 [ 1103.285354] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1103.285372] ? recalc_sigpending_tsk+0x180/0x180 [ 1103.285389] ? kasan_check_write+0x14/0x20 [ 1103.285414] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1103.285440] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1103.295344] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1103.298147] RIP: 0033:0x4569b7 [ 1103.298164] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1103.298173] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1103.298191] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1103.298202] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 17:14:14 executing program 2 (fault-call:2 fault-nth:32): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:14 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0512000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:14 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x600000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:14 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1103.298211] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1103.298221] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1103.298230] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1103.308327] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1103.445816] input: syz0 as /devices/virtual/input/input201 [ 1103.523237] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1103.534956] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1103.565215] FAULT_INJECTION: forcing a failure. [ 1103.565215] name failslab, interval 1, probability 0, space 0, times 0 [ 1103.577149] CPU: 1 PID: 5877 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1103.584371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1103.593755] Call Trace: [ 1103.596392] dump_stack+0x1c4/0x2b4 [ 1103.600068] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1103.605303] should_fail.cold.4+0xa/0x17 [ 1103.609498] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1103.614673] ? mark_held_locks+0x130/0x130 [ 1103.618948] ? find_held_lock+0x36/0x1c0 [ 1103.623079] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.628655] ? check_preemption_disabled+0x48/0x200 [ 1103.633711] ? debug_smp_processor_id+0x1c/0x20 [ 1103.638420] ? perf_trace_lock+0x14d/0x7a0 [ 1103.642680] ? zap_class+0x640/0x640 [ 1103.646416] ? rcu_bh_qs+0xc0/0xc0 [ 1103.649960] ? unwind_dump+0x190/0x190 [ 1103.653874] ? graph_lock+0x170/0x170 [ 1103.657702] ? is_bpf_text_address+0xd3/0x170 [ 1103.662205] __should_failslab+0x124/0x180 [ 1103.666462] should_failslab+0x9/0x14 [ 1103.670283] kmem_cache_alloc+0x47/0x730 [ 1103.674354] ? find_held_lock+0x36/0x1c0 [ 1103.678421] ? __es_tree_search.isra.12+0x1ba/0x220 [ 1103.683474] __es_insert_extent+0x30c/0x1120 [ 1103.687896] ? ext4_es_free_extent+0x790/0x790 [ 1103.692487] ? lock_release+0x970/0x970 [ 1103.696520] ? __lock_is_held+0xb5/0x140 [ 1103.700633] ? kasan_check_write+0x14/0x20 [ 1103.704912] ? do_raw_write_lock+0xbd/0x1b0 [ 1103.709272] ext4_es_insert_extent+0x316/0x810 [ 1103.713894] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 1103.719713] ? __lock_is_held+0xb5/0x140 [ 1103.723788] ? rcu_read_lock_sched_held+0x108/0x120 [ 1103.728861] ext4_ext_put_gap_in_cache+0x158/0x1f0 [ 1103.733827] ? ext4_zeroout_es+0x160/0x160 [ 1103.738082] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1103.743664] ext4_ext_map_blocks+0x256a/0x6330 [ 1103.748299] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.753879] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 1103.758909] ? block_commit_write+0x30/0x30 [ 1103.763250] ? find_held_lock+0x36/0x1c0 [ 1103.767320] ? graph_lock+0x170/0x170 [ 1103.771145] ? graph_lock+0x170/0x170 [ 1103.774957] ? ext4_es_lookup_extent+0x446/0xde0 [ 1103.779738] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.785290] ? check_preemption_disabled+0x48/0x200 [ 1103.790334] ? check_preemption_disabled+0x48/0x200 [ 1103.795413] ? lock_acquire+0x1ed/0x520 [ 1103.799420] ? ext4_map_blocks+0x487/0x1b50 [ 1103.803755] ? lock_release+0x970/0x970 [ 1103.807736] ? arch_local_save_flags+0x40/0x40 [ 1103.812329] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1103.817904] ? ext4_es_lookup_extent+0x499/0xde0 [ 1103.822765] ? down_read+0xb0/0x1d0 [ 1103.826418] ? ext4_map_blocks+0x487/0x1b50 [ 1103.830762] ? rcu_bh_qs+0xc0/0xc0 [ 1103.834310] ? __down_interruptible+0x700/0x700 [ 1103.839029] ? kernel_text_address+0x79/0xf0 [ 1103.843489] ext4_map_blocks+0xe35/0x1b50 [ 1103.847660] ? __save_stack_trace+0x8d/0xf0 [ 1103.852001] ? ext4_issue_zeroout+0x190/0x190 [ 1103.856516] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.862111] ext4_getblk+0x10e/0x630 [ 1103.865853] ? ext4_iomap_begin+0x1390/0x1390 [ 1103.870386] ? smk_tskacc+0x3dd/0x520 [ 1103.874224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.879768] ? __dquot_initialize+0x629/0xdd0 [ 1103.884300] ext4_bread+0x95/0x2b0 [ 1103.887862] ? ext4_getblk+0x630/0x630 [ 1103.891784] ? dquot_get_next_dqblk+0x180/0x180 [ 1103.896482] ext4_append+0x14e/0x370 [ 1103.902771] ext4_mkdir+0x532/0xe60 [ 1103.906431] ? putname+0xf2/0x130 [ 1103.909910] ? ext4_init_dot_dotdot+0x510/0x510 [ 1103.915224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.920782] ? security_inode_permission+0xd2/0x100 [ 1103.926039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1103.932295] ? security_inode_mkdir+0xe8/0x120 [ 1103.936919] vfs_mkdir+0x42e/0x6b0 [ 1103.940486] do_mkdirat+0x27a/0x310 [ 1103.944157] ? __ia32_sys_mknod+0xb0/0xb0 [ 1103.948520] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1103.953904] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1103.959370] ? ksys_ioctl+0x81/0xd0 [ 1103.963009] __x64_sys_mkdir+0x5c/0x80 [ 1103.966918] do_syscall_64+0x1b9/0x820 [ 1103.971178] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1103.976547] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1103.981507] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1103.986400] ? trace_hardirqs_on_caller+0x310/0x310 [ 1103.991442] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1103.996468] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1104.001667] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1104.006519] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1104.011716] RIP: 0033:0x4569b7 [ 1104.014923] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1104.033841] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1104.041733] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1104.049445] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1104.056732] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1104.064002] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1104.071280] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1104.087689] gfs2: not a GFS2 filesystem 17:14:15 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1a1d, 0x8000) getsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000000c0), 0x10) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x40000003) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) getsockopt$IP_VS_SO_GET_TIMEOUT(r1, 0x0, 0x486, &(0x7f0000000100), &(0x7f0000000140)=0xc) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:15 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c780200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:15 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0003000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:15 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:15 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc802}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:15 executing program 2 (fault-call:2 fault-nth:33): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1104.189597] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1104.195123] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1104.215397] input: syz0 as /devices/virtual/input/input202 17:14:15 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:15 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:15 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:15 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0010000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1104.257206] input: syz0 as /devices/virtual/input/input203 17:14:15 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:15 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xfeffff07}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1104.325837] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1104.360152] netlink: 'syz-executor5': attribute type 1 has an invalid length. 17:14:15 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x1, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f00000000c0)={0x0, &(0x7f0000000000), 0x5}) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x100, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(r3, 0x84, 0x2, &(0x7f00000000c0), &(0x7f0000000100)=0x8) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:15 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:15 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a005f000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1104.407360] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:15 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:15 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x300}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1104.529698] input: syz0 as /devices/virtual/input/input204 [ 1104.551452] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1104.625173] input: syz0 as /devices/virtual/input/input205 [ 1104.635862] FAULT_INJECTION: forcing a failure. [ 1104.635862] name failslab, interval 1, probability 0, space 0, times 0 [ 1104.647873] CPU: 0 PID: 5909 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1104.655089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1104.664824] Call Trace: [ 1104.667451] dump_stack+0x1c4/0x2b4 [ 1104.671119] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1104.676339] ? print_usage_bug+0xc0/0xc0 [ 1104.680426] ? ext4_bread+0x95/0x2b0 [ 1104.684169] ? ext4_append+0x14e/0x370 [ 1104.688081] ? ext4_mkdir+0x532/0xe60 [ 1104.691928] should_fail.cold.4+0xa/0x17 [ 1104.696060] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1104.701195] ? kasan_check_write+0x14/0x20 [ 1104.705475] ? mark_held_locks+0x130/0x130 [ 1104.710880] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1104.716463] ? check_preemption_disabled+0x48/0x200 [ 1104.721527] ? __lock_is_held+0xb5/0x140 [ 1104.725665] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1104.731267] ? ext4_ext_map_blocks+0xf14/0x6330 [ 1104.735997] __should_failslab+0x124/0x180 [ 1104.740271] should_failslab+0x9/0x14 [ 1104.744377] kmem_cache_alloc+0x47/0x730 [ 1104.744524] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1104.744543] ? ext4_es_can_be_merged+0x23d/0x2a0 [ 1104.744559] ? __es_tree_search.isra.12+0x1ba/0x220 [ 1104.744583] __es_insert_extent+0x30c/0x1120 [ 1104.744610] ? ext4_es_free_extent+0x790/0x790 [ 1104.744627] ? lock_release+0x970/0x970 [ 1104.744657] ? __lock_is_held+0xb5/0x140 [ 1104.753790] ? kasan_check_write+0x14/0x20 [ 1104.753808] ? do_raw_write_lock+0xbd/0x1b0 [ 1104.753832] ext4_es_insert_extent+0x316/0x810 [ 1104.753864] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 1104.753879] ? lock_downgrade+0x900/0x900 [ 1104.753908] ? down_write+0x8a/0x130 [ 1104.753923] ? ext4_map_blocks+0x88f/0x1b50 [ 1104.753940] ? down_read+0x1d0/0x1d0 [ 1104.753965] ext4_map_blocks+0xb0c/0x1b50 [ 1104.819922] ? __save_stack_trace+0x8d/0xf0 [ 1104.824296] ? ext4_issue_zeroout+0x190/0x190 [ 1104.828831] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1104.834427] ext4_getblk+0x10e/0x630 [ 1104.838713] ? ext4_iomap_begin+0x1390/0x1390 [ 1104.843429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1104.849014] ? __dquot_initialize+0x629/0xdd0 [ 1104.853554] ext4_bread+0x95/0x2b0 [ 1104.857147] ? ext4_getblk+0x630/0x630 [ 1104.861071] ? dquot_get_next_dqblk+0x180/0x180 [ 1104.865791] ext4_append+0x14e/0x370 [ 1104.869635] ext4_mkdir+0x532/0xe60 [ 1104.873738] ? putname+0xf2/0x130 [ 1104.877411] ? ext4_init_dot_dotdot+0x510/0x510 [ 1104.882149] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1104.887721] ? security_inode_permission+0xd2/0x100 [ 1104.892988] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1104.898576] ? security_inode_mkdir+0xe8/0x120 [ 1104.903374] vfs_mkdir+0x42e/0x6b0 [ 1104.906965] do_mkdirat+0x27a/0x310 [ 1104.910903] ? __ia32_sys_mknod+0xb0/0xb0 [ 1104.915263] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1104.920669] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1104.926193] ? ksys_ioctl+0x81/0xd0 [ 1104.930290] __x64_sys_mkdir+0x5c/0x80 [ 1104.934237] do_syscall_64+0x1b9/0x820 [ 1104.938427] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1104.943836] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1104.948826] ? trace_hardirqs_on_caller+0x310/0x310 [ 1104.953905] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1104.958961] ? recalc_sigpending_tsk+0x180/0x180 [ 1104.963754] ? kasan_check_write+0x14/0x20 [ 1104.968029] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1104.973121] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1104.978338] RIP: 0033:0x4569b7 [ 1104.981557] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1105.001362] RSP: 002b:00007f2b9b28da88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1105.009103] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1105.016570] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1105.023877] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1105.031525] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1105.039177] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1105.062149] gfs2: not a GFS2 filesystem 17:14:16 executing program 2 (fault-call:2 fault-nth:34): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:16 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:16 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012004000061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:16 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:16 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:16 executing program 0: r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x6, 0x440400) write$P9_RATTACH(r0, &(0x7f00000000c0)={0x14, 0x69, 0x2, {0x4, 0x4, 0x2}}, 0x14) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000000)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:14:16 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1105.191586] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1105.205087] input: syz0 as /devices/virtual/input/input206 17:14:16 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012600100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:16 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:16 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1105.245961] input: syz0 as /devices/virtual/input/input207 17:14:16 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x300000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1105.329228] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:16 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1105.519078] FAULT_INJECTION: forcing a failure. [ 1105.519078] name failslab, interval 1, probability 0, space 0, times 0 [ 1105.531653] CPU: 0 PID: 5946 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1105.538898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1105.538907] Call Trace: [ 1105.538937] dump_stack+0x1c4/0x2b4 [ 1105.538959] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1105.538979] ? print_usage_bug+0xc0/0xc0 [ 1105.538994] ? ext4_bread+0x95/0x2b0 [ 1105.539017] ? ext4_append+0x14e/0x370 [ 1105.571832] ? ext4_mkdir+0x532/0xe60 [ 1105.575675] should_fail.cold.4+0xa/0x17 [ 1105.579781] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1105.584938] ? kasan_check_write+0x14/0x20 [ 1105.589216] ? mark_held_locks+0x130/0x130 [ 1105.593483] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1105.599054] ? check_preemption_disabled+0x48/0x200 [ 1105.604722] ? __lock_is_held+0xb5/0x140 [ 1105.608829] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1105.614400] ? ext4_ext_map_blocks+0xf14/0x6330 [ 1105.619122] __should_failslab+0x124/0x180 [ 1105.623403] should_failslab+0x9/0x14 [ 1105.627413] kmem_cache_alloc+0x47/0x730 [ 1105.631510] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1105.636736] ? ext4_es_can_be_merged+0x23d/0x2a0 [ 1105.641527] ? __es_tree_search.isra.12+0x1ba/0x220 [ 1105.646596] __es_insert_extent+0x30c/0x1120 [ 1105.651080] ? ext4_es_free_extent+0x790/0x790 [ 1105.655897] ? lock_release+0x970/0x970 [ 1105.659904] ? __lock_is_held+0xb5/0x140 [ 1105.664012] ? kasan_check_write+0x14/0x20 [ 1105.668275] ? do_raw_write_lock+0xbd/0x1b0 [ 1105.672638] ext4_es_insert_extent+0x316/0x810 [ 1105.677514] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 1105.683609] ? lock_downgrade+0x900/0x900 [ 1105.687997] ? down_write+0x8a/0x130 [ 1105.691732] ? ext4_map_blocks+0x88f/0x1b50 [ 1105.696254] ? down_read+0x1d0/0x1d0 [ 1105.700006] ext4_map_blocks+0xb0c/0x1b50 [ 1105.704176] ? __save_stack_trace+0x8d/0xf0 [ 1105.708539] ? ext4_issue_zeroout+0x190/0x190 [ 1105.713080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1105.718841] ext4_getblk+0x10e/0x630 [ 1105.722612] ? ext4_iomap_begin+0x1390/0x1390 [ 1105.727147] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1105.732715] ? __dquot_initialize+0x629/0xdd0 [ 1105.737249] ext4_bread+0x95/0x2b0 [ 1105.740827] ? ext4_getblk+0x630/0x630 [ 1105.744748] ? dquot_get_next_dqblk+0x180/0x180 [ 1105.749463] ext4_append+0x14e/0x370 [ 1105.753225] ext4_mkdir+0x532/0xe60 [ 1105.756895] ? putname+0xf2/0x130 [ 1105.760398] ? ext4_init_dot_dotdot+0x510/0x510 [ 1105.765110] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1105.770684] ? security_inode_permission+0xd2/0x100 [ 1105.775745] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1105.781954] ? security_inode_mkdir+0xe8/0x120 [ 1105.786585] vfs_mkdir+0x42e/0x6b0 [ 1105.790335] do_mkdirat+0x27a/0x310 [ 1105.794003] ? __ia32_sys_mknod+0xb0/0xb0 [ 1105.798879] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1105.804282] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1105.809766] ? ksys_ioctl+0x81/0xd0 [ 1105.813429] __x64_sys_mkdir+0x5c/0x80 [ 1105.817359] do_syscall_64+0x1b9/0x820 [ 1105.821279] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1105.826863] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1105.831838] ? trace_hardirqs_on_caller+0x310/0x310 [ 1105.836901] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1105.841948] ? recalc_sigpending_tsk+0x180/0x180 [ 1105.846741] ? kasan_check_write+0x14/0x20 [ 1105.851190] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1105.856073] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1105.861290] RIP: 0033:0x4569b7 [ 1105.864517] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1105.884756] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1105.892501] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1105.899817] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1105.907114] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1105.914853] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1105.922152] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1105.937080] gfs2: not a GFS2 filesystem 17:14:17 executing program 2 (fault-call:2 fault-nth:35): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:17 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012030100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:17 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:17 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x400000000002f, {0x1, 0x0, 0x0, 0x100000001, 0x62, 0xfffffffffffffffc}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x1, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f00000000c0)=[@in6={0xa, 0x4e21, 0x10000, @remote, 0x40}, @in={0x2, 0x4e23, @broadcast}, @in={0x2, 0x4e22, @broadcast}], 0x3c) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:17 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc802000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:17 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:17 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:17 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:17 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1106.143136] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1106.205374] input: syz0 as /devices/virtual/input/input208 17:14:17 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012050100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1106.239203] FAULT_INJECTION: forcing a failure. [ 1106.239203] name failslab, interval 1, probability 0, space 0, times 0 [ 1106.272279] input: syz0 as /devices/virtual/input/input209 [ 1106.283376] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1106.291025] CPU: 1 PID: 5959 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1106.306596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1106.315982] Call Trace: [ 1106.319071] dump_stack+0x1c4/0x2b4 [ 1106.323015] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1106.328242] ? graph_lock+0x170/0x170 [ 1106.332637] should_fail.cold.4+0xa/0x17 [ 1106.336745] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1106.342507] ? find_held_lock+0x36/0x1c0 [ 1106.347226] ? ext4_xattr_get+0x1a8/0xb30 [ 1106.351420] ? graph_lock+0x170/0x170 [ 1106.355264] ? lock_downgrade+0x900/0x900 [ 1106.359453] ? ext4_xattr_ibody_get+0x107/0x630 [ 1106.364177] ? ext4_xattr_inode_set_class+0x60/0x60 [ 1106.369239] ? vfs_mkdir+0x42e/0x6b0 [ 1106.372987] ? __x64_sys_mkdir+0x5c/0x80 [ 1106.377251] ? do_syscall_64+0x1b9/0x820 [ 1106.381531] ? __lock_is_held+0xb5/0x140 [ 1106.385636] ? ___might_sleep+0x1ed/0x300 [ 1106.389817] ? arch_local_save_flags+0x40/0x40 [ 1106.394439] ? ext4_xattr_ibody_get+0x630/0x630 [ 1106.399142] ? kfree+0x107/0x230 [ 1106.402540] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1106.407156] __should_failslab+0x124/0x180 [ 1106.411870] should_failslab+0x9/0x14 [ 1106.415882] kmem_cache_alloc_trace+0x2d7/0x750 [ 1106.420736] ? __vfs_getxattr+0xf6/0x150 [ 1106.424842] ? __vfs_setxattr+0x180/0x180 [ 1106.429033] smk_fetch.part.24+0x5a/0xf0 [ 1106.433312] smack_d_instantiate+0xa46/0xea0 [ 1106.437772] ? smk_fetch.part.24+0xf0/0xf0 [ 1106.442060] ? __lockdep_init_map+0x105/0x590 [ 1106.446599] security_d_instantiate+0x5c/0xf0 [ 1106.451311] d_instantiate_new+0x70/0x160 [ 1106.455676] ext4_mkdir+0x8e3/0xe60 [ 1106.459342] ? putname+0xf2/0x130 [ 1106.462847] ? ext4_init_dot_dotdot+0x510/0x510 [ 1106.467550] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1106.473153] ? security_inode_permission+0xd2/0x100 [ 1106.478211] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1106.483804] ? security_inode_mkdir+0xe8/0x120 [ 1106.488864] vfs_mkdir+0x42e/0x6b0 [ 1106.492801] do_mkdirat+0x27a/0x310 [ 1106.496879] ? __ia32_sys_mknod+0xb0/0xb0 [ 1106.501096] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1106.507020] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1106.513182] ? ksys_ioctl+0x81/0xd0 [ 1106.516960] __x64_sys_mkdir+0x5c/0x80 [ 1106.520910] do_syscall_64+0x1b9/0x820 [ 1106.524825] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1106.530708] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1106.535693] ? trace_hardirqs_on_caller+0x310/0x310 [ 1106.540779] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1106.545843] ? recalc_sigpending_tsk+0x180/0x180 [ 1106.550633] ? kasan_check_write+0x14/0x20 [ 1106.554911] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1106.559806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1106.565074] RIP: 0033:0x4569b7 [ 