last executing test programs: 1.550600128s ago: executing program 0 (id=2834): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000006c0)={'vxcan1\x00', 0x0}) r2 = socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$can_bcm(r2, &(0x7f0000000040)={&(0x7f0000000080)={0x1d, r1, 0x10000000}, 0x10, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000000100000000000000fc00"], 0x48}}, 0x0) 1.527790241s ago: executing program 0 (id=2835): perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) sync() socket$nl_netfilter(0x10, 0x3, 0xc) r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f00000002c0)='cdg\x00', 0x4) listen(r2, 0x0) close(r2) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) r3 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x14801}, 0x0, 0x0, 0xffffffffffffffff, 0xd) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000540)='cpu&00\t||') fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46800) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000580)={{{@in6, @in6=@ipv4={""/10, ""/2, @multicast1}}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f0000000200)=0xe8) r4 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 1.139983263s ago: executing program 4 (id=2840): bpf$MAP_CREATE(0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c4"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 1.046349022s ago: executing program 1 (id=2843): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast}) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48) 913.767563ms ago: executing program 4 (id=2846): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005"], 0x50) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) syz_emit_ethernet(0xd6, &(0x7f00000008c0)={@local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x29, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @rand_addr=0x64010101, @local, {[@cipso={0x86, 0x28, 0x0, [{0x0, 0xd, "5e000000ff000000000000"}, {0x0, 0x3, 'N'}, {0x0, 0x12, "9606053d0006ff00800000b61af93a93"}]}, @lsrr={0x83, 0x13, 0x0, [@dev, @loopback, @loopback, @multicast2]}, @cipso={0x86, 0x4f, 0x1, [{0x0, 0x12, "4b6cefc5009c79784baad9a4c1fed75c"}, {0x0, 0x6, "b2001d3e"}, {0x0, 0xa, "2189ea43a2149b84"}, {0x7, 0x12, "ffd11634eea26b0faffa0dea2e903528"}, {0x0, 0x9, "02a20948fd7406"}, {0x6, 0xc, "ccf0294e2a3bdb4aa40b"}]}, @timestamp={0x44, 0x4}, @generic={0x82, 0x2}]}}, "a815a23da43974ff"}}}}}, 0x0) 900.306384ms ago: executing program 4 (id=2847): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d0000008500000007000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18) syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000080000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000040008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0) connect$inet6(r1, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4) r4 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0) sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002fc0)=ANY=[], 0x2b08}}, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000380)=@ccm_128={{0x303}, "92eecaa98407c49f", "7930285eb54d33eeb97c53d9078c74df", "bd53559e", "ef4a6a5d3c211bfc"}, 0x28) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAPCLR(r5, 0x4b68, 0x0) 751.982856ms ago: executing program 1 (id=2849): mkdir(&(0x7f0000000000)='./control\x00', 0x0) r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0) iopl(0x3) llistxattr(0x0, 0x0, 0x0) mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0) name_to_handle_at(r0, &(0x7f0000000080)='./control\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="08e9ffff010000210200921ffeba6843f30007000000"], &(0x7f00000001c0), 0x1200) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000280)={0x0, 0x5d, "544a0565644a09d852401b6ac951294c9e6347f6f14460ded521e1bb83571764fae9c5d4025f198f28678b33c424105cbb57d14fb4fc28a90dcbd28b095436f3cea1105af855f2b0ab1f9082a0fb3282f4bcb2c37a15bb858ee8c0d911"}, &(0x7f0000000200)=0x65) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000380)={0x6, 0x1ff, 0x2, 0x0, 0xb444, 0x9, 0x92b, 0xc0000000, r2}, &(0x7f0000000340)=0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16=r1, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x92, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x24, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x55, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000040)='./control\x00', 0x0, 0x80) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r4 = memfd_secret(0x0) r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) r6 = fcntl$dupfd(r5, 0x0, r4) ioctl$SCSI_IOCTL_GET_PCI(r6, 0x2284, &(0x7f0000000000)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r7 = syz_open_dev$tty1(0xc, 0x4, 0x1) r8 = dup(r7) write$UHID_INPUT(r8, &(0x7f0000001900)={0x1a, {"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", 0x1000}}, 0x1006) r9 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000001f5a249a24e56e5b27943dd1588090990e1049f8802051fd404e19f9e0530000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 652.929474ms ago: executing program 2 (id=2853): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000006c0)={'vxcan1\x00', 0x0}) connect$can_bcm(0xffffffffffffffff, &(0x7f0000000000), 0x10) sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000080)={0x1d, r1, 0x10000000}, 0x10, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000000100000000000000fc00"], 0x48}}, 0x0) 642.319855ms ago: executing program 1 (id=2854): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = memfd_secret(0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0) preadv(r3, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0) 641.033115ms ago: executing program 3 (id=2855): r0 = socket$inet_icmp(0x2, 0x2, 0x1) r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000000), 0x200) r2 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x8}}}, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x4, 0x58ab, 0xfd5, 0xd, 0x3, 0xfffffff6, 0x9, 0x1000, 0x4161}}}}]}, 0x58}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007080)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xfff2}, {0x10, 0x4}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1/file4\x00', 0x180) mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1/file4/file6\x00', 0xc0) renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1/file4/file6\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0) ppoll(&(0x7f0000000180)=[{r0, 0x8}, {r1, 0x6055}], 0x2, &(0x7f00000001c0)={0x0, 0x989680}, &(0x7f0000000200)={[0xfffffffffffffffe]}, 0x8) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0xe, &(0x7f00000000c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@errors_remount}]}, 0x3, 0x449, &(0x7f00000006c0)="$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") 601.918189ms ago: executing program 2 (id=2856): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000085"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = socket(0x2, 0x3, 0xff) bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) sendmmsg$unix(r1, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000003c0)="2bae87cf2bd2000100000000000003ff334efea07698", 0x16}], 0x1}}], 0x1, 0x4c008800) 601.247449ms ago: executing program 0 (id=2857): bpf$MAP_CREATE(0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c4"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 513.311076ms ago: executing program 2 (id=2858): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') lsm_set_self_attr(0x66, 0x0, 0x28, 0x0) 482.096679ms ago: executing program 2 (id=2859): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast}) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48) 378.506948ms ago: executing program 1 (id=2860): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') lsm_set_self_attr(0x66, 0x0, 0x28, 0x0) (fail_nth: 1) 378.054568ms ago: executing program 3 (id=2861): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], 0x0, 0x0, 0x1b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_emit_ethernet(0x4a, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000002c0), 0x4) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x1c1341, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, 0x0, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) sendmmsg(r0, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 377.812498ms ago: executing program 1 (id=2862): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000006c0)={'vxcan1\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10) r4 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r4, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r4, &(0x7f0000000040)={&(0x7f0000000080)={0x1d, r1, 0x10000000}, 0x10, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000000100000000000000fc0004"], 0x48}}, 0x0) 376.676848ms ago: executing program 0 (id=2863): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x9135}, 0x18) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r4}, &(0x7f0000000800), &(0x7f0000000840)=r5}, 0x20) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x9}]}, 0x10) bind$bt_hci(r6, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) ioctl$sock_bt_hci(r3, 0x800448d2, 0x0) syz_read_part_table(0x59d, &(0x7f0000000000)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r1}, 0x10) r7 = socket$inet_tcp(0x2, 0x1, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', 0x0}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r8, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r10], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814) r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r11}, 0x10) socket$inet6(0xa, 0x6, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) pipe(&(0x7f0000000100)) r12 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r13, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100"], 0x64}}, 0x0) 355.96377ms ago: executing program 4 (id=2864): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000006c0)={'vxcan1\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r3, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r3, &(0x7f0000000040)={&(0x7f0000000080)={0x1d, r1, 0x10000000}, 0x10, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001000000"], 0x48}}, 0x0) 257.565408ms ago: executing program 4 (id=2865): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000540)=ANY=[@ANYRES64=0x0, @ANYRES32, @ANYBLOB="000000000000001158ced8bbfcf0270000000000007b8af8ff00000000bfa2000000000079807e50ecf8e0f27d510007020000f8ffffffb703000008000000b704000000b800008500000003000000950000000000000000000000aee51360daf058763b483d4d3892bfed8a438be431ac91dbebfa00c0e895c54a2612034699531ad9417c4304b1c1adee4f649352f6932492749ab193ba846e6e959a77f707d3312872dc63bafa19923ea64b8606a377a32ef11a628bde73404eb0997aa1c188298ccf14ca1b7df4af"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10) (async) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) (async) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10) (async) r5 = bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) (async) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10) r8 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_RTOINFO(r8, 0x84, 0x0, &(0x7f0000000100)={0x0, 0x321, 0x0, 0xfffffffd}, 0x10) (async) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') (async) acct(&(0x7f00000001c0)='./file0\x00') (async) r9 = syz_open_dev$tty1(0xc, 0x4, 0x1) (async) r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r10, @ANYRESOCT=r5], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (async) socket$kcm(0x21, 0x2, 0xa) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async) ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x0, 0x300}}) (async) r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r12}, 0x10) 225.950771ms ago: executing program 2 (id=2866): syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x418484, &(0x7f0000000440), 0x1, 0x775, &(0x7f0000001180)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001080)=ANY=[@ANYBLOB="380000000314010000070000000020000900020073799b8100000000080041007369770014003300766574683100"/56], 0x38}}, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r2, 0x0, 0x30, 0x12, @val=@uprobe_multi={&(0x7f00000028c0)='./file0\x00', &(0x7f0000002900)=[0x4], 0x0, 0x4, 0x100000}}, 0x40) 162.125346ms ago: executing program 1 (id=2867): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x7, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x9, 0x0, 0x0, 0x0, 0x69, 0x10, 0xae}, [@ldst={0x4, 0x0, 0x0, 0x9}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff60, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = fcntl$dupfd(r0, 0x0, r0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002ac0)=@newtaction={0x88c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0xacd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xcfe, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x1, 0x8, 0x10000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x3, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x20000000, 0x0, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0xe53c0000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x5, 0x0, 0x0, 0x0, {0x3, 0x1, 0x0, 0x0, 0x0, 0x5}, {0x4, 0x2, 0x0, 0x0, 0x0, 0xff}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x88c}}, 0x0) syz_read_part_table(0x593, &(0x7f00000005c0)="$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") 141.752458ms ago: executing program 4 (id=2868): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{}, &(0x7f00000002c0), &(0x7f0000000600)}, 0x20) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000f80), r2) sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)={0x24, r4, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_COMM_MODE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000050}, 0x4048014) r5 = syz_genetlink_get_family_id$net_dm(0x0, 0xffffffffffffffff) sendmsg$NET_DM_CMD_STOP(r3, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14, r5, 0x400, 0x70bd2c, 0x25dfdbff, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20000094) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000eaffffff349446de9a000000", @ANYRES32=0x0, @ANYRES32], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r7}, 0x10) ioctl$TIOCGPGRP(r1, 0x5437, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00'}, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$team(&(0x7f0000000780), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000000100)) 140.893778ms ago: executing program 0 (id=2869): r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0) mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r2, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0) socket(0x27, 0x2, 0x80) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r3, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) sendmmsg$inet(r3, &(0x7f0000003a40)=[{{&(0x7f0000000040)={0x2, 0x0, @empty}, 0x10, 0x0}}, {{&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, 0x0}}], 0x2, 0x0) ioctl$SG_IO(r1, 0x2285, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r5) sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x34, r6, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2}]}, 0x34}}, 0x0) r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000440)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000580)={0x44, r7, 0x1, 0x0, 0xfffffffe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7c}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x7f}]}, 0x44}, 0x1, 0x0, 0x0, 0x20044849}, 0x0) r9 = fcntl$dupfd(r0, 0x0, r1) write$sndseq(r9, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x40, 0x4}}], 0x38) r10 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$sndseq(r10, &(0x7f00000001c0)=[{0x5, 0x6, 0x0, 0x4, @time={0xd3d, 0x2}, {0xb0, 0xf7}, {0x8, 0xf}, @control={0x4, 0xfe, 0xd}}, {0x9, 0x34, 0xf9, 0x7, @tick=0x4, {0x9, 0x2}, {0x1, 0x7}, @control={0x9, 0x80000000, 0x8}}, {0x10, 0x81, 0x6, 0x7, @tick=0x2, {0x4, 0x5}, {0x5, 0x80}, @raw32={[0x1, 0xffffffff, 0x9]}}], 0x54) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffbd35010000000000840400000000000014000000100000009500000000000000db13d5d8b741f2cdaabc8383c8f56b8c2b848b00ea6553f304000000815dcf00c3ee7b042d1937ba52037fdedb2150e1918c30b6301f0212feb0cff9fc56357d81b2cc1a9e37d7b75c020b070000003eb22062bafaca036d9cc7db6671573e202e0a92ee4ba12b064981cc32d1ac0b9ecc8f604dcac2563e1c1e7624cc3b88b330ad416c4c1d8c60589b6045a4ffff50df4d34bc5847bebb943a84cb56956931ba9cc39c4a9deea5d77aa843a40000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 129.206239ms ago: executing program 3 (id=2870): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0) writev(r2, &(0x7f0000000440)=[{&(0x7f0000000040)="93d90400000300", 0x7}, {&(0x7f0000000140)="139776ff030370", 0x7}], 0x2) 74.158054ms ago: executing program 3 (id=2871): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = memfd_secret(0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0) preadv(r3, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0) 72.891844ms ago: executing program 2 (id=2872): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_TP_METER_CANCEL(r3, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x54, 0x0, 0x8, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1ff}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x2}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x801}, 0x14) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000180)={[{@user_xattr}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=") r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.self_freezing\x00', 0x275a, 0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000080)) write$binfmt_script(r4, &(0x7f0000000380), 0x208e24b) ioctl$EXT4_IOC_MIGRATE(r4, 0x6609) 44.254686ms ago: executing program 3 (id=2873): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) inotify_init1(0x0) 43.372676ms ago: executing program 3 (id=2874): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d0000008500000007000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18) syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000080000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000040008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0) connect$inet6(r1, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4) r4 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0) sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002fc0)=ANY=[], 0x2b08}}, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000380)=@ccm_128={{0x303}, "92eecaa98407c49f", "7930285eb54d33eeb97c53d9078c74df", "bd53559e", "ef4a6a5d3c211bfc"}, 0x28) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAPCLR(r5, 0x4b68, 0x0) 0s ago: executing program 0 (id=2875): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000006c0)={'vxcan1\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r3, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r3, &(0x7f0000000040)={&(0x7f0000000080)={0x1d, r1, 0x10000000}, 0x10, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001000000"], 0x48}}, 0x0) kernel console output (not intermixed with test programs): code=0x7ffc0000 [ 168.207274][ T29] audit: type=1326 audit(1729215111.613:13646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11632 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f616934dff9 code=0x7ffc0000 [ 168.290140][ T29] audit: type=1326 audit(1729215111.613:13647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11632 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f616934dff9 code=0x7ffc0000 [ 168.313931][ T29] audit: type=1326 audit(1729215111.613:13648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11632 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f616934dff9 code=0x7ffc0000 [ 168.341916][T11643] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.344049][T11644] loop3: detected capacity change from 0 to 512 [ 168.361184][T11645] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 168.372209][T11644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.384807][T11644] ext4 filesystem being mounted at /525/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 168.403518][T10887] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.413893][T11643] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.433368][T11644] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.2429: corrupted inode contents [ 168.445529][T11644] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #19: comm syz.3.2429: mark_inode_dirty error [ 168.457220][T11644] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.2429: corrupted inode contents [ 168.471486][T11644] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3006: inode #19: comm syz.3.2429: mark_inode_dirty error [ 168.483764][T11644] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3009: inode #19: comm syz.3.2429: mark inode dirty (error -117) [ 168.484911][T11643] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.496934][T11644] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117) [ 168.545192][ T4389] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.558498][T11643] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.574763][ T29] audit: type=1326 audit(1729215112.013:13649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11657 comm="syz.1.2436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 168.598413][ T29] audit: type=1326 audit(1729215112.013:13650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11657 comm="syz.1.2436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 168.622780][ T29] audit: type=1326 audit(1729215112.013:13651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11657 comm="syz.1.2436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 168.646470][ T29] audit: type=1326 audit(1729215112.013:13652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11657 comm="syz.1.2436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 168.710729][T11643] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.721297][T11643] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.731991][T11643] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.743514][T11643] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.171480][T11676] 9pnet_fd: Insufficient options for proto=fd [ 169.198866][T11680] pim6reg1: entered promiscuous mode [ 169.204198][T11680] pim6reg1: entered allmulticast mode [ 169.302785][T11686] loop4: detected capacity change from 0 to 2048 [ 169.327255][T11686] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.349058][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.378652][T11693] 9pnet_fd: Insufficient options for proto=fd [ 169.499178][T11706] loop2: detected capacity change from 0 to 2048 [ 169.510378][T11708] 9pnet_fd: Insufficient options for proto=fd [ 169.515039][T11706] ext4: Unknown parameter 'euid<00000000000000000000' [ 169.576609][T11720] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 169.715319][T11740] 9pnet_fd: Insufficient options for proto=fd [ 169.807562][T11745] loop4: detected capacity change from 0 to 512 [ 169.813999][T11745] EXT4-fs: Ignoring removed i_version option [ 169.827025][T11745] EXT4-fs error (device loop4): ext4_quota_enable:7053: comm syz.4.2468: inode #8454144: comm syz.4.2468: iget: illegal inode # [ 169.840787][T11745] EXT4-fs error (device loop4): ext4_quota_enable:7056: comm syz.4.2468: Bad quota inode: 8454144, type: 2 [ 169.852655][T11745] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 169.868321][T11745] EXT4-fs (loop4): mount failed [ 170.477518][T11766] __nla_validate_parse: 21 callbacks suppressed [ 170.477535][T11766] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2477'. [ 170.481418][T11764] loop1: detected capacity change from 0 to 2048 [ 170.509557][T11764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.532756][ T8649] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.664906][T11787] loop1: