>0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xb000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xc000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xd000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.160512][T16539] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 420.183626][T16569] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.201156][T16539] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 420.201238][T16539] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 420.227126][T16539] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:12:37 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 39) [ 420.231436][T16571] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.235097][T16539] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 420.235116][T16539] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 420.235130][T16539] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 420.235147][T16539] [ 420.261386][T16573] FAULT_INJECTION: forcing a failure. [ 420.261386][T16573] name fail_usercopy, interval 1, probability 0, space 0, times 0 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xe000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xf000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.284583][T16573] CPU: 0 PID: 16573 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 420.295104][T16573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 420.303087][T16575] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.305311][T16573] Call Trace: [ 420.305354][T16573] [ 420.320872][T16573] dump_stack_lvl+0xda/0x130 [ 420.325520][T16573] dump_stack+0x15/0x20 [ 420.329716][T16573] should_fail_ex+0x21f/0x230 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x10000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x11000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.330726][T16577] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.334404][T16573] should_fail+0xb/0x10 [ 420.347788][T16573] should_fail_usercopy+0x1a/0x20 [ 420.352912][T16573] copy_page_from_iter_atomic+0x237/0xd90 [ 420.358753][T16573] ? shmem_write_begin+0xa0/0x1b0 [ 420.363141][T16579] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.363796][T16573] ? shmem_write_begin+0x10c/0x1b0 [ 420.378119][T16573] generic_perform_write+0x20c/0x410 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x12000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.383468][T16573] ? shmem_write_begin+0x1b0/0x1b0 [ 420.388610][T16573] shmem_file_write_iter+0xc8/0xe0 [ 420.390673][T16581] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.393755][T16573] vfs_write+0x760/0x8d0 [ 420.407189][T16573] ksys_write+0xeb/0x1a0 [ 420.411478][T16573] __x64_sys_write+0x42/0x50 [ 420.416157][T16573] do_syscall_64+0xcd/0x1d0 [ 420.418854][T16583] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.420812][T16573] entry_SYSCALL_64_after_hwframe+0x63/0x6b 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x25000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x48000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.420843][T16573] RIP: 0033:0x7f42009ffaef [ 420.420858][T16573] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 420.447217][T16585] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.460142][T16573] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 420.460170][T16573] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x4c000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x60000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.485905][T16573] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 420.489455][T16587] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.493885][T16573] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 420.511118][T16573] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 420.519120][T16573] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 420.527213][T16573] 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x65580000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x68000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:37 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 40) [ 420.531989][T16573] loop1: detected capacity change from 0 to 512 [ 420.545956][T16573] EXT4-fs: journaled quota format not specified [ 420.598420][T16601] FAULT_INJECTION: forcing a failure. [ 420.598420][T16601] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 420.607167][T16600] loop2: detected capacity change from 0 to 512 [ 420.611732][T16601] CPU: 0 PID: 16601 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 420.628425][T16601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 420.638595][T16601] Call Trace: [ 420.642014][T16601] [ 420.644997][T16601] dump_stack_lvl+0xda/0x130 [ 420.649650][T16601] dump_stack+0x15/0x20 [ 420.653826][T16601] should_fail_ex+0x21f/0x230 [ 420.658599][T16601] __should_fail_alloc_page+0xfd/0x110 [ 420.664136][T16601] __alloc_pages+0x108/0x340 [ 420.668747][T16601] alloc_pages_mpol+0xb1/0x1d0 [ 420.673559][T16601] shmem_get_folio_gfp+0x3b2/0xb40 [ 420.678803][T16601] shmem_write_begin+0xa0/0x1b0 [ 420.683673][T16601] generic_perform_write+0x1c9/0x410 [ 420.688987][T16601] ? shmem_write_begin+0x1b0/0x1b0 [ 420.694120][T16601] shmem_file_write_iter+0xc8/0xe0 [ 420.699333][T16601] vfs_write+0x760/0x8d0 [ 420.703603][T16601] ksys_write+0xeb/0x1a0 [ 420.707868][T16601] __x64_sys_write+0x42/0x50 [ 420.713228][T16601] do_syscall_64+0xcd/0x1d0 [ 420.717786][T16601] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 420.723689][T16601] RIP: 0033:0x7fe39bbcaaef [ 420.728130][T16601] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 