1106.568298] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1106.587239] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1106.595255] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1106.602733] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1106.610042] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1106.617335] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1106.624812] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:18 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:18 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1106.704307] gfs2: not a GFS2 filesystem [ 1106.715539] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:18 executing program 2 (fault-call:2 fault-nth:36): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:18 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012740100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:18 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:18 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000000100", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:18 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x802, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) write$input_event(r0, &(0x7f00000001c0)={{r1, r2/1000+10000}, 0x17, 0x9, 0x5}, 0x18) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x4100, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r3, 0x80045530, &(0x7f00000000c0)=""/181) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:18 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:18 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1106.814370] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1106.866390] FAULT_INJECTION: forcing a failure. [ 1106.866390] name failslab, interval 1, probability 0, space 0, times 0 17:14:18 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000e00061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1106.891140] input: syz0 as /devices/virtual/input/input210 [ 1106.909250] input: syz0 as /devices/virtual/input/input211 [ 1106.915535] CPU: 0 PID: 5983 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1106.922780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1106.934876] Call Trace: [ 1106.937509] dump_stack+0x1c4/0x2b4 [ 1106.941284] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1106.947072] should_fail.cold.4+0xa/0x17 [ 1106.951161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1106.956913] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1106.962586] ? debug_smp_processor_id+0x1c/0x20 [ 1106.967304] ? perf_trace_lock+0x14d/0x7a0 [ 1106.971939] ? block_commit_write+0x30/0x30 [ 1106.976300] ? graph_lock+0x170/0x170 [ 1106.980132] ? kasan_check_write+0x14/0x20 [ 1106.984414] ? ext4_mark_iloc_dirty+0x19bb/0x2f00 [ 1106.989289] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1106.989312] ? graph_lock+0x170/0x170 [ 1106.989344] ? __lock_is_held+0xb5/0x140 [ 1107.001424] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1107.003183] ? ___might_sleep+0x1ed/0x300 [ 1107.003204] ? arch_local_save_flags+0x40/0x40 [ 1107.003297] ? lockref_get+0x42/0x50 [ 1107.003324] __should_failslab+0x124/0x180 [ 1107.020789] should_failslab+0x9/0x14 [ 1107.020809] kmem_cache_alloc_trace+0x2d7/0x750 [ 1107.020827] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 1107.020847] ? kasan_check_write+0x14/0x20 [ 1107.038103] smk_fetch.part.24+0x5a/0xf0 [ 1107.038126] smack_d_instantiate+0x94e/0xea0 [ 1107.038151] ? smk_fetch.part.24+0xf0/0xf0 [ 1107.056613] ? __lockdep_init_map+0x105/0x590 [ 1107.056641] security_d_instantiate+0x5c/0xf0 [ 1107.056663] d_instantiate_new+0x70/0x160 [ 1107.056684] ext4_mkdir+0x8e3/0xe60 [ 1107.056697] ? putname+0xf2/0x130 [ 1107.056724] ? ext4_init_dot_dotdot+0x510/0x510 [ 1107.056747] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1107.092069] ? security_inode_permission+0xd2/0x100 [ 1107.097151] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1107.102734] ? security_inode_mkdir+0xe8/0x120 [ 1107.107355] vfs_mkdir+0x42e/0x6b0 [ 1107.107380] do_mkdirat+0x27a/0x310 [ 1107.107403] ? __ia32_sys_mknod+0xb0/0xb0 [ 1107.107421] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1107.107444] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1107.114630] ? ksys_ioctl+0x81/0xd0 [ 1107.133683] __x64_sys_mkdir+0x5c/0x80 [ 1107.137598] do_syscall_64+0x1b9/0x820 [ 1107.142218] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1107.147963] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1107.152919] ? trace_hardirqs_on_caller+0x310/0x310 [ 1107.157969] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1107.163019] ? recalc_sigpending_tsk+0x180/0x180 [ 1107.167798] ? kasan_check_write+0x14/0x20 [ 1107.172066] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1107.172095] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1107.172115] RIP: 0033:0x4569b7 17:14:18 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x700}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:18 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:18 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c07fffffe00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:18 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1107.185907] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1107.189112] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1107.205008] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1107.205025] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1107.205032] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1107.205041] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1107.205050] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1107.205059] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1107.252496] gfs2: not a GFS2 filesystem 17:14:18 executing program 2 (fault-call:2 fault-nth:37): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:18 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:18 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012002500061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:18 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:18 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value, &(0x7f0000000100)=0x8) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f0000000140)={0x7, 0x10000}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:18 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:18 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x200000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1107.428533] FAULT_INJECTION: forcing a failure. [ 1107.428533] name failslab, interval 1, probability 0, space 0, times 0 [ 1107.431371] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1107.480774] CPU: 0 PID: 6008 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1107.488047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1107.497609] Call Trace: [ 1107.497642] dump_stack+0x1c4/0x2b4 [ 1107.497668] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1107.497687] ? graph_lock+0x170/0x170 [ 1107.497717] should_fail.cold.4+0xa/0x17 [ 1107.497748] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1107.497770] ? find_held_lock+0x36/0x1c0 [ 1107.504065] ? ext4_xattr_get+0x1a8/0xb30 [ 1107.504083] ? graph_lock+0x170/0x170 [ 1107.504098] ? lock_downgrade+0x900/0x900 [ 1107.504113] ? ext4_xattr_ibody_get+0x107/0x630 [ 1107.504136] ? ext4_xattr_inode_set_class+0x60/0x60 [ 1107.504149] ? vfs_mkdir+0x42e/0x6b0 [ 1107.504163] ? __x64_sys_mkdir+0x5c/0x80 [ 1107.504179] ? do_syscall_64+0x1b9/0x820 [ 1107.504199] ? __lock_is_held+0xb5/0x140 [ 1107.504231] ? ___might_sleep+0x1ed/0x300 [ 1107.513282] ? arch_local_save_flags+0x40/0x40 [ 1107.534481] ? ext4_xattr_ibody_get+0x630/0x630 [ 1107.534499] ? kfree+0x107/0x230 [ 1107.534518] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1107.534538] __should_failslab+0x124/0x180 [ 1107.534556] should_failslab+0x9/0x14 [ 1107.534573] kmem_cache_alloc_trace+0x2d7/0x750 [ 1107.534589] ? __vfs_getxattr+0xf6/0x150 [ 1107.534610] ? __vfs_setxattr+0x180/0x180 [ 1107.556255] smk_fetch.part.24+0x5a/0xf0 [ 1107.556280] smack_d_instantiate+0xa46/0xea0 [ 1107.556304] ? smk_fetch.part.24+0xf0/0xf0 [ 1107.556326] ? __lockdep_init_map+0x105/0x590 [ 1107.564934] input: syz0 as /devices/virtual/input/input212 [ 1107.568804] security_d_instantiate+0x5c/0xf0 [ 1107.568829] d_instantiate_new+0x70/0x160 [ 1107.568866] ext4_mkdir+0x8e3/0xe60 [ 1107.591192] ? putname+0xf2/0x130 [ 1107.591227] ? ext4_init_dot_dotdot+0x510/0x510 [ 1107.591250] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1107.591272] ? security_inode_permission+0xd2/0x100 [ 1107.612730] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1107.612748] ? security_inode_mkdir+0xe8/0x120 [ 1107.612769] vfs_mkdir+0x42e/0x6b0 [ 1107.612797] do_mkdirat+0x27a/0x310 [ 1107.632230] ? __ia32_sys_mknod+0xb0/0xb0 [ 1107.632249] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1107.632268] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1107.632288] ? ksys_ioctl+0x81/0xd0 [ 1107.700322] __x64_sys_mkdir+0x5c/0x80 [ 1107.704238] do_syscall_64+0x1b9/0x820 [ 1107.704255] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1107.704274] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1107.704294] ? trace_hardirqs_on_caller+0x310/0x310 [ 1107.704315] ? prepare_exit_to_usermode+0x3b0/0x3b0 17:14:19 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012003f00061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:19 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:19 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1107.704341] ? recalc_sigpending_tsk+0x180/0x180 [ 1107.714050] ? kasan_check_write+0x14/0x20 [ 1107.714075] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1107.714100] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1107.714113] RIP: 0033:0x4569b7 [ 1107.714130] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1107.714145] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 [ 1107.734071] ORIG_RAX: 0000000000000053 [ 1107.734083] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1107.734092] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1107.734101] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1107.734111] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1107.734119] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1107.769046] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:19 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x4000000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1107.797756] nla_parse: 25 callbacks suppressed [ 1107.797767] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1107.830317] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:19 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1107.902581] input: syz0 as /devices/virtual/input/input213 [ 1107.935785] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1107.964083] gfs2: not a GFS2 filesystem 17:14:19 executing program 2 (fault-call:2 fault-nth:38): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:19 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:19 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:19 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012040000061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:19 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:19 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x0, 0x0, 0x0, 0x0, 0x81}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x400000000000, 0x4, 0x0, 0xfffffffffffffffd}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/autofs\x00', 0x400000, 0x0) getsockname$packet(r1, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000200)=0x14) ioctl$UI_END_FF_ERASE(r0, 0x400c55cb, &(0x7f0000000100)={0x6, 0x9, 0x3}) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000240)=0x3, 0x4) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x8001, 0x200100) r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x80, 0x0) r4 = fcntl$getown(r3, 0x9) r5 = getpgid(r4) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000280)={'filter\x00', 0x98, "cff57bec615a1991fc6641a886a306e0ada366be3805908d8fac7002a069de34b8cc14909514c86d41f9d1fd761b70a8bcb5f846b62672e2f81b7a949ee55858c5e26af3208938cac3c6bc07c5594ae565b52ac9548ef9b523031a3e306fed5b627c8b247fe4608f724f6393c7df28be47a0408043c7c9f408ff5c37a3ac11d5e4a1089360a2a3cc1be21f386c2f3209bfb1194f46a0c8b4"}, &(0x7f0000000340)=0xbc) write$FUSE_LK(r2, &(0x7f00000000c0)={0x28, 0x0, 0x4, {{0x5, 0x7fff, 0x2, r5}}}, 0x28) [ 1108.081475] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1108.094757] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1108.098476] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1108.128439] input: syz0 as /devices/virtual/input/input214 17:14:19 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716cfeffff0700", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:19 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00120f0100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:19 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x700000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1108.157450] input: syz0 as /devices/virtual/input/input215 [ 1108.165380] FAULT_INJECTION: forcing a failure. [ 1108.165380] name failslab, interval 1, probability 0, space 0, times 0 17:14:19 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1108.219567] CPU: 1 PID: 6040 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1108.226884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1108.236252] Call Trace: [ 1108.236283] dump_stack+0x1c4/0x2b4 [ 1108.236308] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1108.236342] should_fail.cold.4+0xa/0x17 [ 1108.236379] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1108.256937] ? zap_class+0x640/0x640 [ 1108.260681] ? graph_lock+0x170/0x170 [ 1108.260697] ? graph_lock+0x170/0x170 17:14:19 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012680100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1108.260716] ? graph_lock+0x170/0x170 [ 1108.265108] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1108.268378] ? find_held_lock+0x36/0x1c0 [ 1108.268419] ? ___might_sleep+0x1ed/0x300 [ 1108.280704] ? arch_local_save_flags+0x40/0x40 [ 1108.280730] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1108.280755] __should_failslab+0x124/0x180 [ 1108.280774] should_failslab+0x9/0x14 [ 1108.307136] __kmalloc_track_caller+0x2d0/0x750 [ 1108.311839] ? strncpy_from_user+0x510/0x510 [ 1108.316271] ? __do_page_fault+0x4a6/0xed0 [ 1108.321033] ? strndup_user+0x77/0xd0 [ 1108.321057] memdup_user+0x2c/0xa0 [ 1108.321075] strndup_user+0x77/0xd0 [ 1108.321093] ksys_mount+0x3c/0x140 [ 1108.321119] __x64_sys_mount+0xbe/0x150 [ 1108.335643] do_syscall_64+0x1b9/0x820 [ 1108.335662] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1108.335683] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1108.335698] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1108.335719] ? trace_hardirqs_on_caller+0x310/0x310 17:14:19 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012030000061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1108.349233] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1108.353882] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1108.353904] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1108.353921] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1108.353950] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1108.353981] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1108.398021] RIP: 0033:0x459fea [ 1108.401229] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1108.420142] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1108.420161] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1108.420172] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1108.420182] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1108.420192] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1108.420202] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1108.425700] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1108.442072] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1108.489515] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1108.528953] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:19 executing program 2 (fault-call:2 fault-nth:39): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:19 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:19 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x100000000000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:19 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:19 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00126c0100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:19 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1108.611526] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1108.622005] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1108.623208] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:20 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:20 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012070100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x600}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1108.667619] FAULT_INJECTION: forcing a failure. [ 1108.667619] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.721712] CPU: 0 PID: 6066 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1108.728939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1108.728948] Call Trace: [ 1108.728976] dump_stack+0x1c4/0x2b4 [ 1108.729005] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1108.749878] ? __find_get_block+0xba8/0xf20 [ 1108.754222] ? __find_get_block+0xba8/0xf20 [ 1108.758580] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1108.763188] should_fail.cold.4+0xa/0x17 [ 1108.763205] ? graph_lock+0x170/0x170 [ 1108.763227] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1108.763259] ? graph_lock+0x170/0x170 [ 1108.763290] ? ___might_sleep+0x1ed/0x300 [ 1108.776297] ? __lock_is_held+0xb5/0x140 [ 1108.776314] ? blk_mq_make_request+0x1540/0x2630 [ 1108.776341] ? __might_sleep+0x95/0x190 [ 1108.776361] ? ___might_sleep+0x1ed/0x300 [ 1108.776381] ? arch_local_save_flags+0x40/0x40 [ 1108.776407] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 1108.776430] __should_failslab+0x124/0x180 [ 1108.776448] should_failslab+0x9/0x14 17:14:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xfeffff0700000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1108.776465] kmem_cache_alloc+0x2be/0x730 [ 1108.776486] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1108.785112] input: syz0 as /devices/virtual/input/input216 [ 1108.788503] ? ext4_data_block_valid+0x28b/0x330 [ 1108.788536] jbd2_journal_add_journal_head+0x21a/0x670 [ 1108.788573] ? jbd2_journal_write_metadata_buffer+0xf30/0xf30 [ 1108.788595] ? ___might_sleep+0x1ed/0x300 [ 1108.801469] jbd2_journal_get_create_access+0x42/0x670 [ 1108.816092] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1108.816119] __ext4_journal_get_create_access+0x46/0x90 [ 1108.816141] ext4_getblk+0x2b9/0x630 [ 1108.816170] ? ext4_iomap_begin+0x1390/0x1390 [ 1108.824136] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1108.824153] ? __dquot_initialize+0x629/0xdd0 [ 1108.824176] ext4_bread+0x95/0x2b0 [ 1108.824195] ? ext4_getblk+0x630/0x630 [ 1108.824211] ? dquot_get_next_dqblk+0x180/0x180 [ 1108.824240] ext4_append+0x14e/0x370 [ 1108.824267] ext4_mkdir+0x532/0xe60 [ 1108.839660] ? putname+0xf2/0x130 [ 1108.839693] ? ext4_init_dot_dotdot+0x510/0x510 [ 1108.839717] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1108.850881] ? security_inode_permission+0xd2/0x100 [ 1108.850904] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1108.850921] ? security_inode_mkdir+0xe8/0x120 [ 1108.850942] vfs_mkdir+0x42e/0x6b0 [ 1108.850965] do_mkdirat+0x27a/0x310 [ 1108.865963] ? __ia32_sys_mknod+0xb0/0xb0 [ 1108.865983] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1108.866003] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1108.866024] ? ksys_ioctl+0x81/0xd0 [ 1108.875157] __x64_sys_mkdir+0x5c/0x80 [ 1108.875180] do_syscall_64+0x1b9/0x820 17:14:20 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00127a0100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:20 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1108.875197] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1108.875215] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1108.875235] ? trace_hardirqs_on_caller+0x310/0x310 [ 1108.875254] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1108.875271] ? recalc_sigpending_tsk+0x180/0x180 [ 1108.875287] ? kasan_check_write+0x14/0x20 [ 1108.875311] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1108.885346] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1108.885361] RIP: 0033:0x4569b7 [ 1108.885380] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1108.885390] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1108.885407] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1108.885416] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1108.885425] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1108.885435] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 17:14:20 executing program 2 (fault-call:2 fault-nth:40): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:20 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012040100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:20 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x40000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:20 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1108.885444] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1108.899759] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1108.990831] ENOMEM in journal_alloc_journal_head, retrying. [ 1109.068235] input: syz0 as /devices/virtual/input/input217 [ 1109.093799] gfs2: not a GFS2 filesystem [ 1109.185509] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1109.236127] FAULT_INJECTION: forcing a failure. [ 1109.236127] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.247495] CPU: 0 PID: 6092 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1109.255046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1109.264416] Call Trace: [ 1109.267033] dump_stack+0x1c4/0x2b4 [ 1109.270703] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1109.275936] should_fail.cold.4+0xa/0x17 [ 1109.275965] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1109.275986] ? zap_class+0x640/0x640 [ 1109.276009] ? graph_lock+0x170/0x170 [ 1109.276027] ? graph_lock+0x170/0x170 [ 1109.276053] ? graph_lock+0x170/0x170 [ 1109.300399] ? find_held_lock+0x36/0x1c0 [ 1109.304506] ? ___might_sleep+0x1ed/0x300 [ 1109.308683] ? arch_local_save_flags+0x40/0x40 [ 1109.308709] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1109.308737] __should_failslab+0x124/0x180 [ 1109.323141] should_failslab+0x9/0x14 [ 1109.326969] __kmalloc_track_caller+0x2d0/0x750 [ 1109.331670] ? strncpy_from_user+0x510/0x510 [ 1109.331688] ? __do_page_fault+0x4a6/0xed0 [ 1109.331704] ? strndup_user+0x77/0xd0 [ 1109.331727] memdup_user+0x2c/0xa0 [ 1109.340393] strndup_user+0x77/0xd0 [ 1109.340414] ksys_mount+0x3c/0x140 [ 1109.340435] __x64_sys_mount+0xbe/0x150 [ 1109.340457] do_syscall_64+0x1b9/0x820 [ 1109.347808] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1109.347832] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1109.347856] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1109.347879] ? trace_hardirqs_on_caller+0x310/0x310 [ 1109.355052] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1109.355072] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1109.355089] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1109.355112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1109.355139] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1109.355152] RIP: 0033:0x459fea [ 1109.355169] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 17:14:20 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r1 = syz_open_dev$amidi(&(0x7f0000004600)='/dev/amidi#\x00', 0x6, 0x103982) utime(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x5}) connect$llc(r1, &(0x7f0000004640)={0x1a, 0x30f, 0x6, 0x7, 0x1, 0xffff}, 0x10) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}, @in={0x2, 0x4e24, @rand_addr=0x7}, @in6={0xa, 0x4e22, 0x4, @local, 0x6}], 0x3c) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x0, 0x0, 0x2ffc}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:20 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012480100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:20 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7fffffe}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:20 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:20 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012005f00061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:20 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1109.355179] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1109.363052] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1109.363063] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1109.363074] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1109.363085] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1109.363095] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1109.496929] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1109.534329] input: syz0 as /devices/virtual/input/input218 [ 1109.555326] input: syz0 as /devices/virtual/input/input219 17:14:20 executing program 2 (fault-call:2 fault-nth:41): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:20 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:20 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012020100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xffffffff00000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:20 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1109.634087] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1109.683540] FAULT_INJECTION: forcing a failure. [ 1109.683540] name failslab, interval 1, probability 0, space 0, times 0 17:14:21 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x200000, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000100)={'bpq0\x00', {0x2, 0x4e24, @loopback}}) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000000)) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800100}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xdc, r2, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7f}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DEST={0x54, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xffffffff}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x3}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x3ff}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x4}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x7}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x81}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x2}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xcf}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DAEMON={0x48, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'nr0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bcsh0\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000001) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)={0x6}) 17:14:21 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:21 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc8020000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:21 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1109.713381] CPU: 0 PID: 6119 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1109.720608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1109.729969] Call Trace: [ 1109.732584] dump_stack+0x1c4/0x2b4 [ 1109.736239] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1109.741451] ? graph_lock+0x170/0x170 [ 1109.745282] should_fail.cold.4+0xa/0x17 [ 1109.749366] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1109.754489] ? find_held_lock+0x36/0x1c0 [ 1109.758582] ? ext4_xattr_get+0x1a8/0xb30 [ 1109.762751] ? graph_lock+0x170/0x170 [ 1109.766567] ? lock_downgrade+0x900/0x900 [ 1109.770735] ? ext4_xattr_ibody_get+0x107/0x630 [ 1109.774914] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1109.775435] ? ext4_xattr_inode_set_class+0x60/0x60 [ 1109.788780] ? vfs_mkdir+0x42e/0x6b0 [ 1109.788798] ? __x64_sys_mkdir+0x5c/0x80 [ 1109.788816] ? do_syscall_64+0x1b9/0x820 [ 1109.788838] ? __lock_is_held+0xb5/0x140 [ 1109.800691] ? ___might_sleep+0x1ed/0x300 [ 1109.800713] ? arch_local_save_flags+0x40/0x40 17:14:21 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1109.800734] ? ext4_xattr_ibody_get+0x630/0x630 [ 1109.800757] ? kfree+0x107/0x230 [ 1109.821586] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1109.826200] __should_failslab+0x124/0x180 [ 1109.830452] should_failslab+0x9/0x14 [ 1109.830472] kmem_cache_alloc_trace+0x2d7/0x750 [ 1109.830489] ? __vfs_getxattr+0xf6/0x150 [ 1109.830507] ? __vfs_setxattr+0x180/0x180 [ 1109.830532] smk_fetch.part.24+0x5a/0xf0 [ 1109.843073] smack_d_instantiate+0xa46/0xea0 [ 1109.843102] ? smk_fetch.part.24+0xf0/0xf0 [ 1109.843119] ? __lockdep_init_map+0x105/0x590 [ 1109.843145] security_d_instantiate+0x5c/0xf0 [ 1109.843167] d_instantiate_new+0x70/0x160 [ 1109.843190] ext4_mkdir+0x8e3/0xe60 [ 1109.843207] ? putname+0xf2/0x130 [ 1109.870325] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1109.873361] ? ext4_init_dot_dotdot+0x510/0x510 [ 1109.873387] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1109.873406] ? security_inode_permission+0xd2/0x100 [ 1109.873425] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1109.873439] ? security_inode_mkdir+0xe8/0x120 17:14:21 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000007fffffe00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1109.873459] vfs_mkdir+0x42e/0x6b0 [ 1109.873480] do_mkdirat+0x27a/0x310 [ 1109.873501] ? __ia32_sys_mknod+0xb0/0xb0 [ 1109.925663] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1109.931047] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1109.936512] ? ksys_ioctl+0x81/0xd0 [ 1109.940170] __x64_sys_mkdir+0x5c/0x80 [ 1109.944085] do_syscall_64+0x1b9/0x820 [ 1109.947994] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1109.948016] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1109.948039] ? trace_hardirqs_on_caller+0x310/0x310 17:14:21 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012060100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1109.948057] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1109.948074] ? recalc_sigpending_tsk+0x180/0x180 [ 1109.948094] ? kasan_check_write+0x14/0x20 [ 1109.963416] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1109.963444] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1109.963457] RIP: 0033:0x4569b7 [ 1109.963474] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1109.963484] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1109.963503] RAX: ffffffffffffffda RBX: 0000000020001150 RCX: 00000000004569b7 [ 1109.963512] RDX: 0000000000000006 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1109.963521] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 1109.963530] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000006 [ 1109.963540] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1110.050469] gfs2: not a GFS2 filesystem [ 1110.076060] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1110.108674] input: syz0 as /devices/virtual/input/input220 17:14:21 executing program 2 (fault-call:2 fault-nth:42): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:21 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000ffffffff00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:21 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6000000}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:21 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00124c0100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:21 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1110.130018] input: syz0 as /devices/virtual/input/input221 [ 1110.179563] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1110.245572] FAULT_INJECTION: forcing a failure. [ 1110.245572] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.274252] CPU: 1 PID: 6147 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1110.281492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1110.290859] Call Trace: [ 1110.290890] dump_stack+0x1c4/0x2b4 [ 1110.290920] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1110.297146] should_fail.cold.4+0xa/0x17 [ 1110.297171] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1110.311533] ? zap_class+0x640/0x640 [ 1110.315280] ? graph_lock+0x170/0x170 [ 1110.319568] ? save_stack+0x43/0xd0 [ 1110.323217] ? kasan_kmalloc+0xc7/0xe0 [ 1110.327120] ? __kmalloc_track_caller+0x14a/0x750 [ 1110.332154] ? memdup_user+0x2c/0xa0 [ 1110.335890] ? graph_lock+0x170/0x170 [ 1110.339707] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1110.345101] ? find_held_lock+0x36/0x1c0 [ 1110.349207] ? ___might_sleep+0x1ed/0x300 [ 1110.353391] ? arch_local_save_flags+0x40/0x40 [ 1110.358002] ? lock_release+0x970/0x970 [ 1110.362039] ? arch_local_save_flags+0x40/0x40 [ 1110.366658] __should_failslab+0x124/0x180 [ 1110.370916] should_failslab+0x9/0x14 [ 1110.374737] __kmalloc_track_caller+0x2d0/0x750 [ 1110.379429] ? strncpy_from_user+0x510/0x510 [ 1110.383854] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1110.389408] ? strndup_user+0x77/0xd0 [ 1110.393230] memdup_user+0x2c/0xa0 [ 1110.396792] strndup_user+0x77/0xd0 [ 1110.400438] ksys_mount+0x73/0x140 [ 1110.403999] __x64_sys_mount+0xbe/0x150 [ 1110.408000] do_syscall_64+0x1b9/0x820 [ 1110.411903] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1110.417288] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1110.422320] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1110.427198] ? trace_hardirqs_on_caller+0x310/0x310 [ 1110.432234] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1110.437273] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1110.442858] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1110.447989] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1110.452863] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1110.458077] RIP: 0033:0x459fea [ 1110.461289] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1110.480233] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1110.487977] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea 17:14:21 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000780)='/dev/autofs\x00', 0x200000, 0x0) ioctl$RNDADDTOENTCNT(r1, 0x40045201, &(0x7f00000007c0)=0x7) write$uinput_user_dev(r0, &(0x7f00000000c0)={'syz1\x00', {0x0, 0x8, 0x3, 0x1f}, 0x3f, [0x3, 0x7, 0x1, 0x6, 0x540d, 0x1, 0x7f, 0xfffffffffffffffb, 0x8001, 0x100, 0x10000, 0x7, 0x7f, 0x8001, 0x1, 0x4070b675, 0x0, 0x646, 0x0, 0x1, 0x4f8, 0x4, 0x2, 0x3, 0xb752, 0x4, 0xfffffffffffffffb, 0x8, 0x8000, 0x0, 0x200, 0xf91, 0x3, 0x8, 0x1000, 0x8000, 0x7, 0x0, 0x7fffffff, 0xcea8, 0x3, 0x4, 0x1, 0x8, 0x4, 0x4, 0x5, 0x7fffffff, 0x6, 0x2, 0x5, 0x2, 0x2, 0x10001, 0x4, 0x401, 0x9, 0x1ff, 0xfffffffffffffffe, 0x7, 0xffff, 0x8, 0x9, 0x3f], [0xe5e, 0x9, 0x6, 0x0, 0x80000000, 0x8, 0x5, 0x6, 0x6, 0x8, 0xfffffffffffffffa, 0x2, 0x4, 0x0, 0x3f, 0x6, 0x7, 0x3, 0x7, 0x1, 0x8000, 0x4, 0x1, 0x7, 0x1, 0x4, 0x1000, 0x9c4c, 0x3, 0x1, 0x2, 0x7fffffff, 0xd68c, 0x0, 0x0, 0x8, 0x1aa1, 0x9, 0x9, 0x3f, 0x2, 0x8, 0x1, 0x2, 0x9, 0x54d, 0x37286f32, 0x5, 0x40000000000000, 0x8, 0x9d8, 0x4b3, 0x3ff, 0x7fffffff, 0x1f, 0x6, 0xfffffffffffffeff, 0x6, 0xa7, 0x1f, 0x3ff, 0x100000000, 0x8001, 0x1], [0x9, 0x2, 0x9, 0x1, 0x3, 0x1, 0x43d, 0x10001, 0x80000000, 0x7f, 0x2, 0x200, 0xffffffff00000000, 0x789, 0x6, 0x1, 0x0, 0x1, 0x7, 0x100000000000000, 0x8, 0x3, 0x6, 0x4599, 0x4, 0xffffffffffffffa6, 0x2, 0x200, 0x2, 0x102, 0xf72, 0x7f, 0x3, 0x2, 0xffffffffffffffff, 0x97e, 0x67969673, 0x2, 0x63, 0x6, 0x1, 0x8000, 0x933, 0x6, 0x7fffffff, 0x100000001, 0x8, 0x400, 0x1, 0x2, 0xdb, 0x4, 0x6de5, 0x2, 0x2, 0x1, 0x9, 0x6965, 0x80000000, 0xf9b, 0x0, 0x6, 0x7f, 0x3ff], [0x3, 0x2, 0x0, 0x1, 0x81, 0xc6cb, 0x8000, 0x7, 0x8, 0x3f, 0x9, 0x2, 0x0, 0x1, 0x20, 0x69b, 0x6f, 0x79d, 0xfffffffffffffff8, 0x6, 0x6, 0x9, 0x10200000000, 0x40, 0x1, 0x1b8800, 0x5, 0x3, 0x9, 0x0, 0x1000, 0x8, 0x6, 0x7, 0x2, 0x5, 0x3ff, 0x10001, 0x8, 0x6, 0x0, 0xdcb5, 0x6, 0x8, 0xfffffffffffffe8e, 0x100, 0x8fc, 0x6, 0x3, 0x7, 0x65a728fa, 0x8395, 0x3, 0x9, 0x5, 0xffffffff00000000, 0xffff, 0x7, 0x1ff, 0x7, 0x7, 0x8, 0x7ff, 0x6]}, 0x45c) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x400000000002f, {0x4}}) r2 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000740)=0x8, 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000680)={0xffffffffffffffff}, 0x106, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r2, &(0x7f0000000700)={0xb, 0x10, 0xfa00, {&(0x7f00000005c0), r3, 0xffffffff}}, 0x18) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:21 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012005f00061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:21 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:21 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:21 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1110.495267] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1110.502564] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1110.509849] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1110.517130] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:21 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000003061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:21 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000100", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:22 executing program 2 (fault-call:2 fault-nth:43): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:22 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2c8}, [], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:22 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1110.581756] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1110.648763] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:22 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1110.701851] input: syz0 as /devices/virtual/input/input222 17:14:22 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000e00061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1110.744481] input: syz0 as /devices/virtual/input/input223 [ 1110.775023] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1110.825003] FAULT_INJECTION: forcing a failure. [ 1110.825003] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.853136] CPU: 1 PID: 6171 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1110.860370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1110.869740] Call Trace: [ 1110.872368] dump_stack+0x1c4/0x2b4 [ 1110.876024] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1110.881252] should_fail.cold.4+0xa/0x17 [ 1110.885339] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1110.890475] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1110.896289] ? print_usage_bug+0xc0/0xc0 [ 1110.900374] ? rcu_bh_qs+0xc0/0xc0 [ 1110.903929] ? graph_lock+0x170/0x170 [ 1110.907747] ? rcu_bh_qs+0xc0/0xc0 [ 1110.911304] ? unwind_dump+0x190/0x190 [ 1110.915223] ? is_bpf_text_address+0xd3/0x170 [ 1110.919747] ? find_held_lock+0x36/0x1c0 [ 1110.923857] ? ___might_sleep+0x1ed/0x300 [ 1110.928033] ? save_stack+0xa9/0xd0 [ 1110.931678] ? arch_local_save_flags+0x40/0x40 [ 1110.936276] ? save_stack+0x43/0xd0 [ 1110.939918] ? __kasan_slab_free+0x102/0x150 [ 1110.944339] ? kasan_slab_free+0xe/0x10 [ 1110.948337] ? kmem_cache_free+0x83/0x290 [ 1110.952512] ? user_path_at_empty+0x40/0x50 [ 1110.956844] ? do_mount+0x177/0x31f0 [ 1110.960582] __should_failslab+0x124/0x180 [ 1110.964837] should_failslab+0x9/0x14 [ 1110.968652] kmem_cache_alloc+0x2be/0x730 [ 1110.972816] ? debug_smp_processor_id+0x1c/0x20 [ 1110.977878] ? perf_trace_lock+0x14d/0x7a0 [ 1110.982244] ? kasan_check_write+0x14/0x20 [ 1110.986504] alloc_vfsmnt+0xe9/0x990 [ 1110.990237] ? m_stop+0x20/0x20 [ 1110.993542] ? graph_lock+0x170/0x170 [ 1110.997367] ? rcu_pm_notify+0xc0/0xc0 [ 1111.001275] ? putname+0xf2/0x130 [ 1111.004761] ? find_held_lock+0x36/0x1c0 [ 1111.008858] ? __get_fs_type+0x97/0xc0 [ 1111.012768] ? lock_downgrade+0x900/0x900 [ 1111.016943] ? lock_release+0x970/0x970 [ 1111.020940] ? digsig_verify+0x1530/0x1530 [ 1111.025410] vfs_kern_mount.part.35+0x90/0x4f0 [ 1111.030032] ? may_umount+0xb0/0xb0 [ 1111.034287] ? _raw_read_unlock+0x2c/0x50 [ 1111.038469] ? __get_fs_type+0x97/0xc0 [ 1111.042388] do_mount+0x581/0x31f0 [ 1111.045947] ? trace_hardirqs_off+0x310/0x310 [ 1111.050455] ? retint_kernel+0x1b/0x2d [ 1111.054369] ? copy_mount_string+0x40/0x40 [ 1111.058626] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1111.063412] ? retint_kernel+0x2d/0x2d [ 1111.067326] ? copy_mount_options+0x1f3/0x380 [ 1111.071850] ? copy_mount_options+0x1f9/0x380 [ 1111.076378] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1111.081935] ? copy_mount_options+0x288/0x380 [ 1111.087260] ksys_mount+0x12d/0x140 [ 1111.090915] __x64_sys_mount+0xbe/0x150 [ 1111.094927] do_syscall_64+0x1b9/0x820 [ 1111.098839] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1111.104316] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1111.109433] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1111.114580] ? trace_hardirqs_on_caller+0x310/0x310 [ 1111.119841] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1111.125312] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1111.130884] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1111.135930] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1111.140801] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1111.146014] RIP: 0033:0x459fea [ 1111.149222] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1111.168145] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1111.175880] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea 17:14:22 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mounts\x00') ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f00000000c0)={0x2, 0x80000001, 0x53f, 0x3, 0x80, 0x8}) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:14:22 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x40000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:22 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:22 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000200061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:22 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1111.183166] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1111.190448] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1111.197945] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1111.205933] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:22 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x700], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:22 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000800061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:22 executing program 2 (fault-call:2 fault-nth:44): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1111.309176] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:22 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:22 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1111.395813] input: syz0 as /devices/virtual/input/input224 [ 1111.425259] FAULT_INJECTION: forcing a failure. [ 1111.425259] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.445329] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1111.472946] CPU: 0 PID: 6186 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1111.480160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1111.480169] Call Trace: [ 1111.480199] dump_stack+0x1c4/0x2b4 [ 1111.480229] ? dump_stack_print_info.cold.2+0x52/0x52 17:14:22 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x3], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:22 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1111.501001] should_fail.cold.4+0xa/0x17 [ 1111.505089] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1111.510212] ? is_bpf_text_address+0xac/0x170 [ 1111.514730] ? lock_downgrade+0x900/0x900 [ 1111.518894] ? graph_lock+0x170/0x170 [ 1111.522711] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1111.528520] ? kasan_check_read+0x11/0x20 [ 1111.532702] ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160 [ 1111.537998] ? rcu_bh_qs+0xc0/0xc0 [ 1111.541566] ? rcu_bh_qs+0xc0/0xc0 [ 1111.545127] ? unwind_dump+0x190/0x190 [ 1111.549041] ? find_held_lock+0x36/0x1c0 [ 1111.553140] ? ___might_sleep+0x1ed/0x300 [ 1111.557306] ? arch_local_save_flags+0x40/0x40 [ 1111.561929] __should_failslab+0x124/0x180 [ 1111.566195] should_failslab+0x9/0x14 [ 1111.570020] kmem_cache_alloc+0x2be/0x730 [ 1111.574197] ? find_held_lock+0x36/0x1c0 [ 1111.578282] getname_flags+0xd0/0x5a0 [ 1111.582108] user_path_at_empty+0x2d/0x50 [ 1111.586276] do_mount+0x177/0x31f0 [ 1111.586303] ? copy_mount_string+0x40/0x40 [ 1111.586322] ? rcu_pm_notify+0xc0/0xc0 [ 1111.586348] ? copy_mount_options+0x5f/0x380 [ 1111.598045] ? rcu_read_lock_sched_held+0x108/0x120 [ 1111.598067] ? kmem_cache_alloc_trace+0x353/0x750 [ 1111.598089] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1111.598112] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1111.607556] ? copy_mount_options+0x288/0x380 [ 1111.607583] ksys_mount+0x12d/0x140 [ 1111.617987] __x64_sys_mount+0xbe/0x150 [ 1111.618011] do_syscall_64+0x1b9/0x820 [ 1111.618029] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1111.618048] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1111.618064] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1111.618085] ? trace_hardirqs_on_caller+0x310/0x310 [ 1111.635694] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1111.635713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1111.635730] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1111.635754] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1111.635781] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1111.635795] RIP: 0033:0x459fea [ 1111.635813] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1111.635827] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 [ 1111.659863] ORIG_RAX: 00000000000000a5 [ 1111.659875] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1111.659886] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1111.659897] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1111.659907] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1111.659917] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:23 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, 0x0) keyctl$set_timeout(0xf, r1, 0x7) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:23 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:23 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012002500061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:23 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x4000000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:23 executing program 2 (fault-call:2 fault-nth:45): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xfeffff0700000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1111.824059] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1111.827047] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:23 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:23 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000107061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1111.873503] input: syz0 as /devices/virtual/input/input226 [ 1111.914239] FAULT_INJECTION: forcing a failure. [ 1111.914239] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1111.943602] CPU: 0 PID: 6212 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1111.950835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1111.960209] Call