detected capacity change from 0 to 512 [ 170.673716][T11787] EXT4-fs: Ignoring removed i_version option [ 170.688204][T11787] EXT4-fs error (device loop1): ext4_quota_enable:7053: comm syz.1.2480: inode #8454144: comm syz.1.2480: iget: illegal inode # [ 170.702827][T11787] EXT4-fs error (device loop1): ext4_quota_enable:7056: comm syz.1.2480: Bad quota inode: 8454144, type: 2 [ 170.716124][T11787] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 170.732146][T11787] EXT4-fs (loop1): mount failed [ 170.739963][T11796] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2486'. [ 170.771585][T11800] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2488'. [ 170.817321][T11802] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 170.840132][T11809] loop1: detected capacity change from 0 to 512 [ 170.846638][T11809] EXT4-fs: Ignoring removed oldalloc option [ 170.854104][T11809] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm +}[@: Parent and EA inode have the same ino 15 [ 170.866977][T11809] EXT4-fs (loop1): Remounting filesystem read-only [ 170.873545][T11809] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 170.884545][T11809] EXT4-fs (loop1): 1 orphan inode deleted [ 170.891060][T11809] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.903183][T11809] SELinux: (dev loop1, type ext4) getxattr errno 5 [ 170.910658][T11809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.980215][T11820] loop1: detected capacity change from 0 to 128 [ 171.022445][T11824] 9pnet_fd: Insufficient options for proto=fd [ 171.041342][T11826] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2499'. [ 171.184884][T11835] loop4: detected capacity change from 0 to 512 [ 171.192074][T11835] EXT4-fs: Ignoring removed i_version option [ 171.206977][T11835] EXT4-fs error (device loop4): ext4_quota_enable:7053: comm syz.4.2501: inode #8454144: comm syz.4.2501: iget: illegal inode # [ 171.226062][T11835] EXT4-fs error (device loop4): ext4_quota_enable:7056: comm syz.4.2501: Bad quota inode: 8454144, type: 2 [ 171.239732][T11835] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 171.256319][T11835] EXT4-fs (loop4): mount failed [ 171.322898][T11839] loop4: detected capacity change from 0 to 2048 [ 171.337883][T11839] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.377352][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.407047][T11850] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2504'. [ 171.416403][T11850] FAULT_INJECTION: forcing a failure. [ 171.416403][T11850] name failslab, interval 1, probability 0, space 0, times 0 [ 171.429077][T11850] CPU: 1 UID: 0 PID: 11850 Comm: syz.4.2504 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 171.439877][T11850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 171.450007][T11850] Call Trace: [ 171.453288][T11850] [ 171.456222][T11850] dump_stack_lvl+0xf2/0x150 [ 171.460840][T11850] dump_stack+0x15/0x20 [ 171.465008][T11850] should_fail_ex+0x223/0x230 [ 171.469700][T11850] ? __alloc_skb+0x10b/0x310 [ 171.474316][T11850] should_failslab+0x8f/0xb0 [ 171.479088][T11850] kmem_cache_alloc_node_noprof+0x51/0x2b0 [ 171.484963][T11850] __alloc_skb+0x10b/0x310 [ 171.489498][T11850] netlink_alloc_large_skb+0xad/0xe0 [ 171.494793][T11850] netlink_sendmsg+0x3b4/0x6e0 [ 171.499579][T11850] ? __pfx_netlink_sendmsg+0x10/0x10 [ 171.504952][T11850] __sock_sendmsg+0x140/0x180 [ 171.509642][T11850] ____sys_sendmsg+0x312/0x410 [ 171.514449][T11850] __sys_sendmsg+0x1d9/0x270 [ 171.519145][T11850] __x64_sys_sendmsg+0x46/0x50 [ 171.523965][T11850] x64_sys_call+0x2689/0x2d60 [ 171.528671][T11850] do_syscall_64+0xc9/0x1c0 [ 171.533232][T11850] ? clear_bhb_loop+0x55/0xb0 [ 171.538040][T11850] ? clear_bhb_loop+0x55/0xb0 [ 171.542816][T11850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.548733][T11850] RIP: 0033:0x7f3614dedff9 [ 171.553149][T11850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.572950][T11850] RSP: 002b:00007f3613a61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 171.581375][T11850] RAX: ffffffffffffffda RBX: 00007f3614fa5f80 RCX: 00007f3614dedff9 [ 171.589366][T11850] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000005 [ 171.597412][T11850] RBP: 00007f3613a61090 R08: 0000000000000000 R09: 0000000000000000 [ 171.605433][T11850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 171.613398][T11850] R13: 0000000000000000 R14: 00007f3614fa5f80 R15: 00007fff21c15748 [ 171.621399][T11850] [ 171.710393][T11809] +}[@ invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000 [ 171.724185][T11809] CPU: 1 UID: 0 PID: 11809 Comm: +}[@ Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 171.734452][T11809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 171.744575][T11809] Call Trace: [ 171.747857][T11809] [ 171.750790][T11809] dump_stack_lvl+0xf2/0x150 [ 171.755498][T11809] dump_stack+0x15/0x20 [ 171.759659][T11809] dump_header+0x83/0x2d0 [ 171.764003][T11809] oom_kill_process+0x341/0x4c0 [ 171.768884][T11809] out_of_memory+0x9af/0xbe0 [ 171.773500][T11809] ? css_next_descendant_pre+0x11c/0x140 [ 171.779242][T11809] mem_cgroup_out_of_memory+0x13e/0x190 [ 171.784864][T11809] try_charge_memcg+0x51b/0x810 [ 171.789743][T11809] obj_cgroup_charge_pages+0xbd/0x1a0 [ 171.791575][T11863] 9pnet_fd: Insufficient options for proto=fd [ 171.795187][T11809] __memcg_kmem_charge_page+0x9d/0x170 [ 171.806850][T11809] __alloc_pages_noprof+0x1bc/0x340 [ 171.812069][T11809] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 171.817469][T11809] alloc_pages_noprof+0xe1/0x100 [ 171.822462][T11809] __vmalloc_node_range_noprof+0x72e/0xec0 [ 171.828327][T11809] __kvmalloc_node_noprof+0x121/0x170 [ 171.833804][T11809] ? ip_set_alloc+0x1f/0x30 [ 171.838324][T11809] ip_set_alloc+0x1f/0x30 [ 171.842676][T11809] hash_netiface_create+0x273/0x730 [ 171.845440][T11869] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 171.847938][T11809] ? __nla_parse+0x40/0x60 [ 171.847961][T11809] ? __pfx_hash_netiface_create+0x10/0x10 [ 171.866653][T11809] ip_set_create+0x359/0x8a0 [ 171.871254][T11809] ? memchr+0x21/0x50 [ 171.875250][T11809] ? __nla_parse+0x40/0x60 [ 171.879672][T11809] nfnetlink_rcv_msg+0x4a9/0x570 [ 171.884635][T11809] netlink_rcv_skb+0x12c/0x230 [ 171.889547][T11809] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 171.895068][T11809] nfnetlink_rcv+0x16c/0x15c0 [ 171.899738][T11809] ? kmem_cache_free+0xdc/0x2d0 [ 171.904648][T11809] ? nlmon_xmit+0x51/0x60 [ 171.909017][T11809] ? __kfree_skb+0x102/0x150 [ 171.913668][T11809] ? consume_skb+0x49/0x160 [ 171.918190][T11809] ? nlmon_xmit+0x51/0x60 [ 171.922555][T11809] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 171.927832][T11809] ? __dev_queue_xmit+0xb4c/0x2040 [ 171.932953][T11809] ? ref_tracker_free+0x3a5/0x410 [ 171.938042][T11809] ? __dev_queue_xmit+0x161/0x2040 [ 171.943142][T11809] ? ref_tracker_alloc+0x1f5/0x2f0 [ 171.948272][T11809] ? __netlink_deliver_tap+0x495/0x4c0 [ 171.954378][T11809] netlink_unicast+0x599/0x670 [ 171.959130][T11809] netlink_sendmsg+0x5cc/0x6e0 [ 171.963889][T11809] ? __pfx_netlink_sendmsg+0x10/0x10 [ 171.969173][T11809] __sock_sendmsg+0x140/0x180 [ 171.973847][T11809] ____sys_sendmsg+0x312/0x410 [ 171.978623][T11809] __sys_sendmsg+0x1d9/0x270 [ 171.983221][T11809] ? futex_wait+0x18e/0x1c0 [ 171.987768][T11809] __x64_sys_sendmsg+0x46/0x50 [ 171.992531][T11809] x64_sys_call+0x2689/0x2d60 [ 171.997204][T11809] do_syscall_64+0xc9/0x1c0 [ 172.001692][T11809] ? clear_bhb_loop+0x55/0xb0 [ 172.006437][T11809] ? clear_bhb_loop+0x55/0xb0 [ 172.011219][T11809] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.017203][T11809] RIP: 0033:0x7f5f9c4bdff9 [ 172.021657][T11809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.041256][T11809] RSP: 002b:00007f5f9b131038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 172.049694][T11809] RAX: ffffffffffffffda RBX: 00007f5f9c675f80 RCX: 00007f5f9c4bdff9 [ 172.057659][T11809] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004 [ 172.065688][T11809] RBP: 00007f5f9c530296 R08: 0000000000000000 R09: 0000000000000000 [ 172.073725][T11809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.081704][T11809] R13: 0000000000000000 R14: 00007f5f9c675f80 R15: 00007ffc1443c8a8 [ 172.089743][T11809] [ 172.092840][T11809] memory: usage 307200kB, limit 307200kB, failcnt 4633 [ 172.100517][T11809] memory+swap: usage 307524kB, limit 9007199254740988kB, failcnt 0 [ 172.108617][T11809] kmem: usage 306792kB, limit 9007199254740988kB, failcnt 0 [ 172.115955][T11809] Memory cgroup stats for /syz1: [ 172.116657][T11809] cache 413696 [ 172.125097][T11809] rss 0 [ 172.127964][T11809] shmem 0 [ 172.130899][T11809] mapped_file 393216 [ 172.134793][T11809] dirty 413696 [ 172.138402][T11809] writeback 0 [ 172.141860][T11809] workingset_refault_anon 255 [ 172.146624][T11809] workingset_refault_file 571 [ 172.151295][T11809] swap 331776 [ 172.154602][T11809] swapcached 4096 [ 172.158299][T11809] pgpgin 136419 [ 172.161773][T11809] pgpgout 136317 [ 172.165316][T11809] pgfault 164373 [ 172.168880][T11809] pgmajfault 160 [ 172.172498][T11809] inactive_anon 0 [ 172.176211][T11809] active_anon 4096 [ 172.179979][T11809] inactive_file 0 [ 172.183609][T11809] active_file 413696 [ 172.187562][T11809] unevictable 0 [ 172.191063][T11809] hierarchical_memory_limit 314572800 [ 172.196496][T11809] hierarchical_memsw_limit 9223372036854771712 [ 172.202644][T11809] total_cache 413696 [ 172.206628][T11809] total_rss 0 [ 172.209913][T11809] total_shmem 0 [ 172.213368][T11809] total_mapped_file 393216 [ 172.217063][T11873] loop3: detected capacity change from 0 to 512 [ 172.217803][T11809] total_dirty 413696 [ 172.224347][T11873] EXT4-fs: Ignoring removed i_version option [ 172.228047][T11809] total_writeback 0 [ 172.237928][T11809] total_workingset_refault_anon 255 [ 172.243172][T11809] total_workingset_refault_file 571 [ 172.246660][T11873] EXT4-fs error (device loop3): ext4_quota_enable:7053: comm syz.3.2514: inode #8454144: comm syz.3.2514: iget: illegal inode # [ 172.248375][T11809] total_swap 331776 [ 172.263151][T11873] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.2514: Bad quota inode: 8454144, type: 2 [ 172.265316][T11809] total_swapcached 4096 [ 172.265326][T11809] total_pgpgin 136419 [ 172.277709][T11873] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 172.280867][T11809] total_pgpgout 136317 [ 172.284927][T11873] EXT4-fs (loop3): mount failed [ 172.299922][T11809] total_pgfault 164373 [ 172.299932][T11809] total_pgmajfault 160 [ 172.299941][T11809] total_inactive_anon 0 [ 172.321326][T11809] total_active_anon 4096 [ 172.325565][T11809] total_inactive_file 0 [ 172.329737][T11809] total_active_file 413696 [ 172.334268][T11809] total_unevictable 0 [ 172.338308][T11809] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2492,pid=11808,uid=0 [ 172.353314][T11809] Memory cgroup out of memory: Killed process 11808 (syz.1.2492) total-vm:97356kB, anon-rss:612kB, file-rss:15776kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 172.369534][T11878] loop3: detected capacity change from 0 to 2048 [ 172.433789][T11878] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 172.464579][ T4389] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.518991][T11885] loop2: detected capacity change from 0 to 2048 [ 172.611771][T11885] loop2: p2 p3 p7 [ 172.644834][T11897] loop4: detected capacity change from 0 to 512 [ 172.645153][T11898] loop3: detected capacity change from 0 to 128 [ 172.668551][T11897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 172.687129][T11898] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 172.706354][T11897] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 172.727537][T11898] ext4 filesystem being mounted at /546/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 172.742246][T11897] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.2523: corrupted inode contents [ 172.764161][T11897] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #19: comm syz.4.2523: mark_inode_dirty error [ 172.784779][T11897] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.2523: corrupted inode contents [ 172.804946][T11897] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3006: inode #19: comm syz.4.2523: mark_inode_dirty error [ 172.818914][T11897] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3009: inode #19: comm syz.4.2523: mark inode dirty (error -117) [ 172.832980][T11897] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117) [ 172.859833][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.878935][T11882] syz.2.2517 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 172.890024][T11882] CPU: 0 UID: 0 PID: 11882 Comm: syz.2.2517 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 172.900791][T11882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 172.910892][T11882] Call Trace: [ 172.914178][T11882] [ 172.917109][T11882] dump_stack_lvl+0xf2/0x150 [ 172.921736][T11882] dump_stack+0x15/0x20 [ 172.925891][T11882] dump_header+0x83/0x2d0 [ 172.930299][T11882] oom_kill_process+0x341/0x4c0 [ 172.935157][T11882] out_of_memory+0x9af/0xbe0 [ 172.939793][T11882] ? css_next_descendant_pre+0x11c/0x140 [ 172.945481][T11882] mem_cgroup_out_of_memory+0x13e/0x190 [ 172.951178][T11882] try_charge_memcg+0x51b/0x810 [ 172.956303][T11882] charge_memcg+0x50/0xc0 [ 172.960630][T11882] mem_cgroup_swapin_charge_folio+0xd0/0x150 [ 172.966703][T11882] __read_swap_cache_async+0x236/0x480 [ 172.972166][T11882] swap_cluster_readahead+0x276/0x3f0 [ 172.977700][T11882] swapin_readahead+0xe4/0x6f0 [ 172.982484][T11882] ? __filemap_get_folio+0x420/0x5b0 [ 172.987883][T11882] ? swap_cache_get_folio+0x77/0x210 [ 172.993169][T11882] do_swap_page+0x2af/0x23e0 [ 172.997859][T11882] ? hrtimer_try_to_cancel+0x106/0x1d0 [ 173.003320][T11882] ? __rcu_read_lock+0x36/0x50 [ 173.008086][T11882] ? pte_offset_map_nolock+0x124/0x1d0 [ 173.013599][T11882] handle_mm_fault+0x8c5/0x2a80 [ 173.018455][T11882] exc_page_fault+0x3b9/0x650 [ 173.023160][T11882] asm_exc_page_fault+0x26/0x30 [ 173.028042][T11882] RIP: 0033:0x7f41c05a00e8 [ 173.032449][T11882] Code: 3c 24 48 89 4c 24 18 e8 c6 57 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 1f 58 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 173.052057][T11882] RSP: 002b:00007ffefd5be640 EFLAGS: 00010293 [ 173.058135][T11882] RAX: 0000000000000000 RBX: 00007f41c0725f80 RCX: 00007f41c05a00e5 [ 173.066251][T11882] RDX: 00007ffefd5be680 RSI: 0000000000000000 RDI: 0000000000000000 [ 173.074216][T11882] RBP: 00007f41c0727a80 R08: 0000000000000000 R09: 7fffffffffffffff [ 173.082181][T11882] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000002a4b8 [ 173.090148][T11882] R13: 00007ffefd5be7b0 R14: 00000000000000fa R15: ffffffffffffffff [ 173.098167][T11882] [ 173.101611][T11882] memory: usage 307200kB, limit 307200kB, failcnt 2493 [ 173.108911][T11882] memory+swap: usage 308424kB, limit 9007199254740988kB, failcnt 0 [ 173.116966][T11882] kmem: usage 297420kB, limit 9007199254740988kB, failcnt 0 [ 173.124260][T11882] Memory cgroup stats for /syz2: [ 173.124714][T11882] cache 16384 [ 173.132982][T11882] rss 4096 [ 173.136129][T11882] shmem 0 [ 173.139097][T11882] mapped_file 16384 [ 173.142894][T11882] dirty 16384 [ 173.146199][T11882] writeback 4096 [ 173.149866][T11882] workingset_refault_anon 1131 [ 173.154616][T11882] workingset_refault_file 511 [ 173.159304][T11882] swap 1257472 [ 173.162673][T11882] swapcached 4096 [ 173.166340][T11882] pgpgin 153411 [ 173.169906][T11882] pgpgout 153405 [ 173.173475][T11882] pgfault 182558 [ 173.177127][T11882] pgmajfault 225 [ 173.180705][T11882] inactive_anon 0 [ 173.184352][T11882] active_anon 4096 [ 173.188110][T11882] inactive_file 0 [ 173.191768][T11882] active_file 20480 [ 173.195629][T11882] unevictable 0 [ 173.199138][T11882] hierarchical_memory_limit 314572800 [ 173.204549][T11882] hierarchical_memsw_limit 9223372036854771712 [ 173.210736][T11882] total_cache 16384 [ 173.214598][T11882] total_rss 4096 [ 173.218227][T11882] total_shmem 0 [ 173.221711][T11882] total_mapped_file 16384 [ 173.226048][T11882] total_dirty 16384 [ 173.229880][T11882] total_writeback 4096 [ 173.234001][T11882] total_workingset_refault_anon 1131 [ 173.239313][T11882] total_workingset_refault_file 511 [ 173.244501][T11882] total_swap 1257472 [ 173.248473][T11882] total_swapcached 4096 [ 173.252621][T11882] total_pgpgin 153411 [ 173.256624][T11882] total_pgpgout 153405 [ 173.260689][T11882] total_pgfault 182558 [ 173.264752][T11882] total_pgmajfault 225 [ 173.268849][T11882] total_inactive_anon 0 [ 173.273003][T11882] total_active_anon 4096 [ 173.277259][T11882] total_inactive_file 0 [ 173.281415][T11882] total_active_file 20480 [ 173.285908][T11882] total_unevictable 0 [ 173.289924][T11882] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2517,pid=11882,uid=0 [ 173.304644][T11882] Memory cgroup out of memory: Killed process 11882 (syz.2.2517) total-vm:87116kB, anon-rss:612kB, file-rss:16296kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000 [ 173.350902][T11910] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 173.367298][T11914] 9pnet_fd: Insufficient options for proto=fd [ 173.398141][ T29] kauditd_printk_skb: 623 callbacks suppressed [ 173.398155][ T29] audit: type=1326 audit(1729215116.843:14276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.428878][ T29] audit: type=1326 audit(1729215116.843:14277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.452565][ T29] audit: type=1326 audit(1729215116.843:14278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.476157][ T29] audit: type=1326 audit(1729215116.843:14279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.494474][T11921] loop1: detected capacity change from 0 to 8192 [ 173.499715][ T29] audit: type=1326 audit(1729215116.843:14280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.506377][T11921] vfat: Unknown parameter '0x00007f5f9b0fe000' [ 173.529927][ T29] audit: type=1326 audit(1729215116.843:14281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.529954][ T29] audit: type=1326 audit(1729215116.843:14282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.583388][ T29] audit: type=1326 audit(1729215116.843:14283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.606932][ T29] audit: type=1326 audit(1729215116.843:14284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.630518][ T29] audit: type=1326 audit(1729215116.843:14285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 173.654537][ T4389] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 173.672772][T11925] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2533'. [ 173.736840][T11928] loop1: detected capacity change from 0 to 2048 [ 173.747947][T11929] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2535'. [ 173.784876][T11928] loop1: p2 p3 p7 [ 173.993056][T11937] pim6reg1: entered promiscuous mode [ 173.998406][T11937] pim6reg1: entered allmulticast mode [ 174.075641][T11922] syz.1.2534 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 174.086711][T11922] CPU: 0 UID: 0 PID: 11922 Comm: syz.1.2534 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 174.097475][T11922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 174.107567][T11922] Call Trace: [ 174.110834][T11922] [ 174.113763][T11922] dump_stack_lvl+0xf2/0x150 [ 174.118348][T11922] dump_stack+0x15/0x20 [ 174.122551][T11922] dump_header+0x83/0x2d0 [ 174.126883][T11922] oom_kill_process+0x341/0x4c0 [ 174.131879][T11922] out_of_memory+0x9af/0xbe0 [ 174.136650][T11922] ? css_next_descendant_pre+0x11c/0x140 [ 174.142407][T11922] mem_cgroup_out_of_memory+0x13e/0x190 [ 174.148061][T11922] try_charge_memcg+0x51b/0x810 [ 174.152916][T11922] charge_memcg+0x50/0xc0 [ 174.157248][T11922] mem_cgroup_swapin_charge_folio+0xd0/0x150 [ 174.163285][T11922] __read_swap_cache_async+0x236/0x480 [ 174.168749][T11922] swap_cluster_readahead+0x276/0x3f0 [ 174.174190][T11922] swapin_readahead+0xe4/0x6f0 [ 174.178961][T11922] ? __filemap_get_folio+0x420/0x5b0 [ 174.184301][T11922] ? swap_cache_get_folio+0x77/0x210 [ 174.189615][T11922] do_swap_page+0x2af/0x23e0 [ 174.194247][T11922] ? __rcu_read_lock+0x36/0x50 [ 174.199020][T11922] ? pte_offset_map_nolock+0x124/0x1d0 [ 174.204479][T11922] handle_mm_fault+0x8c5/0x2a80 [ 174.209337][T11922] exc_page_fault+0x3b9/0x650 [ 174.214070][T11922] asm_exc_page_fault+0x26/0x30 [ 174.218931][T11922] RIP: 0033:0x7f5f9c391ab8 [ 174.223349][T11922] Code: 31 d2 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d e8 5f 2e 00 00 0f 8e 99 fd ff ff e8 51 e4 fe ff 49 39 c4 72 64 0f 1f 40 00 <69> 3d d6 3b e1 00 e8 03 00 00 48 8d 1d b7 44 2e 00 e8 82 c4 12 00 [ 174.243043][T11922] RSP: 002b:00007ffc1443ca10 EFLAGS: 00010202 [ 174.249099][T11922] RAX: 000000000002a784 RBX: 00007f5f9c677a80 RCX: 000000000002a3c8 [ 174.257147][T11922] RDX: 00000000000003bc RSI: 00007ffc1443c9f0 RDI: 0000000000000001 [ 174.265110][T11922] RBP: 00007f5f9c677a80 R08: 0000000038febe89 R09: 7fffffffffffffff [ 174.273072][T11922] R10: 00007f5f9c33a0b8 R11: 00007f5f9c33a080 R12: 000000000002a997 [ 174.281032][T11922] R13: 00007ffc1443cb10 R14: 00000000000000fa R15: ffffffffffffffff [ 174.288999][T11922] [ 174.292458][T11922] memory: usage 307200kB, limit 307200kB, failcnt 5086 [ 174.299356][T11922] memory+swap: usage 297508kB, limit 9007199254740988kB, failcnt 0 [ 174.307347][T11922] kmem: usage 281388kB, limit 9007199254740988kB, failcnt 0 [ 174.314635][T11922] Memory cgroup stats for /syz1: [ 174.319578][T11922] cache 397312 [ 174.327979][T11922] rss 4096 [ 174.331006][T11922] shmem 0 [ 174.333930][T11922] mapped_file 397312 [ 174.337842][T11922] dirty 397312 [ 174.341212][T11922] writeback 0 [ 174.344486][T11922] workingset_refault_anon 276 [ 174.349330][T11922] workingset_refault_file 619 [ 174.353996][T11922] swap 1257472 [ 174.357548][T11922] swapcached 8192 [ 174.361202][T11922] pgpgin 138039 [ 174.364650][T11922] pgpgout 137940 [ 174.368203][T11922] pgfault 166294 [ 174.371732][T11922] pgmajfault 176 [ 174.375269][T11922] inactive_anon 0 [ 174.378987][T11922] active_anon 4096 [ 174.382713][T11922] inactive_file 0 [ 174.386370][T11922] active_file 397312 [ 174.390306][T11922] unevictable 0 [ 174.393822][T11922] hierarchical_memory_limit 314572800 [ 174.399205][T11922] hierarchical_memsw_limit 9223372036854771712 [ 174.405365][T11922] total_cache 397312 [ 174.409307][T11922] total_rss 4096 [ 174.412842][T11922] total_shmem 0 [ 174.416320][T11922] total_mapped_file 397312 [ 174.420724][T11922] total_dirty 397312 [ 174.424609][T11922] total_writeback 0 [ 174.428439][T11922] total_workingset_refault_anon 276 [ 174.433715][T11922] total_workingset_refault_file 619 [ 174.438930][T11922] total_swap 1257472 [ 174.442818][T11922] total_swapcached 8192 [ 174.446996][T11922] total_pgpgin 138039 [ 174.450987][T11922] total_pgpgout 137940 [ 174.455101][T11922] total_pgfault 166294 [ 174.459375][T11922] total_pgmajfault 176 [ 174.463524][T11922] total_inactive_anon 0 [ 174.467770][T11922] total_active_anon 4096 [ 174.468391][T11941] 9pnet_fd: Insufficient options for proto=fd [ 174.472224][T11922] total_inactive_file 0 [ 174.482321][T11922] total_active_file 397312 [ 174.487007][T11922] total_unevictable 0 [ 174.491107][T11922] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2534,pid=11922,uid=0 [ 174.506052][T11922] Memory cgroup out of memory: Killed process 11922 (syz.1.2534) total-vm:89164kB, anon-rss:612kB, file-rss:16328kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000 [ 174.540884][T11943] loop4: detected capacity change from 0 to 512 [ 174.559652][T11943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.573204][T11943] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 174.588799][T11943] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.2542: corrupted inode