Trace: [ 1111.962825] dump_stack+0x1c4/0x2b4 [ 1111.966493] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1111.971705] ? perf_trace_lock+0x14d/0x7a0 [ 1111.975958] ? rcu_pm_notify+0xc0/0xc0 [ 1111.979881] should_fail.cold.4+0xa/0x17 [ 1111.983972] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1111.989096] ? graph_lock+0x170/0x170 [ 1111.992929] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1111.998488] ? find_held_lock+0x36/0x1c0 [ 1112.002588] ? ___might_sleep+0x1ed/0x300 [ 1112.006754] ? lock_release+0x970/0x970 [ 1112.010747] ? arch_local_save_flags+0x40/0x40 [ 1112.015358] ? __might_sleep+0x95/0x190 [ 1112.019359] __alloc_pages_nodemask+0x34b/0xde0 [ 1112.024053] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1112.024083] ? graph_lock+0x170/0x170 [ 1112.033009] ? rcu_pm_notify+0xc0/0xc0 [ 1112.033043] ? find_held_lock+0x36/0x1c0 [ 1112.033070] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1112.033094] alloc_pages_current+0x10c/0x210 [ 1112.050981] get_zeroed_page+0x14/0x50 [ 1112.052912] input: syz0 as /devices/virtual/input/input227 [ 1112.054884] mount_fs+0x20e/0x31d [ 1112.054902] ? digsig_verify+0x1530/0x1530 [ 1112.054927] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1112.064001] ? may_umount+0xb0/0xb0 [ 1112.064019] ? _raw_read_unlock+0x2c/0x50 [ 1112.064036] ? __get_fs_type+0x97/0xc0 [ 1112.064059] do_mount+0x581/0x31f0 [ 1112.064083] ? copy_mount_string+0x40/0x40 [ 1112.064113] ? copy_mount_options+0x5f/0x380 [ 1112.084559] ? rcu_read_lock_sched_held+0x108/0x120 [ 1112.084580] ? kmem_cache_alloc_trace+0x353/0x750 [ 1112.084601] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1112.084620] ? _copy_from_user+0xdf/0x150 [ 1112.092507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1112.092524] ? copy_mount_options+0x288/0x380 [ 1112.092546] ksys_mount+0x12d/0x140 [ 1112.112342] __x64_sys_mount+0xbe/0x150 [ 1112.112368] do_syscall_64+0x1b9/0x820 [ 1112.112385] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1112.112406] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1112.130777] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1112.130800] ? trace_hardirqs_on_caller+0x310/0x310 [ 1112.130818] ? prepare_exit_to_usermode+0x3b0/0x3b0 17:14:23 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000000100", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x2c8], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1112.130840] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1112.149249] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1112.149273] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1112.149299] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1112.149311] RIP: 0033:0x459fea [ 1112.149329] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1112.149338] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x7], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1112.149355] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1112.149365] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1112.149376] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1112.149385] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1112.149394] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1112.181995] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:23 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = dup2(r0, r0) sendto$inet6(r1, &(0x7f00000000c0)="e404e2326c81166c", 0x8, 0x4004050, &(0x7f0000000100)={0xa, 0x4e23, 0x5, @mcast1, 0x401}, 0x1c) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x0, 0x0, 0x0, 0x2, 0x0, 0x1}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x1, 0x200) ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x1}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:23 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:23 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:23 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000102061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x7000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1112.366923] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:23 executing program 2 (fault-call:2 fault-nth:46): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:23 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:23 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000105061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:23 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x6000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:23 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x8, 0x8, 0x153, 0x80000001, 0x80}) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1112.495565] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1112.550076] FAULT_INJECTION: forcing a failure. [ 1112.550076] name failslab, interval 1, probability 0, space 0, times 0 17:14:23 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xfeffff07], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1112.561648] CPU: 0 PID: 6248 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1112.568873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1112.578239] Call Trace: [ 1112.580869] dump_stack+0x1c4/0x2b4 [ 1112.584530] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1112.589770] should_fail.cold.4+0xa/0x17 [ 1112.593864] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1112.598989] ? rcu_read_unlock_special.part.39+0x11f0/0x11f0 [ 1112.604798] ? print_usage_bug+0xc0/0xc0 [ 1112.604816] ? rcu_bh_qs+0xc0/0xc0 17:14:23 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1112.604831] ? graph_lock+0x170/0x170 [ 1112.604846] ? rcu_bh_qs+0xc0/0xc0 [ 1112.604870] ? unwind_dump+0x190/0x190 [ 1112.604897] ? is_bpf_text_address+0xd3/0x170 [ 1112.604920] ? find_held_lock+0x36/0x1c0 [ 1112.604958] ? ___might_sleep+0x1ed/0x300 [ 1112.604972] ? save_stack+0xa9/0xd0 [ 1112.604989] ? arch_local_save_flags+0x40/0x40 [ 1112.605002] ? save_stack+0x43/0xd0 [ 1112.605015] ? __kasan_slab_free+0x102/0x150 [ 1112.605033] ? kasan_slab_free+0xe/0x10 [ 1112.636537] ? kmem_cache_free+0x83/0x290 17:14:24 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1112.636570] ? user_path_at_empty+0x40/0x50 [ 1112.644780] ? do_mount+0x177/0x31f0 [ 1112.644806] __should_failslab+0x124/0x180 [ 1112.644824] should_failslab+0x9/0x14 [ 1112.644844] kmem_cache_alloc+0x2be/0x730 [ 1112.681194] ? debug_smp_processor_id+0x1c/0x20 [ 1112.685885] ? perf_trace_lock+0x14d/0x7a0 [ 1112.690136] ? kasan_check_write+0x14/0x20 [ 1112.694393] alloc_vfsmnt+0xe9/0x990 [ 1112.698128] ? m_stop+0x20/0x20 [ 1112.701433] ? graph_lock+0x170/0x170 [ 1112.705253] ? rcu_pm_notify+0xc0/0xc0 [ 1112.709160] ? putname+0xf2/0x130 [ 1112.712637] ? find_held_lock+0x36/0x1c0 [ 1112.716730] ? __get_fs_type+0x97/0xc0 [ 1112.716750] ? lock_downgrade+0x900/0x900 [ 1112.716770] ? lock_release+0x970/0x970 [ 1112.716795] ? digsig_verify+0x1530/0x1530 [ 1112.716819] vfs_kern_mount.part.35+0x90/0x4f0 [ 1112.737648] ? may_umount+0xb0/0xb0 [ 1112.741293] ? _raw_read_unlock+0x2c/0x50 [ 1112.745467] ? __get_fs_type+0x97/0xc0 [ 1112.749381] do_mount+0x581/0x31f0 [ 1112.752945] ? copy_mount_string+0x40/0x40 [ 1112.757219] ? copy_mount_options+0x5f/0x380 17:14:24 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1112.761650] ? rcu_read_lock_sched_held+0x108/0x120 [ 1112.766688] ? kmem_cache_alloc_trace+0x353/0x750 [ 1112.771567] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1112.777132] ? _copy_from_user+0xdf/0x150 [ 1112.781306] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1112.786870] ? copy_mount_options+0x288/0x380 [ 1112.791388] ksys_mount+0x12d/0x140 [ 1112.791410] __x64_sys_mount+0xbe/0x150 [ 1112.791433] do_syscall_64+0x1b9/0x820 [ 1112.791455] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1112.808402] ? syscall_return_slowpath+0x5e0/0x5e0 17:14:24 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:24 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000106061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1112.808420] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1112.808447] ? trace_hardirqs_on_caller+0x310/0x310 [ 1112.821040] nla_parse: 40 callbacks suppressed [ 1112.821050] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1112.823258] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1112.823279] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1112.823295] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1112.823317] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1112.823344] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1112.823358] RIP: 0033:0x459fea [ 1112.823374] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1112.823383] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1112.823399] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1112.823408] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1112.823416] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1112.823424] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1112.823433] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1112.930106] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1112.946091] input: syz0 as /devices/virtual/input/input230 17:14:24 executing program 2 (fault-call:2 fault-nth:47): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:24 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x2000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:24 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:24 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:24 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000168061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1112.984496] input: syz0 as /devices/virtual/input/input231 [ 1113.024792] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1113.047729] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1113.064502] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1113.081416] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1113.095733] FAULT_INJECTION: forcing a failure. [ 1113.095733] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1113.113599] CPU: 0 PID: 6275 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1113.120823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1113.130195] Call Trace: [ 1113.132811] dump_stack+0x1c4/0x2b4 [ 1113.136475] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1113.141684] ? perf_trace_lock+0x14d/0x7a0 [ 1113.145939] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.151501] ? check_preemption_disabled+0x48/0x200 [ 1113.156567] should_fail.cold.4+0xa/0x17 [ 1113.160654] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1113.165779] ? graph_lock+0x170/0x170 [ 1113.169599] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.175151] ? should_fail+0x22d/0xd01 [ 1113.179077] ? find_held_lock+0x36/0x1c0 [ 1113.183241] ? ich7_lpc_generic_decode+0xb0/0x180 [ 1113.188121] ? ___might_sleep+0x1ed/0x300 [ 1113.192281] ? lock_release+0x970/0x970 [ 1113.196276] ? arch_local_save_flags+0x40/0x40 [ 1113.200889] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.206455] ? __might_sleep+0x95/0x190 [ 1113.210935] __alloc_pages_nodemask+0x34b/0xde0 [ 1113.215633] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1113.220669] ? rcu_read_lock_sched_held+0x108/0x120 [ 1113.225707] ? __alloc_pages_nodemask+0xb5a/0xde0 [ 1113.230592] ? graph_lock+0x170/0x170 [ 1113.234419] ? rcu_pm_notify+0xc0/0xc0 [ 1113.238346] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1113.243904] alloc_pages_current+0x10c/0x210 [ 1113.248333] get_zeroed_page+0x14/0x50 [ 1113.252241] smack_sb_copy_data+0x2b/0x2d0 [ 1113.256500] security_sb_copy_data+0x54/0xb0 [ 1113.260937] mount_fs+0x234/0x31d [ 1113.264416] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1113.269019] ? may_umount+0xb0/0xb0 [ 1113.272661] ? _raw_read_unlock+0x2c/0x50 [ 1113.276830] ? __get_fs_type+0x97/0xc0 [ 1113.280750] do_mount+0x581/0x31f0 [ 1113.284317] ? copy_mount_string+0x40/0x40 [ 1113.288594] ? copy_mount_options+0x5f/0x380 [ 1113.293028] ? rcu_read_lock_sched_held+0x108/0x120 [ 1113.298066] ? kmem_cache_alloc_trace+0x353/0x750 [ 1113.302948] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1113.308526] ? _copy_from_user+0xdf/0x150 [ 1113.312718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.318267] ? copy_mount_options+0x288/0x380 [ 1113.322784] ksys_mount+0x12d/0x140 [ 1113.326439] __x64_sys_mount+0xbe/0x150 [ 1113.330438] do_syscall_64+0x1b9/0x820 [ 1113.334341] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1113.339724] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1113.344668] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1113.349532] ? trace_hardirqs_on_caller+0x310/0x310 [ 1113.354593] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1113.359631] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.365188] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1113.370233] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1113.375099] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1113.380304] RIP: 0033:0x459fea [ 1113.383510] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1113.402432] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1113.410156] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1113.417435] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1113.424717] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1113.431998] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1113.439280] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1113.455032] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:24 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x600], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:24 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=@known='trusted.overlay.nlink\x00', &(0x7f0000000100)=""/63, 0x3f) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:24 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:24 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:24 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100091d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:24 executing program 2 (fault-call:2 fault-nth:48): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:24 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1113.540588] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1113.549391] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1113.569420] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:24 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x2], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:24 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1113.604848] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1113.635769] FAULT_INJECTION: forcing a failure. [ 1113.635769] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.650511] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1113.661822] input: syz0 as /devices/virtual/input/input232 [ 1113.683153] CPU: 1 PID: 6287 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1113.690377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1113.699739] Call Trace: [ 1113.699771] dump_stack+0x1c4/0x2b4 [ 1113.699800] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1113.699853] should_fail.cold.4+0xa/0x17 [ 1113.699881] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1113.720456] ? find_held_lock+0x36/0x1c0 [ 1113.724553] ? graph_lock+0x170/0x170 [ 1113.726948] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1113.728391] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1113.728409] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1113.728432] ? find_held_lock+0x36/0x1c0 [ 1113.728469] ? ___might_sleep+0x1ed/0x300 [ 1113.755179] ? arch_local_save_flags+0x40/0x40 [ 1113.759778] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1113.764394] ? __free_pages+0x10a/0x190 [ 1113.768404] __should_failslab+0x124/0x180 [ 1113.772659] should_failslab+0x9/0x14 [ 1113.776484] kmem_cache_alloc+0x2be/0x730 [ 1113.780658] ? mark_free_pages+0x3c0/0x3c0 [ 1113.784911] getname_kernel+0x54/0x370 [ 1113.788834] kern_path+0x1e/0x40 [ 1113.792227] lookup_bdev+0x10c/0x250 [ 1113.795427] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1113.795960] ? blkdev_open+0x280/0x280 [ 1113.795993] blkdev_get_by_path+0x1f/0xe0 [ 1113.796109] gfs2_mount+0xc0/0x712 [ 1113.796133] ? fill_super+0x1a10/0x1a10 [ 1113.819996] ? free_unref_page+0x960/0x960 [ 1113.824263] ? free_pages+0x44/0x50 [ 1113.827911] ? smack_sb_copy_data+0x27e/0x2d0 [ 1113.832440] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.838004] mount_fs+0xae/0x31d [ 1113.841405] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1113.846009] ? may_umount+0xb0/0xb0 [ 1113.849664] ? _raw_read_unlock+0x2c/0x50 [ 1113.853829] ? __get_fs_type+0x97/0xc0 [ 1113.857746] do_mount+0x581/0x31f0 [ 1113.861319] ? copy_mount_string+0x40/0x40 [ 1113.865610] ? copy_mount_options+0x5f/0x380 [ 1113.869815] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1113.870031] ? rcu_read_lock_sched_held+0x108/0x120 [ 1113.883386] ? kmem_cache_alloc_trace+0x353/0x750 [ 1113.888254] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1113.893811] ? _copy_from_user+0xdf/0x150 [ 1113.897981] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 17:14:25 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:25 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:25 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xc802], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:25 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00780200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1113.903551] ? copy_mount_options+0x288/0x380 [ 1113.908078] ksys_mount+0x12d/0x140 [ 1113.911741] __x64_sys_mount+0xbe/0x150 [ 1113.915747] do_syscall_64+0x1b9/0x820 [ 1113.919649] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1113.919671] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1113.919688] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1113.919708] ? trace_hardirqs_on_caller+0x310/0x310 [ 1113.919728] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1113.930025] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1113.930044] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1113.930069] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1113.930097] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1113.939953] RIP: 0033:0x459fea [ 1113.939971] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1113.939981] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1113.940000] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1113.940010] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1113.940025] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1113.950571] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1113.950582] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1113.967052] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1114.055614] input: syz0 as /devices/virtual/input/input233 17:14:25 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) 17:14:25 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x6], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:25 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:25 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000160061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:25 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:25 executing program 2 (fault-call:2 fault-nth:49): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:25 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x300000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1114.212433] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:25 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:25 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000174061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:25 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1114.228801] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1114.277531] FAULT_INJECTION: forcing a failure. [ 1114.277531] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.325270] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1114.339041] CPU: 1 PID: 6310 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1114.354603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1114.363972] Call Trace: [ 1114.366599] dump_stack+0x1c4/0x2b4 [ 1114.370263] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1114.375484] should_fail.cold.4+0xa/0x17 [ 1114.379583] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1114.384709] ? find_held_lock+0x36/0x1c0 [ 1114.388798] ? graph_lock+0x170/0x170 [ 1114.392631] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1114.397755] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1114.402878] ? find_held_lock+0x36/0x1c0 [ 1114.402921] ? ___might_sleep+0x1ed/0x300 [ 1114.402942] ? arch_local_save_flags+0x40/0x40 [ 1114.402958] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1114.402981] ? __free_pages+0x10a/0x190 [ 1114.403015] __should_failslab+0x124/0x180 [ 1114.411242] should_failslab+0x9/0x14 [ 1114.411261] kmem_cache_alloc+0x2be/0x730 [ 1114.411285] ? mark_free_pages+0x3c0/0x3c0 [ 1114.411306] getname_kernel+0x54/0x370 [ 1114.411327] kern_path+0x1e/0x40 [ 1114.411352] lookup_bdev+0x10c/0x250 [ 1114.411372] ? blkdev_open+0x280/0x280 [ 1114.455776] blkdev_get_by_path+0x1f/0xe0 [ 1114.459944] gfs2_mount+0xc0/0x712 [ 1114.463514] ? fill_super+0x1a10/0x1a10 [ 1114.467508] ? free_unref_page+0x960/0x960 [ 1114.471771] ? free_pages+0x44/0x50 [ 1114.475416] ? smack_sb_copy_data+0x27e/0x2d0 [ 1114.479936] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1114.485494] mount_fs+0xae/0x31d [ 1114.488892] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1114.493497] ? may_umount+0xb0/0xb0 [ 1114.497151] ? _raw_read_unlock+0x2c/0x50 [ 1114.501338] ? __get_fs_type+0x97/0xc0 [ 1114.505262] do_mount+0x581/0x31f0 [ 1114.508832] ? copy_mount_string+0x40/0x40 [ 1114.513102] ? copy_mount_options+0x5f/0x380 [ 1114.517532] ? rcu_read_lock_sched_held+0x108/0x120 [ 1114.522568] ? kmem_cache_alloc_trace+0x353/0x750 [ 1114.527436] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1114.532997] ? _copy_from_user+0xdf/0x150 [ 1114.537179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1114.542734] ? copy_mount_options+0x288/0x380 [ 1114.547258] ksys_mount+0x12d/0x140 [ 1114.550908] __x64_sys_mount+0xbe/0x150 [ 1114.554908] do_syscall_64+0x1b9/0x820 [ 1114.558814] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1114.564206] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1114.569153] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1114.574024] ? trace_hardirqs_on_caller+0x310/0x310 [ 1114.579066] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1114.584102] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1114.589664] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1114.594724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1114.599599] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1114.604832] RIP: 0033:0x459fea [ 1114.608042] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1114.626981] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 17:14:26 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:26 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x100000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:26 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20000, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4000000017) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{0xffffffffffffffff, 0x9, 0x3ffff, 0x2}, 'syz0\x00'}) openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uinput\x00', 0x802, 0x0) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f00000000c0)="c9fa0566321a7a3346cc286769533fa2710ef6b90e1ea8734afb53c2267b026d71c31f828e470576f9dafc397569a8aa9391f778314f398767252bfeb420ca2c4a0ba33b6b9f4404ecf51e47b9a362d0662775db8694609445e6c6e336a7b09e142a") ioctl$KDGETKEYCODE(r1, 