contents [ 174.591533][T11953] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 174.601049][T11943] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #19: comm syz.4.2542: mark_inode_dirty error [ 174.621076][T11943] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.2542: corrupted inode contents [ 174.633676][T11943] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3006: inode #19: comm syz.4.2542: mark_inode_dirty error [ 174.645895][T11943] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3009: inode #19: comm syz.4.2542: mark inode dirty (error -117) [ 174.658651][T11943] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117) [ 174.679354][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.712280][T11960] loop1: detected capacity change from 0 to 2048 [ 174.727056][T11960] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 174.732764][T11964] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2549'. [ 174.755488][ T8649] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.775316][T11966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 174.783872][T11966] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 174.831921][T11964] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2549'. [ 175.236275][T11974] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2552'. [ 175.345574][T11990] loop3: detected capacity change from 0 to 512 [ 175.352183][T11990] EXT4-fs: Ignoring removed i_version option [ 175.367170][T11990] EXT4-fs error (device loop3): ext4_quota_enable:7053: comm syz.3.2560: inode #8454144: comm syz.3.2560: iget: illegal inode # [ 175.380668][T11990] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.2560: Bad quota inode: 8454144, type: 2 [ 175.392367][T11990] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 175.408901][T11990] EXT4-fs (loop3): mount failed [ 175.481382][T12001] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 176.005405][T12015] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2570'. [ 176.015823][T12015] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2570'. [ 176.033367][T12018] loop4: detected capacity change from 0 to 1024 [ 176.045831][T12015] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2570'. [ 176.053023][T12018] EXT4-fs: Ignoring removed orlov option [ 176.054868][T12015] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2570'. [ 176.060580][T12018] EXT4-fs: Ignoring removed nomblk_io_submit option [ 176.077602][T12018] EXT4-fs (loop4): blocks per group (132864) and clusters per group (8192) inconsistent [ 176.098725][T12015] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2570'. [ 176.107944][T12015] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2570'. [ 176.137055][T12026] FAULT_INJECTION: forcing a failure. [ 176.137055][T12026] name failslab, interval 1, probability 0, space 0, times 0 [ 176.149790][T12026] CPU: 1 UID: 0 PID: 12026 Comm: syz.4.2574 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 176.160664][T12026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 176.170805][T12026] Call Trace: [ 176.174074][T12026] [ 176.177001][T12026] dump_stack_lvl+0xf2/0x150 [ 176.181592][T12026] dump_stack+0x15/0x20 [ 176.185761][T12026] should_fail_ex+0x223/0x230 [ 176.190443][T12026] ? audit_log_start+0x34c/0x6b0 [ 176.195409][T12026] should_failslab+0x8f/0xb0 [ 176.199997][T12026] kmem_cache_alloc_noprof+0x4c/0x290 [ 176.205371][T12026] audit_log_start+0x34c/0x6b0 [ 176.210128][T12026] ? kmem_cache_free+0xdc/0x2d0 [ 176.214984][T12026] audit_seccomp+0x4b/0x130 [ 176.219545][T12026] __seccomp_filter+0x6fa/0x1180 [ 176.224485][T12026] ? proc_fail_nth_write+0x12a/0x150 [ 176.229840][T12026] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 176.235476][T12026] ? radix_tree_lookup+0x115/0x150 [ 176.240700][T12026] ? idr_find+0x2c/0x40 [ 176.244850][T12026] ? __rcu_read_unlock+0x4e/0x70 [ 176.249836][T12026] __secure_computing+0x9f/0x1c0 [ 176.254779][T12026] syscall_trace_enter+0xd1/0x1f0 [ 176.259803][T12026] ? fpregs_assert_state_consistent+0x83/0xa0 [ 176.265907][T12026] do_syscall_64+0xaa/0x1c0 [ 176.270410][T12026] ? clear_bhb_loop+0x55/0xb0 [ 176.275091][T12026] ? clear_bhb_loop+0x55/0xb0 [ 176.279837][T12026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.285832][T12026] RIP: 0033:0x7f3614deca3c [ 176.290245][T12026] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 176.309944][T12026] RSP: 002b:00007f3613a61030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 176.318349][T12026] RAX: ffffffffffffffda RBX: 00007f3614fa5f80 RCX: 00007f3614deca3c [ 176.326313][T12026] RDX: 000000000000000f RSI: 00007f3613a610a0 RDI: 0000000000000006 [ 176.334347][T12026] RBP: 00007f3613a61090 R08: 0000000000000000 R09: 0000000000000000 [ 176.342385][T12026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 176.350388][T12026] R13: 0000000000000000 R14: 00007f3614fa5f80 R15: 00007fff21c15748 [ 176.358405][T12026] [ 176.397243][T12032] netlink: 'syz.4.2577': attribute type 10 has an invalid length. [ 176.409111][T12031] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2575'. [ 176.428179][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.435633][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.443052][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.450480][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.457900][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.465294][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.472793][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.480197][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.487669][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.495046][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.502521][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.509931][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.517347][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.524735][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.532155][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.539562][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.547040][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.554422][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.561971][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.569438][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.576886][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.584266][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.591854][ T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 176.593953][T12037] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2578'. [ 176.660391][ T8] hid-generic 0000:0000:0000.0004: hidraw0: HID v1004.00 Device [syz1] on syz0 [ 176.694783][T12043] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 176.899585][T12053] loop3: detected capacity change from 0 to 512 [ 176.906564][T12053] EXT4-fs: Ignoring removed i_version option [ 176.917055][T12053] EXT4-fs error (device loop3): ext4_quota_enable:7053: comm syz.3.2584: inode #8454144: comm syz.3.2584: iget: illegal inode # [ 176.930516][T12053] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.2584: Bad quota inode: 8454144, type: 2 [ 176.942192][T12053] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 176.957578][T12053] EXT4-fs (loop3): mount failed [ 177.051022][T12059] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2585'. [ 177.226022][T12065] loop4: detected capacity change from 0 to 2048 [ 177.237458][T12065] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 177.264617][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.289189][T12076] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2590'. [ 177.859419][T12088] pim6reg1: entered promiscuous mode [ 177.864741][T12088] pim6reg1: entered allmulticast mode [ 178.049813][T12106] 9pnet_fd: Insufficient options for proto=fd [ 178.107607][T12094] chnl_net:caif_netlink_parms(): no params data found [ 178.124660][T12120] loop3: detected capacity change from 0 to 2048 [ 178.160334][T12120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.162860][T12094] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.179556][T12094] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.186861][T12094] bridge_slave_0: entered allmulticast mode [ 178.198668][T12094] bridge_slave_0: entered promiscuous mode [ 178.210518][T12094] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.217876][T12094] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.225420][T12094] bridge_slave_1: entered allmulticast mode [ 178.231940][ T4389] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.232447][T12094] bridge_slave_1: entered promiscuous mode [ 178.267911][T12094] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.282846][T12094] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 178.310869][T12094] team0: Port device team_slave_0 added [ 178.316852][T12138] 9pnet_fd: Insufficient options for proto=fd [ 178.325944][T12094] team0: Port device team_slave_1 added [ 178.359806][T12094] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 178.366839][T12094] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.392785][T12094] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 178.411455][ T29] kauditd_printk_skb: 159 callbacks suppressed [ 178.411470][ T29] audit: type=1326 audit(1729215121.853:14443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f9c4b4fa7 code=0x7ffc0000 [ 178.424948][T12148] loop3: detected capacity change from 0 to 2048 [ 178.441269][ T29] audit: type=1326 audit(1729215121.853:14444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f9c459959 code=0x7ffc0000 [ 178.470997][ T29] audit: type=1326 audit(1729215121.853:14445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 178.473054][T12094] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 178.496367][ T29] audit: type=1326 audit(1729215121.943:14446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f9c4b4fa7 code=0x7ffc0000 [ 178.501590][T12094] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.525129][ T29] audit: type=1326 audit(1729215121.943:14447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f9c459959 code=0x7ffc0000 [ 178.550975][T12094] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 178.574318][T12148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.597083][ T29] audit: type=1326 audit(1729215121.943:14448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 178.623760][ T29] audit: type=1326 audit(1729215122.003:14449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f9c4b4fa7 code=0x7ffc0000 [ 178.647326][ T29] audit: type=1326 audit(1729215122.003:14450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f9c459959 code=0x7ffc0000 [ 178.670975][ T29] audit: type=1326 audit(1729215122.003:14451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 178.694569][ T29] audit: type=1326 audit(1729215122.003:14452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12114 comm="syz.1.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f9c4b4fa7 code=0x7ffc0000 [ 178.700469][ T4389] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.735327][T12094] hsr_slave_0: entered promiscuous mode [ 178.741475][T12094] hsr_slave_1: entered promiscuous mode [ 178.747317][T12094] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 178.754856][T12094] Cannot create hsr debugfs directory [ 178.810756][T12094] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.858340][T12094] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.925631][T12094] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.948651][T12166] 9pnet_fd: Insufficient options for proto=fd [ 178.973160][T12170] loop3: detected capacity change from 0 to 512 [ 178.983906][T12094] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.998302][T12170] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 179.012825][T12170] ext4 filesystem being mounted at /589/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 179.015549][T12181] netlink: 'syz.1.2628': attribute type 4 has an invalid length. [ 179.036893][ T4389] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.078543][T12094] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 179.088172][T12094] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 179.098681][T12094] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 179.108246][T12094] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 179.161090][T12094] 8021q: adding VLAN 0 to HW filter on device bond0 [ 179.173623][T12094] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.180907][T12193] loop3: detected capacity change from 0 to 2048 [ 179.185126][ T7275] bridge0: port 1(bridge_slave_0) entered blocking state [ 179.194390][ T7275] bridge0: port 1(bridge_slave_0) entered forwarding state [ 179.206912][ T1699] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.214024][ T1699] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.233558][T12094] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 179.244022][T12094] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 179.318254][T12193] loop3: p2 p3 p7 [ 179.499000][T12094] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.539645][T12210] loop3: detected capacity change from 0 to 512 [ 179.563514][T12210] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent [ 179.601598][T12094] veth0_vlan: entered promiscuous mode [ 179.610563][T12094] veth1_vlan: entered promiscuous mode [ 179.630526][T12094] veth0_macvtap: entered promiscuous mode [ 179.647402][T12094] veth1_macvtap: entered promiscuous mode [ 179.669915][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.680564][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.690550][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.701185][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.711243][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.721693][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.731627][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.742131][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.754342][T12094] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 179.772871][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.783394][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.793315][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.803755][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.813596][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.824066][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.833893][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.844317][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.868490][T12222] loop4: detected capacity change from 0 to 1024 [ 179.875243][T12222] EXT4-fs: Ignoring removed bh option [ 179.949787][T12094] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 179.962929][T12094] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.971727][T12094] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.980651][T12094] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.989416][T12094] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.007090][T12222] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869) [ 180.016762][T12222] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 180.028146][T12222] EXT4-fs (loop4): invalid journal inode [ 180.033901][T12222] EXT4-fs (loop4): can't get journal size [ 180.067214][T12222] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #2: comm syz.4.2639: blocks 48-48 from inode overlap system zone [ 180.081562][T12222] EXT4-fs (loop4): failed to initialize system zone (-117) [ 180.088950][T12222] EXT4-fs (loop4): mount failed [ 180.092239][T12228] loop1: detected capacity change from 0 to 2048 [ 180.109151][T12228] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.133531][ T8649] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.139648][T12233] loop0: detected capacity change from 0 to 2048 [ 180.157337][T12233] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.183258][T12094] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.243165][T12239] FAULT_INJECTION: forcing a failure. [ 180.243165][T12239] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.256429][T12239] CPU: 0 UID: 0 PID: 12239 Comm: syz.1.2643 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 180.267201][T12239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 180.277346][T12239] Call Trace: [ 180.280625][T12239] [ 180.283556][T12239] dump_stack_lvl+0xf2/0x150 [ 180.288194][T12239] dump_stack+0x15/0x20 [ 180.292351][T12239] should_fail_ex+0x223/0x230 [ 180.297037][T12239] should_fail+0xb/0x10 [ 180.301259][T12239] should_fail_usercopy+0x1a/0x20 [ 180.306344][T12239] _copy_to_user+0x1e/0xa0 [ 180.310757][T12239] copy_siginfo_to_user+0x24/0x90 [ 180.315780][T12239] x64_setup_rt_frame+0x29a/0x570 [ 180.320831][T12239] arch_do_signal_or_restart+0x287/0x4b0 [ 180.326539][T12239] syscall_exit_to_user_mode+0x59/0x130 [ 180.332102][T12239] do_syscall_64+0xd6/0x1c0 [ 180.336662][T12239] ? clear_bhb_loop+0x55/0xb0 [ 180.341355][T12239] ? clear_bhb_loop+0x55/0xb0 [ 180.346080][T12239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.352019][T12239] RIP: 0033:0x7f5f9c4bdff7 [ 180.356428][T12239] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 [ 180.376122][T12239] RSP: 002b:00007f5f9b131038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 180.384539][T12239] RAX: 0000000000000013 RBX: 00007f5f9c675f80 RCX: 00007f5f9c4bdff9 [ 180.392545][T12239] RDX: 0000000000000001 RSI: 00000000200018c0 RDI: 0000000000000007 [ 180.400511][T12239] RBP: 00007f5f9b131090 R08: 0000000000000000 R09: 0000000000000000 [ 180.408472][T12239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.416521][T12239] R13: 0000000000000000 R14: 00007f5f9c675f80 R15: 00007ffc1443c8a8 [ 180.424524][T12239] [ 180.570931][T12255] loop3: detected capacity change from 0 to 512 [ 180.578457][T12255] EXT4-fs: Ignoring removed i_version option [ 180.598569][T12255] EXT4-fs error (device loop3): ext4_quota_enable:7053: comm syz.3.2645: inode #8454144: comm syz.3.2645: iget: illegal inode # [ 180.612005][T12255] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.2645: Bad quota inode: 8454144, type: 2 [ 180.624672][T12255] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 180.640346][T12255] EXT4-fs (loop3): mount failed [ 180.681345][T12270] netlink: 'syz.4.2655': attribute type 4 has an invalid length. [ 180.697757][T12270] loop4: detected capacity change from 0 to 512 [ 180.704373][T12270] EXT4-fs: Ignoring removed nobh option [ 180.710695][T12270] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 180.723504][T12270] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 180.744262][T12270] EXT4-fs (loop4): 1 truncate cleaned up [ 180.750594][T12270] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.775556][T12279] loop0: detected capacity change from 0 to 2048 [ 180.809916][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.996767][T12307] loop0: detected capacity change from 0 to 1024 [ 181.003757][T12307] EXT4-fs: Ignoring removed orlov option [ 181.009941][T12307] EXT4-fs: Ignoring removed nomblk_io_submit option [ 181.017436][T12307] EXT4-fs (loop0): blocks per group (132864) and clusters per group (8192) inconsistent [ 181.050160][T12310] loop0: detected capacity change from 0 to 512 [ 181.077923][T12310] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.091006][T12310] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 181.120526][T12310] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #19: comm syz.0.2670: corrupted inode contents [ 181.132709][T12310] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #19: comm syz.0.2670: mark_inode_dirty error [ 181.144190][T12310] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #19: comm syz.0.2670: corrupted inode contents [ 181.156782][T12310] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3006: inode #19: comm syz.0.2670: mark_inode_dirty error [ 181.168867][T12310] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3009: inode #19: comm syz.0.2670: mark inode dirty (error -117) [ 181.181533][T12310] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -117) [ 181.198645][T12094] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.416012][T12317] FAULT_INJECTION: forcing a failure. [ 181.416012][T12317] name failslab, interval 1, probability 0, space 0, times 0 [ 181.428774][T12317] CPU: 0 UID: 0 PID: 12317 Comm: syz.1.2672 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 181.439538][T12317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 181.449581][T12317] Call Trace: [ 181.452844][T12317] [ 181.455757][T12317] dump_stack_lvl+0xf2/0x150 [ 181.460343][T12317] dump_stack+0x15/0x20 [ 181.464508][T12317] should_fail_ex+0x223/0x230 [ 181.469275][T12317] ? __sigqueue_alloc+0xf6/0x180 [ 181.474206][T12317] should_failslab+0x8f/0xb0 [ 181.478852][T12317] kmem_cache_alloc_noprof+0x4c/0x290 [ 181.484295][T12317] __sigqueue_alloc+0xf6/0x180 [ 181.489119][T12317] sigqueue_alloc+0x29/0x30 [ 181.493610][T12317] do_timer_create+0x10f/0xa30 [ 181.498360][T12317] ? __fget_files+0x1d4/0x210 [ 181.503087][T12317] __x64_sys_timer_create+0xbb/0xf0 [ 181.508273][T12317] ? syscall_trace_enter+0x104/0x1f0 [ 181.513653][T12317] ? fpregs_assert_state_consistent+0x83/0xa0 [ 181.519730][T12317] x64_sys_call+0x2c47/0x2d60 [ 181.524461][T12317] do_syscall_64+0xc9/0x1c0 [ 181.528950][T12317] ? clear_bhb_loop+0x55/0xb0 [ 181.533712][T12317] ? clear_bhb_loop+0x55/0xb0 [ 181.538466][T12317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.544421][T12317] RIP: 0033:0x7f5f9c4bdff9 [ 181.548887][T12317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.568491][T12317] RSP: 002b:00007f5f9b131038 EFLAGS: 00000246 ORIG_RAX: 00000000000000de [ 181.576904][T12317] RAX: ffffffffffffffda RBX: 00007f5f9c675f80 RCX: 00007f5f9c4bdff9 [ 181.584934][T12317] RDX: 0000000020bbdffc RSI: 0000000000000000 RDI: 0000000000000000 [ 181.593028][T12317] RBP: 00007f5f9b131090 R08: 0000000000000000 R09: 0000000000000000 [ 181.601008][T12317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.608979][T12317] R13: 0000000000000000 R14: 00007f5f9c675f80 R15: 00007ffc1443c8a8 [ 181.616985][T12317] [ 181.622041][T12321] __nla_validate_parse: 17 callbacks suppressed [ 181.622100][T12321] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2674'. [ 181.788726][T12325] chnl_net:caif_netlink_parms(): no params data found [ 181.797577][T12342] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2679'. [ 181.824769][ T28] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.848474][T12325] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.855583][T12325] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.862882][T12325] bridge_slave_0: entered allmulticast mode [ 181.869681][T12325] bridge_slave_0: entered promiscuous mode [ 181.878955][ T28] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.891417][T12325] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.898566][T12325] bridge0: port 2(bridge_slave_1) entered disabled state [ 181.906831][T12325] bridge_slave_1: entered allmulticast mode [ 181.913262][T12325] bridge_slave_1: entered promiscuous mode [ 181.940179][ T28] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.958491][T12348] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2680'. [ 181.970328][T12325] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 181.984960][T12325] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 182.002079][ T28] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.013198][T12353] pim6reg1: entered promiscuous mode [ 182.018555][T12353] pim6reg1: entered allmulticast mode [ 182.034303][T12325] team0: Port device team_slave_0 added [ 182.040918][T12325] team0: Port device team_slave_1 added [ 182.055498][T12325] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 182.062502][T12325] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 182.088415][T12325] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 182.099614][T12325] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 182.106804][T12325] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 182.132780][T12325] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 182.161359][T12325] hsr_slave_0: entered promiscuous mode [ 182.167436][T12325] hsr_slave_1: entered promiscuous mode [ 182.173422][T12325] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 182.180983][T12325] Cannot create hsr debugfs directory [ 182.268294][ T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 182.278655][ T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 182.289066][ T28] bond0 (unregistering): Released all slaves [ 182.297378][ T28] bond1 (unregistering): Released all slaves [ 182.305687][ T28] bond2 (unregistering): Released all slaves [ 182.313822][ T28] bond3 (unregistering): Released all slaves [ 182.322280][ T28] bond4 (unregistering): Released all slaves [ 182.330198][ T28] bond5 (unregistering): Released all slaves [ 182.338767][ T28] bond6 (unregistering): Released all slaves [ 182.377553][ T28] tipc: Disabling bearer [ 182.382586][ T28] tipc: Left network mode [ 182.387740][ T28] IPVS: stopping backup sync thread 8269 ... [ 182.395095][ T28] hsr_slave_0: left promiscuous mode [ 182.401786][ T28] hsr_slave_1: left promiscuous mode [ 182.408033][ T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 182.415485][ T28] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 182.423303][ T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 182.430911][ T28] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 182.439384][ T28] veth1_macvtap: left promiscuous mode [ 182.444927][ T28] veth1_vlan: left promiscuous mode [ 182.450171][ T28] veth0_vlan: left promiscuous mode [ 182.673986][T12362] loop1: detected capacity change from 0 to 2048 [ 182.687721][T12362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.699384][T12366] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2687'. [ 182.708856][T12366] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2687'. [ 182.720733][ T8649] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.726646][T12366] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2687'. [ 182.738943][T12366] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2687'. [ 182.750926][T12369] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2688'. [ 182.762914][T12366] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2687'. [ 182.767943][T12369] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2688'. [ 182.778136][T12325] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 182.790409][T12325] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 182.799306][T12325] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 182.809408][T12325] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 182.864188][T12325] 8021q: adding VLAN 0 to HW filter on device bond0 [ 182.872829][ T28] IPVS: stop unused estimator thread 0... [ 182.875314][T12325] 8021q: adding VLAN 0 to HW filter on device team0 [ 182.892409][ T7275] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.899712][ T7275] bridge0: port 1(bridge_slave_0) entered forwarding state [ 182.908351][ T7275] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.915392][ T7275] bridge0: port 2(bridge_slave_1) entered forwarding state [ 182.972932][T12325] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 183.030245][T12325] veth0_vlan: entered promiscuous mode [ 183.038257][T12325] veth1_vlan: entered promiscuous mode [ 183.052024][T12325] veth0_macvtap: entered promiscuous mode [ 183.059465][T12325] veth1_macvtap: entered promiscuous mode [ 183.069390][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.079868][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.089699][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.100216][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.110052][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.120519][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.130359][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.140771][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.151654][T12325] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.162162][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 183.172790][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.182618][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 183.193104][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.202978][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 183.213393][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.223218][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 183.233700][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.244549][T12325] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.254672][T12325] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.263442][T12325] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.272188][T12325] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.281004][T12325] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.466507][ T29] kauditd_printk_skb: 422 callbacks suppressed [ 183.466522][ T29] audit: type=1326 audit(1729215126.913:14875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.496490][ T29] audit: type=1326 audit(1729215126.913:14876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.520115][ T29] audit: type=1326 audit(1729215126.913:14877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.543604][ T29] audit: type=1326 audit(1729215126.913:14878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.567487][ T29] audit: type=1326 audit(1729215126.913:14879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.591123][ T29] audit: type=1326 audit(1729215126.913:14880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.614729][ T29] audit: type=1326 audit(1729215126.913:14881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.638436][ T29] audit: type=1326 audit(1729215126.913:14882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.661997][ T29] audit: type=1326 audit(1729215126.913:14883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.685680][ T29] audit: type=1326 audit(1729215126.913:14884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12399 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f5f9c4bdff9 code=0x7ffc0000 [ 183.726544][T12404] xt_TCPMSS: Only works on TCP SYN packets [ 184.012837][T12410] loop0: detected capacity change from 0 to 2048 [ 184.027468][T12410] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.048973][T12094] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.189016][T12423] loop3: detected capacity change from 0 to 1024 [ 184.196789][T12423] EXT4-fs: Ignoring removed orlov option [ 184.202188][T12425] 9pnet: Could not find request transport: fd0x0000000000000005 [ 184.217899][T12423] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 184.241469][T12423] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 184.309872][T12436] loop0: detected capacity change from 0 to 1024 [ 184.316588][T12436] EXT4-fs: Ignoring removed orlov option [ 184.322248][T12436] EXT4-fs: Ignoring removed nomblk_io_submit option [ 184.329267][T12436] EXT4-fs (loop0): blocks per group (132864) and clusters per group (8192) inconsistent [ 184.362260][T12438] pim6reg1: entered promiscuous mode [ 184.367716][T12438] pim6reg1: entered allmulticast mode [ 184.433492][T12440] loop0: detected capacity change from 0 to 2048 [ 184.447014][T12440] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.467683][T12094] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.633642][T12455] 9pnet: Could not find request transport: fd0x0000000000000005 [ 184.827312][T12464] FAULT_INJECTION: forcing a failure. [ 184.827312][T12464] name failslab, interval 1, probability 0, space 0, times 0 [ 184.840067][T12464] CPU: 1 UID: 0 PID: 12464 Comm: syz.1.2717 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 184.850874][T12464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 184.860915][T12464] Call Trace: [ 184.864208][T12464] [ 184.867269][T12464] dump_stack_lvl+0xf2/0x150 [ 184.871862][T12464] dump_stack+0x15/0x20 [ 184.876018][T12464] should_fail_ex+0x223/0x230 [ 184.880755][T12464] ? __alloc_skb+0x10b/0x310 [ 184.885347][T12464] should_failslab+0x8f/0xb0 [ 184.890067][T12464] kmem_cache_alloc_node_noprof+0x51/0x2b0 [ 184.895882][T12464] __alloc_skb+0x10b/0x310 [ 184.900305][T12464] audit_log_start+0x368/0x6b0 [ 184.905120][T12464] audit_seccomp+0x4b/0x130 [ 184.909698][T12464] __seccomp_filter+0x6fa/0x1180 [ 184.914626][T12464] ? proc_fail_nth_write+0x12a/0x150 [ 184.919919][T12464] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 184.925594][T12464] ? vfs_write+0x580/0x910 [ 184.929997][T12464] ? __fget_files+0x1d4/0x210 [ 184.934780][T12464] __secure_computing+0x9f/0x1c0 [ 184.939886][T12464] syscall_trace_enter+0xd1/0x1f0 [ 184.944933][T12464] ? fpregs_assert_state_consistent+0x83/0xa0 [ 184.951044][T12464] do_syscall_64+0xaa/0x1c0 [ 184.955552][T12464] ? clear_bhb_loop+0x55/0xb0 [ 184.960276][T12464] ? clear_bhb_loop+0x55/0xb0 [ 184.965013][T12464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.970898][T12464] RIP: 0033:0x7f5f9c4bdff9 [ 184.975339][T12464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.995030][T12464] RSP: 002b:00007f5f9b131038 EFLAGS: 00000246 ORIG_RAX: 0000000000000043 [ 185.003435][T12464] RAX: ffffffffffffffda RBX: 00007f5f9c675f80 RCX: 00007f5f9c4bdff9 [ 185.011398][T12464] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020ff9000 [ 185.019419][T12464] RBP: 00007f5f9b131090 R08: 0000000000000000 R09: 0000000000000000 [ 185.027426][T12464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 185.035384][T12464] R13: 0000000000000000 R14: 00007f5f9c675f80 R15: 00007ffc1443c8a8 [ 185.043412][T12464] [ 185.065334][T12466] loop1: detected capacity change from 0 to 512 [ 185.076627][T12466] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002] [ 185.084782][T12466] System zones: 0-2, 18-18, 34-34 [ 185.090588][T12466] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2718: bg 0: block 248: padding at end of block bitmap is not set [ 185.105598][T12466] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.2718: Failed to acquire dquot type 1 [ 185.118123][T12466] EXT4-fs (loop1): 1 truncate cleaned up [ 185.123995][T12466] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 185.136738][T12466] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.154709][ T8649] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.173001][T12470] pim6reg1: entered promiscuous mode [ 185.178385][T12470] pim6reg1: entered allmulticast mode [ 185.243206][T12472] loop1: detected capacity change from 0 to 2048 [ 185.286099][T12472] loop1: p1 < > p4 [ 185.290396][T12472] loop1: p4 size 8388608 extends beyond EOD, truncated [ 185.513688][T12497] loop0: detected capacity change from 0 to 2048 [ 185.575941][T12497] loop0: p2 p3 p7 [ 185.653975][T12501] loop4: detected capacity change from 0 to 2048 [ 185.667049][T12501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 185.682534][T12501] EXT4-fs (loop4): shut down requested (0) [ 185.820781][T12094] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 185.831746][T12094] CPU: 0 UID: 0 PID: 12094 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 185.842697][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 185.852964][T12094] Call Trace: [ 185.856237][T12094] [ 185.859161][T12094] dump_stack_lvl+0xf2/0x150 [ 185.863815][T12094] dump_stack+0x15/0x20 [ 185.867966][T12094] dump_header+0x83/0x2d0 [ 185.872359][T12094] oom_kill_process+0x341/0x4c0 [ 185.877259][T12094] out_of_memory+0x9af/0xbe0 [ 185.881893][T12094] ? css_next_descendant_pre+0x11c/0x140 [ 185.887527][T12094] mem_cgroup_out_of_memory+0x13e/0x190 [ 185.893174][T12094] try_charge_memcg+0x51b/0x810 [ 185.898037][T12094] charge_memcg+0x50/0xc0 [ 185.902437][T12094] mem_cgroup_swapin_charge_folio+0xd0/0x150 [ 185.908519][T12094] __read_swap_cache_async+0x236/0x480 [ 185.914057][T12094] swap_cluster_readahead+0x276/0x3f0 [ 185.919664][T12094] swapin_readahead+0xe4/0x6f0 [ 185.924458][T12094] ? __filemap_get_folio+0x420/0x5b0 [ 185.929782][T12094] ? save_fpregs_to_fpstate+0x102/0x160 [ 185.935346][T12094] ? swap_cache_get_folio+0x77/0x210 [ 185.940761][T12094] do_swap_page+0x2af/0x23e0 [ 185.945389][T12094] ? hrtimer_try_to_cancel+0x106/0x1d0 [ 185.950933][T12094] ? __rcu_read_lock+0x36/0x50 [ 185.955737][T12094] ? pte_offset_map_nolock+0x124/0x1d0 [ 185.961220][T12094] handle_mm_fault+0x8c5/0x2a80 [ 185.966080][T12094] exc_page_fault+0x3b9/0x650 [ 185.970773][T12094] asm_exc_page_fault+0x26/0x30 [ 185.975625][T12094] RIP: 0033:0x7f4cf63000a5 [ 185.980036][T12094] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e c4 15 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74 [ 185.999664][T12094] RSP: 002b:00007ffeecaa9f48 EFLAGS: 00010246 [ 186.005738][T12094] RAX: 0000000000000000 RBX: 0000000000000049 RCX: 00007f4cf63000a3 [ 186.013700][T12094] RDX: 00007ffeecaa9f60 RSI: 0000000000000000 RDI: 0000000000000000 [ 186.021753][T12094] RBP: 00007ffeecaa9fbc R08: 000000002df78dd5 R09: 7fffffffffffffff [ 186.029846][T12094] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032 [ 186.037812][T12094] R13: 000000000002d4e7 R14: 000000000002d458 R15: 00007ffeecaaa010 [ 186.045779][T12094] [ 186.049268][T12094] memory: usage 307200kB, limit 307200kB, failcnt 3484 [ 186.056217][T12094] memory+swap: usage 308596kB, limit 9007199254740988kB, failcnt 0 [ 186.064115][T12094] kmem: usage 297356kB, limit 9007199254740988kB, failcnt 0 [ 186.071492][T12094] Memory cgroup stats for /syz0: [ 186.072346][T12094] cache 65536 [ 186.080657][T12094] rss 0 [ 186.083409][T12094] shmem 0 [ 186.086366][T12094] mapped_file 65536 [ 186.090164][T12094] dirty 65536 [ 186.093457][T12094] writeback 0 [ 186.096800][T12094] workingset_refault_anon 2086 [ 186.101552][T12094] workingset_refault_file 513 [ 186.106248][T12094] swap 1429504 [ 186.109682][T12094] swapcached 8192 [ 186.113334][T12094] pgpgin 171522 [ 186.116820][T12094] pgpgout 171504 [ 186.120363][T12094] pgfault 195781 [ 186.123905][T12094] pgmajfault 349 [ 186.127479][T12094] inactive_anon 0 [ 186.131101][T12094] active_anon 8192 [ 186.134890][T12094] inactive_file 0 [ 186.138527][T12094] active_file 65536 [ 186.142361][T12094] unevictable 0 [ 186.145854][T12094] hierarchical_memory_limit 314572800 [ 186.151247][T12094] hierarchical_memsw_limit 9223372036854771712 [ 186.157423][T12094] total_cache 65536 [ 186.161278][T12094] total_rss 0 [ 186.164556][T12094] total_shmem 0 [ 186.168036][T12094] total_mapped_file 65536 [ 186.172405][T12094] total_dirty 65536 [ 186.176230][T12094] total_writeback 0 [ 186.180023][T12094] total_workingset_refault_anon 2086 [ 186.185296][T12094] total_workingset_refault_file 513 [ 186.190497][T12094] total_swap 1429504 [ 186.194383][T12094] total_swapcached 8192 [ 186.198545][T12094] total_pgpgin 171522 [ 186.202516][T12094] total_pgpgout 171504 [ 186.206676][T12094] total_pgfault 195781 [ 186.210790][T12094] total_pgmajfault 349 [ 186.214865][T12094] total_inactive_anon 0 [ 186.219047][T12094] total_active_anon 8192 [ 186.223289][T12094] total_inactive_file 0 [ 186.227636][T12094] total_active_file 65536 [ 186.232179][T12094] total_unevictable 0 [ 186.236229][T12094] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2728,pid=12495,uid=0 [ 186.251016][T12094] Memory cgroup out of memory: Killed process 12495 (syz.0.2728) total-vm:89164kB, anon-rss:720kB, file-rss:16324kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000 [ 186.302185][T12510] loop0: detected capacity change from 0 to 1024 [ 186.308843][T12510] EXT4-fs: Ignoring removed orlov option [ 186.314514][T12510] EXT4-fs: Ignoring removed nomblk_io_submit option [ 186.322733][T12510] EXT4-fs (loop0): blocks per group (132864) and clusters per group (8192) inconsistent [ 186.373993][T12523] loop1: detected capacity change from 0 to 2048 [ 186.422155][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.441849][T12526] FAULT_INJECTION: forcing a failure. [ 186.441849][T12526] name failslab, interval 1, probability 0, space 0, times 0 [ 186.442785][T12523] Alternate GPT is invalid, using primary GPT. [ 186.454483][T12526] CPU: 0 UID: 0 PID: 12526 Comm: syz.4.2738 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 186.454513][T12526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 186.454524][T12526] Call Trace: [ 186.454530][T12526] [ 186.454537][T12526] dump_stack_lvl+0xf2/0x150 [ 186.460880][T12523] loop1: p2 p3 p7 [ 186.471402][T12526] dump_stack+0x15/0x20 [ 186.471422][T12526] should_fail_ex+0x223/0x230 [ 186.504906][T12526] ? audit_log_d_path+0x96/0x250 [ 186.510117][T12526] should_failslab+0x8f/0xb0 [ 186.514755][T12526] __kmalloc_cache_noprof+0x4b/0x2a0 [ 186.520091][T12526] audit_log_d_path+0x96/0x250 [ 186.524865][T12526] ? get_file_rcu+0xeb/0x100 [ 186.529459][T12526] ? __rcu_read_unlock+0x4e/0x70 [ 186.534448][T12526] audit_log_d_path_exe+0x42/0x70 [ 186.539471][T12526] audit_log_task+0x155/0x180 [ 186.544145][T12526] audit_seccomp+0x68/0x130 [ 186.548756][T12526] __seccomp_filter+0x6fa/0x1180 [ 186.553782][T12526] ? proc_fail_nth_write+0x12a/0x150 [ 186.559070][T12526] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 186.564831][T12526] ? vfs_write+0x580/0x910 [ 186.569305][T12526] __secure_computing+0x9f/0x1c0 [ 186.574277][T12526] syscall_trace_enter+0xd1/0x1f0 [ 186.579375][T12526] do_syscall_64+0xaa/0x1c0 [ 186.583873][T12526] ? clear_bhb_loop+0x55/0xb0 [ 186.588582][T12526] ? clear_bhb_loop+0x55/0xb0 [ 186.593316][T12526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.599233][T12526] RIP: 0033:0x7f3614dedff9 [ 186.603701][T12526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.623301][T12526] RSP: 002b:00007f3613a60fc8 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 186.631793][T12526] RAX: ffffffffffffffda RBX: 00007f3614fa5f80 RCX: 00007f3614dedff9 [ 186.639773][T12526] RDX: 0000000020000640 RSI: 0000000020000840 RDI: 0000000000000f3e [ 186.647753][T12526] RBP: 0000000020000840 R08: 0000000000000000 R09: 0000000020000640 [ 186.655790][T12526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 186.663800][T12526] R13: 0000000020000340 R14: 0000000000000f3e R15: 0000000020000640 [ 186.671820][T12526] [ 186.686567][T12523] dummy0: entered promiscuous mode [ 186.691808][T12523] vlan3: entered promiscuous mode [ 186.698310][T12523] dummy0: left promiscuous mode [ 186.703505][T12530] loop4: detected capacity change from 0 to 2048 [ 186.716934][T12530] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.739749][T10027] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.769819][T12538] pim6reg1: entered promiscuous mode [ 186.775122][T12538] pim6reg1: entered allmulticast mode [ 186.875768][T12542] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0 [ 186.996730][T12325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.010457][ T40] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.140219][T12545] chnl_net:caif_netlink_parms(): no params data found [ 187.171433][T12545] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.178611][T12545] bridge0: port 1(bridge_slave_0) entered disabled state [ 187.185864][T12545] bridge_slave_0: entered allmulticast mode [ 187.192232][T12545] bridge_slave_0: entered promiscuous mode [ 187.200086][T12545] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.203455][T12560] __nla_validate_parse: 35 callbacks suppressed [ 187.203469][T12560] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2747'. [ 187.207231][T12545] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.213520][T12560] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2747'. [ 187.223946][T12545] bridge_slave_1: entered allmulticast mode [ 187.245275][T12545] bridge_slave_1: entered promiscuous mode [ 187.251984][T12560] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2747'. [ 187.261123][T12560] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2747'. [ 187.281894][T12545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 187.286639][T12560] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2747'. [ 187.300301][T12560] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2747'. [ 187.302730][T12545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 187.322783][T12565] loop4: detected capacity change from 0 to 512 [ 187.336084][T12545] team0: Port device team_slave_0 added [ 187.343138][T12545] team0: Port device team_slave_1 added [ 187.350458][T12565] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.363049][T12565] ext4 filesystem being mounted at /204/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 187.381846][T12545] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 187.388878][T12545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.412082][T12573] loop1: detected capacity change from 0 to 2048 [ 187.414798][T12545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 187.432649][T12545] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 187.439729][T12545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.465664][T12545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 187.483711][T12574] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.2748: corrupted inode contents [ 187.484133][T12573] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 187.495793][T12574] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #19: comm syz.4.2748: mark_inode_dirty error [ 187.520135][T12574] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.2748: corrupted inode contents [ 187.532171][T12574] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3006: inode #19: comm syz.4.2748: mark_inode_dirty error [ 187.538462][ T8649] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.545126][T12574] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3009: inode #19: comm syz.4.2748: mark inode dirty (error -117) [ 187.566127][T12574] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117) [ 187.589346][T12579] loop1: detected capacity change from 0 to 512 [ 187.590432][T12545] hsr_slave_0: entered promiscuous mode [ 187.601964][T12545] hsr_slave_1: entered promiscuous mode [ 187.607288][T12579] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.618278][T12545] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 187.626199][T12545] Cannot create hsr debugfs directory [ 187.643902][T12586] pim6reg1: entered promiscuous mode [ 187.649341][T12586] pim6reg1: entered allmulticast mode [ 187.783940][T12596] loop0: detected capacity change from 0 to 1024 [ 187.790980][T12596] EXT4-fs: Ignoring removed orlov option [ 187.796808][T12596] EXT4-fs: Ignoring removed nomblk_io_submit option [ 187.803702][T12596] EXT4-fs (loop0): blocks per group (132864) and clusters per group (8192) inconsistent [ 187.898423][T12606] loop0: detected capacity change from 0 to 512 [ 187.907332][T12606] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 187.935685][T12606] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #19: comm syz.0.2763: corrupted inode contents [ 187.947850][T12606] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #19: comm syz.0.2763: mark_inode_dirty error [ 187.959433][T12606] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #19: comm syz.0.2763: corrupted inode contents [ 187.971475][T12606] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3006: inode #19: comm syz.0.2763: mark_inode_dirty error [ 187.983497][T12606] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3009: inode #19: comm syz.0.2763: mark inode dirty (error -117) [ 187.996163][T12606] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -117) [ 