0x4b4c, &(0x7f00000002c0)={0x6, 0x7}) ioctl$UI_DEV_CREATE(r0, 0x5501) setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000280)={0x9, &(0x7f0000000200)=[{0x2, 0x3b3, 0x6, 0x2}, {0xffff, 0xffff, 0x4, 0x101}, {0x670, 0x7fffffff, 0x8, 0xffffffffffffffe0}, {0x6, 0xba, 0x48, 0x4a}, {0x3f, 0x0, 0x0, 0x1}, {0x1, 0xd37d, 0x5}, {0x7, 0x7, 0x6, 0x2}, {0x1a, 0x10000, 0x5, 0xffffffffffffff7f}, {0xffffffff, 0x4000000000000000, 0xfffffffffffffffb, 0x1}]}, 0x10) [ 1114.634718] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1114.642010] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1114.649305] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1114.656596] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1114.663895] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:26 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:26 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a001200010f061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1114.707574] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:26 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:26 executing program 2 (fault-call:2 fault-nth:50): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1114.781806] input: syz0 as /devices/virtual/input/input236 17:14:26 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x3000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:26 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000104061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:26 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1114.829549] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1114.865963] input: syz0 as /devices/virtual/input/input237 17:14:26 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1114.900579] FAULT_INJECTION: forcing a failure. [ 1114.900579] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.934211] CPU: 0 PID: 6346 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1114.941451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1114.941464] Call Trace: [ 1114.953598] dump_stack+0x1c4/0x2b4 [ 1114.957248] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1114.962468] should_fail.cold.4+0xa/0x17 [ 1114.966762] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1114.972089] ? graph_lock+0x170/0x170 [ 1114.975912] ? graph_lock+0x170/0x170 [ 1114.979730] ? save_stack+0x43/0xd0 [ 1114.983371] ? kasan_kmalloc+0xc7/0xe0 [ 1114.987281] ? kmem_cache_alloc_trace+0x152/0x750 [ 1114.992151] ? find_held_lock+0x36/0x1c0 [ 1114.992174] ? __lock_is_held+0xb5/0x140 [ 1114.992203] ? ___might_sleep+0x1ed/0x300 [ 1115.004475] ? arch_local_save_flags+0x40/0x40 [ 1115.009074] ? lock_release+0x970/0x970 [ 1115.009100] __should_failslab+0x124/0x180 [ 1115.009118] should_failslab+0x9/0x14 [ 1115.021131] kmem_cache_alloc_trace+0x2d7/0x750 [ 1115.025820] ? down_write_nested+0x8e/0x130 [ 1115.030176] smack_sb_alloc_security+0x49/0x160 [ 1115.034875] security_sb_alloc+0x4c/0xa0 [ 1115.038961] sget_userns+0x2ed/0xf10 [ 1115.042698] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1115.046698] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1115.052168] ? destroy_unused_super.part.10+0x110/0x110 [ 1115.057570] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 1115.062175] ? kasan_check_write+0x14/0x20 [ 1115.066429] ? do_raw_spin_lock+0xc1/0x200 [ 1115.070692] ? blkdev_get+0xc8/0xb50 [ 1115.074477] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.080032] ? cap_capable+0x1f9/0x260 [ 1115.083951] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.089510] ? security_capable+0x99/0xc0 [ 1115.093692] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.099250] ? ns_capable_common+0x13f/0x170 [ 1115.103686] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1115.107676] sget+0x10b/0x150 [ 1115.110805] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1115.116277] gfs2_mount+0x1a7/0x712 [ 1115.119933] ? fill_super+0x1a10/0x1a10 [ 1115.123933] ? free_unref_page+0x960/0x960 [ 1115.128200] ? free_pages+0x44/0x50 [ 1115.131845] ? smack_sb_copy_data+0x27e/0x2d0 [ 1115.136380] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.141946] mount_fs+0xae/0x31d [ 1115.145344] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1115.149950] ? may_umount+0xb0/0xb0 [ 1115.153602] ? _raw_read_unlock+0x2c/0x50 [ 1115.157772] ? __get_fs_type+0x97/0xc0 [ 1115.161686] do_mount+0x581/0x31f0 [ 1115.165253] ? copy_mount_string+0x40/0x40 [ 1115.169523] ? copy_mount_options+0x5f/0x380 [ 1115.173955] ? rcu_read_lock_sched_held+0x108/0x120 [ 1115.178994] ? kmem_cache_alloc_trace+0x353/0x750 [ 1115.183868] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1115.189422] ? _copy_from_user+0xdf/0x150 [ 1115.193601] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.199153] ? copy_mount_options+0x288/0x380 [ 1115.203673] ksys_mount+0x12d/0x140 [ 1115.207327] __x64_sys_mount+0xbe/0x150 [ 1115.211818] do_syscall_64+0x1b9/0x820 [ 1115.215733] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1115.221116] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1115.226063] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1115.230928] ? trace_hardirqs_on_caller+0x310/0x310 [ 1115.235967] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1115.241101] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.246667] ? prepare_exit_to_usermode+0x291/0x3b0 17:14:26 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1115.251724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1115.256616] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1115.261824] RIP: 0033:0x459fea [ 1115.265046] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1115.283968] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1115.291713] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea 17:14:26 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000103061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:26 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x4000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1115.299005] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1115.306295] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1115.313586] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1115.313597] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1115.339471] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:26 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x2, 0x400000) timerfd_gettime(r1, &(0x7f00000000c0)) 17:14:26 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:26 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:26 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00120001005f1d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:26 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x300], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:26 executing program 2 (fault-call:2 fault-nth:51): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:26 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000100", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:26 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a001200016c061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:26 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:26 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x700000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1115.474523] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1115.553901] FAULT_INJECTION: forcing a failure. [ 1115.553901] name failslab, interval 1, probability 0, space 0, times 0 [ 1115.577153] input: syz0 as /devices/virtual/input/input238 [ 1115.606091] CPU: 0 PID: 6372 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1115.613331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1115.622707] Call Trace: [ 1115.625332] dump_stack+0x1c4/0x2b4 [ 1115.628996] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1115.634234] should_fail.cold.4+0xa/0x17 [ 1115.638336] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1115.643473] ? find_held_lock+0x36/0x1c0 [ 1115.647571] ? graph_lock+0x170/0x170 [ 1115.651410] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1115.656535] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1115.661676] ? find_held_lock+0x36/0x1c0 [ 1115.665783] ? ___might_sleep+0x1ed/0x300 [ 1115.669953] ? arch_local_save_flags+0x40/0x40 [ 1115.674571] ? lockdep_hardirqs_on+0x421/0x5c0 [ 1115.679184] ? __free_pages+0x10a/0x190 [ 1115.683185] __should_failslab+0x124/0x180 [ 1115.687443] should_failslab+0x9/0x14 [ 1115.691264] kmem_cache_alloc+0x2be/0x730 [ 1115.695441] ? mark_free_pages+0x3c0/0x3c0 [ 1115.699704] getname_kernel+0x54/0x370 [ 1115.703699] kern_path+0x1e/0x40 [ 1115.707089] lookup_bdev+0x10c/0x250 [ 1115.710820] ? blkdev_open+0x280/0x280 [ 1115.714745] blkdev_get_by_path+0x1f/0xe0 [ 1115.718914] gfs2_mount+0xc0/0x712 [ 1115.722477] ? fill_super+0x1a10/0x1a10 [ 1115.726494] ? free_unref_page+0x960/0x960 [ 1115.730761] ? free_pages+0x44/0x50 [ 1115.734430] ? smack_sb_copy_data+0x27e/0x2d0 [ 1115.738961] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.744534] mount_fs+0xae/0x31d [ 1115.747941] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1115.752572] ? may_umount+0xb0/0xb0 [ 1115.756218] ? _raw_read_unlock+0x2c/0x50 [ 1115.760394] ? __get_fs_type+0x97/0xc0 [ 1115.764334] do_mount+0x581/0x31f0 [ 1115.767932] ? copy_mount_string+0x40/0x40 [ 1115.772201] ? copy_mount_options+0x5f/0x380 [ 1115.776629] ? rcu_read_lock_sched_held+0x108/0x120 [ 1115.781665] ? kmem_cache_alloc_trace+0x353/0x750 [ 1115.786552] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1115.792111] ? _copy_from_user+0xdf/0x150 [ 1115.796288] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.801858] ? copy_mount_options+0x288/0x380 [ 1115.806395] ksys_mount+0x12d/0x140 [ 1115.810048] __x64_sys_mount+0xbe/0x150 [ 1115.814048] do_syscall_64+0x1b9/0x820 [ 1115.817958] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1115.823782] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1115.828731] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1115.833600] ? trace_hardirqs_on_caller+0x310/0x310 [ 1115.838641] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1115.843685] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1115.849252] ? prepare_exit_to_usermode+0x291/0x3b0 17:14:27 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1115.854294] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1115.859172] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1115.864387] RIP: 0033:0x459fea [ 1115.867606] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1115.886530] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1115.886559] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea 17:14:27 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1115.886568] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1115.886577] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1115.886586] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1115.886596] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1115.894696] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1115.943278] input: syz0 as /devices/virtual/input/input239 17:14:27 executing program 0: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) write$P9_RREMOVE(r0, &(0x7f00000000c0)={0x7, 0x7b, 0x1}, 0x7) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_SET_LEDBIT(r1, 0x40045569, 0x4) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:14:27 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:27 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xc802000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:27 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a001200014c061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:27 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:27 executing program 2 (fault-call:2 fault-nth:52): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1116.104164] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1116.104876] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1116.144216] FAULT_INJECTION: forcing a failure. 17:14:27 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xc8020000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:27 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:27 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a001200017a061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1116.144216] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1116.184877] input: syz0 as /devices/virtual/input/input240 [ 1116.189839] CPU: 0 PID: 6396 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1116.197768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1116.197776] Call Trace: [ 1116.197806] dump_stack+0x1c4/0x2b4 [ 1116.197830] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1116.197858] ? perf_trace_lock+0x14d/0x7a0 [ 1116.197877] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.197900] ? check_preemption_disabled+0x48/0x200 [ 1116.197933] should_fail.cold.4+0xa/0x17 [ 1116.213756] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1116.213779] ? graph_lock+0x170/0x170 [ 1116.213797] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.213812] ? should_fail+0x22d/0xd01 [ 1116.213844] ? find_held_lock+0x36/0x1c0 [ 1116.213890] ? ___might_sleep+0x1ed/0x300 [ 1116.213905] ? lock_release+0x970/0x970 [ 1116.213923] ? arch_local_save_flags+0x40/0x40 [ 1116.213942] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.213967] ? __might_sleep+0x95/0x190 17:14:27 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1116.213991] __alloc_pages_nodemask+0x34b/0xde0 [ 1116.214016] ? __alloc_pages_slowpath+0x2d80/0x2d80 [ 1116.214036] ? rcu_read_lock_sched_held+0x108/0x120 [ 1116.214053] ? __alloc_pages_nodemask+0xb5a/0xde0 [ 1116.214085] ? graph_lock+0x170/0x170 [ 1116.214103] ? rcu_pm_notify+0xc0/0xc0 [ 1116.214132] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1116.214154] alloc_pages_current+0x10c/0x210 [ 1116.214176] get_zeroed_page+0x14/0x50 [ 1116.214194] smack_sb_copy_data+0x2b/0x2d0 [ 1116.214219] security_sb_copy_data+0x54/0xb0 [ 1116.214239] mount_fs+0x234/0x31d [ 1116.223704] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1116.223724] ? may_umount+0xb0/0xb0 [ 1116.223740] ? _raw_read_unlock+0x2c/0x50 [ 1116.223755] ? __get_fs_type+0x97/0xc0 [ 1116.223775] do_mount+0x581/0x31f0 [ 1116.223798] ? copy_mount_string+0x40/0x40 [ 1116.223825] ? copy_mount_options+0x5f/0x380 [ 1116.223840] ? rcu_read_lock_sched_held+0x108/0x120 [ 1116.223867] ? kmem_cache_alloc_trace+0x353/0x750 [ 1116.247501] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1116.247528] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.247555] ? copy_mount_options+0x288/0x380 [ 1116.247577] ksys_mount+0x12d/0x140 [ 1116.257018] __x64_sys_mount+0xbe/0x150 [ 1116.257044] do_syscall_64+0x1b9/0x820 [ 1116.257061] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1116.257082] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1116.265287] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1116.265308] ? trace_hardirqs_on_caller+0x310/0x310 [ 1116.265327] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1116.265343] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 17:14:27 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000148061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:27 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1116.265361] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1116.265384] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1116.265410] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1116.265424] RIP: 0033:0x459fea [ 1116.265442] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1116.273995] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1116.274014] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1116.274024] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1116.274035] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1116.274045] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1116.274054] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1116.318355] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1116.450430] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1116.536603] input: syz0 as /devices/virtual/input/input241 17:14:27 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x3, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x2}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x0, 0x100, 0x9, 0x6}, 'syz0\x00', 0xf}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:27 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x1000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:27 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00120001000b1d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:27 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:27 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0007fffffe00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:27 executing program 2 (fault-call:2 fault-nth:53): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:28 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100051d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:28 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:28 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:28 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x600000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1116.674531] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1116.724845] FAULT_INJECTION: forcing a failure. [ 1116.724845] name failslab, interval 1, probability 0, space 0, times 0 [ 1116.766890] CPU: 1 PID: 6426 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1116.774142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1116.783516] Call Trace: [ 1116.786155] dump_stack+0x1c4/0x2b4 [ 1116.789848] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1116.795094] should_fail.cold.4+0xa/0x17 [ 1116.799196] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1116.800390] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1116.804334] ? graph_lock+0x170/0x170 [ 1116.804370] ? graph_lock+0x170/0x170 [ 1116.804490] ? save_stack+0x43/0xd0 [ 1116.816590] ? kasan_kmalloc+0xc7/0xe0 [ 1116.816608] ? kmem_cache_alloc_trace+0x152/0x750 [ 1116.816636] ? find_held_lock+0x36/0x1c0 [ 1116.824089] ? __lock_is_held+0xb5/0x140 [ 1116.824122] ? ___might_sleep+0x1ed/0x300 [ 1116.824140] ? arch_local_save_flags+0x40/0x40 [ 1116.824161] ? lock_release+0x970/0x970 [ 1116.824183] __should_failslab+0x124/0x180 [ 1116.824206] should_failslab+0x9/0x14 [ 1116.837033] kmem_cache_alloc_trace+0x2d7/0x750 [ 1116.858074] ? down_write_nested+0x8e/0x130 [ 1116.858103] smack_sb_alloc_security+0x49/0x160 [ 1116.858124] security_sb_alloc+0x4c/0xa0 [ 1116.858144] sget_userns+0x2ed/0xf10 [ 1116.858165] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1116.887408] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1116.892899] ? destroy_unused_super.part.10+0x110/0x110 [ 1116.898288] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 1116.901758] input: syz0 as /devices/virtual/input/input242 [ 1116.902918] ? kasan_check_write+0x14/0x20 [ 1116.902938] ? do_raw_spin_lock+0xc1/0x200 [ 1116.902965] ? blkdev_get+0xc8/0xb50 [ 1116.902986] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.903001] ? cap_capable+0x1f9/0x260 [ 1116.903032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.917155] ? security_capable+0x99/0xc0 [ 1116.917186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.917203] ? ns_capable_common+0x13f/0x170 [ 1116.917225] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1116.954174] sget+0x10b/0x150 [ 1116.957314] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1116.962812] gfs2_mount+0x1a7/0x712 [ 1116.966492] ? fill_super+0x1a10/0x1a10 [ 1116.970508] ? free_unref_page+0x960/0x960 [ 1116.974791] ? free_pages+0x44/0x50 [ 1116.978552] ? smack_sb_copy_data+0x27e/0x2d0 [ 1116.983084] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1116.988669] mount_fs+0xae/0x31d [ 1116.992076] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1116.996783] ? may_umount+0xb0/0xb0 [ 1117.000443] ? _raw_read_unlock+0x2c/0x50 [ 1117.000461] ? __get_fs_type+0x97/0xc0 [ 1117.000484] do_mount+0x581/0x31f0 [ 1117.000512] ? copy_mount_string+0x40/0x40 17:14:28 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x7fffffe], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:28 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1117.008610] ? copy_mount_options+0x5f/0x380 [ 1117.008630] ? rcu_read_lock_sched_held+0x108/0x120 [ 1117.008649] ? kmem_cache_alloc_trace+0x353/0x750 [ 1117.008671] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1117.008687] ? _copy_from_user+0xdf/0x150 [ 1117.008709] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.020917] ? copy_mount_options+0x288/0x380 [ 1117.020939] ksys_mount+0x12d/0x140 [ 1117.020960] __x64_sys_mount+0xbe/0x150 [ 1117.020982] do_syscall_64+0x1b9/0x820 [ 1117.021006] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1117.030902] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1117.030921] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1117.030942] ? trace_hardirqs_on_caller+0x310/0x310 [ 1117.030960] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1117.030985] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.040689] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1117.040715] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1117.040743] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1117.040762] RIP: 0033:0x459fea [ 1117.050821] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1117.050831] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1117.050848] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1117.050859] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1117.050870] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1117.050880] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1117.050889] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1117.063146] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1117.131266] input: syz0 as /devices/virtual/input/input243 17:14:28 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x7) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x400000, 0x0) accept4$packet(0xffffffffffffff9c, &(0x7f0000005500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000005540)=0x14, 0x80000) sendmsg$xdp(r1, &(0x7f00000058c0)={&(0x7f0000005580)={0x2c, 0x6, r2, 0x3c}, 0x11f, &(0x7f0000000240)=[{&(0x7f0000000180)="ce32222210e12322547fb41ee972e747f02e92b074b3dc522324de4ae2ada267bb777519ac538cd84d781621bf313f5bf3ff2e78d21522063f773277d0adea8cf4a37d945f74936a073a8efe342a5093049f23295c851ef9c42799b43fc69473a35fadbdb4cc6a31d01a06953d2134f9ef1831f59276fe3fac0913e95a2534f142aa45a9aa633ebbcbb1a589977a5dabce75931b58a733d810fa4d3eca8584cc77", 0x41a}, {&(0x7f0000005680)="f8ae42c4b2dc8952ab6b44933327a0f1c4d9df58a6ba79f48925388fa69077a70b6e8600bc5ac70f7e03fd7cfeb6e820715c012a38d4243a5d764d5c3a85d01fb8728005aad227225fb0c7b576b552b2acc50ce3b9f5b1516aa6e506236b3cde8c89c9177f413749d7249e8098683dbecaddc21b01f1dc5e65873e999543fd8eb9ba31d3a87d9529ea5fdb3ac38fb657d4685121a3464f7dddefb9ead2887513e8ecce5e3909f30c4fbd695772e913cc996e58f4b762655be6802ab1666f87e17f1953880de6", 0xc6}, {&(0x7f0000005780)="3ebd4e21973e90f3c1c6496e1e925c8bdc57d1f8f2760f2abf7475af9b1731509a62ac1bbeec46be1fd4d51ef3ffea8a58265cb9ccc3244dedea80bc1ea4b8106a933121cb065860a6f8c7e58458a2bdfc8728e0e7574887a62e7cdd4826fe298dbe7a0db89ecbb1dbd93f1e8a5a8d56d28c7ad7989fed60cbb98acfb3f8da4980c7c1e2aa9e9919856a25da2b90cb9306a1e822e42b36ea41602a812954170108dbf3dfa44fc6265b478ec216db8e6efec78200669451a129d8cf9d3ed02180a1736b18d8d125f16d932777c129ef85777ddb4d8b321a3ea956f9d2173e424449b8eb0c77afaa735a85de30acd14248985e37", 0xf3}], 0x3, 0x0, 0x0, 0x20004054}, 0x814) ioctl$UI_DEV_CREATE(r1, 0x5501) 17:14:28 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100091d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:28 