188.107115][T12612] syz.0.2765[12612] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 188.107243][T12612] syz.0.2765[12612] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 188.118858][T12612] syz.0.2765[12612] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 188.164914][T12614] loop0: detected capacity change from 0 to 2048 [ 188.227315][T12614] loop0: p1 < > p4 [ 188.233550][T12614] loop0: p4 size 8388608 extends beyond EOD, truncated [ 188.341821][T12631] loop1: detected capacity change from 0 to 1024 [ 188.348811][T12631] EXT4-fs: Ignoring removed orlov option [ 188.354499][T12631] EXT4-fs: Ignoring removed nomblk_io_submit option [ 188.361645][T12631] EXT4-fs (loop1): blocks per group (132864) and clusters per group (8192) inconsistent [ 188.547498][ T29] kauditd_printk_skb: 722 callbacks suppressed [ 188.547511][ T29] audit: type=1326 audit(1729215131.993:15603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.577271][ T29] audit: type=1326 audit(1729215131.993:15604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.612617][ T40] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.686305][ T40] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.711414][ T29] audit: type=1326 audit(1729215132.053:15605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.735739][ T29] audit: type=1326 audit(1729215132.053:15606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.760473][ T29] audit: type=1326 audit(1729215132.053:15607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.764002][T12627] chnl_net:caif_netlink_parms(): no params data found [ 188.784757][ T29] audit: type=1326 audit(1729215132.063:15608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.815539][ T29] audit: type=1326 audit(1729215132.063:15609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.839772][ T29] audit: type=1326 audit(1729215132.063:15610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.864295][ T29] audit: type=1326 audit(1729215132.063:15611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.888240][ T29] audit: type=1326 audit(1729215132.063:15612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3614dedff9 code=0x7ffc0000 [ 188.971697][ T40] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.133581][T12627] bridge0: port 1(bridge_slave_0) entered blocking state [ 189.140724][T12627] bridge0: port 1(bridge_slave_0) entered disabled state [ 189.149229][T12627] bridge_slave_0: entered allmulticast mode [ 189.155836][T12627] bridge_slave_0: entered promiscuous mode [ 189.162820][T12627] bridge0: port 2(bridge_slave_1) entered blocking state [ 189.169926][T12627] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.179258][T12627] bridge_slave_1: entered allmulticast mode [ 189.185713][T12627] bridge_slave_1: entered promiscuous mode [ 189.230006][T12661] 9pnet_fd: Insufficient options for proto=fd [ 189.272672][T12627] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 189.325331][T12627] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 189.342019][T12669] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2783'. [ 189.356047][ T40] bridge_slave_1: left allmulticast mode [ 189.361789][ T40] bridge_slave_1: left promiscuous mode [ 189.367591][ T40] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.383442][T12669] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2783'. [ 189.406699][T12669] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2783'. [ 189.416502][T12669] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2783'. [ 189.425837][ T40] bridge_slave_0: left allmulticast mode [ 189.431538][ T40] bridge_slave_0: left promiscuous mode [ 189.437298][ T40] bridge0: port 1(bridge_slave_0) entered disabled state [ 189.687398][T12682] loop0: detected capacity change from 0 to 2048 [ 189.731443][T12682] loop0: p2 p3 p7 [ 189.962561][ T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 189.975686][ T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 189.993378][ T40] bond0 (unregistering): Released all slaves [ 190.054392][ T40] hsr_slave_0: left promiscuous mode [ 190.066742][ T40] hsr_slave_1: left promiscuous mode [ 190.080543][ T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 190.088068][ T40] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 190.127722][ T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 190.135138][ T40] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 190.191343][T12094] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 190.202297][T12094] CPU: 1 UID: 0 PID: 12094 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 190.213236][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 190.223293][T12094] Call Trace: [ 190.226567][T12094] [ 190.229501][T12094] dump_stack_lvl+0xf2/0x150 [ 190.234097][T12094] dump_stack+0x15/0x20 [ 190.238324][T12094] dump_header+0x83/0x2d0 [ 190.242682][T12094] oom_kill_process+0x341/0x4c0 [ 190.247576][T12094] out_of_memory+0x9af/0xbe0 [ 190.252202][T12094] ? css_next_descendant_pre+0x11c/0x140 [ 190.257985][T12094] mem_cgroup_out_of_memory+0x13e/0x190 [ 190.263549][T12094] try_charge_memcg+0x51b/0x810 [ 190.268428][T12094] charge_memcg+0x50/0xc0 [ 190.272827][T12094] mem_cgroup_swapin_charge_folio+0xd0/0x150 [ 190.278893][T12094] __read_swap_cache_async+0x236/0x480 [ 190.284391][T12094] swap_cluster_readahead+0x276/0x3f0 [ 190.289824][T12094] swapin_readahead+0xe4/0x6f0 [ 190.294600][T12094] ? __filemap_get_folio+0x420/0x5b0 [ 190.299911][T12094] ? save_fpregs_to_fpstate+0x102/0x160 [ 190.305475][T12094] ? swap_cache_get_folio+0x77/0x210 [ 190.310772][T12094] do_swap_page+0x2af/0x23e0 [ 190.315416][T12094] ? hrtimer_try_to_cancel+0x106/0x1d0 [ 190.320960][T12094] ? __rcu_read_lock+0x36/0x50 [ 190.325860][T12094] ? pte_offset_map_nolock+0x124/0x1d0 [ 190.331457][T12094] handle_mm_fault+0x8c5/0x2a80 [ 190.336380][T12094] exc_page_fault+0x3b9/0x650 [ 190.341076][T12094] asm_exc_page_fault+0x26/0x30 [ 190.346040][T12094] RIP: 0033:0x7f4cf63000a5 [ 190.350467][T12094] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e c4 15 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74 [ 190.370079][T12094] RSP: 002b:00007ffeecaa9f48 EFLAGS: 00010246 [ 190.376150][T12094] RAX: 0000000000000000 RBX: 0000000000000079 RCX: 00007f4cf63000a3 [ 190.384212][T12094] RDX: 00007ffeecaa9f60 RSI: 0000000000000000 RDI: 0000000000000000 [ 190.392247][T12094] RBP: 00007ffeecaa9fbc R08: 00000000079151ea R09: 7fffffffffffffff [ 190.400275][T12094] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032 [ 190.408250][T12094] R13: 000000000002e652 R14: 000000000002e444 R15: 00007ffeecaaa010 [ 190.416225][T12094] [ 190.419627][T12094] memory: usage 307200kB, limit 307200kB, failcnt 3899 [ 190.426619][T12094] memory+swap: usage 308892kB, limit 9007199254740988kB, failcnt 0 [ 190.434520][T12094] kmem: usage 307076kB, limit 9007199254740988kB, failcnt 0 [ 190.441819][T12094] Memory cgroup stats for /syz0: [ 190.545355][T12094] cache 110592 [ 190.553727][T12094] rss 0 [ 190.556562][T12094] shmem 0 [ 190.559536][T12094] mapped_file 110592 [ 190.563425][T12094] dirty 110592 [ 190.566807][T12094] writeback 0 [ 190.570167][T12094] workingset_refault_anon 2113 [ 190.574980][T12094] workingset_refault_file 596 [ 190.579655][T12094] swap 1732608 [ 190.583025][T12094] swapcached 16384 [ 190.586786][T12094] pgpgin 173896 [ 190.590332][T12094] pgpgout 173865 [ 190.593954][T12094] pgfault 198712 [ 190.597502][T12094] pgmajfault 368 [ 190.601082][T12094] inactive_anon 0 [ 190.604744][T12094] active_anon 16384 [ 190.608591][T12094] inactive_file 0 [ 190.612229][T12094] active_file 110592 [ 190.616144][T12094] unevictable 0 [ 190.619611][T12094] hierarchical_memory_limit 314572800 [ 190.624984][T12094] hierarchical_memsw_limit 9223372036854771712 [ 190.631149][T12094] total_cache 110592 [ 190.635137][T12094] total_rss 0 [ 190.638436][T12094] total_shmem 0 [ 190.641888][T12094] total_mapped_file 110592 [ 190.646381][T12094] total_dirty 110592 [ 190.650409][T12094] total_writeback 0 [ 190.654265][T12094] total_workingset_refault_anon 2113 [ 190.659606][T12094] total_workingset_refault_file 596 [ 190.664868][T12094] total_swap 1732608 [ 190.668808][T12094] total_swapcached 16384 [ 190.673083][T12094] total_pgpgin 173896 [ 190.677071][T12094] total_pgpgout 173865 [ 190.681132][T12094] total_pgfault 198712 [ 190.685264][T12094] total_pgmajfault 368 [ 190.689342][T12094] total_inactive_anon 0 [ 190.693490][T12094] total_active_anon 16384 [ 190.697831][T12094] total_inactive_file 0 [ 190.701976][T12094] total_active_file 110592 [ 190.706488][T12094] total_unevictable 0 [ 190.710537][T12094] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2786,pid=12677,uid=0 [ 190.725225][T12094] Memory cgroup out of memory: Killed process 12677 (syz.0.2786) total-vm:87248kB, anon-rss:740kB, file-rss:16292kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000 [ 190.786881][ T40] veth1_macvtap: left promiscuous mode [ 190.792400][ T40] veth0_macvtap: left promiscuous mode [ 190.797913][ T40] veth1_vlan: left promiscuous mode [ 190.803251][ T40] veth0_vlan: left promiscuous mode [ 190.977445][T12691] 9pnet_fd: Insufficient options for proto=fd [ 191.133657][ T40] team0 (unregistering): Port device team_slave_1 removed [ 191.153846][ T40] team0 (unregistering): Port device team_slave_0 removed [ 191.237791][T12627] team0: Port device team_slave_0 added [ 191.248928][T12627] team0: Port device team_slave_1 added [ 191.296193][T12627] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 191.303173][T12627] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 191.329262][T12627] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 191.342845][T12627] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 191.349903][T12627] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 191.375864][T12627] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 191.459947][T12627] hsr_slave_0: entered promiscuous mode [ 191.487433][T12627] hsr_slave_1: entered promiscuous mode [ 191.496168][T12627] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 191.503881][T12627] Cannot create hsr debugfs directory [ 191.729797][T12545] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 191.749115][T12545] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 191.787445][T12627] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.831030][T12545] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 191.893554][T12545] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 192.177323][T12627] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.219835][T12627] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.296231][T12627] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.331120][T12545] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.362803][T12545] 8021q: adding VLAN 0 to HW filter on device team0 [ 192.379217][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.386304][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 192.452977][T12733] loop1: detected capacity change from 0 to 512 [ 192.464688][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.471799][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.509290][T12627] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 192.544122][T12627] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 192.553889][T12733] ext4 filesystem being mounted at /316/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 192.571334][T12627] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 192.614127][T12733] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #19: comm syz.1.2809: corrupted inode contents [ 192.626200][T12733] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #19: comm syz.1.2809: mark_inode_dirty error [ 192.637931][T12733] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #19: comm syz.1.2809: corrupted inode contents [ 192.649953][T12733] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3006: inode #19: comm syz.1.2809: mark_inode_dirty error [ 192.662526][T12733] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3009: inode #19: comm syz.1.2809: mark inode dirty (error -117) [ 192.676112][T12733] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117) [ 192.851681][T12627] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 192.894007][T12545] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 192.999372][T12627] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.036368][T12752] loop1: detected capacity change from 0 to 2048 [ 193.053995][T12627] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.064891][T12760] loop0: detected capacity change from 0 to 512 [ 193.093592][ T28] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.100672][ T28] bridge0: port 1(bridge_slave_0) entered forwarding state [ 193.110096][T12760] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002] [ 193.119657][T12760] System zones: 0-2, 18-18, 34-34 [ 193.125609][T12760] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2813: bg 0: block 248: padding at end of block bitmap is not set [ 193.136241][T12748] FAULT_INJECTION: forcing a failure. [ 193.136241][T12748] name failslab, interval 1, probability 0, space 0, times 0 [ 193.140235][T12760] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.2813: Failed to acquire dquot type 1 [ 193.153104][T12748] CPU: 0 UID: 0 PID: 12748 Comm: syz.0.2813 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 193.174423][T12748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 193.174436][T12748] Call Trace: [ 193.174442][T12748] [ 193.174450][T12748] dump_stack_lvl+0xf2/0x150 [ 193.174522][T12748] dump_stack+0x15/0x20 [ 193.174539][T12748] should_fail_ex+0x223/0x230 [ 193.174570][T12748] ? audit_log_d_path+0x96/0x250 [ 193.174595][T12748] should_failslab+0x8f/0xb0 [ 193.174618][T12748] __kmalloc_cache_noprof+0x4b/0x2a0 [ 193.174717][T12748] audit_log_d_path+0x96/0x250 [ 193.174739][T12748] ? get_file_rcu+0xeb/0x100 [ 193.186793][T12760] EXT4-fs (loop0): 1 truncate cleaned up [ 193.188028][T12748] ? __rcu_read_unlock+0x4e/0x70 [ 193.191331][T12760] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.195573][T12748] audit_log_d_path_exe+0x42/0x70 [ 193.202206][ T28] bridge0: port 2(bridge_slave_1) entered blocking state [ 193.204440][T12748] audit_log_task+0x155/0x180 [ 193.209393][ T28] bridge0: port 2(bridge_slave_1) entered forwarding state [ 193.213912][T12748] ? __pfx_thermal_zone_destroy_device_groups+0x10/0x10 [ 193.225609][T12545] veth0_vlan: entered promiscuous mode [ 193.228563][T12748] audit_seccomp+0x68/0x130 [ 193.228589][T12748] __seccomp_filter+0x6fa/0x1180 [ 193.240171][T12627] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 193.249501][T12748] ? proc_fail_nth_write+0x12a/0x150 [ 193.249534][T12748] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 193.254551][T12627] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 193.261542][T12748] ? vfs_write+0x580/0x910 [ 193.261571][T12748] ? kmem_cache_free+0xdc/0x2d0 [ 193.261706][T12748] __secure_computing+0x9f/0x1c0 [ 193.280636][T12545] veth1_vlan: entered promiscuous mode [ 193.285944][T12748] syscall_trace_enter+0xd1/0x1f0 [ 193.300947][T12545] veth0_macvtap: entered promiscuous mode [ 193.305735][T12748] ? fpregs_assert_state_consistent+0x83/0xa0 [ 193.321670][T12545] veth1_macvtap: entered promiscuous mode [ 193.326958][T12748] do_syscall_64+0xaa/0x1c0 [ 193.336734][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 193.341143][T12748] ? clear_bhb_loop+0x55/0xb0 [ 193.346609][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.351585][T12748] ? clear_bhb_loop+0x55/0xb0 [ 193.357379][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 193.363316][T12748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.369018][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.373480][T12748] RIP: 0033:0x7f4cf62cdff9 [ 193.383878][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 193.388508][T12748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.398296][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.398310][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 193.402963][T12748] RSP: 002b:00007f4cf4f41038 EFLAGS: 00000246 [ 193.413521][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.419279][T12748] ORIG_RAX: 0000000000000141 [ 193.419288][T12748] RAX: ffffffffffffffda RBX: 00007f4cf6485f80 RCX: 00007f4cf62cdff9 [ 193.419301][T12748] RDX: 0000000000000020 RSI: 0000000020000400 RDI: 0000000000000002 [ 193.433091][T12545] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 193.433458][T12748] RBP: 00007f4cf4f41090 R08: 0000000000000000 R09: 0000000000000000 [ 193.447101][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 193.463424][T12748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 193.463439][T12748] R13: 0000000000000000 R14: 00007f4cf6485f80 R15: 00007ffeecaa9bf8 [ 193.463457][T12748] [ 193.566571][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.576454][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 193.586879][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.596755][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 193.607179][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.617007][T12545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 193.627555][T12545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.651201][ T29] kauditd_printk_skb: 171 callbacks suppressed [ 193.651214][ T29] audit: type=1326 audit(1729215136.583:15782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12745 comm="syz.0.2813" exe="" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4cf62cdff9 code=0x7ffc0000 [ 193.694948][ T29] audit: type=1326 audit(1729215137.133:15783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12745 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f4cf62cca3c code=0x7ffc0000 [ 193.718436][ T29] audit: type=1326 audit(1729215137.133:15784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12745 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4cf62ccadf code=0x7ffc0000 [ 193.742367][ T29] audit: type=1326 audit(1729215137.133:15785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12745 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4cf62ccc8a code=0x7ffc0000 [ 193.765802][ T29] audit: type=1326 audit(1729215137.133:15786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12745 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf62cdff9 code=0x7ffc0000 [ 193.789543][ T29] audit: type=1326 audit(1729215137.133:15787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12745 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf62cdff9 code=0x7ffc0000 [ 193.814641][T12545] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 193.827453][T12545] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.836173][T12545] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.844890][T12545] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.853608][T12545] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.880377][T12752] Alternate GPT is invalid, using primary GPT. [ 193.886792][T12752] loop1: p2 p3 p7 [ 193.927262][T12773] __nla_validate_parse: 3 callbacks suppressed [ 193.927278][T12773] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2817'. [ 193.944004][T12773] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2817'. [ 193.985294][T12627] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 194.055407][T12773] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2817'. [ 194.064926][T12773] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2817'. [ 194.296662][T12773] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2817'. [ 194.329160][T12773] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2817'. [ 194.356362][T12787] loop0: detected capacity change from 0 to 2048 [ 194.409132][T12787] EXT4-fs mount: 9 callbacks suppressed [ 194.409147][T12787] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 194.467767][T12627] veth0_vlan: entered promiscuous mode [ 194.477930][T12627] veth1_vlan: entered promiscuous mode [ 194.503437][T12627] veth0_macvtap: entered promiscuous mode [ 194.512562][T12627] veth1_macvtap: entered promiscuous mode [ 194.524568][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.535160][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.545103][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.545116][T12797] loop3: detected capacity change from 0 to 512 [ 194.555671][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.555689][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.555705][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.555719][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.555787][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.555801][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.555816][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.557590][T12627] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.642740][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.653220][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.663039][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.673489][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.683303][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.693761][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.703597][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.714068][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.723916][T12627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.734424][T12627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.756309][T12627] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.774525][T12627] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.783388][T12627] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.792096][T12627] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.800883][T12627] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.837651][T12797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.850631][T12797] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 194.911814][T12094] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.946225][T12797] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.2820: corrupted inode contents [ 194.965964][T12797] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #19: comm syz.3.2820: mark_inode_dirty error [ 194.995911][T12797] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.2820: corrupted inode contents [ 195.015800][T12797] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3006: inode #19: comm syz.3.2820: mark_inode_dirty error [ 195.035188][T12797] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3009: inode #19: comm syz.3.2820: mark inode dirty (error -117) [ 195.048848][T12797] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117) [ 195.070531][T12802] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2821'. [ 195.085011][T12545] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.126506][T12805] loop1: detected capacity change from 0 to 1024 [ 195.141048][T12805] EXT4-fs: Ignoring removed orlov option [ 195.146799][T12805] EXT4-fs: Ignoring removed nomblk_io_submit option [ 195.163655][T12805] EXT4-fs (loop1): blocks per group (132864) and clusters per group (8192) inconsistent [ 195.234536][ T29] audit: type=1326 audit(1729215138.673:15788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12810 comm="syz.3.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356125dff9 code=0x7ffc0000 [ 195.258291][ T29] audit: type=1326 audit(1729215138.673:15789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12810 comm="syz.3.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356125dff9 code=0x7ffc0000 [ 195.369457][T12817] pim6reg1: entered promiscuous mode [ 195.374790][T12817] pim6reg1: entered allmulticast mode [ 195.463964][ T29] audit: type=1326 audit(1729215138.733:15790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12810 comm="syz.3.