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xffffffff00000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:28 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:28 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:28 executing program 2 (fault-call:2 fault-nth:54): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:28 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x200000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:28 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:28 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:28 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00120001000b1d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1117.327098] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1117.408484] FAULT_INJECTION: forcing a failure. [ 1117.408484] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.454819] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1117.486196] CPU: 1 PID: 6454 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1117.501863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1117.511245] Call Trace: [ 1117.513868] dump_stack+0x1c4/0x2b4 [ 1117.517522] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1117.522802] should_fail.cold.4+0xa/0x17 [ 1117.526894] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1117.526915] ? kernel_text_address+0x79/0xf0 [ 1117.526933] ? __kernel_text_address+0xd/0x40 [ 1117.526953] ? graph_lock+0x170/0x170 [ 1117.544799] ? __save_stack_trace+0x8d/0xf0 [ 1117.549143] ? graph_lock+0x170/0x170 [ 1117.552985] ? find_held_lock+0x36/0x1c0 [ 1117.557074] ? __lock_is_held+0xb5/0x140 [ 1117.561178] ? ___might_sleep+0x1ed/0x300 [ 1117.565343] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.570904] ? arch_local_save_flags+0x40/0x40 [ 1117.575516] __should_failslab+0x124/0x180 [ 1117.579783] should_failslab+0x9/0x14 [ 1117.583605] kmem_cache_alloc_trace+0x2d7/0x750 [ 1117.588297] ? __kmalloc_node+0x33/0x70 [ 1117.592293] ? __kmalloc_node+0x33/0x70 [ 1117.596291] ? rcu_read_lock_sched_held+0x108/0x120 [ 1117.601332] __memcg_init_list_lru_node+0x185/0x2d0 [ 1117.601363] ? kvfree_rcu+0x20/0x20 [ 1117.601382] ? __kmalloc_node+0x47/0x70 [ 1117.601406] __list_lru_init+0x4d6/0x840 [ 1117.618094] ? list_lru_destroy+0x500/0x500 [ 1117.622438] ? up_write+0x7b/0x220 [ 1117.622455] ? up_read+0x110/0x110 [ 1117.622472] ? down_read+0x1d0/0x1d0 [ 1117.622493] ? init_wait_entry+0x1c0/0x1c0 [ 1117.622508] ? prealloc_shrinker+0xe5/0x330 [ 1117.622535] sget_userns+0x999/0xf10 [ 1117.645638] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1117.649638] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1117.655106] ? destroy_unused_super.part.10+0x110/0x110 [ 1117.660497] ? kasan_check_write+0x14/0x20 [ 1117.664754] ? do_raw_spin_lock+0xc1/0x200 [ 1117.669016] ? blkdev_get+0xc8/0xb50 [ 1117.669039] ? cap_capable+0x1f9/0x260 [ 1117.669066] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.669086] ? security_capable+0x99/0xc0 [ 1117.676705] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.676723] ? ns_capable_common+0x13f/0x170 [ 1117.676745] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1117.676767] sget+0x10b/0x150 [ 1117.703477] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1117.708959] gfs2_mount+0x1a7/0x712 [ 1117.712608] ? fill_super+0x1a10/0x1a10 [ 1117.716607] ? free_unref_page+0x960/0x960 [ 1117.720870] ? free_pages+0x44/0x50 [ 1117.724520] ? smack_sb_copy_data+0x27e/0x2d0 [ 1117.729057] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.734620] mount_fs+0xae/0x31d [ 1117.738014] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1117.742619] ? may_umount+0xb0/0xb0 [ 1117.746264] ? _raw_read_unlock+0x2c/0x50 [ 1117.750430] ? __get_fs_type+0x97/0xc0 [ 1117.754353] do_mount+0x581/0x31f0 [ 1117.757912] ? trace_hardirqs_off+0x310/0x310 [ 1117.762424] ? retint_kernel+0x1b/0x2d [ 1117.766337] ? copy_mount_string+0x40/0x40 [ 1117.770603] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1117.775397] ? retint_kernel+0x2d/0x2d [ 1117.779313] ? copy_mount_options+0x1f3/0x380 [ 1117.783834] ? copy_mount_options+0x1fd/0x380 [ 1117.788359] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.793910] ? copy_mount_options+0x288/0x380 [ 1117.798435] ksys_mount+0x12d/0x140 [ 1117.802096] __x64_sys_mount+0xbe/0x150 [ 1117.806105] do_syscall_64+0x1b9/0x820 [ 1117.810012] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1117.815401] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1117.820360] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1117.825227] ? trace_hardirqs_on_caller+0x310/0x310 [ 1117.830268] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1117.835324] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1117.840893] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1117.845944] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1117.850820] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1117.856027] RIP: 0033:0x459fea [ 1117.859240] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1117.878342] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 17:14:28 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x2c8], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:28 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x7fffffe], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:29 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:29 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x7], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:29 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000007fffffe00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1117.886079] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1117.893372] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1117.900654] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1117.907935] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1117.915221] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:29 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:29 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100051d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1117.990288] input: syz0 as /devices/virtual/input/input246 17:14:29 executing program 2 (fault-call:2 fault-nth:55): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:29 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xc802000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:29 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1118.022118] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1118.033859] nla_parse: 25 callbacks suppressed [ 1118.033871] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1118.034461] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1118.070736] input: syz0 as /devices/virtual/input/input247 17:14:29 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1118.116484] FAULT_INJECTION: forcing a failure. [ 1118.116484] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.156718] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1118.165845] CPU: 0 PID: 6485 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1118.175290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1118.175298] Call Trace: [ 1118.175325] dump_stack+0x1c4/0x2b4 [ 1118.175355] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1118.175398] should_fail.cold.4+0xa/0x17 [ 1118.200217] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1118.205348] ? graph_lock+0x170/0x170 [ 1118.209174] ? graph_lock+0x170/0x170 [ 1118.212990] ? save_stack+0xa9/0xd0 [ 1118.213006] ? save_stack+0x43/0xd0 [ 1118.213018] ? kasan_kmalloc+0xc7/0xe0 [ 1118.213032] ? __kmalloc+0x14e/0x760 [ 1118.213047] ? __list_lru_init+0x151/0x840 [ 1118.213069] ? find_held_lock+0x36/0x1c0 [ 1118.213089] ? __lock_is_held+0xb5/0x140 [ 1118.224268] ? ___might_sleep+0x1ed/0x300 [ 1118.224287] ? arch_local_save_flags+0x40/0x40 [ 1118.224305] ? check_preemption_disabled+0x48/0x200 [ 1118.224322] ? check_preemption_disabled+0x48/0x200 [ 1118.224350] __should_failslab+0x124/0x180 [ 1118.224371] should_failslab+0x9/0x14 [ 1118.224396] kmem_cache_alloc_node_trace+0x270/0x740 [ 1118.232380] __kmalloc_node+0x33/0x70 [ 1118.232402] kvmalloc_node+0x65/0xf0 [ 1118.232422] __list_lru_init+0x5d9/0x840 [ 1118.244703] ? list_lru_destroy+0x500/0x500 [ 1118.244725] ? up_write+0x7b/0x220 [ 1118.244744] ? up_read+0x110/0x110 [ 1118.263614] ? down_read+0x1d0/0x1d0 [ 1118.272546] ? init_wait_entry+0x1c0/0x1c0 [ 1118.272562] ? prealloc_shrinker+0xe5/0x330 17:14:29 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a00120001005f1d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:29 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) openat$uhid(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uhid\x00', 0x2, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1118.272598] sget_userns+0x999/0xf10 [ 1118.280138] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1118.280165] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1118.280184] ? destroy_unused_super.part.10+0x110/0x110 [ 1118.280204] ? kasan_check_write+0x14/0x20 [ 1118.295805] ? do_raw_spin_lock+0xc1/0x200 [ 1118.295830] ? blkdev_get+0xc8/0xb50 [ 1118.295858] ? cap_capable+0x1f9/0x260 [ 1118.295884] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1118.295906] ? security_capable+0x99/0xc0 [ 1118.352633] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1118.358215] ? ns_capable_common+0x13f/0x170 [ 1118.362664] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1118.366663] sget+0x10b/0x150 [ 1118.369802] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1118.375280] gfs2_mount+0x1a7/0x712 [ 1118.378943] ? fill_super+0x1a10/0x1a10 [ 1118.382945] ? free_unref_page+0x960/0x960 [ 1118.387227] ? free_pages+0x44/0x50 [ 1118.390887] ? smack_sb_copy_data+0x27e/0x2d0 [ 1118.395419] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1118.401001] mount_fs+0xae/0x31d [ 1118.401030] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1118.401051] ? may_umount+0xb0/0xb0 [ 1118.412650] ? _raw_read_unlock+0x2c/0x50 [ 1118.416815] ? __get_fs_type+0x97/0xc0 [ 1118.416841] do_mount+0x581/0x31f0 [ 1118.416875] ? copy_mount_string+0x40/0x40 [ 1118.428557] ? copy_mount_options+0x5f/0x380 [ 1118.428576] ? rcu_read_lock_sched_held+0x108/0x120 [ 1118.428595] ? kmem_cache_alloc_trace+0x353/0x750 [ 1118.428616] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1118.428637] ? _copy_from_user+0xdf/0x150 [ 1118.445396] input: syz0 as /devices/virtual/input/input248 [ 1118.448506] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1118.448523] ? copy_mount_options+0x288/0x380 [ 1118.448545] ksys_mount+0x12d/0x140 [ 1118.448566] __x64_sys_mount+0xbe/0x150 [ 1118.448589] do_syscall_64+0x1b9/0x820 [ 1118.448610] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1118.458404] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1118.490231] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1118.495108] ? trace_hardirqs_on_caller+0x310/0x310 [ 1118.500160] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1118.505211] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1118.510780] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1118.515836] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1118.520720] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1118.525968] RIP: 0033:0x459fea [ 1118.529180] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1118.548099] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 17:14:29 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x1000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:29 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1118.555835] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1118.563139] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1118.570431] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1118.577721] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1118.585011] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:30 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100065f85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:30 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xfeffff0700000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1118.617664] input: syz0 as /devices/virtual/input/input249 [ 1118.623718] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:30 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:30 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1118.653624] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1118.695727] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:30 executing program 2 (fault-call:2 fault-nth:56): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:30 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x700000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:30 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ppp\x00', 0x40, 0x0) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000004c0), &(0x7f0000000500)=0x4) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x2, &(0x7f0000000380)=[{&(0x7f0000000180)="9ee388a04c2cf4919f3ddfe04b8c0fef8368a9e92a4fdb5749553b333c72042068f5a866e619f7a0c852d6026fd8929d4fcae7d60c685d5edd88d9b7c62f14f542161c7a23d069097bed865336a03e5b11021e4147b50ad3453a5335f3ab00bee0ee61a5499299406265edba1346413e7608d8b4408c529a83be7539fef4f596dff0c6233cf2fecfd05f7c7deb1346e87447a5731bc3ee68b82107a933fb95769e22831b860a9abf1199206903c6b698f0af9f4a2e103728b38f02e57f1460e829d5012cf2ff6d09eb12d13d40232fa15a063b38bd007abd680b5d963f46774f0bf9476bfbb4a5392322fd360ded7a8e43187c2d1ee6535ed9d6", 0xfa, 0x100}, {&(0x7f0000000280)="ae5e8fe0598f82110f02964d698a6a778f42354fd8bcd6282140750e39439b6ab1c41e2f80a60f7c977bca351bfbf763a72e69195d3419f300da3f75d06e704a8849788036300279474aeea6d51f319b93f8ff1ef53c952c30a93072559a544767f932c28282f0adadbbd1dcac8f2337fa04811d2d4c8712aa4bbfb9adc0c5d6a67d5b6c4bb97f53d1a576a1e1c7fa375cc9b5b89480bb44fb1700d5cb28c6d570ac669414d302465470e7e976898602be42dc5a33135d5471f3dfd6638b24c4793659", 0xc3, 0x4}], 0x8, &(0x7f00000003c0)={[{@prjquota='prjquota'}, {@nogrpid='nogrpid'}, {@acl='acl'}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}, {@bsdgroups='bsdgroups'}, {@errors_remount='errors=remount-ro'}, {@sysvgroups='sysvgroups'}, {@bsdgroups='bsdgroups'}, {@block_validity='block_validity'}], [{@hash='hash'}, {@fsmagic={'fsmagic', 0x3d, 0x4}}]}) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x5, 0x5, 0x2, 0x3}, 'syz1\x00', 0x22}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:30 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d8568251baba20400ff7e", 0x24}], 0x1}, 0x0) [ 1118.766731] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1118.788216] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1118.802254] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:30 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x7000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:30 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00feffff0700", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1118.878577] FAULT_INJECTION: forcing a failure. [ 1118.878577] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.910786] input: syz0 as /devices/virtual/input/input250 [ 1118.918332] CPU: 1 PID: 6512 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1118.925585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1118.925593] Call Trace: [ 1118.925629] dump_stack+0x1c4/0x2b4 [ 1118.925657] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1118.925693] should_fail.cold.4+0xa/0x17 [ 1118.925718] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1118.925745] ? graph_lock+0x170/0x170 [ 1118.925775] ? graph_lock+0x170/0x170 [ 1118.925796] ? save_stack+0x43/0xd0 [ 1118.936523] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1118.937762] ? kasan_kmalloc+0xc7/0xe0 [ 1118.937780] ? kmem_cache_alloc_trace+0x152/0x750 [ 1118.937805] ? find_held_lock+0x36/0x1c0 [ 1118.946632] ? __lock_is_held+0xb5/0x140 [ 1118.946664] ? ___might_sleep+0x1ed/0x300 [ 1118.967054] ? arch_local_save_flags+0x40/0x40 [ 1118.967079] ? lock_release+0x970/0x970 [ 1118.967103] __should_failslab+0x124/0x180 [ 1118.967131] should_failslab+0x9/0x14 [ 1119.013876] kmem_cache_alloc_trace+0x2d7/0x750 [ 1119.018587] ? down_write_nested+0x8e/0x130 [ 1119.022954] smack_sb_alloc_security+0x49/0x160 [ 1119.027655] security_sb_alloc+0x4c/0xa0 [ 1119.031744] sget_userns+0x2ed/0xf10 [ 1119.035486] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1119.039496] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1119.044979] ? destroy_unused_super.part.10+0x110/0x110 [ 1119.050378] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 1119.054991] ? kasan_check_write+0x14/0x20 [ 1119.059251] ? do_raw_spin_lock+0xc1/0x200 [ 1119.063616] ? blkdev_get+0xc8/0xb50 [ 1119.067382] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.072944] ? cap_capable+0x1f9/0x260 [ 1119.076892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.082458] ? security_capable+0x99/0xc0 [ 1119.086636] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.092230] ? ns_capable_common+0x13f/0x170 [ 1119.096713] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1119.100711] sget+0x10b/0x150 [ 1119.103848] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1119.109333] gfs2_mount+0x1a7/0x712 [ 1119.112998] ? fill_super+0x1a10/0x1a10 [ 1119.117000] ? free_unref_page+0x960/0x960 [ 1119.121270] ? free_pages+0x44/0x50 [ 1119.124920] ? smack_sb_copy_data+0x27e/0x2d0 [ 1119.129460] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.135205] mount_fs+0xae/0x31d [ 1119.138607] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1119.143216] ? may_umount+0xb0/0xb0 [ 1119.146859] ? _raw_read_unlock+0x2c/0x50 [ 1119.151034] ? __get_fs_type+0x97/0xc0 [ 1119.154948] do_mount+0x581/0x31f0 [ 1119.158521] ? copy_mount_string+0x40/0x40 [ 1119.162808] ? copy_mount_options+0x5f/0x380 [ 1119.167242] ? rcu_read_lock_sched_held+0x108/0x120 [ 1119.172295] ? kmem_cache_alloc_trace+0x353/0x750 [ 1119.177173] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1119.182749] ? _copy_from_user+0xdf/0x150 [ 1119.186933] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.192513] ? copy_mount_options+0x288/0x380 [ 1119.197089] ksys_mount+0x12d/0x140 [ 1119.200763] __x64_sys_mount+0xbe/0x150 [ 1119.204792] do_syscall_64+0x1b9/0x820 [ 1119.208708] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1119.214611] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1119.219567] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1119.224445] ? trace_hardirqs_on_caller+0x310/0x310 [ 1119.229483] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1119.234567] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.240163] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1119.245220] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1119.250101] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1119.255311] RIP: 0033:0x459fea [ 1119.258529] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 17:14:30 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680a1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:30 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1119.277460] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1119.285201] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1119.292495] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1119.299814] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1119.307105] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1119.314392] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:30 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x100000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1119.344089] input: syz0 as /devices/virtual/input/input251 [ 1119.373962] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:30 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1119.389398] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:30 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85685f1baba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:30 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1119.445489] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1119.529914] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:30 executing program 2 (fault-call:2 fault-nth:57): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:30 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xfeffff07], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:30 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:30 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x2, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}, &(0x7f0000000100)=0x10) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:30 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c5faba20400ff7e", 0x24}], 0x1}, 0x0) 17:14:30 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:31 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xc8020000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:31 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000ffffffff00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:31 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba23400ff7e", 0x24}], 0x1}, 0x0) [ 1119.632629] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1119.686748] input: syz0 as /devices/virtual/input/input252 [ 1119.702329] FAULT_INJECTION: forcing a failure. [ 1119.702329] name failslab, interval 1, probability 0, space 0, times 0 [ 1119.753157] CPU: 1 PID: 6547 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1119.760410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1119.760423] Call Trace: [ 1119.772404] dump_stack+0x1c4/0x2b4 [ 1119.776059] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1119.781293] should_fail.cold.4+0xa/0x17 [ 1119.785382] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1119.790510] ? kernel_text_address+0x79/0xf0 [ 1119.794949] ? __kernel_text_address+0xd/0x40 [ 1119.799468] ? graph_lock+0x170/0x170 [ 1119.803294] ? __save_stack_trace+0x8d/0xf0 [ 1119.807636] ? graph_lock+0x170/0x170 [ 1119.811464] ? find_held_lock+0x36/0x1c0 [ 1119.815562] ? __lock_is_held+0xb5/0x140 [ 1119.819638] input: syz0 as /devices/virtual/input/input253 [ 1119.819657] ? ___might_sleep+0x1ed/0x300 [ 1119.819679] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.835001] ? arch_local_save_flags+0x40/0x40 [ 1119.839614] __should_failslab+0x124/0x180 [ 1119.843867] should_failslab+0x9/0x14 [ 1119.847689] kmem_cache_alloc_trace+0x2d7/0x750 [ 1119.852383] ? __kmalloc_node+0x33/0x70 [ 1119.856599] ? __kmalloc_node+0x33/0x70 [ 1119.860595] ? rcu_read_lock_sched_held+0x108/0x120 [ 1119.865635] __memcg_init_list_lru_node+0x185/0x2d0 [ 1119.870680] ? kvfree_rcu+0x20/0x20 [ 1119.874333] ? __kmalloc_node+0x47/0x70 [ 1119.878343] __list_lru_init+0x4d6/0x840 [ 1119.878374] ? list_lru_destroy+0x500/0x500 [ 1119.886788] ? up_write+0x7b/0x220 [ 1119.890356] ? up_read+0x110/0x110 [ 1119.893912] ? down_read+0x1d0/0x1d0 [ 1119.893933] ? init_wait_entry+0x1c0/0x1c0 [ 1119.901900] ? prealloc_shrinker+0xe5/0x330 [ 1119.906260] sget_userns+0x999/0xf10 [ 1119.909998] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1119.913997] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1119.919476] ? destroy_unused_super.part.10+0x110/0x110 [ 1119.924869] ? kasan_check_write+0x14/0x20 [ 1119.929130] ? do_raw_spin_lock+0xc1/0x200 [ 1119.933400] ? blkdev_get+0xc8/0xb50 [ 1119.937136] ? cap_capable+0x1f9/0x260 [ 1119.941086] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.946652] ? security_capable+0x99/0xc0 [ 1119.950828] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.956389] ? ns_capable_common+0x13f/0x170 [ 1119.960824] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1119.964818] sget+0x10b/0x150 [ 1119.967945] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1119.973424] gfs2_mount+0x1a7/0x712 [ 1119.977080] ? fill_super+0x1a10/0x1a10 [ 1119.981098] ? free_unref_page+0x960/0x960 [ 1119.985379] ? free_pages+0x44/0x50 [ 1119.989032] ? smack_sb_copy_data+0x27e/0x2d0 [ 1119.993568] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1119.999134] mount_fs+0xae/0x31d [ 1120.002547] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1120.007161] ? may_umount+0xb0/0xb0 [ 1120.010805] ? _raw_read_unlock+0x2c/0x50 [ 1120.014979] ? __get_fs_type+0x97/0xc0 [ 1120.018895] do_mount+0x581/0x31f0 [ 1120.022479] ? copy_mount_string+0x40/0x40 [ 1120.026769] ? copy_mount_options+0x5f/0x380 [ 1120.031211] ? rcu_read_lock_sched_held+0x108/0x120 [ 1120.036254] ? kmem_cache_alloc_trace+0x353/0x750 [ 1120.041122] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1120.046690] ? _copy_from_user+0xdf/0x150 [ 1120.050865] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.056427] ? copy_mount_options+0x288/0x380 [ 1120.060950] ksys_mount+0x12d/0x140 [ 1120.064611] __x64_sys_mount+0xbe/0x150 [ 1120.068625] do_syscall_64+0x1b9/0x820 [ 1120.072549] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1120.077942] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1120.082891] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1120.087757] ? trace_hardirqs_on_caller+0x310/0x310 [ 1120.092797] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1120.097835] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.103410] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1120.108462] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1120.113345] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1120.118574] RIP: 0033:0x459fea [ 1120.121786] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1120.140724] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 17:14:31 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1120.148553] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1120.155849] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1120.163138] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1120.170424] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1120.177727] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:31 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20600ff7e", 0x24}], 0x1}, 0x0) [ 1120.217582] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1120.219616] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:31 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:31 executing program 2 (fault-call:2 fault-nth:58): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:31 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x40000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:31 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = dup2(r0, r0) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x101, 0x200000) ioctl$NBD_SET_SOCK(r1, 0xab00, r2) 17:14:31 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:31 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:31 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20700ff7e", 0x24}], 0x1}, 0x0) 17:14:31 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x700], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:31 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1120.429567] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1120.457084] input: syz0 as /devices/virtual/input/input254 [ 1120.478568] input: syz0 as /devices/virtual/input/input255 17:14:31 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:31 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20200ff7e", 0x24}], 0x1}, 0x0) [ 1120.503869] FAULT_INJECTION: forcing a failure. [ 1120.503869] name failslab, interval 1, probability 0, space 0, times 0 [ 1120.546289] CPU: 1 PID: 6573 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1120.553553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1120.553563] Call Trace: [ 1120.553590] dump_stack+0x1c4/0x2b4 [ 1120.553616] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1120.553653] should_fail.cold.4+0xa/0x17 [ 1120.553677] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1120.553700] ? save_stack+0xa9/0xd0 [ 1120.553720] ? graph_lock+0x170/0x170 [ 1120.553734] ? save_stack+0x43/0xd0 [ 1120.553749] ? kasan_kmalloc+0xc7/0xe0 [ 1120.553765] ? kmem_cache_alloc_trace+0x152/0x750 [ 1120.553793] ? __memcg_init_list_lru_node+0x185/0x2d0 [ 1120.578784] ? __list_lru_init+0x4d6/0x840 [ 1120.578805] ? graph_lock+0x170/0x170 [ 1120.578819] ? mount_fs+0xae/0x31d [ 1120.578837] ? vfs_kern_mount.part.35+0xdc/0x4f0 [ 1120.578864] ? ksys_mount+0x12d/0x140 [ 1120.613163] ? __x64_sys_mount+0xbe/0x150 [ 1120.613182] ? do_syscall_64+0x1b9/0x820 [ 1120.613200] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1120.613224] ? find_held_lock+0x36/0x1c0 [ 1120.613245] ? __lock_is_held+0xb5/0x140 [ 1120.613274] ? ___might_sleep+0x1ed/0x300 [ 1120.620630] ? arch_local_save_flags+0x40/0x40 [ 1120.620665] __should_failslab+0x124/0x180 [ 1120.620691] should_failslab+0x9/0x14 [ 1120.667790] kmem_cache_alloc_trace+0x2d7/0x750 [ 1120.672489] ? __kmalloc_node+0x33/0x70 [ 1120.676491] ? __kmalloc_node+0x33/0x70 [ 1120.680498] ? rcu_read_lock_sched_held+0x108/0x120 [ 1120.685583] __memcg_init_list_lru_node+0x185/0x2d0 [ 1120.690628] ? kvfree_rcu+0x20/0x20 [ 1120.694301] ? __kmalloc_node+0x47/0x70 [ 1120.698313] __list_lru_init+0x4d6/0x840 [ 1120.702407] ? list_lru_destroy+0x500/0x500 [ 1120.706760] ? up_write+0x7b/0x220 [ 1120.710322] ? up_read+0x110/0x110 [ 1120.713895] ? down_read+0x1d0/0x1d0 [ 1120.717632] ? init_wait_entry+0x1c0/0x1c0 [ 1120.721893] ? prealloc_shrinker+0xe5/0x330 [ 1120.726257] sget_userns+0x999/0xf10 [ 1120.729997] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1120.733999] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1120.739477] ? destroy_unused_super.part.10+0x110/0x110 [ 1120.744867] ? kasan_check_write+0x14/0x20 [ 1120.749132] ? do_raw_spin_lock+0xc1/0x200 [ 1120.753403] ? blkdev_get+0xc8/0xb50 [ 1120.757148] ? cap_capable+0x1f9/0x260 [ 1120.761069] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.766635] ? security_capable+0x99/0xc0 [ 1120.766658] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.766675] ? ns_capable_common+0x13f/0x170 [ 1120.766696] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1120.766712] sget+0x10b/0x150 [ 1120.766731] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1120.766752] gfs2_mount+0x1a7/0x712 [ 1120.776492] ? fill_super+0x1a10/0x1a10 [ 1120.776518] ? free_unref_page+0x960/0x960 [ 1120.776560] ? free_pages+0x44/0x50 [ 1120.809065] ? smack_sb_copy_data+0x27e/0x2d0 [ 1120.813608] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.819186] mount_fs+0xae/0x31d [ 1120.822615] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1120.827244] ? may_umount+0xb0/0xb0 [ 1120.830898] ? _raw_read_unlock+0x2c/0x50 [ 1120.835077] ? __get_fs_type+0x97/0xc0 [ 1120.838996] do_mount+0x581/0x31f0 [ 1120.842576] ? trace_hardirqs_off+0x310/0x310 [ 1120.847093] ? retint_kernel+0x1b/0x2d [ 1120.851016] ? copy_mount_string+0x40/0x40 [ 1120.855290] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1120.860091] ? retint_kernel+0x2d/0x2d [ 1120.864034] ? copy_mount_options+0x1f3/0x380 [ 1120.868559] ? copy_mount_options+0x1f9/0x380 [ 1120.873258] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.878819] ? copy_mount_options+0x288/0x380 [ 1120.883359] ksys_mount+0x12d/0x140 [ 1120.887024] __x64_sys_mount+0xbe/0x150 [ 1120.891032] do_syscall_64+0x1b9/0x820 [ 1120.894955] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1120.900363] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1120.905319] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1120.910197] ? trace_hardirqs_on_caller+0x310/0x310 [ 1120.915244] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1120.920290] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1120.925857] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1120.930905] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1120.935783] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1120.940992] RIP: 0033:0x459fea [ 1120.944208] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1120.963374] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1120.971114] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1120.978642] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1120.985937] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 17:14:31 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba25f00ff7e", 0x24}], 0x1}, 0x0) 17:14:32 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba21200ff7e", 0x24}], 0x1}, 0x0) [ 1120.993230] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1121.000712] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:32 executing program 2 (fault-call:2 fault-nth:59): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:32 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20300ff7e", 0x24}], 0x1}, 0x0) [ 1121.013558] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:32 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1c) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:32 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xc802], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:32 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:32 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1121.158003] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1121.171788] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1121.193695] input: syz0 as /devices/virtual/input/input256 17:14:32 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:32 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x3], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:32 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:32 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20500ff7e", 0x24}], 0x1}, 0x0) [ 1121.221171] input: syz0 as /devices/virtual/input/input257 [ 1121.251280] FAULT_INJECTION: forcing a failure. [ 1121.251280] name failslab, interval 1, probability 0, space 0, times 0 [ 1121.298837] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1121.314688] CPU: 1 PID: 6600 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1121.323247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1121.332623] Call Trace: [ 1121.335244] dump_stack+0x1c4/0x2b4 [ 1121.338904] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1121.344137] should_fail.cold.4+0xa/0x17 [ 1121.348241] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1121.353413] ? save_stack+0xa9/0xd0 [ 1121.357064] ? graph_lock+0x170/0x170 [ 1121.360904] ? save_stack+0x43/0xd0 [ 1121.364568] ? kasan_kmalloc+0xc7/0xe0 [ 1121.368488] ? kmem_cache_alloc_trace+0x152/0x750 [ 1121.373370] ? __memcg_init_list_lru_node+0x185/0x2d0 [ 1121.378597] ? __list_lru_init+0x4d6/0x840 [ 1121.382860] ? graph_lock+0x170/0x170 [ 1121.386694] ? mount_fs+0xae/0x31d [ 1121.390269] ? vfs_kern_mount.part.35+0xdc/0x4f0 [ 1121.395052] ? ksys_mount+0x12d/0x140 [ 1121.398883] ? __x64_sys_mount+0xbe/0x150 [ 1121.403103] ? do_syscall_64+0x1b9/0x820 [ 1121.407198] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1121.412604] ? find_held_lock+0x36/0x1c0 [ 1121.416704] ? __lock_is_held+0xb5/0x140 [ 1121.420816] ? ___might_sleep+0x1ed/0x300 [ 1121.425011] ? arch_local_save_flags+0x40/0x40 [ 1121.429651] __should_failslab+0x124/0x180 [ 1121.433914] should_failslab+0x9/0x14 [ 1121.437750] kmem_cache_alloc_trace+0x2d7/0x750 [ 1121.442447] ? __kmalloc_node+0x33/0x70 [ 1121.446448] ? __kmalloc_node+0x33/0x70 [ 1121.450453] ? rcu_read_lock_sched_held+0x108/0x120 17:14:32 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:32 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba2005fff7e", 0x24}], 0x1}, 0x0) [ 1121.455510] __memcg_init_list_lru_node+0x185/0x2d0 [ 1121.460579] ? kvfree_rcu+0x20/0x20 [ 1121.464242] ? __kmalloc_node+0x47/0x70 [ 1121.468248] __list_lru_init+0x4d6/0x840 [ 1121.472334] ? list_lru_destroy+0x500/0x500 [ 1121.476687] ? up_write+0x7b/0x220 [ 1121.476705] ? up_read+0x110/0x110 [ 1121.476722] ? down_read+0x1d0/0x1d0 [ 1121.476744] ? init_wait_entry+0x1c0/0x1c0 [ 1121.483845] ? prealloc_shrinker+0xe5/0x330 [ 1121.491824] sget_userns+0x999/0xf10 [ 1121.499854] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1121.499881] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1121.499901] ? destroy_unused_super.part.10+0x110/0x110 [ 1121.499923] ? kasan_check_write+0x14/0x20 [ 1121.509377] ? do_raw_spin_lock+0xc1/0x200 [ 1121.509405] ? blkdev_get+0xc8/0xb50 [ 1121.509429] ? cap_capable+0x1f9/0x260 [ 1121.519054] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1121.519073] ? security_capable+0x99/0xc0 [ 1121.519095] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1121.527058] ? ns_capable_common+0x13f/0x170 [ 1121.527083] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1121.527103] sget+0x10b/0x150 [ 1121.536537] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1121.536572] gfs2_mount+0x1a7/0x712 [ 1121.536595] ? fill_super+0x1a10/0x1a10 [ 1121.536612] ? free_unref_page+0x960/0x960 [ 1121.536642] ? free_pages+0x44/0x50 [ 1121.546343] ? smack_sb_copy_data+0x27e/0x2d0 [ 1121.546380] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1121.546403] mount_fs+0xae/0x31d [ 1121.554808] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1121.554831] ? may_umount+0xb0/0xb0 [ 1121.554848] ? _raw_read_unlock+0x2c/0x50 [ 1121.554866] ? __get_fs_type+0x97/0xc0 [ 1121.554889] do_mount+0x581/0x31f0 [ 1121.554917] ? copy_mount_string+0x40/0x40 [ 1121.563505] ? copy_mount_options+0x5f/0x380 [ 1121.563525] ? rcu_read_lock_sched_held+0x108/0x120 [ 1121.563556] ? kmem_cache_alloc_trace+0x353/0x750 [ 1121.563579] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1121.571193] ? _copy_from_user+0xdf/0x150 [ 1121.571219] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1121.571235] ? copy_mount_options+0x288/0x380 [ 1121.571257] ksys_mount+0x12d/0x140 [ 1121.654279] __x64_sys_mount+0xbe/0x150 [ 1121.658292] do_syscall_64+0x1b9/0x820 [ 1121.662204] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1121.667602] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1121.672560] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1121.677434] ? trace_hardirqs_on_caller+0x310/0x310 [ 1121.682492] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1121.687532] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1121.693102] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1121.698154] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1121.703027] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1121.708232] RIP: 0033:0x459fea [ 1121.711450] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1121.730382] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1121.738122] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1121.745412] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1121.752707] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1121.760089] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1121.767395] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 17:14:33 executing program 2 (fault-call:2 fault-nth:60): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:33 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:33 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0xfffffffffffffffd}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:33 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20474ff7e", 0x24}], 0x1}, 0x0) 17:14:33 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:33 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xffffffff00000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:33 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1121.900659] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1121.930344] FAULT_INJECTION: forcing a failure. [ 1121.930344] name failslab, interval 1, probability 0, space 0, times 0 [ 1121.951591] input: syz0 as /devices/virtual/input/input258 [ 1121.963445] CPU: 1 PID: 6617 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1121.970679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1121.980066] Call Trace: [ 1121.982688] dump_stack+0x1c4/0x2b4 [ 1121.986361] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1121.991636] should_fail.cold.4+0xa/0x17 [ 1121.995731] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1122.000874] ? graph_lock+0x170/0x170 [ 1122.004708] ? graph_lock+0x170/0x170 [ 1122.008542] ? save_stack+0xa9/0xd0 [ 1122.012290] ? save_stack+0x43/0xd0 [ 1122.015940] ? kasan_kmalloc+0xc7/0xe0 [ 1122.019849] ? __kmalloc+0x14e/0x760 [ 1122.023594] ? __list_lru_init+0x151/0x840 [ 1122.027859] ? find_held_lock+0x36/0x1c0 [ 1122.031955] ? __lock_is_held+0xb5/0x140 [ 1122.036068] ? ___might_sleep+0x1ed/0x300 [ 1122.040247] ? arch_local_save_flags+0x40/0x40 [ 1122.044851] ? check_preemption_disabled+0x48/0x200 [ 1122.049891] ? check_preemption_disabled+0x48/0x200 [ 1122.054944] __should_failslab+0x124/0x180 [ 1122.059207] should_failslab+0x9/0x14 [ 1122.063038] kmem_cache_alloc_node_trace+0x270/0x740 [ 1122.068184] __kmalloc_node+0x33/0x70 [ 1122.072015] kvmalloc_node+0x65/0xf0 [ 1122.075756] __list_lru_init+0x5d9/0x840 [ 1122.079844] ? list_lru_destroy+0x500/0x500 [ 1122.084197] ? up_write+0x7b/0x220 [ 1122.087755] ? up_read+0x110/0x110 [ 1122.091314] ? down_read+0x1d0/0x1d0 [ 1122.095058] ? init_wait_entry+0x1c0/0x1c0 [ 1122.099310] ? prealloc_shrinker+0xe5/0x330 [ 1122.103689] sget_userns+0x999/0xf10 [ 1122.107423] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1122.111426] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1122.116900] ? destroy_unused_super.part.10+0x110/0x110 [ 1122.122306] ? kasan_check_write+0x14/0x20 [ 1122.126572] ? do_raw_spin_lock+0xc1/0x200 [ 1122.130844] ? blkdev_get+0xc8/0xb50 [ 1122.134587] ? cap_capable+0x1f9/0x260 [ 1122.138512] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.144123] ? security_capable+0x99/0xc0 [ 1122.148300] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.153859] ? ns_capable_common+0x13f/0x170 [ 1122.158295] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1122.162294] sget+0x10b/0x150 [ 1122.165428] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1122.170908] gfs2_mount+0x1a7/0x712 [ 1122.174565] ? fill_super+0x1a10/0x1a10 [ 1122.178566] ? free_unref_page+0x960/0x960 [ 1122.182861] ? free_pages+0x44/0x50 [ 1122.186519] ? smack_sb_copy_data+0x27e/0x2d0 [ 1122.191048] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.196615] mount_fs+0xae/0x31d [ 1122.200011] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1122.204622] ? may_umount+0xb0/0xb0 [ 1122.208269] ? _raw_read_unlock+0x2c/0x50 [ 1122.212441] ? __get_fs_type+0x97/0xc0 [ 1122.216370] do_mount+0x581/0x31f0 [ 1122.219933] ? retint_kernel+0x1b/0x2d [ 1122.223845] ? trace_hardirqs_on+0x310/0x310 [ 1122.228288] ? copy_mount_string+0x40/0x40 [ 1122.232551] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1122.237359] ? retint_kernel+0x2d/0x2d [ 1122.241295] ? __sanitizer_cov_trace_const_cmp8+0x1/0x20 [ 1122.246805] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.252380] ? copy_mount_options+0x288/0x380 [ 1122.256919] ksys_mount+0x12d/0x140 [ 1122.260583] __x64_sys_mount+0xbe/0x150 [ 1122.264590] do_syscall_64+0x1b9/0x820 [ 1122.268507] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1122.273911] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1122.278865] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1122.283743] ? trace_hardirqs_on_caller+0x310/0x310 [ 1122.288792] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1122.293840] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.299409] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1122.304462] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1122.309340] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1122.314595] RIP: 0033:0x459fea [ 1122.317812] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1122.337212] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1122.344952] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea 17:14:33 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x6000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:33 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000000100", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:33 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba2044cff7e", 0x24}], 0x1}, 0x0) [ 1122.352247] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 [ 1122.359557] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1122.366853] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1122.374148] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1122.414179] input: syz0 as /devices/virtual/input/input259 17:14:33 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:33 executing program 2 (fault-call:2 fault-nth:61): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:33 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:33 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x600], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1122.444603] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1122.548244] FAULT_INJECTION: forcing a failure. [ 1122.548244] name failslab, interval 1, probability 0, space 0, times 0 [ 1122.593627] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1122.617447] CPU: 1 PID: 6639 Comm: syz-executor2 Not tainted 4.19.0-rc6+ #41 [ 1122.627037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1122.636437] Call Trace: [ 1122.636465] dump_stack+0x1c4/0x2b4 [ 1122.636487] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1122.636520] should_fail.cold.4+0xa/0x17 [ 1122.636552] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 1122.636575] ? save_stack+0xa9/0xd0 [ 1122.661178] ? graph_lock+0x170/0x170 [ 1122.665002] ? save_stack+0x43/0xd0 [ 1122.668648] ? kasan_kmalloc+0xc7/0xe0 [ 1122.672818] ? kmem_cache_alloc_trace+0x152/0x750 [ 1122.677690] ? __memcg_init_list_lru_node+0x185/0x2d0 [ 1122.682905] ? __list_lru_init+0x4d6/0x840 [ 1122.687171] ? graph_lock+0x170/0x170 [ 1122.691297] ? mount_fs+0xae/0x31d [ 1122.694867] ? vfs_kern_mount.part.35+0xdc/0x4f0 [ 1122.699651] ? ksys_mount+0x12d/0x140 [ 1122.703473] ? __x64_sys_mount+0xbe/0x150 [ 1122.707650] ? do_syscall_64+0x1b9/0x820 [ 1122.711732] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1122.717129] ? find_held_lock+0x36/0x1c0 [ 1122.721218] ? __lock_is_held+0xb5/0x140 [ 1122.725321] ? ___might_sleep+0x1ed/0x300 [ 1122.729501] ? arch_local_save_flags+0x40/0x40 [ 1122.734133] __should_failslab+0x124/0x180 [ 1122.738402] should_failslab+0x9/0x14 [ 1122.742226] kmem_cache_alloc_trace+0x2d7/0x750 [ 1122.746920] ? __kmalloc_node+0x33/0x70 [ 1122.750912] ? __kmalloc_node+0x33/0x70 [ 1122.754906] ? rcu_read_lock_sched_held+0x108/0x120 [ 1122.759954] __memcg_init_list_lru_node+0x185/0x2d0 [ 1122.765001] ? kvfree_rcu+0x20/0x20 [ 1122.768649] ? __kmalloc_node+0x47/0x70 [ 1122.772656] __list_lru_init+0x4d6/0x840 [ 1122.776929] ? list_lru_destroy+0x500/0x500 [ 1122.781273] ? up_write+0x7b/0x220 [ 1122.784832] ? up_read+0x110/0x110 [ 1122.788390] ? down_read+0x1d0/0x1d0 [ 1122.792124] ? init_wait_entry+0x1c0/0x1c0 [ 1122.796382] ? prealloc_shrinker+0xe5/0x330 [ 1122.800737] sget_userns+0x999/0xf10 [ 1122.804473] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1122.808475] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1122.813948] ? destroy_unused_super.part.10+0x110/0x110 [ 1122.819337] ? kasan_check_write+0x14/0x20 [ 1122.823801] ? do_raw_spin_lock+0xc1/0x200 [ 1122.828063] ? blkdev_get+0xc8/0xb50 [ 1122.831804] ? cap_capable+0x1f9/0x260 [ 1122.835718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.841274] ? security_capable+0x99/0xc0 [ 1122.845446] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.851011] ? ns_capable_common+0x13f/0x170 [ 1122.855452] ? gfs2_kill_sb+0x1a0/0x1a0 [ 1122.859449] sget+0x10b/0x150 [ 1122.862588] ? fallocate_chunk.isra.15.cold.19+0x7c/0x7c [ 1122.868062] gfs2_mount+0x1a7/0x712 [ 1122.871714] ? fill_super+0x1a10/0x1a10 [ 1122.875714] ? free_unref_page+0x960/0x960 [ 1122.879984] ? free_pages+0x44/0x50 [ 1122.883636] ? smack_sb_copy_data+0x27e/0x2d0 [ 1122.888160] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.893725] mount_fs+0xae/0x31d [ 1122.897126] vfs_kern_mount.part.35+0xdc/0x4f0 [ 1122.901735] ? may_umount+0xb0/0xb0 [ 1122.905389] ? _raw_read_unlock+0x2c/0x50 [ 1122.909562] ? __get_fs_type+0x97/0xc0 [ 1122.913515] do_mount+0x581/0x31f0 [ 1122.917095] ? copy_mount_string+0x40/0x40 [ 1122.921374] ? copy_mount_options+0x5f/0x380 [ 1122.925805] ? rcu_read_lock_sched_held+0x108/0x120 [ 1122.930854] ? kmem_cache_alloc_trace+0x353/0x750 [ 1122.935724] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1122.941772] ? _copy_from_user+0xdf/0x150 [ 1122.945956] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.951516] ? copy_mount_options+0x288/0x380 [ 1122.956047] ksys_mount+0x12d/0x140 [ 1122.959711] __x64_sys_mount+0xbe/0x150 [ 1122.963714] do_syscall_64+0x1b9/0x820 [ 1122.967632] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1122.973028] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1122.977975] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1122.982845] ? trace_hardirqs_on_caller+0x310/0x310 [ 1122.987885] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1122.992930] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1122.998492] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1123.003550] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1123.008425] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1123.013637] RIP: 0033:0x459fea [ 1123.016847] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 9d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 1123.035770] RSP: 002b:00007f2b9b2cfa88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1123.043506] RAX: ffffffffffffffda RBX: 00007f2b9b2cfb30 RCX: 0000000000459fea [ 1123.050805] RDX: 00007f2b9b2cfad0 RSI: 00000000200000c0 RDI: 00007f2b9b2cfaf0 17:14:34 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/current\x00', 0x2, 0x0) 17:14:34 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba2040fff7e", 0x24}], 0x1}, 0x0) 17:14:34 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x4000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:34 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:34 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00?\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1123.058306] RBP: 00000000200000c0 R08: 00007f2b9b2cfb30 R09: 00007f2b9b2cfad0 [ 1123.065600] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000006 [ 1123.072890] R13: 0000000000000000 R14: 00000000004d7db8 R15: 0000000000000005 [ 1123.120787] nla_parse: 27 callbacks suppressed [ 1123.120799] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1123.122642] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1123.149690] input: syz0 as /devices/virtual/input/input260 17:14:34 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20406ff7e", 0x24}], 0x1}, 0x0) 17:14:34 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x2], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:34 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1123.157563] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1123.225081] input: syz0 as /devices/virtual/input/input261 [ 1123.233913] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1123.252110] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:34 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1123.265563] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1123.267976] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1123.339956] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. 17:14:34 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:34 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20468ff7e", 0x24}], 0x1}, 0x0) 17:14:34 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x6], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:34 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:34 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000000)=0x10e2) 17:14:34 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:34 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:34 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x200000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1123.442563] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1123.456392] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1123.474247] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1123.491459] input: syz0 as /devices/virtual/input/input262 17:14:34 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:34 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba2047aff7e", 0x24}], 0x1}, 0x0) [ 1123.560432] gfs2: not a GFS2 filesystem 17:14:34 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1123.591956] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1123.593113] netlink: 16 bytes leftover after parsing attributes in process `syz-executor3'. [ 1123.620798] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x300], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:35 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='%fs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:35 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:35 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20402ff7e", 0x24}], 0x1}, 0x0) 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1123.711334] input: syz0 as /devices/virtual/input/input264 [ 1123.745678] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x4000000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:35 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1123.786608] input: syz0 as /devices/virtual/input/input265 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1123.828863] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'. [ 1123.862386] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:35 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20404ff7e", 0x24}], 0x1}, 0x0) 17:14:35 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x2000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:35 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) write$FUSE_STATFS(r1, &(0x7f0000000140)={0x60, 0x0, 0x7, {{0x2, 0x3f, 0xffffffff, 0x56c0b421, 0x10001, 0x4, 0x100000001, 0x6}}}, 0x60) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x101100, 0x0) write$FUSE_LSEEK(r2, &(0x7f00000000c0)={0x18, 0xfffffffffffffffe, 0x6, {0x7}}, 0x18) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:35 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='bfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:35 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20405ff7e", 0x24}], 0x1}, 0x0) 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x3000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:35 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000027800", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1124.046096] input: syz0 as /devices/virtual/input/input266 [ 1124.059447] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:35 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20407ff7e", 0x24}], 0x1}, 0x0) 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x300000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:35 executing program 0: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r2 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff9) keyctl$assume_authority(0x10, r2) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r1, 0x5501) [ 1124.200075] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1124.203712] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:35 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='rfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:35 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20403ff7e", 0x24}], 0x1}, 0x0) 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x600000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1124.308499] input: syz0 as /devices/virtual/input/input268 17:14:35 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:35 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20448ff7e", 0x24}], 0x1}, 0x0) 17:14:35 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:35 executing program 0: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x5, 0x40000) r1 = semget(0x0, 0x2, 0x412) semctl$GETPID(r1, 0x2, 0xb, &(0x7f00000001c0)=""/130) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f00000000c0)={0x100, {0x3, 0x2, 0x3, 0xe61, 0x8, 0xb2b}}) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) write$FUSE_INTERRUPT(r0, &(0x7f0000000100)={0x10, 0xffffffffffffffff, 0x4}, 0x10) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f0000000180)=0x2, 0x4) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000140)={0x6, 0x9, 0x7ad7, 0x4, 0x7, 0x8, 0x6, 0x3, 0x6, 0xfbab, 0x1000, 0x101}) ioctl$UI_DEV_CREATE(r2, 0x5501) r3 = semget(0x3, 0x0, 0x20) semctl$IPC_RMID(r3, 0x0, 0x0) 17:14:35 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x3], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1124.447006] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:35 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:35 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='afs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba2046cff7e", 0x24}], 0x1}, 0x0) [ 1124.751113] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1124.772290] input: syz0 as /devices/virtual/input/input270 17:14:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x600000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:36 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) [ 1124.826447] input: syz0 as /devices/virtual/input/input271 [ 1124.844622] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20460ff7e", 0x24}], 0x1}, 0x0) 17:14:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x100000000000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:36 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='Bfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1124.958103] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:36 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{0xffffffffffffffff, 0x0, 0x3}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000000200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:36 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0xf}], 0x1}, 0x0) [ 1125.077185] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1125.108020] input: syz0 as /devices/virtual/input/input272 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x600], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1125.135665] input: syz0 as /devices/virtual/input/input273 17:14:36 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1, 0x0, 0x0, 0x0}, 0x0) 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0xec0}], 0x1}, 0x0) 17:14:36 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='Rfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000000000000000600", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1125.209858] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0xc8020000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0xfffffdef}], 0x1}, 0x0) 17:14:36 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000)='trusted.overlay.redirect\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x1) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:36 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x4) [ 1125.337373] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000100", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x300], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:36 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='mfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x200005e4}], 0x1}, 0x0) 17:14:36 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x74) [ 1125.475922] input: syz0 as /devices/virtual/input/input274 [ 1125.497622] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:36 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000780200", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1125.526683] input: syz0 as /devices/virtual/input/input275 17:14:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x4000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:36 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x33fe0}], 0x1}, 0x0) 17:14:36 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x9effffff00000000) 17:14:37 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x4, {0x5}}) getpeername(0xffffffffffffffff, &(0x7f0000000140)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @loopback}}}}, &(0x7f00000001c0)=0x80) sendmsg$rds(r1, &(0x7f00000004c0)={&(0x7f0000000200)={0x2, 0x4e23, @multicast1}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000240)=""/63, 0x3f}, {&(0x7f0000000280)=""/113, 0x71}, {&(0x7f0000000300)=""/104, 0x68}, {&(0x7f0000000380)=""/134, 0x86}], 0x4, &(0x7f0000000480), 0x0, 0x1fa321eeb0667a39}, 0x801) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x18) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) setxattr$security_smack_entry(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='security.SMACK64\x00', &(0x7f0000000100)='\'\x00', 0x2, 0x2) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1125.673663] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:37 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c000000000000ffffffff00", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='Sfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:37 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x700], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0xf00) 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x7ffff000}], 0x1}, 0x0) [ 1125.791449] input: syz0 as /devices/virtual/input/input276 [ 1125.811272] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:37 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000500", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x4c000000) [ 1125.867633] input: syz0 as /devices/virtual/input/input277 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0xc0}], 0x1}, 0x0) 17:14:37 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x7fffffe], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:37 executing program 0: openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x802, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x88000, 0x0) ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000100)=0xe38a) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 1125.961194] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:37 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000000300", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x3f000000) 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x5f}], 0x1}, 0x0) 17:14:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='Vfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) 17:14:37 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x2], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) [ 1126.090821] input: syz0 as /devices/virtual/input/input278 [ 1126.091114] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x7a000000) 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x5f}, 0x0) [ 1126.161683] input: syz0 as /devices/virtual/input/input279 17:14:37 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c0000feffff0700", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:37 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x1000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:37 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xa9f8, 0x203ffd) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f00000000c0)={0x101, {{0xa, 0x4e24, 0x7fff, @empty, 0x5}}}, 0x88) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000180)={0x400000000002f, {0x0, 0x0, 0x2}}) write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000040)={0x2e, 0x6, 0x0, {0x0, 0x4, 0x5, 0x0, 'syz0\x00'}}, 0x2e) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x7a00) 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0xe}, 0x0) 17:14:37 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', "65716c00000000000400", 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) [ 1126.306392] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt 17:14:37 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x6000000], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='ifs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1126.407715] input: syz0 as /devices/virtual/input/input280 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x60000000) 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x2}, 0x0) [ 1126.439330] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1126.482436] input: syz0 as /devices/virtual/input/input281 17:14:37 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x278, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00\x00\x00\x00\x00\a\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xc0, 0xf0, 0x128, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x2f0) 17:14:37 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x7], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:37 executing program 5: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000010607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x8}, 0x0) 17:14:37 executing program 3: r0 = socket$inet(0x10, 0x10000000000003, 0xc) sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000005c0)="24000000020607031dfffd946fa2830020200a0012000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x7) 17:14:37 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x400000000002f, {0x0, 0x80000001, 0x80000001, 0x6}}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000540)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 17:14:38 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x3, 0x2c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000000), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x4a, 0x0, 'bpq0\x00', 'bcsf0\x00', 'eql\x00', 'syzkaller0\x00', @dev={[], 0x16}, [0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0x0, 0x6], 0x70, 0xa0, 0xd8}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffffffffff81}}}]}, @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x13, 0x1, 0x8864, 'yam0\x00', 'bond_slave_0\x00', 'erspan0\x00', 'bond0\x00', @random="5b1d2741276c", [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], @random="f4687b94137c", [], 0x70, 0x70, 0xa0}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}, {{{0x9, 0x0, 0x0, 'bond_slave_0\x00', 'bridge0\x00', 'ipddp0\x00', 'ip6gretap0\x00', @link_local, [], @dev, [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffe}]}, 0x340) 17:14:38 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000040)='Efs2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x0, &(0x7f0000000200)={[{@norecovery='norecovery'}]}) [ 1126.649079] kernel msg: ebtables bug: please report to author: counter_offset != totalcnt [ 1126.725789] WARNING: CPU: 0 PID: 6942 at mm/slab_common.c:1031 kmalloc_slab+0x56/0x70 [ 1126.733821] Kernel panic - not syncing: panic_on_warn set ... [ 1126.733821] [ 1126.734486] kobject: 'loop2' (00000000f3c45d99): kobject_uevent_env [ 1126.741216] CPU: 0 PID: 6942 Comm: syz-executor0 Not tainted 4.19.0-rc6+ #41 [ 1126.741229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1126.741235] Call Trace: [ 1126.741261] dump_stack+0x1c4/0x2b4 [ 1126.741287] ? dump_stack_print_info.cold.2+0x52/0x52 [ 1126.751171] kobject: 'loop2' (00000000f3c45d99): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 1126.754903] panic+0x238/0x4e7 [ 1126.754921] ? add_taint.cold.5+0x16/0x16 [ 1126.754944] ? __warn.cold.8+0x148/0x1ba [ 1126.754969] ? kmalloc_slab+0x56/0x70 [ 1126.765308] kobject: 'loop5' (00000000c3a77a97): kobject_uevent_env [ 1126.767013] __warn.cold.8+0x163/0x1ba [ 1126.767030] ? rcu_bh_qs+0xc0/0xc0 [ 1126.767049] ? kmalloc_slab+0x56/0x70 [ 1126.767071] report_bug+0x254/0x2d0 [ 1126.770723] kobject: 'loop5' (00000000c3a77a97): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1126.775906] do_error_trap+0x1fc/0x4d0 [ 1126.775927] ? check_preemption_disabled+0x48/0x200 [ 1126.775950] ? math_error+0x3f0/0x3f0 [ 1126.843977] ? debug_smp_processor_id+0x1c/0x20 [ 1126.848670] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1126.853532] ? trace_hardirqs_on_caller+0x310/0x310 [ 1126.858613] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1126.863484] do_invalid_op+0x1b/0x20 [ 1126.867212] invalid_op+0x14/0x20 [ 1126.870693] RIP: 0010:kmalloc_slab+0x56/0x70 [ 1126.875122] Code: c5 60 ab 00 89 5d c3 48 85 ff b8 10 00 00 00 74 f4 83 ef 01 c1 ef 03 0f b6 87 80 aa 00 89 eb d8 31 c0 81 e6 00 02 00 00 75 db <0f> 0b 5d c3 48 8b 04 c5 a0 aa 00 89 5d c3 66 90 66 2e 0f 1f 84 00 [ 1126.880545] kobject: 'loop3' (0000000028260ea0): kobject_uevent_env [ 1126.894050] RSP: 0018:ffff88018c717978 EFLAGS: 00010246 [ 1126.894066] RAX: 0000000000000000 RBX: 0000000080000002 RCX: ffffc90001e5c000 [ 1126.894074] RDX: 0000000000000058 RSI: 0000000000000000 RDI: 00000020000000a0 [ 1126.894083] RBP: ffff88018c717978 R08: ffff880165bae4c0 R09: ffffed0039a11899 [ 1126.894092] R10: ffff88018c717a48 R11: ffff8801cd08c4cf R12: 0000000000000000 [ 1126.894101] R13: 0000000000000000 R14: ffff8801bc137240 R15: 00000000006080c0 [ 1126.894148] __kmalloc+0x25/0x760 [ 1126.894170] ? input_mt_init_slots+0xe5/0x4a0 [ 1126.894192] input_mt_init_slots+0xe5/0x4a0 [ 1126.894213] uinput_ioctl_handler.isra.10+0x2049/0x2540 [ 1126.894233] ? uinput_request_submit.part.9+0x2d0/0x2d0 [ 1126.894256] ? __fget+0x4d1/0x740 [ 1126.950288] kobject: 'loop3' (0000000028260ea0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1126.950411] ? ksys_dup3+0x680/0x680 [ 1126.978758] kobject: 'loop4' (000000002074a440): kobject_uevent_env [ 1126.979163] ? __might_fault+0x12b/0x1e0 [ 1126.979185] ? lock_downgrade+0x900/0x900 [ 1126.979212] uinput_ioctl+0x4c/0x60 [ 1126.979228] ? uinput_compat_ioctl+0x90/0x90 [ 1126.979249] do_vfs_ioctl+0x1de/0x1720 [ 1127.009500] ? ioctl_preallocate+0x300/0x300 [ 1127.010830] kobject: 'loop4' (000000002074a440): fill_kobj_path: path = '/devices/virtual/block/loop4' [ 1127.013927] ? memset+0x31/0x40 [ 1127.013949] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1127.013969] ? smack_file_ioctl+0x210/0x3c0 [ 1127.013984] ? fget_raw+0x20/0x20 [ 1127.014000] ? smack_file_lock+0x2e0/0x2e0 [ 1127.014029] ? do_syscall_64+0x9a/0x820 [ 1127.014044] ? do_syscall_64+0x9a/0x820 [ 1127.014063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1127.014081] ? security_file_ioctl+0x94/0xc0 [ 1127.014101] ksys_ioctl+0xa9/0xd0 [ 1127.065759] __x64_sys_ioctl+0x73/0xb0 [ 1127.069668] do_syscall_64+0x1b9/0x820 [ 1127.073588] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1127.077532] kobject: 'loop1' (000000002262d695): kobject_uevent_env [ 1127.078974] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1127.078998] ? trace_hardirqs_on_caller+0x310/0x310 [ 1127.079017] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1127.079034] ? recalc_sigpending_tsk+0x180/0x180 [ 1127.079053] ? kasan_check_write+0x14/0x20 [ 1127.109448] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1127.111215] kobject: 'loop1' (000000002262d695): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1127.114326] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1127.114341] RIP: 0033:0x457579 [ 1127.114359] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1127.114369] RSP: 002b:00007fb9e431ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1127.114387] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000457579 [ 1127.114397] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003 [ 1127.114407] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1127.114418] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb9e431f6d4 [ 1127.114428] R13: 00000000004c1284 R14: 00000000004d1e78 R15: 00000000ffffffff [ 1127.124932] Kernel Offset: disabled [ 1127.199731] Rebooting in 86400 seconds..