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f356125dff9 code=0x7ffc0000 [ 195.487821][ T29] audit: type=1326 audit(1729215138.733:15791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12810 comm="syz.3.2824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356125dff9 code=0x7ffc0000 [ 195.541518][T12821] loop1: detected capacity change from 0 to 1024 [ 195.551371][T12821] EXT4-fs: Ignoring removed orlov option [ 195.557086][T12821] EXT4-fs: Ignoring removed nomblk_io_submit option [ 195.564058][T12821] EXT4-fs (loop1): blocks per group (132864) and clusters per group (8192) inconsistent [ 195.586465][T12831] loop2: detected capacity change from 0 to 512 [ 195.628364][T12831] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.647011][T12831] ext4 filesystem being mounted at /2/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 195.751758][T12843] loop4: detected capacity change from 0 to 1024 [ 195.776933][T12847] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #19: comm syz.2.2833: corrupted inode contents [ 195.802787][T12843] EXT4-fs: Ignoring removed orlov option [ 195.808647][T12843] EXT4-fs: Ignoring removed nomblk_io_submit option [ 195.825542][T12843] EXT4-fs (loop4): blocks per group (132864) and clusters per group (8192) inconsistent [ 195.880414][T12850] loop3: detected capacity change from 0 to 512 [ 195.887074][T12850] EXT4-fs: Ignoring removed i_version option [ 195.894069][T12847] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #19: comm syz.2.2833: mark_inode_dirty error [ 195.906474][T12847] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #19: comm syz.2.2833: corrupted inode contents [ 195.920742][T12847] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3006: inode #19: comm syz.2.2833: mark_inode_dirty error [ 195.933653][T12847] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3009: inode #19: comm syz.2.2833: mark inode dirty (error -117) [ 195.962500][T12847] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117) [ 195.982942][T12850] EXT4-fs error (device loop3): ext4_quota_enable:7053: comm syz.3.2831: inode #8454144: comm syz.3.2831: iget: illegal inode # [ 196.008465][T12850] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.2831: Bad quota inode: 8454144, type: 2 [ 196.020456][T12850] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=8454144). Please run e2fsck to fix. [ 196.036749][T12850] EXT4-fs (loop3): mount failed [ 196.102537][T12627] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.169257][T12863] pim6reg1: entered promiscuous mode [ 196.174665][T12863] pim6reg1: entered allmulticast mode [ 196.218463][T12868] loop3: detected capacity change from 0 to 128 [ 196.230523][T12868] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 196.244399][T12868] ext4 filesystem being mounted at /7/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 196.414165][T12545] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 196.491512][T12881] sd 0:0:1:0: device reset [ 196.601468][T12888] loop3: detected capacity change from 0 to 512 [ 196.617497][T12888] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 196.634100][T12888] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2855: bg 0: block 264: padding at end of block bitmap is not set [ 196.652009][T12888] EXT4-fs (loop3): Remounting filesystem read-only [ 196.659248][T12888] EXT4-fs (loop3): 1 truncate cleaned up [ 196.665355][T12888] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.677515][T12888] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 196.684712][T12888] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.743313][T12901] pim6reg1: entered promiscuous mode [ 196.748798][T12901] pim6reg1: entered allmulticast mode [ 196.964104][T12908] loop0: detected capacity change from 0 to 2048 [ 197.029242][T12917] loop2: detected capacity change from 0 to 2048 [ 197.036058][T12908] Alternate GPT is invalid, using primary GPT. [ 197.042386][T12908] loop0: p2 p3 p7 [ 197.090284][T12917] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 197.147432][T12627] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.239548][ C1] ================================================================== [ 197.247753][ C1] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 197.254973][ C1] [ 197.257294][ C1] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 0: [ 197.265355][ C1] can_rcv_filter+0x237/0x4c0 [ 197.270048][ C1] can_receive+0x182/0x1f0 [ 197.274474][ C1] can_rcv+0xe7/0x180 [ 197.278464][ C1] __netif_receive_skb+0x123/0x280 [ 197.283594][ C1] process_backlog+0x22e/0x440 [ 197.288363][ C1] __napi_poll+0x63/0x3c0 [ 197.292704][ C1] net_rx_action+0x3a1/0x7f0 [ 197.297310][ C1] handle_softirqs+0xbf/0x280 [ 197.302002][ C1] run_ksoftirqd+0x1c/0x30 [ 197.306434][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 197.311393][ C1] kthread+0x1d1/0x210 [ 197.315465][ C1] ret_from_fork+0x4b/0x60 [ 197.319900][ C1] ret_from_fork_asm+0x1a/0x30 [ 197.324682][ C1] [ 197.327013][ C1] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 1: [ 197.335080][ C1] can_rcv_filter+0x237/0x4c0 [ 197.339771][ C1] can_receive+0x182/0x1f0 [ 197.344199][ C1] can_rcv+0xe7/0x180 [ 197.348184][ C1] __netif_receive_skb+0x123/0x280 [ 197.353308][ C1] process_backlog+0x22e/0x440 [ 197.358069][ C1] __napi_poll+0x63/0x3c0 [ 197.362404][ C1] net_rx_action+0x3a1/0x7f0 [ 197.366992][ C1] handle_softirqs+0xbf/0x280 [ 197.371664][ C1] run_ksoftirqd+0x1c/0x30 [ 197.376079][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 197.381014][ C1] kthread+0x1d1/0x210 [ 197.385076][ C1] ret_from_fork+0x4b/0x60 [ 197.389490][ C1] ret_from_fork_asm+0x1a/0x30 [ 197.394257][ C1] [ 197.396573][ C1] value changed: 0x00000000000cb2a5 -> 0x00000000000cb2a6 [ 197.403697][ C1] [ 197.406009][ C1] Reported by Kernel Concurrency Sanitizer on: [ 197.412161][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 197.422745][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 197.432798][ C1] ================================================================== [ 197.476563][ C1] ================================================================== [ 197.484672][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 197.491380][ C1] [ 197.493701][ C1] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 0: [ 197.501764][ C1] can_receive+0x1b6/0x1f0 [ 197.506192][ C1] can_rcv+0xe7/0x180 [ 197.510175][ C1] __netif_receive_skb+0x123/0x280 [ 197.515298][ C1] process_backlog+0x22e/0x440 [ 197.520074][ C1] __napi_poll+0x63/0x3c0 [ 197.524427][ C1] net_rx_action+0x3a1/0x7f0 [ 197.529026][ C1] handle_softirqs+0xbf/0x280 [ 197.533715][ C1] do_softirq+0x5e/0x90 [ 197.537876][ C1] __local_bh_enable_ip+0x6e/0x70 [ 197.542906][ C1] wg_timers_any_authenticated_packet_traversal+0xe5/0x110 [ 197.550126][ C1] wg_packet_tx_worker+0xe9/0x360 [ 197.555176][ C1] process_scheduled_works+0x483/0x9a0 [ 197.560649][ C1] worker_thread+0x51d/0x6f0 [ 197.565243][ C1] kthread+0x1d1/0x210 [ 197.569312][ C1] ret_from_fork+0x4b/0x60 [ 197.573733][ C1] ret_from_fork_asm+0x1a/0x30 [ 197.578503][ C1] [ 197.580824][ C1] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 1: [ 197.589585][ C1] can_receive+0x1b6/0x1f0 [ 197.594010][ C1] can_rcv+0xe7/0x180 [ 197.597998][ C1] __netif_receive_skb+0x123/0x280 [ 197.603124][ C1] process_backlog+0x22e/0x440 [ 197.607894][ C1] __napi_poll+0x63/0x3c0 [ 197.612241][ C1] net_rx_action+0x3a1/0x7f0 [ 197.616834][ C1] handle_softirqs+0xbf/0x280 [ 197.621514][ C1] do_softirq+0x5e/0x90 [ 197.625671][ C1] __local_bh_enable_ip+0x6e/0x70 [ 197.630703][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 197.635645][ C1] batadv_bla_purge_backbone_gw+0x275/0x2c0 [ 197.641556][ C1] batadv_bla_periodic_work+0x130/0x5a0 [ 197.647116][ C1] process_scheduled_works+0x483/0x9a0 [ 197.652589][ C1] worker_thread+0x51d/0x6f0 [ 197.657182][ C1] kthread+0x1d1/0x210 [ 197.661255][ C1] ret_from_fork+0x4b/0x60 [ 197.665681][ C1] ret_from_fork_asm+0x1a/0x30 [ 197.670450][ C1] [ 197.672766][ C1] value changed: 0x00000000000ceedc -> 0x00000000000ceedd [ 197.679886][ C1] [ 197.682212][ C1] Reported by Kernel Concurrency Sanitizer on: [ 197.688359][ C1] CPU: 1 UID: 0 PID: 3423 Comm: kworker/u8:7 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 197.699210][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 197.709284][ C1] Workqueue: bat_events batadv_bla_periodic_work [ 197.715727][ C1] ================================================================== [ 197.726358][ C0] ================================================================== [ 197.734461][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 197.741690][ C0] [ 197.744017][ C0] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 1: [ 197.752083][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 197.756779][ C0] can_rcv_filter+0x225/0x4c0 [ 197.761470][ C0] can_receive+0x182/0x1f0 [ 197.765908][ C0] can_rcv+0xe7/0x180 [ 197.769900][ C0] __netif_receive_skb+0x123/0x280 [ 197.775015][ C0] process_backlog+0x22e/0x440 [ 197.779774][ C0] __napi_poll+0x63/0x3c0 [ 197.784103][ C0] net_rx_action+0x3a1/0x7f0 [ 197.788684][ C0] handle_softirqs+0xbf/0x280 [ 197.793368][ C0] do_softirq+0x5e/0x90 [ 197.797518][ C0] __local_bh_enable_ip+0x6e/0x70 [ 197.802535][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 197.807468][ C0] batadv_bla_purge_backbone_gw+0x275/0x2c0 [ 197.813360][ C0] batadv_bla_periodic_work+0x130/0x5a0 [ 197.818909][ C0] process_scheduled_works+0x483/0x9a0 [ 197.824371][ C0] worker_thread+0x51d/0x6f0 [ 197.828955][ C0] kthread+0x1d1/0x210 [ 197.833105][ C0] ret_from_fork+0x4b/0x60 [ 197.837516][ C0] ret_from_fork_asm+0x1a/0x30 [ 197.842283][ C0] [ 197.844595][ C0] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 0: [ 197.852656][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 197.857337][ C0] can_rcv_filter+0x225/0x4c0 [ 197.862013][ C0] can_receive+0x182/0x1f0 [ 197.866426][ C0] can_rcv+0xe7/0x180 [ 197.870400][ C0] __netif_receive_skb+0x123/0x280 [ 197.875513][ C0] process_backlog+0x22e/0x440 [ 197.880265][ C0] __napi_poll+0x63/0x3c0 [ 197.884602][ C0] net_rx_action+0x3a1/0x7f0 [ 197.889183][ C0] handle_softirqs+0xbf/0x280 [ 197.893855][ C0] run_ksoftirqd+0x1c/0x30 [ 197.898286][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 197.903216][ C0] kthread+0x1d1/0x210 [ 197.907277][ C0] ret_from_fork+0x4b/0x60 [ 197.911686][ C0] ret_from_fork_asm+0x1a/0x30 [ 197.916450][ C0] [ 197.918759][ C0] value changed: 0x000d4ee8 -> 0x000d4ee9 [ 197.924463][ C0] [ 197.926774][ C0] Reported by Kernel Concurrency Sanitizer on: [ 197.932909][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 197.943489][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 197.953537][ C0] ================================================================== [ 197.963463][ C0] ================================================================== [ 197.971550][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 197.978237][ C0] [ 197.980555][ C0] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 1: [ 197.988611][ C0] can_receive+0x1ca/0x1f0 [ 197.993024][ C0] can_rcv+0xe7/0x180 [ 197.997000][ C0] __netif_receive_skb+0x123/0x280 [ 198.002116][ C0] process_backlog+0x22e/0x440 [ 198.006870][ C0] __napi_poll+0x63/0x3c0 [ 198.011202][ C0] net_rx_action+0x3a1/0x7f0 [ 198.015784][ C0] handle_softirqs+0xbf/0x280 [ 198.020462][ C0] do_softirq+0x5e/0x90 [ 198.024605][ C0] __local_bh_enable_ip+0x6e/0x70 [ 198.029636][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 198.034571][ C0] wg_packet_decrypt_worker+0x6ac/0x6f0 [ 198.040119][ C0] process_scheduled_works+0x483/0x9a0 [ 198.045593][ C0] worker_thread+0x51d/0x6f0 [ 198.050173][ C0] kthread+0x1d1/0x210 [ 198.054232][ C0] ret_from_fork+0x4b/0x60 [ 198.058642][ C0] ret_from_fork_asm+0x1a/0x30 [ 198.063406][ C0] [ 198.065720][ C0] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 0: [ 198.073780][ C0] can_receive+0x1ca/0x1f0 [ 198.078192][ C0] can_rcv+0xe7/0x180 [ 198.082170][ C0] __netif_receive_skb+0x123/0x280 [ 198.087286][ C0] process_backlog+0x22e/0x440 [ 198.092042][ C0] __napi_poll+0x63/0x3c0 [ 198.096371][ C0] net_rx_action+0x3a1/0x7f0 [ 198.100954][ C0] handle_softirqs+0xbf/0x280 [ 198.105623][ C0] do_softirq+0x5e/0x90 [ 198.109774][ C0] __local_bh_enable_ip+0x6e/0x70 [ 198.114795][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 198.119729][ C0] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 198.125360][ C0] process_scheduled_works+0x483/0x9a0 [ 198.130828][ C0] worker_thread+0x51d/0x6f0 [ 198.135407][ C0] kthread+0x1d1/0x210 [ 198.139998][ C0] ret_from_fork+0x4b/0x60 [ 198.144412][ C0] ret_from_fork_asm+0x1a/0x30 [ 198.149173][ C0] [ 198.151480][ C0] value changed: 0x000000000000782d -> 0x000000000000782e [ 198.158574][ C0] [ 198.160884][ C0] Reported by Kernel Concurrency Sanitizer on: [ 198.167018][ C0] CPU: 0 UID: 0 PID: 40 Comm: kworker/u8:2 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 198.177691][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 198.187770][ C0] Workqueue: events_unbound nsim_dev_trap_report_work [ 198.194548][ C0] ================================================================== [ 198.208460][ C1] ================================================================== [ 198.216579][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 198.223273][ C1] [ 198.225596][ C1] read-write to 0xffff88811542f408 of 8 bytes by interrupt on cpu 0: [ 198.233662][ C1] can_receive+0x4e/0x1f0 [ 198.238006][ C1] can_rcv+0xe7/0x180 [ 198.242001][ C1] __netif_receive_skb+0x123/0x280 [ 198.247136][ C1] process_backlog+0x22e/0x440 [ 198.251903][ C1] __napi_poll+0x63/0x3c0 [ 198.256250][ C1] net_rx_action+0x3a1/0x7f0 [ 198.261533][ C1] handle_softirqs+0xbf/0x280 [ 198.266222][ C1] do_softirq+0x5e/0x90 [ 198.270384][ C1] __local_bh_enable_ip+0x6e/0x70 [ 198.275417][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 198.280364][ C1] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 198.286011][ C1] process_scheduled_works+0x483/0x9a0 [ 198.291494][ C1] worker_thread+0x51d/0x6f0 [ 198.296091][ C1] kthread+0x1d1/0x210 [ 198.300166][ C1] ret_from_fork+0x4b/0x60 [ 198.305123][ C1] ret_from_fork_asm+0x1a/0x30 [ 198.309905][ C1] [ 198.312233][ C1] read-write to 0xffff88811542f408 of 8 bytes by interrupt on cpu 1: [ 198.320308][ C1] can_receive+0x4e/0x1f0 [ 198.325091][ C1] can_rcv+0xe7/0x180 [ 198.329128][ C1] __netif_receive_skb+0x123/0x280 [ 198.334259][ C1] process_backlog+0x22e/0x440 [ 198.339028][ C1] __napi_poll+0x63/0x3c0 [ 198.343369][ C1] net_rx_action+0x3a1/0x7f0 [ 198.347964][ C1] handle_softirqs+0xbf/0x280 [ 198.352652][ C1] do_softirq+0x5e/0x90 [ 198.356807][ C1] __local_bh_enable_ip+0x6e/0x70 [ 198.361842][ C1] update_defense_level+0x575/0x5b0 [ 198.367062][ C1] defense_work_handler+0x1f/0x80 [ 198.372111][ C1] process_scheduled_works+0x483/0x9a0 [ 198.377587][ C1] worker_thread+0x51d/0x6f0 [ 198.382184][ C1] kthread+0x1d1/0x210 [ 198.386349][ C1] ret_from_fork+0x4b/0x60 [ 198.390777][ C1] ret_from_fork_asm+0x1a/0x30 [ 198.395542][ C1] [ 198.398288][ C1] value changed: 0x00000000000d7220 -> 0x00000000000d7221 [ 198.405477][ C1] [ 198.407884][ C1] Reported by Kernel Concurrency Sanitizer on: [ 198.414108][ C1] CPU: 1 UID: 0 PID: 3344 Comm: kworker/1:4 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 198.424862][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 198.434912][ C1] Workqueue: events_long defense_work_handler [ 198.440992][ C1] ================================================================== [ 198.484713][ C1] ================================================================== [ 198.492817][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 198.499771][ C1] [ 198.502093][ C1] read-write to 0xffff88811542f468 of 8 bytes by interrupt on cpu 0: [ 198.510162][ C1] can_receive+0x62/0x1f0 [ 198.514502][ C1] can_rcv+0xe7/0x180 [ 198.518487][ C1] __netif_receive_skb+0x123/0x280 [ 198.523727][ C1] process_backlog+0x22e/0x440 [ 198.528525][ C1] __napi_poll+0x63/0x3c0 [ 198.532872][ C1] net_rx_action+0x3a1/0x7f0 [ 198.537464][ C1] handle_softirqs+0xbf/0x280 [ 198.542160][ C1] do_softirq+0x5e/0x90 [ 198.546416][ C1] __local_bh_enable_ip+0x6e/0x70 [ 198.551452][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 198.556406][ C1] batadv_dat_purge+0x1e0/0x260 [ 198.561296][ C1] process_scheduled_works+0x483/0x9a0 [ 198.566777][ C1] worker_thread+0x51d/0x6f0 [ 198.571367][ C1] kthread+0x1d1/0x210 [ 198.575444][ C1] ret_from_fork+0x4b/0x60 [ 198.579865][ C1] ret_from_fork_asm+0x1a/0x30 [ 198.584637][ C1] [ 198.586956][ C1] read-write to 0xffff88811542f468 of 8 bytes by interrupt on cpu 1: [ 198.595024][ C1] can_receive+0x62/0x1f0 [ 198.599414][ C1] can_rcv+0xe7/0x180 [ 198.603412][ C1] __netif_receive_skb+0x123/0x280 [ 198.608536][ C1] process_backlog+0x22e/0x440 [ 198.613308][ C1] __napi_poll+0x63/0x3c0 [ 198.617654][ C1] net_rx_action+0x3a1/0x7f0 [ 198.622244][ C1] handle_softirqs+0xbf/0x280 [ 198.626923][ C1] do_softirq+0x5e/0x90 [ 198.631075][ C1] __local_bh_enable_ip+0x6e/0x70 [ 198.636103][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 198.641045][ C1] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 198.646686][ C1] process_scheduled_works+0x483/0x9a0 [ 198.652157][ C1] worker_thread+0x51d/0x6f0 [ 198.656751][ C1] kthread+0x1d1/0x210 [ 198.660831][ C1] ret_from_fork+0x4b/0x60 [ 198.665264][ C1] ret_from_fork_asm+0x1a/0x30 [ 198.670044][ C1] [ 198.672361][ C1] value changed: 0x000000000000ea75 -> 0x000000000000ea77 [ 198.679466][ C1] [ 198.681786][ C1] Reported by Kernel Concurrency Sanitizer on: [ 198.687930][ C1] CPU: 1 UID: 0 PID: 1699 Comm: kworker/u8:6 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 198.698806][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 198.708873][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 198.715649][ C1] ================================================================== [ 198.736313][ C1] ================================================================== [ 198.744413][ C1] BUG: KCSAN: data-race in can_send / can_send [ 198.750584][ C1] [ 198.752900][ C1] read-write to 0xffff88811542f470 of 8 bytes by interrupt on cpu 0: [ 198.760974][ C1] can_send+0x576/0x5d0 [ 198.765139][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 198.769843][ C1] can_rcv_filter+0x225/0x4c0 [ 198.774529][ C1] can_receive+0x182/0x1f0 [ 198.778973][ C1] can_rcv+0xe7/0x180 [ 198.782963][ C1] __netif_receive_skb+0x123/0x280 [ 198.788095][ C1] process_backlog+0x22e/0x440 [ 198.792856][ C1] __napi_poll+0x63/0x3c0 [ 198.797208][ C1] net_rx_action+0x3a1/0x7f0 [ 198.804068][ C1] handle_softirqs+0xbf/0x280 [ 198.808765][ C1] do_softirq+0x5e/0x90 [ 198.812928][ C1] __local_bh_enable_ip+0x6e/0x70 [ 198.817986][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 198.822930][ C1] batadv_dat_purge+0x1e0/0x260 [ 198.827796][ C1] process_scheduled_works+0x483/0x9a0 [ 198.833274][ C1] worker_thread+0x51d/0x6f0 [ 198.837864][ C1] kthread+0x1d1/0x210 [ 198.841935][ C1] ret_from_fork+0x4b/0x60 [ 198.846444][ C1] ret_from_fork_asm+0x1a/0x30 [ 198.851215][ C1] [ 198.853529][ C1] read-write to 0xffff88811542f470 of 8 bytes by interrupt on cpu 1: [ 198.861599][ C1] can_send+0x576/0x5d0 [ 198.865758][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 198.870449][ C1] can_rcv_filter+0x225/0x4c0 [ 198.875132][ C1] can_receive+0x182/0x1f0 [ 198.879552][ C1] can_rcv+0xe7/0x180 [ 198.883544][ C1] __netif_receive_skb+0x123/0x280 [ 198.888677][ C1] process_backlog+0x22e/0x440 [ 198.893441][ C1] __napi_poll+0x63/0x3c0 [ 198.897778][ C1] net_rx_action+0x3a1/0x7f0 [ 198.902370][ C1] handle_softirqs+0xbf/0x280 [ 198.907051][ C1] irq_exit_rcu+0x3e/0x90 [ 198.911395][ C1] sysvec_apic_timer_interrupt+0x73/0x80 [ 198.917049][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 198.923049][ C1] __sanitizer_cov_trace_cmp4+0x35/0x90 [ 198.928605][ C1] should_fail_alloc_page+0x2e/0x110 [ 198.933895][ C1] __alloc_pages_noprof+0x109/0x340 [ 198.939098][ C1] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 198.944494][ C1] alloc_pages_noprof+0xe1/0x100 [ 198.949541][ C1] __vmalloc_node_range_noprof+0x72e/0xec0 [ 198.955363][ C1] bpf_map_area_alloc+0xd8/0x110 [ 198.960323][ C1] prealloc_init+0xd6/0x470 [ 198.964848][ C1] htab_map_alloc+0x630/0x8e0 [ 198.969531][ C1] map_create+0x850/0xb70 [ 198.973871][ C1] __sys_bpf+0x667/0x7a0 [ 198.978116][ C1] __x64_sys_bpf+0x43/0x50 [ 198.982543][ C1] x64_sys_call+0x2625/0x2d60 [ 198.987234][ C1] do_syscall_64+0xc9/0x1c0 [ 198.991741][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.997649][ C1] [ 198.999971][ C1] value changed: 0x0000000000000645 -> 0x0000000000000646 [ 199.007076][ C1] [ 199.009394][ C1] Reported by Kernel Concurrency Sanitizer on: [ 199.015538][ C1] CPU: 1 UID: 0 PID: 12921 Comm: syz.1.2867 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 199.026336][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 199.036394][ C1] ================================================================== [ 199.055009][ C0] ================================================================== [ 199.063105][ C0] BUG: KCSAN: data-race in can_send / can_send [ 199.069270][ C0] [ 199.071591][ C0] read-write to 0xffff88811542f410 of 8 bytes by interrupt on cpu 1: [ 199.079670][ C0] can_send+0x562/0x5d0 [ 199.083838][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 199.088546][ C0] can_rcv_filter+0x225/0x4c0 [ 199.093235][ C0] can_receive+0x182/0x1f0 [ 199.097659][ C0] can_rcv+0xe7/0x180 [ 199.101649][ C0] __netif_receive_skb+0x123/0x280 [ 199.106789][ C0] process_backlog+0x22e/0x440 [ 199.111559][ C0] __napi_poll+0x63/0x3c0 [ 199.115909][ C0] net_rx_action+0x3a1/0x7f0 [ 199.120513][ C0] handle_softirqs+0xbf/0x280 [ 199.125211][ C0] do_softirq+0x5e/0x90 [ 199.129375][ C0] __local_bh_enable_ip+0x6e/0x70 [ 199.134405][ C0] update_defense_level+0x575/0x5b0 [ 199.139625][ C0] defense_work_handler+0x1f/0x80 [ 199.144669][ C0] process_scheduled_works+0x483/0x9a0 [ 199.150143][ C0] worker_thread+0x51d/0x6f0 [ 199.154739][ C0] kthread+0x1d1/0x210 [ 199.158817][ C0] ret_from_fork+0x4b/0x60 [ 199.163331][ C0] ret_from_fork_asm+0x1a/0x30 [ 199.168114][ C0] [ 199.170438][ C0] read-write to 0xffff88811542f410 of 8 bytes by interrupt on cpu 0: [ 199.178513][ C0] can_send+0x562/0x5d0 [ 199.182684][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 199.187378][ C0] can_rcv_filter+0x225/0x4c0 [ 199.192061][ C0] can_receive+0x182/0x1f0 [ 199.196488][ C0] can_rcv+0xe7/0x180 [ 199.200492][ C0] __netif_receive_skb+0x123/0x280 [ 199.205620][ C0] process_backlog+0x22e/0x440 [ 199.210388][ C0] __napi_poll+0x63/0x3c0 [ 199.214729][ C0] net_rx_action+0x3a1/0x7f0 [ 199.219324][ C0] handle_softirqs+0xbf/0x280 [ 199.224000][ C0] do_softirq+0x5e/0x90 [ 199.228161][ C0] __local_bh_enable_ip+0x6e/0x70 [ 199.233190][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 199.238138][ C0] batadv_dat_purge+0x1e0/0x260 [ 199.243002][ C0] process_scheduled_works+0x483/0x9a0 [ 199.248479][ C0] worker_thread+0x51d/0x6f0 [ 199.253072][ C0] kthread+0x1d1/0x210 [ 199.257145][ C0] ret_from_fork+0x4b/0x60 [ 199.261583][ C0] ret_from_fork_asm+0x1a/0x30 [ 199.266360][ C0] [ 199.268677][ C0] value changed: 0x00000000000ec9c5 -> 0x00000000000ec9c7 [ 199.275871][ C0] [ 199.278184][ C0] Reported by Kernel Concurrency Sanitizer on: [ 199.284763][ C0] CPU: 0 UID: 0 PID: 7275 Comm: kworker/u8:10 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 199.295706][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 199.305769][ C0] Workqueue: bat_events batadv_dat_purge [ 199.311429][ C0] ================================================================== [ 200.289559][ C0] ================================================================== [ 200.297667][ C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 200.304877][ C0] [ 200.307194][ C0] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 1: [ 200.315267][ C0] can_rcv_filter+0x237/0x4c0 [ 200.319951][ C0] can_receive+0x182/0x1f0 [ 200.324374][ C0] can_rcv+0xe7/0x180 [ 200.328461][ C0] __netif_receive_skb+0x123/0x280 [ 200.333599][ C0] process_backlog+0x22e/0x440 [ 200.338472][ C0] __napi_poll+0x63/0x3c0 [ 200.342834][ C0] net_rx_action+0x3a1/0x7f0 [ 200.347439][ C0] handle_softirqs+0xbf/0x280 [ 200.352125][ C0] do_softirq+0x5e/0x90 [ 200.356283][ C0] __local_bh_enable_ip+0x6e/0x70 [ 200.361318][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 200.366268][ C0] batadv_nc_purge_paths+0x220/0x270 [ 200.371572][ C0] batadv_nc_worker+0x402/0xad0 [ 200.376531][ C0] process_scheduled_works+0x483/0x9a0 [ 200.382012][ C0] worker_thread+0x51d/0x6f0 [ 200.386605][ C0] kthread+0x1d1/0x210 [ 200.390696][ C0] ret_from_fork+0x4b/0x60 [ 200.395125][ C0] ret_from_fork_asm+0x1a/0x30 [ 200.400001][ C0] [ 200.402318][ C0] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 0: [ 200.410400][ C0] can_rcv_filter+0x237/0x4c0 [ 200.415093][ C0] can_receive+0x182/0x1f0 [ 200.419529][ C0] can_rcv+0xe7/0x180 [ 200.423530][ C0] __netif_receive_skb+0x123/0x280 [ 200.428656][ C0] process_backlog+0x22e/0x440 [ 200.433428][ C0] __napi_poll+0x63/0x3c0 [ 200.437786][ C0] net_rx_action+0x3a1/0x7f0 [ 200.442378][ C0] handle_softirqs+0xbf/0x280 [ 200.447065][ C0] do_softirq+0x5e/0x90 [ 200.451221][ C0] __local_bh_enable_ip+0x6e/0x70 [ 200.456248][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 200.461195][ C0] lock_sock_nested+0x10f/0x140 [ 200.466048][ C0] sockopt_lock_sock+0x42/0x50 [ 200.470908][ C0] do_ip_getsockopt+0xb57/0x11a0 [ 200.475846][ C0] ip_getsockopt+0x5c/0x170 [ 200.480353][ C0] tcp_getsockopt+0xaa/0xe0 [ 200.484864][ C0] sock_common_getsockopt+0x5b/0x70 [ 200.490072][ C0] do_sock_getsockopt+0x1ca/0x260 [ 200.495111][ C0] __sys_getsockopt+0x18a/0x200 [ 200.499975][ C0] __x64_sys_getsockopt+0x66/0x80 [ 200.505016][ C0] x64_sys_call+0x11cd/0x2d60 [ 200.509712][ C0] do_syscall_64+0xc9/0x1c0 [ 200.514222][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.520136][ C0] [ 200.522452][ C0] value changed: 0x000000000011c4a1 -> 0x000000000011c4a2 [ 200.529564][ C0] [ 200.531887][ C0] Reported by Kernel Concurrency Sanitizer on: [ 200.538036][ C0] CPU: 0 UID: 0 PID: 12094 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 200.548974][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 200.559054][ C0] ================================================================== [ 200.586847][ C0] ================================================================== [ 200.594943][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 200.601631][ C0] [ 200.603949][ C0] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 1: [ 200.612014][ C0] can_receive+0x1b6/0x1f0 [ 200.616436][ C0] can_rcv+0xe7/0x180 [ 200.620426][ C0] __netif_receive_skb+0x123/0x280 [ 200.625552][ C0] process_backlog+0x22e/0x440 [ 200.630319][ C0] __napi_poll+0x63/0x3c0 [ 200.634665][ C0] net_rx_action+0x3a1/0x7f0 [ 200.639250][ C0] handle_softirqs+0xbf/0x280 [ 200.643920][ C0] do_softirq+0x5e/0x90 [ 200.648077][ C0] __local_bh_enable_ip+0x6e/0x70 [ 200.653115][ C0] wg_packet_tx_worker+0x2c8/0x360 [ 200.658237][ C0] process_scheduled_works+0x483/0x9a0 [ 200.663710][ C0] worker_thread+0x51d/0x6f0 [ 200.668303][ C0] kthread+0x1d1/0x210 [ 200.672368][ C0] ret_from_fork+0x4b/0x60 [ 200.676781][ C0] ret_from_fork_asm+0x1a/0x30 [ 200.681541][ C0] [ 200.683854][ C0] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 0: [ 200.691912][ C0] can_receive+0x1b6/0x1f0 [ 200.696324][ C0] can_rcv+0xe7/0x180 [ 200.700307][ C0] __netif_receive_skb+0x123/0x280 [ 200.705423][ C0] process_backlog+0x22e/0x440 [ 200.710186][ C0] __napi_poll+0x63/0x3c0 [ 200.714515][ C0] net_rx_action+0x3a1/0x7f0 [ 200.719098][ C0] handle_softirqs+0xbf/0x280 [ 200.723767][ C0] do_softirq+0x5e/0x90 [ 200.727911][ C0] __local_bh_enable_ip+0x6e/0x70 [ 200.732931][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 200.737862][ C0] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 200.743489][ C0] process_scheduled_works+0x483/0x9a0 [ 200.748963][ C0] worker_thread+0x51d/0x6f0 [ 200.753541][ C0] kthread+0x1d1/0x210 [ 200.757606][ C0] ret_from_fork+0x4b/0x60 [ 200.762022][ C0] ret_from_fork_asm+0x1a/0x30 [ 200.766782][ C0] [ 200.769091][ C0] value changed: 0x0000000000121359 -> 0x000000000012135a [ 200.776271][ C0] [ 200.778580][ C0] Reported by Kernel Concurrency Sanitizer on: [ 200.784717][ C0] CPU: 0 UID: 0 PID: 3423 Comm: kworker/u8:7 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 200.795570][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 200.805617][ C0] Workqueue: events_unbound nsim_dev_trap_report_work [ 200.812385][ C0] ================================================================== [ 200.856121][ C1] ================================================================== [ 200.864227][ C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 200.871460][ C1] [ 200.873774][ C1] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 0: [ 200.881842][ C1] can_can_gw_rcv+0x7cb/0x7e0 [ 200.886559][ C1] can_rcv_filter+0x225/0x4c0 [ 200.891250][ C1] can_receive+0x182/0x1f0 [ 200.895677][ C1] can_rcv+0xe7/0x180 [ 200.899663][ C1] __netif_receive_skb+0x123/0x280 [ 200.904792][ C1] process_backlog+0x22e/0x440 [ 200.909556][ C1] __napi_poll+0x63/0x3c0 [ 200.913898][ C1] net_rx_action+0x3a1/0x7f0 [ 200.918486][ C1] handle_softirqs+0xbf/0x280 [ 200.923168][ C1] do_softirq+0x5e/0x90 [ 200.927323][ C1] __local_bh_enable_ip+0x6e/0x70 [ 200.932350][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 200.937293][ C1] wg_packet_decrypt_worker+0x6ac/0x6f0 [ 200.942858][ C1] process_scheduled_works+0x483/0x9a0 [ 200.948335][ C1] worker_thread+0x51d/0x6f0 [ 200.952925][ C1] kthread+0x1d1/0x210 [ 200.957002][ C1] ret_from_fork+0x4b/0x60 [ 200.961422][ C1] ret_from_fork_asm+0x1a/0x30 [ 200.966197][ C1] [ 200.968519][ C1] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 1: [ 200.976591][ C1] can_can_gw_rcv+0x7cb/0x7e0 [ 200.981284][ C1] can_rcv_filter+0x225/0x4c0 [ 200.985978][ C1] can_receive+0x182/0x1f0 [ 200.990400][ C1] can_rcv+0xe7/0x180 [ 200.994393][ C1] __netif_receive_skb+0x123/0x280 [ 200.999527][ C1] process_backlog+0x22e/0x440 [ 201.004295][ C1] __napi_poll+0x63/0x3c0 [ 201.008655][ C1] net_rx_action+0x3a1/0x7f0 [ 201.013248][ C1] handle_softirqs+0xbf/0x280 [ 201.017930][ C1] do_softirq+0x5e/0x90 [ 201.022090][ C1] __local_bh_enable_ip+0x6e/0x70 [ 201.027124][ C1] _raw_write_unlock_bh+0x1f/0x30 [ 201.032154][ C1] __tcp_close+0x642/0x10e0 [ 201.036670][ C1] tcp_close+0x26/0xd0 [ 201.040744][ C1] inet_release+0xce/0xf0 [ 201.045076][ C1] sock_close+0x68/0x150 [ 201.049584][ C1] __fput+0x17a/0x6d0 [ 201.053577][ C1] __fput_sync+0x43/0x60 [ 201.057829][ C1] __se_sys_close+0xf9/0x1a0 [ 201.062437][ C1] __x64_sys_close+0x1f/0x30 [ 201.067034][ C1] x64_sys_call+0x25cb/0x2d60 [ 201.071723][ C1] do_syscall_64+0xc9/0x1c0 [ 201.076228][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.082144][ C1] [ 201.084551][ C1] value changed: 0x00129120 -> 0x00129121 [ 201.090276][ C1] [ 201.092593][ C1] Reported by Kernel Concurrency Sanitizer on: [ 201.098822][ C1] CPU: 1 UID: 0 PID: 12627 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 201.109763][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 201.119821][ C1] ================================================================== [ 201.132535][ C0] ================================================================== [ 201.140623][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 201.147320][ C0] [ 201.149641][ C0] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 1: [ 201.157751][ C0] can_receive+0x1ca/0x1f0 [ 201.162176][ C0] can_rcv+0xe7/0x180 [ 201.166161][ C0] __netif_receive_skb+0x123/0x280 [ 201.171290][ C0] process_backlog+0x22e/0x440 [ 201.176061][ C0] __napi_poll+0x63/0x3c0 [ 201.180406][ C0] net_rx_action+0x3a1/0x7f0 [ 201.185004][ C0] handle_softirqs+0xbf/0x280 [ 201.189693][ C0] do_softirq+0x5e/0x90 [ 201.193852][ C0] __local_bh_enable_ip+0x6e/0x70 [ 201.198886][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 201.203830][ C0] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 201.209472][ C0] process_scheduled_works+0x483/0x9a0 [ 201.214949][ C0] worker_thread+0x51d/0x6f0 [ 201.219539][ C0] kthread+0x1d1/0x210 [ 201.223620][ C0] ret_from_fork+0x4b/0x60 [ 201.228053][ C0] ret_from_fork_asm+0x1a/0x30 [ 201.232838][ C0] [ 201.235153][ C0] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 0: [ 201.243224][ C0] can_receive+0x1ca/0x1f0 [ 201.247644][ C0] can_rcv+0xe7/0x180 [ 201.251639][ C0] __netif_receive_skb+0x123/0x280 [ 201.256772][ C0] process_backlog+0x22e/0x440 [ 201.261556][ C0] __napi_poll+0x63/0x3c0 [ 201.265920][ C0] net_rx_action+0x3a1/0x7f0 [ 201.270541][ C0] handle_softirqs+0xbf/0x280 [ 201.275230][ C0] do_softirq+0x5e/0x90 [ 201.279393][ C0] __local_bh_enable_ip+0x6e/0x70 [ 201.284420][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 201.289365][ C0] batadv_nc_purge_paths+0x220/0x270 [ 201.294666][ C0] batadv_nc_worker+0x3db/0xad0 [ 201.299531][ C0] process_scheduled_works+0x483/0x9a0 [ 201.305011][ C0] worker_thread+0x51d/0x6f0 [ 201.309604][ C0] kthread+0x1d1/0x210 [ 201.314204][ C0] ret_from_fork+0x4b/0x60 [ 201.318630][ C0] ret_from_fork_asm+0x1a/0x30 [ 201.323408][ C0] [ 201.325727][ C0] value changed: 0x000000000000c53e -> 0x000000000000c540 [ 201.332830][ C0] [ 201.335148][ C0] Reported by Kernel Concurrency Sanitizer on: [ 201.341303][ C0] CPU: 0 UID: 0 PID: 40 Comm: kworker/u8:2 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 201.351993][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 201.362057][ C0] Workqueue: bat_events batadv_nc_worker [ 201.367721][ C0] ================================================================== [ 201.376043][ C0] ================================================================== [ 201.384120][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 201.390815][ C0] [ 201.393135][ C0] read-write to 0xffff88811542f408 of 8 bytes by interrupt on cpu 1: [ 201.401200][ C0] can_receive+0x4e/0x1f0 [ 201.405538][ C0] can_rcv+0xe7/0x180 [ 201.409531][ C0] __netif_receive_skb+0x123/0x280 [ 201.414662][ C0] process_backlog+0x22e/0x440 [ 201.419426][ C0] __napi_poll+0x63/0x3c0 [ 201.423779][ C0] net_rx_action+0x3a1/0x7f0 [ 201.428378][ C0] handle_softirqs+0xbf/0x280 [ 201.433056][ C0] run_ksoftirqd+0x1c/0x30 [ 201.437480][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 201.442426][ C0] kthread+0x1d1/0x210 [ 201.446555][ C0] ret_from_fork+0x4b/0x60 [ 201.450985][ C0] ret_from_fork_asm+0x1a/0x30 [ 201.455760][ C0] [ 201.458078][ C0] read-write to 0xffff88811542f408 of 8 bytes by interrupt on cpu 0: [ 201.466144][ C0] can_receive+0x4e/0x1f0 [ 201.470486][ C0] can_rcv+0xe7/0x180 [ 201.474471][ C0] __netif_receive_skb+0x123/0x280 [ 201.479598][ C0] process_backlog+0x22e/0x440 [ 201.484363][ C0] __napi_poll+0x63/0x3c0 [ 201.488706][ C0] net_rx_action+0x3a1/0x7f0 [ 201.493300][ C0] handle_softirqs+0xbf/0x280 [ 201.497984][ C0] do_softirq+0x5e/0x90 [ 201.502142][ C0] __local_bh_enable_ip+0x6e/0x70 [ 201.507175][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 201.512122][ C0] batadv_nc_purge_paths+0x220/0x270 [ 201.517425][ C0] batadv_nc_worker+0x3db/0xad0 [ 201.522289][ C0] process_scheduled_works+0x483/0x9a0 [ 201.527765][ C0] worker_thread+0x51d/0x6f0 [ 201.532364][ C0] kthread+0x1d1/0x210 [ 201.536431][ C0] ret_from_fork+0x4b/0x60 [ 201.540854][ C0] ret_from_fork_asm+0x1a/0x30 [ 201.545633][ C0] [ 201.547955][ C0] value changed: 0x00000000001337f0 -> 0x00000000001337f3 [ 201.555068][ C0] [ 201.557401][ C0] Reported by Kernel Concurrency Sanitizer on: [ 201.563547][ C0] CPU: 0 UID: 0 PID: 40 Comm: kworker/u8:2 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 201.574235][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 201.584310][ C0] Workqueue: bat_events batadv_nc_worker [ 201.589972][ C0] ================================================================== [ 201.606388][ C1] ================================================================== [ 201.614497][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 201.621281][ C1] [ 201.623609][ C1] read-write to 0xffff88811542f468 of 8 bytes by interrupt on cpu 0: [ 201.631687][ C1] can_receive+0x62/0x1f0 [ 201.636022][ C1] can_rcv+0xe7/0x180 [ 201.640003][ C1] __netif_receive_skb+0x123/0x280 [ 201.645129][ C1] process_backlog+0x22e/0x440 [ 201.649892][ C1] __napi_poll+0x63/0x3c0 [ 201.654323][ C1] net_rx_action+0x3a1/0x7f0 [ 201.658916][ C1] handle_softirqs+0xbf/0x280 [ 201.663597][ C1] do_softirq+0x5e/0x90 [ 201.667752][ C1] __local_bh_enable_ip+0x6e/0x70 [ 201.672782][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 201.677755][ C1] batadv_nc_purge_paths+0x220/0x270 [ 201.683068][ C1] batadv_nc_worker+0x3db/0xad0 [ 201.687935][ C1] process_scheduled_works+0x483/0x9a0 [ 201.693417][ C1] worker_thread+0x51d/0x6f0 [ 201.698008][ C1] kthread+0x1d1/0x210 [ 201.702084][ C1] ret_from_fork+0x4b/0x60 [ 201.706506][ C1] ret_from_fork_asm+0x1a/0x30 [ 201.711278][ C1] [ 201.713685][ C1] read-write to 0xffff88811542f468 of 8 bytes by interrupt on cpu 1: [ 201.721751][ C1] can_receive+0x62/0x1f0 [ 201.726086][ C1] can_rcv+0xe7/0x180 [ 201.730073][ C1] __netif_receive_skb+0x123/0x280 [ 201.735211][ C1] process_backlog+0x22e/0x440 [ 201.739986][ C1] __napi_poll+0x63/0x3c0 [ 201.744344][ C1] net_rx_action+0x3a1/0x7f0 [ 201.748943][ C1] handle_softirqs+0xbf/0x280 [ 201.753627][ C1] do_softirq+0x5e/0x90 [ 201.757793][ C1] __local_bh_enable_ip+0x6e/0x70 [ 201.762906][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 201.767860][ C1] lock_sock_nested+0x10f/0x140 [ 201.772727][ C1] sockopt_lock_sock+0x42/0x50 [ 201.777500][ C1] do_ip_getsockopt+0xb57/0x11a0 [ 201.782439][ C1] ip_getsockopt+0x5c/0x170 [ 201.786944][ C1] tcp_getsockopt+0xaa/0xe0 [ 201.791472][ C1] sock_common_getsockopt+0x5b/0x70 [ 201.796694][ C1] do_sock_getsockopt+0x1ca/0x260 [ 201.801736][ C1] __sys_getsockopt+0x18a/0x200 [ 201.806605][ C1] __x64_sys_getsockopt+0x66/0x80 [ 201.811639][ C1] x64_sys_call+0x11cd/0x2d60 [ 201.816327][ C1] do_syscall_64+0xc9/0x1c0 [ 201.820843][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.826758][ C1] [ 201.829077][ C1] value changed: 0x0000000000003953 -> 0x0000000000003955 [ 201.836187][ C1] [ 201.838506][ C1] Reported by Kernel Concurrency Sanitizer on: [ 201.844656][ C1] CPU: 1 UID: 0 PID: 10027 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 201.855601][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 201.865659][ C1] ================================================================== [ 201.879747][ C1] ================================================================== [ 201.887864][ C1] BUG: KCSAN: data-race in can_send / can_send [ 201.894119][ C1] [ 201.896443][ C1] read-write to 0xffff88811542f470 of 8 bytes by interrupt on cpu 0: [ 201.904510][ C1] can_send+0x576/0x5d0 [ 201.908677][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 201.913368][ C1] can_rcv_filter+0x225/0x4c0 [ 201.918053][ C1] can_receive+0x182/0x1f0 [ 201.922485][ C1] can_rcv+0xe7/0x180 [ 201.926487][ C1] __netif_receive_skb+0x123/0x280 [ 201.931617][ C1] process_backlog+0x22e/0x440 [ 201.936391][ C1] __napi_poll+0x63/0x3c0 [ 201.940733][ C1] net_rx_action+0x3a1/0x7f0 [ 201.945338][ C1] handle_softirqs+0xbf/0x280 [ 201.950022][ C1] do_softirq+0x5e/0x90 [ 201.954179][ C1] __local_bh_enable_ip+0x6e/0x70 [ 201.959211][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 201.964157][ C1] lock_sock_nested+0x10f/0x140 [ 201.969040][ C1] tcp_close+0x1b/0xd0 [ 201.973152][ C1] inet_release+0xce/0xf0 [ 201.977483][ C1] sock_close+0x68/0x150 [ 201.981729][ C1] __fput+0x17a/0x6d0 [ 201.985716][ C1] __fput_sync+0x43/0x60 [ 201.989969][ C1] __se_sys_close+0xf9/0x1a0 [ 201.994573][ C1] __x64_sys_close+0x1f/0x30 [ 201.999178][ C1] x64_sys_call+0x25cb/0x2d60 [ 202.003867][ C1] do_syscall_64+0xc9/0x1c0 [ 202.008376][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.014315][ C1] [ 202.016638][ C1] read-write to 0xffff88811542f470 of 8 bytes by interrupt on cpu 1: [ 202.024715][ C1] can_send+0x576/0x5d0 [ 202.028896][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 202.033591][ C1] can_rcv_filter+0x225/0x4c0 [ 202.038274][ C1] can_receive+0x182/0x1f0 [ 202.042693][ C1] can_rcv+0xe7/0x180 [ 202.046683][ C1] __netif_receive_skb+0x123/0x280 [ 202.051807][ C1] process_backlog+0x22e/0x440 [ 202.056588][ C1] __napi_poll+0x63/0x3c0 [ 202.060944][ C1] net_rx_action+0x3a1/0x7f0 [ 202.065540][ C1] handle_softirqs+0xbf/0x280 [ 202.070230][ C1] run_ksoftirqd+0x1c/0x30 [ 202.074677][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 202.079624][ C1] kthread+0x1d1/0x210 [ 202.083706][ C1] ret_from_fork+0x4b/0x60 [ 202.088130][ C1] ret_from_fork_asm+0x1a/0x30 [ 202.092912][ C1] [ 202.095229][ C1] value changed: 0x000000000000b0c8 -> 0x000000000000b0c9 [ 202.102338][ C1] [ 202.104655][ C1] Reported by Kernel Concurrency Sanitizer on: [ 202.110805][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 202.121411][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 202.131472][ C1] ================================================================== [ 202.148005][ C0] ================================================================== [ 202.156089][ C0] BUG: KCSAN: data-race in can_send / can_send [ 202.162250][ C0] [ 202.164571][ C0] read-write to 0xffff88811542f410 of 8 bytes by interrupt on cpu 1: [ 202.172635][ C0] can_send+0x562/0x5d0 [ 202.176796][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 202.181494][ C0] can_rcv_filter+0x225/0x4c0 [ 202.186180][ C0] can_receive+0x182/0x1f0 [ 202.190607][ C0] can_rcv+0xe7/0x180 [ 202.194597][ C0] __netif_receive_skb+0x123/0x280 [ 202.199723][ C0] process_backlog+0x22e/0x440 [ 202.204495][ C0] __napi_poll+0x63/0x3c0 [ 202.208858][ C0] net_rx_action+0x3a1/0x7f0 [ 202.213453][ C0] handle_softirqs+0xbf/0x280 [ 202.218140][ C0] do_softirq+0x5e/0x90 [ 202.222303][ C0] __local_bh_enable_ip+0x6e/0x70 [ 202.227418][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 202.232369][ C0] wg_packet_encrypt_worker+0x9ef/0xa30 [ 202.238013][ C0] process_scheduled_works+0x483/0x9a0 [ 202.243501][ C0] worker_thread+0x51d/0x6f0 [ 202.248092][ C0] kthread+0x1d1/0x210 [ 202.252165][ C0] ret_from_fork+0x4b/0x60 [ 202.256592][ C0] ret_from_fork_asm+0x1a/0x30 [ 202.261367][ C0] [ 202.263684][ C0] read-write to 0xffff88811542f410 of 8 bytes by interrupt on cpu 0: [ 202.271747][ C0] can_send+0x562/0x5d0 [ 202.275898][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 202.280582][ C0] can_rcv_filter+0x225/0x4c0 [ 202.285253][ C0] can_receive+0x182/0x1f0 [ 202.289665][ C0] can_rcv+0xe7/0x180 [ 202.293639][ C0] __netif_receive_skb+0x123/0x280 [ 202.298753][ C0] process_backlog+0x22e/0x440 [ 202.303505][ C0] __napi_poll+0x63/0x3c0 [ 202.307835][ C0] net_rx_action+0x3a1/0x7f0 [ 202.312418][ C0] handle_softirqs+0xbf/0x280 [ 202.317088][ C0] run_ksoftirqd+0x1c/0x30 [ 202.321497][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 202.326425][ C0] kthread+0x1d1/0x210 [ 202.330488][ C0] ret_from_fork+0x4b/0x60 [ 202.334896][ C0] ret_from_fork_asm+0x1a/0x30 [ 202.339656][ C0] [ 202.341968][ C0] value changed: 0x00000000001464f9 -> 0x00000000001464fc [ 202.349063][ C0] [ 202.351373][ C0] Reported by Kernel Concurrency Sanitizer on: [ 202.357509][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 202.368091][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 202.378142][ C0] ================================================================== [ 203.298912][ C1] ================================================================== [ 203.307017][ C1] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 203.314223][ C1] [ 203.316542][ C1] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 0: [ 203.324608][ C1] can_rcv_filter+0x237/0x4c0 [ 203.329294][ C1] can_receive+0x182/0x1f0 [ 203.333720][ C1] can_rcv+0xe7/0x180 [ 203.337712][ C1] __netif_receive_skb+0x123/0x280 [ 203.342847][ C1] process_backlog+0x22e/0x440 [ 203.347616][ C1] __napi_poll+0x63/0x3c0 [ 203.351959][ C1] net_rx_action+0x3a1/0x7f0 [ 203.356554][ C1] handle_softirqs+0xbf/0x280 [ 203.364638][ C1] do_softirq+0x5e/0x90 [ 203.368819][ C1] __local_bh_enable_ip+0x6e/0x70 [ 203.373949][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 203.378894][ C1] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 203.384543][ C1] process_scheduled_works+0x483/0x9a0 [ 203.390027][ C1] worker_thread+0x51d/0x6f0 [ 203.394614][ C1] kthread+0x1d1/0x210 [ 203.398686][ C1] ret_from_fork+0x4b/0x60 [ 203.403197][ C1] ret_from_fork_asm+0x1a/0x30 [ 203.407982][ C1] [ 203.410306][ C1] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 1: [ 203.418372][ C1] can_rcv_filter+0x237/0x4c0 [ 203.423058][ C1] can_receive+0x182/0x1f0 [ 203.427520][ C1] can_rcv+0xe7/0x180 [ 203.431511][ C1] __netif_receive_skb+0x123/0x280 [ 203.436639][ C1] process_backlog+0x22e/0x440 [ 203.441405][ C1] __napi_poll+0x63/0x3c0 [ 203.445747][ C1] net_rx_action+0x3a1/0x7f0 [ 203.450338][ C1] handle_softirqs+0xbf/0x280 [ 203.455025][ C1] do_softirq+0x5e/0x90 [ 203.459183][ C1] __local_bh_enable_ip+0x6e/0x70 [ 203.464214][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 203.469162][ C1] batadv_nc_purge_paths+0x220/0x270 [ 203.474463][ C1] batadv_nc_worker+0x3db/0xad0 [ 203.479331][ C1] process_scheduled_works+0x483/0x9a0 [ 203.484812][ C1] worker_thread+0x51d/0x6f0 [ 203.489412][ C1] kthread+0x1d1/0x210 [ 203.493575][ C1] ret_from_fork+0x4b/0x60 [ 203.497997][ C1] ret_from_fork_asm+0x1a/0x30 [ 203.502768][ C1] [ 203.505085][ C1] value changed: 0x00000000001705c3 -> 0x00000000001705c5 [ 203.512191][ C1] [ 203.514520][ C1] Reported by Kernel Concurrency Sanitizer on: [ 203.520679][ C1] CPU: 1 UID: 0 PID: 40 Comm: kworker/u8:2 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 203.531388][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 203.541458][ C1] Workqueue: bat_events batadv_nc_worker [ 203.547117][ C1] ================================================================== [ 203.601930][ C0] ================================================================== [ 203.610034][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 203.616738][ C0] [ 203.619057][ C0] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 1: [ 203.627124][ C0] can_receive+0x1b6/0x1f0 [ 203.631550][ C0] can_rcv+0xe7/0x180 [ 203.635538][ C0] __netif_receive_skb+0x123/0x280 [ 203.640665][ C0] process_backlog+0x22e/0x440 [ 203.645431][ C0] __napi_poll+0x63/0x3c0 [ 203.649774][ C0] net_rx_action+0x3a1/0x7f0 [ 203.654374][ C0] handle_softirqs+0xbf/0x280 [ 203.659059][ C0] do_softirq+0x5e/0x90 [ 203.663227][ C0] __local_bh_enable_ip+0x6e/0x70 [ 203.668264][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 203.673210][ C0] batadv_nc_purge_paths+0x220/0x270 [ 203.678518][ C0] batadv_nc_worker+0x3db/0xad0 [ 203.683383][ C0] process_scheduled_works+0x483/0x9a0 [ 203.688868][ C0] worker_thread+0x51d/0x6f0 [ 203.693468][ C0] kthread+0x1d1/0x210 [ 203.697547][ C0] ret_from_fork+0x4b/0x60 [ 203.701969][ C0] ret_from_fork_asm+0x1a/0x30 [ 203.706744][ C0] [ 203.709063][ C0] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 0: [ 203.717123][ C0] can_receive+0x1b6/0x1f0 [ 203.721540][ C0] can_rcv+0xe7/0x180 [ 203.725526][ C0] __netif_receive_skb+0x123/0x280 [ 203.730653][ C0] process_backlog+0x22e/0x440 [ 203.735415][ C0] __napi_poll+0x63/0x3c0 [ 203.739752][ C0] net_rx_action+0x3a1/0x7f0 [ 203.744335][ C0] handle_softirqs+0xbf/0x280 [ 203.749011][ C0] do_softirq+0x5e/0x90 [ 203.753160][ C0] __local_bh_enable_ip+0x6e/0x70 [ 203.759308][ C0] xt_replace_table+0x261/0x460 [ 203.764158][ C0] __do_replace+0xcc/0x570 [ 203.768576][ C0] do_ipt_set_ctl+0x811/0x8b0 [ 203.773258][ C0] nf_setsockopt+0x195/0x1b0 [ 203.777937][ C0] ip_setsockopt+0xea/0x100 [ 203.782431][ C0] tcp_setsockopt+0x93/0xb0 [ 203.786931][ C0] sock_common_setsockopt+0x64/0x80 [ 203.792130][ C0] __sys_setsockopt+0x1cc/0x240 [ 203.796979][ C0] __x64_sys_setsockopt+0x66/0x80 [ 203.802004][ C0] x64_sys_call+0x278d/0x2d60 [ 203.806680][ C0] do_syscall_64+0xc9/0x1c0 [ 203.811176][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.817070][ C0] [ 203.819384][ C0] value changed: 0x000000000017bbe6 -> 0x000000000017bbe9 [ 203.826479][ C0] [ 203.828789][ C0] Reported by Kernel Concurrency Sanitizer on: [ 203.834926][ C0] CPU: 0 UID: 0 PID: 12094 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 203.845854][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 203.855921][ C0] ================================================================== [ 203.869909][ C1] ================================================================== [ 203.878006][ C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 203.885235][ C1] [ 203.887558][ C1] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 0: [ 203.895626][ C1] can_can_gw_rcv+0x7cb/0x7e0 [ 203.900318][ C1] can_rcv_filter+0x225/0x4c0 [ 203.905004][ C1] can_receive+0x182/0x1f0 [ 203.909424][ C1] can_rcv+0xe7/0x180 [ 203.913411][ C1] __netif_receive_skb+0x123/0x280 [ 203.918545][ C1] process_backlog+0x22e/0x440 [ 203.923316][ C1] __napi_poll+0x63/0x3c0 [ 203.927663][ C1] net_rx_action+0x3a1/0x7f0 [ 203.932256][ C1] handle_softirqs+0xbf/0x280 [ 203.936937][ C1] run_ksoftirqd+0x1c/0x30 [ 203.941364][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 203.946310][ C1] kthread+0x1d1/0x210 [ 203.950387][ C1] ret_from_fork+0x4b/0x60 [ 203.954813][ C1] ret_from_fork_asm+0x1a/0x30 [ 203.959591][ C1] [ 203.961922][ C1] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 1: [ 203.969982][ C1] can_can_gw_rcv+0x7cb/0x7e0 [ 203.974670][ C1] can_rcv_filter+0x225/0x4c0 [ 203.979359][ C1] can_receive+0x182/0x1f0 [ 203.983779][ C1] can_rcv+0xe7/0x180 [ 203.987782][ C1] __netif_receive_skb+0x123/0x280 [ 203.992909][ C1] process_backlog+0x22e/0x440 [ 203.997675][ C1] __napi_poll+0x63/0x3c0 [ 204.002019][ C1] net_rx_action+0x3a1/0x7f0 [ 204.006613][ C1] handle_softirqs+0xbf/0x280 [ 204.011300][ C1] do_softirq+0x5e/0x90 [ 204.015456][ C1] __local_bh_enable_ip+0x6e/0x70 [ 204.020486][ C1] wg_timers_any_authenticated_packet_traversal+0xe5/0x110 [ 204.027701][ C1] wg_packet_tx_worker+0xe9/0x360 [ 204.032743][ C1] process_scheduled_works+0x483/0x9a0 [ 204.038219][ C1] worker_thread+0x51d/0x6f0 [ 204.042810][ C1] kthread+0x1d1/0x210 [ 204.046883][ C1] ret_from_fork+0x4b/0x60 [ 204.051316][ C1] ret_from_fork_asm+0x1a/0x30 [ 204.056103][ C1] [ 204.058425][ C1] value changed: 0x0017e436 -> 0x0017e437 [ 204.064144][ C1] [ 204.066468][ C1] Reported by Kernel Concurrency Sanitizer on: [ 204.072613][ C1] CPU: 1 UID: 0 PID: 35 Comm: kworker/1:1 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 204.083206][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 204.093265][ C1] Workqueue: wg-crypt-wg0 wg_packet_tx_worker [ 204.099357][ C1] ================================================================== [ 204.158521][ C1] ================================================================== [ 204.166648][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 204.173338][ C1] [ 204.175657][ C1] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 0: [ 204.183718][ C1] can_receive+0x1ca/0x1f0 [ 204.188142][ C1] can_rcv+0xe7/0x180 [ 204.192128][ C1] __netif_receive_skb+0x123/0x280 [ 204.197347][ C1] process_backlog+0x22e/0x440 [ 204.202123][ C1] __napi_poll+0x63/0x3c0 [ 204.206476][ C1] net_rx_action+0x3a1/0x7f0 [ 204.211075][ C1] handle_softirqs+0xbf/0x280 [ 204.215755][ C1] run_ksoftirqd+0x1c/0x30 [ 204.220178][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 204.225117][ C1] kthread+0x1d1/0x210 [ 204.229194][ C1] ret_from_fork+0x4b/0x60 [ 204.233619][ C1] ret_from_fork_asm+0x1a/0x30 [ 204.238395][ C1] [ 204.240713][ C1] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 1: [ 204.248773][ C1] can_receive+0x1ca/0x1f0 [ 204.253197][ C1] can_rcv+0xe7/0x180 [ 204.257187][ C1] __netif_receive_skb+0x123/0x280 [ 204.262310][ C1] process_backlog+0x22e/0x440 [ 204.267086][ C1] __napi_poll+0x63/0x3c0 [ 204.271432][ C1] net_rx_action+0x3a1/0x7f0 [ 204.276027][ C1] handle_softirqs+0xbf/0x280 [ 204.280713][ C1] do_softirq+0x5e/0x90 [ 204.284965][ C1] __local_bh_enable_ip+0x6e/0x70 [ 204.289994][ C1] update_defense_level+0x575/0x5b0 [ 204.295211][ C1] defense_work_handler+0x1f/0x80 [ 204.300253][ C1] process_scheduled_works+0x483/0x9a0 [ 204.305732][ C1] worker_thread+0x51d/0x6f0 [ 204.310338][ C1] kthread+0x1d1/0x210 [ 204.314416][ C1] ret_from_fork+0x4b/0x60 [ 204.318839][ C1] ret_from_fork_asm+0x1a/0x30 [ 204.323613][ C1] [ 204.325934][ C1] value changed: 0x000000000000e74c -> 0x000000000000e74e [ 204.333036][ C1] [ 204.335361][ C1] Reported by Kernel Concurrency Sanitizer on: [ 204.341509][ C1] CPU: 1 UID: 0 PID: 12941 Comm: kworker/1:7 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 204.352361][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 204.362422][ C1] Workqueue: events_long defense_work_handler [ 204.368509][ C1] ================================================================== [ 204.396322][ C0] ================================================================== [ 204.404668][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 204.411359][ C0] [ 204.413672][ C0] read-write to 0xffff88811542f408 of 8 bytes by interrupt on cpu 1: [ 204.421735][ C0] can_receive+0x4e/0x1f0 [ 204.426068][ C0] can_rcv+0xe7/0x180 [ 204.430054][ C0] __netif_receive_skb+0x123/0x280 [ 204.435193][ C0] process_backlog+0x22e/0x440 [ 204.439957][ C0] __napi_poll+0x63/0x3c0 [ 204.444301][ C0] net_rx_action+0x3a1/0x7f0 [ 204.448892][ C0] handle_softirqs+0xbf/0x280 [ 204.453573][ C0] run_ksoftirqd+0x1c/0x30 [ 204.457994][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 204.462931][ C0] kthread+0x1d1/0x210 [ 204.467004][ C0] ret_from_fork+0x4b/0x60 [ 204.471431][ C0] ret_from_fork_asm+0x1a/0x30 [ 204.476207][ C0] [ 204.478524][ C0] read-write to 0xffff88811542f408 of 8 bytes by interrupt on cpu 0: [ 204.486583][ C0] can_receive+0x4e/0x1f0 [ 204.490915][ C0] can_rcv+0xe7/0x180 [ 204.495086][ C0] __netif_receive_skb+0x123/0x280 [ 204.500220][ C0] process_backlog+0x22e/0x440 [ 204.504990][ C0] __napi_poll+0x63/0x3c0 [ 204.509334][ C0] net_rx_action+0x3a1/0x7f0 [ 204.513928][ C0] handle_softirqs+0xbf/0x280 [ 204.518609][ C0] do_softirq+0x5e/0x90 [ 204.522772][ C0] __local_bh_enable_ip+0x6e/0x70 [ 204.527805][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 204.532744][ C0] lock_sock_nested+0x10f/0x140 [ 204.537608][ C0] tcp_recvmsg+0x121/0x490 [ 204.542028][ C0] inet_recvmsg+0xbd/0x290 [ 204.546451][ C0] sock_recvmsg+0xfe/0x170 [ 204.550874][ C0] sock_read_iter+0x14c/0x1a0 [ 204.555549][ C0] vfs_read+0x5f6/0x720 [ 204.559718][ C0] ksys_read+0xeb/0x1b0 [ 204.563878][ C0] __x64_sys_read+0x42/0x50 [ 204.568396][ C0] x64_sys_call+0x27d3/0x2d60 [ 204.573081][ C0] do_syscall_64+0xc9/0x1c0 [ 204.577585][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.583494][ C0] [ 204.585828][ C0] value changed: 0x000000000018ba7b -> 0x000000000018ba7d [ 204.592930][ C0] [ 204.595248][ C0] Reported by Kernel Concurrency Sanitizer on: [ 204.601390][ C0] CPU: 0 UID: 0 PID: 3223 Comm: syz-executor Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 204.612242][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 204.622300][ C0] ================================================================== [ 204.667778][ C1] ================================================================== [ 204.675873][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 204.682566][ C1] [ 204.684890][ C1] read-write to 0xffff88811542f468 of 8 bytes by interrupt on cpu 0: [ 204.692962][ C1] can_receive+0x62/0x1f0 [ 204.697308][ C1] can_rcv+0xe7/0x180 [ 204.701298][ C1] __netif_receive_skb+0x123/0x280 [ 204.706428][ C1] process_backlog+0x22e/0x440 [ 204.711190][ C1] __napi_poll+0x63/0x3c0 [ 204.715535][ C1] net_rx_action+0x3a1/0x7f0 [ 204.720125][ C1] handle_softirqs+0xbf/0x280 [ 204.724803][ C1] do_softirq+0x5e/0x90 [ 204.728969][ C1] __local_bh_enable_ip+0x6e/0x70 [ 204.734004][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 204.738959][ C1] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 204.744610][ C1] process_scheduled_works+0x483/0x9a0 [ 204.750094][ C1] worker_thread+0x51d/0x6f0 [ 204.754686][ C1] kthread+0x1d1/0x210 [ 204.758763][ C1] ret_from_fork+0x4b/0x60 [ 204.763186][ C1] ret_from_fork_asm+0x1a/0x30 [ 204.767972][ C1] [ 204.770290][ C1] read-write to 0xffff88811542f468 of 8 bytes by interrupt on cpu 1: [ 204.778359][ C1] can_receive+0x62/0x1f0 [ 204.782687][ C1] can_rcv+0xe7/0x180 [ 204.786662][ C1] __netif_receive_skb+0x123/0x280 [ 204.791772][ C1] process_backlog+0x22e/0x440 [ 204.796525][ C1] __napi_poll+0x63/0x3c0 [ 204.800853][ C1] net_rx_action+0x3a1/0x7f0 [ 204.805443][ C1] handle_softirqs+0xbf/0x280 [ 204.810122][ C1] run_ksoftirqd+0x1c/0x30 [ 204.814536][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 204.819467][ C1] kthread+0x1d1/0x210 [ 204.823528][ C1] ret_from_fork+0x4b/0x60 [ 204.827952][ C1] ret_from_fork_asm+0x1a/0x30 [ 204.832730][ C1] [ 204.835041][ C1] value changed: 0x0000000000004031 -> 0x0000000000004032 [ 204.842135][ C1] [ 204.844447][ C1] Reported by Kernel Concurrency Sanitizer on: [ 204.850583][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 204.861167][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 204.871217][ C1] ================================================================== [ 204.951055][ C0] ================================================================== [ 204.959160][ C0] BUG: KCSAN: data-race in can_send / can_send [ 204.965324][ C0] [ 204.967638][ C0] read-write to 0xffff88811542f470 of 8 bytes by interrupt on cpu 1: [ 204.975702][ C0] can_send+0x576/0x5d0 [ 204.979862][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 204.984562][ C0] can_rcv_filter+0x225/0x4c0 [ 204.989238][ C0] can_receive+0x182/0x1f0 [ 204.993655][ C0] can_rcv+0xe7/0x180 [ 204.997640][ C0] __netif_receive_skb+0x123/0x280 [ 205.002765][ C0] process_backlog+0x22e/0x440 [ 205.007531][ C0] __napi_poll+0x63/0x3c0 [ 205.011871][ C0] net_rx_action+0x3a1/0x7f0 [ 205.016467][ C0] handle_softirqs+0xbf/0x280 [ 205.021152][ C0] do_softirq+0x5e/0x90 [ 205.025316][ C0] __local_bh_enable_ip+0x6e/0x70 [ 205.030437][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 205.035382][ C0] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 205.041016][ C0] process_scheduled_works+0x483/0x9a0 [ 205.046496][ C0] worker_thread+0x51d/0x6f0 [ 205.051088][ C0] kthread+0x1d1/0x210 [ 205.055249][ C0] ret_from_fork+0x4b/0x60 [ 205.059674][ C0] ret_from_fork_asm+0x1a/0x30 [ 205.064468][ C0] [ 205.066795][ C0] read-write to 0xffff88811542f470 of 8 bytes by interrupt on cpu 0: [ 205.074856][ C0] can_send+0x576/0x5d0 [ 205.079013][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 205.083704][ C0] can_rcv_filter+0x225/0x4c0 [ 205.088388][ C0] can_receive+0x182/0x1f0 [ 205.092806][ C0] can_rcv+0xe7/0x180 [ 205.096793][ C0] __netif_receive_skb+0x123/0x280 [ 205.101918][ C0] process_backlog+0x22e/0x440 [ 205.106686][ C0] __napi_poll+0x63/0x3c0 [ 205.111026][ C0] net_rx_action+0x3a1/0x7f0 [ 205.115611][ C0] handle_softirqs+0xbf/0x280 [ 205.120290][ C0] do_softirq+0x5e/0x90 [ 205.124446][ C0] __local_bh_enable_ip+0x6e/0x70 [ 205.129475][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 205.134425][ C0] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 205.140068][ C0] process_scheduled_works+0x483/0x9a0 [ 205.145640][ C0] worker_thread+0x51d/0x6f0 [ 205.150489][ C0] kthread+0x1d1/0x210 [ 205.154565][ C0] ret_from_fork+0x4b/0x60 [ 205.159006][ C0] ret_from_fork_asm+0x1a/0x30 [ 205.163779][ C0] [ 205.166100][ C0] value changed: 0x000000000000a481 -> 0x000000000000a483 [ 205.173204][ C0] [ 205.175524][ C0] Reported by Kernel Concurrency Sanitizer on: [ 205.181664][ C0] CPU: 0 UID: 0 PID: 3650 Comm: kworker/u8:8 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 205.192513][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 205.202569][ C0] Workqueue: events_unbound nsim_dev_trap_report_work [ 205.209343][ C0] ================================================================== [ 205.225499][ C1] ================================================================== [ 205.233677][ C1] BUG: KCSAN: data-race in can_send / can_send [ 205.239851][ C1] [ 205.242173][ C1] read-write to 0xffff88811542f410 of 8 bytes by interrupt on cpu 0: [ 205.250292][ C1] can_send+0x562/0x5d0 [ 205.254466][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 205.259168][ C1] can_rcv_filter+0x225/0x4c0 [ 205.263885][ C1] can_receive+0x182/0x1f0 [ 205.268334][ C1] can_rcv+0xe7/0x180 [ 205.272341][ C1] __netif_receive_skb+0x123/0x280 [ 205.277476][ C1] process_backlog+0x22e/0x440 [ 205.282245][ C1] __napi_poll+0x63/0x3c0 [ 205.286590][ C1] net_rx_action+0x3a1/0x7f0 [ 205.291199][ C1] handle_softirqs+0xbf/0x280 [ 205.295894][ C1] do_softirq+0x5e/0x90 [ 205.300065][ C1] __local_bh_enable_ip+0x6e/0x70 [ 205.305102][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 205.310048][ C1] wg_packet_encrypt_worker+0x186/0xa30 [ 205.315613][ C1] process_scheduled_works+0x483/0x9a0 [ 205.321091][ C1] worker_thread+0x51d/0x6f0 [ 205.325682][ C1] kthread+0x1d1/0x210 [ 205.329761][ C1] ret_from_fork+0x4b/0x60 [ 205.334183][ C1] ret_from_fork_asm+0x1a/0x30 [ 205.338961][ C1] [ 205.341283][ C1] read-write to 0xffff88811542f410 of 8 bytes by interrupt on cpu 1: [ 205.349353][ C1] can_send+0x562/0x5d0 [ 205.353512][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 205.358209][ C1] can_rcv_filter+0x225/0x4c0 [ 205.362892][ C1] can_receive+0x182/0x1f0 [ 205.367402][ C1] can_rcv+0xe7/0x180 [ 205.371394][ C1] __netif_receive_skb+0x123/0x280 [ 205.376516][ C1] process_backlog+0x22e/0x440 [ 205.381288][ C1] __napi_poll+0x63/0x3c0 [ 205.385630][ C1] net_rx_action+0x3a1/0x7f0 [ 205.390227][ C1] handle_softirqs+0xbf/0x280 [ 205.394919][ C1] do_softirq+0x5e/0x90 [ 205.399079][ C1] __local_bh_enable_ip+0x6e/0x70 [ 205.404108][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 205.409057][ C1] batadv_dat_purge+0x1e0/0x260 [ 205.413924][ C1] process_scheduled_works+0x483/0x9a0 [ 205.419398][ C1] worker_thread+0x51d/0x6f0 [ 205.423992][ C1] kthread+0x1d1/0x210 [ 205.428068][ C1] ret_from_fork+0x4b/0x60 [ 205.432496][ C1] ret_from_fork_asm+0x1a/0x30 [ 205.437285][ C1] [ 205.439608][ C1] value changed: 0x00000000001a1bec -> 0x00000000001a1bef [ 205.446722][ C1] [ 205.449045][ C1] Reported by Kernel Concurrency Sanitizer on: [ 205.455204][ C1] CPU: 1 UID: 0 PID: 3423 Comm: kworker/u8:7 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 205.466065][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 205.476144][ C1] Workqueue: bat_events batadv_dat_purge [ 205.481806][ C1] ================================================================== [ 206.084002][T12944] loop2: detected capacity change from 0 to 512 [ 206.309955][ C1] ================================================================== [ 206.316847][T12944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 206.318047][ C1] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 206.337609][ C1] [ 206.339930][ C1] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 0: [ 206.347991][ C1] can_rcv_filter+0x237/0x4c0 [ 206.352674][ C1] can_receive+0x182/0x1f0 [ 206.357097][ C1] can_rcv+0xe7/0x180 [ 206.361079][ C1] __netif_receive_skb+0x123/0x280 [ 206.366206][ C1] process_backlog+0x22e/0x440 [ 206.370972][ C1] __napi_poll+0x63/0x3c0 [ 206.375326][ C1] net_rx_action+0x3a1/0x7f0 [ 206.379915][ C1] handle_softirqs+0xbf/0x280 [ 206.384594][ C1] do_softirq+0x5e/0x90 [ 206.384883][T12944] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 206.388744][ C1] __local_bh_enable_ip+0x6e/0x70 [ 206.388769][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 206.388794][ C1] lock_sock_nested+0x10f/0x140 [ 206.388815][ C1] tcp_recvmsg+0x121/0x490 [ 206.388844][ C1] inet_recvmsg+0xbd/0x290 [ 206.388867][ C1] sock_recvmsg+0xfe/0x170 [ 206.388889][ C1] sock_read_iter+0x14c/0x1a0 [ 206.388911][ C1] vfs_read+0x5f6/0x720 [ 206.388941][ C1] ksys_read+0xeb/0x1b0 [ 206.388967][ C1] __x64_sys_read+0x42/0x50 [ 206.388999][ C1] x64_sys_call+0x27d3/0x2d60 [ 206.389027][ C1] do_syscall_64+0xc9/0x1c0 [ 206.389046][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.389081][ C1] [ 206.389086][ C1] read-write to 0xffff8881012a2428 of 8 bytes by interrupt on cpu 1: [ 206.389104][ C1] can_rcv_filter+0x237/0x4c0 [ 206.389128][ C1] can_receive+0x182/0x1f0 [ 206.389147][ C1] can_rcv+0xe7/0x180 [ 206.389167][ C1] __netif_receive_skb+0x123/0x280 [ 206.389199][ C1] process_backlog+0x22e/0x440 [ 206.389220][ C1] __napi_poll+0x63/0x3c0 [ 206.389252][ C1] net_rx_action+0x3a1/0x7f0 [ 206.389272][ C1] handle_softirqs+0xbf/0x280 [ 206.389289][ C1] do_softirq+0x5e/0x90 [ 206.389309][ C1] __local_bh_enable_ip+0x6e/0x70 [ 206.389328][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 206.389352][ C1] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 206.389375][ C1] process_scheduled_works+0x483/0x9a0 [ 206.389411][ C1] worker_thread+0x51d/0x6f0 [ 206.389428][ C1] kthread+0x1d1/0x210 [ 206.541234][ C1] ret_from_fork+0x4b/0x60 [ 206.545667][ C1] ret_from_fork_asm+0x1a/0x30 [ 206.550445][ C1] [ 206.552769][ C1] value changed: 0x00000000001c7900 -> 0x00000000001c7901 [ 206.559867][ C1] [ 206.562186][ C1] Reported by Kernel Concurrency Sanitizer on: [ 206.568331][ C1] CPU: 1 UID: 0 PID: 3650 Comm: kworker/u8:8 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 206.579178][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 206.589235][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 206.596009][ C1] ================================================================== [ 206.611200][ C1] ================================================================== [ 206.619292][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 206.625980][ C1] [ 206.628301][ C1] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 0: [ 206.636364][ C1] can_receive+0x1b6/0x1f0 [ 206.640786][ C1] can_rcv+0xe7/0x180 [ 206.644778][ C1] __netif_receive_skb+0x123/0x280 [ 206.649916][ C1] process_backlog+0x22e/0x440 [ 206.654685][ C1] __napi_poll+0x63/0x3c0 [ 206.659031][ C1] net_rx_action+0x3a1/0x7f0 [ 206.663625][ C1] handle_softirqs+0xbf/0x280 [ 206.668314][ C1] do_softirq+0x5e/0x90 [ 206.672480][ C1] __local_bh_enable_ip+0x6e/0x70 [ 206.677557][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 206.682507][ C1] batadv_tt_local_purge+0x1a8/0x1f0 [ 206.687793][ C1] batadv_tt_purge+0x2b/0x630 [ 206.692591][ C1] process_scheduled_works+0x483/0x9a0 [ 206.698064][ C1] worker_thread+0x51d/0x6f0 [ 206.702675][ C1] kthread+0x1d1/0x210 [ 206.706743][ C1] ret_from_fork+0x4b/0x60 [ 206.711166][ C1] ret_from_fork_asm+0x1a/0x30 [ 206.715943][ C1] [ 206.718260][ C1] read-write to 0xffff88811542f418 of 8 bytes by interrupt on cpu 1: [ 206.726495][ C1] can_receive+0x1b6/0x1f0 [ 206.730919][ C1] can_rcv+0xe7/0x180 [ 206.734911][ C1] __netif_receive_skb+0x123/0x280 [ 206.740038][ C1] process_backlog+0x22e/0x440 [ 206.744811][ C1] __napi_poll+0x63/0x3c0 [ 206.749159][ C1] net_rx_action+0x3a1/0x7f0 [ 206.753751][ C1] handle_softirqs+0xbf/0x280 [ 206.758430][ C1] run_ksoftirqd+0x1c/0x30 [ 206.762847][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 206.767798][ C1] kthread+0x1d1/0x210 [ 206.771900][ C1] ret_from_fork+0x4b/0x60 [ 206.776329][ C1] ret_from_fork_asm+0x1a/0x30 [ 206.781111][ C1] [ 206.783436][ C1] value changed: 0x00000000001d4ce6 -> 0x00000000001d4ce7 [ 206.790546][ C1] [ 206.792863][ C1] Reported by Kernel Concurrency Sanitizer on: [ 206.799008][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 206.809597][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 206.819653][ C1] ================================================================== [ 206.879376][ C0] ================================================================== [ 206.887493][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 206.894725][ C0] [ 206.897049][ C0] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 1: [ 206.905115][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 206.909811][ C0] can_rcv_filter+0x225/0x4c0 [ 206.914499][ C0] can_receive+0x182/0x1f0 [ 206.919009][ C0] can_rcv+0xe7/0x180 [ 206.923004][ C0] __netif_receive_skb+0x123/0x280 [ 206.928136][ C0] process_backlog+0x22e/0x440 [ 206.932898][ C0] __napi_poll+0x63/0x3c0 [ 206.937238][ C0] net_rx_action+0x3a1/0x7f0 [ 206.941827][ C0] handle_softirqs+0xbf/0x280 [ 206.946532][ C0] do_softirq+0x5e/0x90 [ 206.950692][ C0] __local_bh_enable_ip+0x6e/0x70 [ 206.955724][ C0] _raw_write_unlock_bh+0x1f/0x30 [ 206.960761][ C0] neigh_periodic_work+0x55a/0x600 [ 206.965887][ C0] process_scheduled_works+0x483/0x9a0 [ 206.971366][ C0] worker_thread+0x51d/0x6f0 [ 206.975964][ C0] kthread+0x1d1/0x210 [ 206.980043][ C0] ret_from_fork+0x4b/0x60 [ 206.984471][ C0] ret_from_fork_asm+0x1a/0x30 [ 206.989338][ C0] [ 206.991663][ C0] read-write to 0xffff888125ce0020 of 4 bytes by interrupt on cpu 0: [ 206.999729][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 207.004423][ C0] can_rcv_filter+0x225/0x4c0 [ 207.009108][ C0] can_receive+0x182/0x1f0 [ 207.013527][ C0] can_rcv+0xe7/0x180 [ 207.017517][ C0] __netif_receive_skb+0x123/0x280 [ 207.022641][ C0] process_backlog+0x22e/0x440 [ 207.027409][ C0] __napi_poll+0x63/0x3c0 [ 207.031750][ C0] net_rx_action+0x3a1/0x7f0 [ 207.036430][ C0] handle_softirqs+0xbf/0x280 [ 207.041120][ C0] do_softirq+0x5e/0x90 [ 207.045285][ C0] __local_bh_enable_ip+0x6e/0x70 [ 207.050316][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 207.055260][ C0] batadv_tt_local_purge+0x1a8/0x1f0 [ 207.060645][ C0] batadv_tt_purge+0x2b/0x630 [ 207.065329][ C0] process_scheduled_works+0x483/0x9a0 [ 207.070986][ C0] worker_thread+0x51d/0x6f0 [ 207.075576][ C0] kthread+0x1d1/0x210 [ 207.079651][ C0] ret_from_fork+0x4b/0x60 [ 207.084075][ C0] ret_from_fork_asm+0x1a/0x30 [ 207.088857][ C0] [ 207.091176][ C0] value changed: 0x001d8e29 -> 0x001d8e2a [ 207.096895][ C0] [ 207.099222][ C0] Reported by Kernel Concurrency Sanitizer on: [ 207.105366][ C0] CPU: 0 UID: 0 PID: 28 Comm: kworker/u8:1 Not tainted 6.12.0-rc3-syzkaller-00183-g6efbea77b390 #0 [ 207.116048][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 207.126115][ C0] Workqueue: bat_events batadv_tt_purge [ 207.131679][ C0] ================================================================== [ 207.170225][ C0] ================================================================== [ 207.178322][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 207.185107][ C0] [ 207.187427][ C0] read-write to 0xffff88811542f478 of 8 bytes by interrupt on cpu 1: [ 207.195494][ C0] can_receive+0x1ca/0x1f0 [ 207.199916][ C0] can_rcv+0xe7/0x180 [ 207.203912][ C0] __netif_receive_skb+0x123/0x280 [ 207.209038][ C0] process_backlog+0x22e/0x440 [ 207.213813][ C0] __napi_poll+0x63/0x3c0 [ 207.218160][ C0] net_rx_action+0x3a1/0x7f0 [ 207.222941][ C0] handle_softirqs+0xbf/0x280 [ 207.227717][ C0] do_softirq+0x5e/0x90 [ 207.231973][ C0] __local_bh_enable_ip+0x6e/0x70 [ 207.237014][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 207.241962][ C0] nsim_dev_trap_report_work+0x4d8/0x5b0 [ 207.247612][ C0] process_scheduled_works+0x483/0x9a0 [ 207.253094][ C0] worker_thread+0x51d/0x6f0 [ 207.257775][ C0] kthread+0x1d1/0x210 [ 207.261855][ C0] ret_from_fork+0x4b/0x60 [ 207.266281][ C0] ret_from_fork_asm+0x1a/0x30 [ 207.271047][ C0]