420.747850][T16601] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 420.756286][T16601] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 420.764263][T16601] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 420.772240][T16601] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 420.780219][T16601] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 420.788247][T16601] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 420.796298][T16601] 16:12:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x6c000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 420.807986][T16597] loop3: detected capacity change from 0 to 512 [ 420.828892][T16597] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 420.828971][T16600] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 420.840451][T16597] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 420.840478][T16597] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 420.840562][T16597] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 420.851293][T16603] FAULT_INJECTION: forcing a failure. [ 420.851293][T16603] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 420.862223][T16597] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 420.871829][T16603] CPU: 1 PID: 16603 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 420.892163][T16600] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 420.892971][T16603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 420.907160][T16600] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 420.917535][T16603] Call Trace: [ 420.917544][T16603] [ 420.917552][T16603] dump_stack_lvl+0xda/0x130 [ 420.929031][T16600] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 420.939047][T16603] dump_stack+0x15/0x20 [ 420.949833][T16597] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 420.952500][T16603] should_fail_ex+0x21f/0x230 [ 420.959535][T16600] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 420.960016][T16603] __should_fail_alloc_page+0xfd/0x110 [ 420.973839][T16600] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 420.977431][T16603] __alloc_pages+0x108/0x340 [ 420.977465][T16603] alloc_pages_mpol+0xb1/0x1d0 [ 420.995766][T16600] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 421.002385][T16603] shmem_get_folio_gfp+0x3b2/0xb40 [ 421.021503][T16600] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 421.021998][T16603] shmem_write_begin+0xa0/0x1b0 [ 421.022026][T16603] generic_perform_write+0x1c9/0x410 [ 421.022083][T16603] ? shmem_write_begin+0x1b0/0x1b0 [ 421.026696][T16600] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 421.031957][T16603] shmem_file_write_iter+0xc8/0xe0 [ 421.044143][T16600] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 421.049210][T16603] vfs_write+0x760/0x8d0 16:12:38 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 31) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x74000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x7a000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.061940][T16600] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 421.065616][T16603] ksys_write+0xeb/0x1a0 [ 421.065662][T16603] __x64_sys_write+0x42/0x50 [ 421.070935][T16600] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 421.076032][T16603] do_syscall_64+0xcd/0x1d0 [ 421.076069][T16603] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 421.086136][T16600] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 421.091205][T16603] RIP: 0033:0x7f42009ffaef [ 421.091225][T16603] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 421.105262][T16600] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 421.108657][T16603] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 421.108680][T16603] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 421.157456][T16612] FAULT_INJECTION: forcing a failure. [ 421.157456][T16612] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 421.162858][T16603] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 421.162876][T16603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:38 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 41) [ 421.162889][T16603] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 421.162907][T16603] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 421.270017][T16603] [ 421.270028][T16612] CPU: 0 PID: 16612 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 421.270057][T16612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 421.270069][T16612] Call Trace: [ 421.270077][T16612] [ 421.270144][T16612] dump_stack_lvl+0xda/0x130 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x81000000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x88470000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x88480000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.270180][T16612] dump_stack+0x15/0x20 [ 421.270209][T16612] should_fail_ex+0x21f/0x230 [ 421.270268][T16612] should_fail+0xb/0x10 [ 421.270296][T16612] should_fail_usercopy+0x1a/0x20 [ 421.270385][T16612] copy_page_from_iter_atomic+0x237/0xd90 [ 421.270425][T16612] ? shmem_write_begin+0xa0/0x1b0 [ 421.270451][T16612] ? shmem_write_begin+0x10c/0x1b0 [ 421.270483][T16612] generic_perform_write+0x20c/0x410 [ 421.270546][T16612] ? shmem_write_begin+0x1b0/0x1b0 [ 421.270631][T16612] shmem_file_write_iter+0xc8/0xe0 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x88a8ffff, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 32) [ 421.270663][T16612] vfs_write+0x760/0x8d0 [ 421.270722][T16612] ksys_write+0xeb/0x1a0 [ 421.270780][T16612] __x64_sys_write+0x42/0x50 [ 421.270849][T16612] do_syscall_64+0xcd/0x1d0 [ 421.270874][T16612] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 421.270899][T16612] RIP: 0033:0x7fe39bbcaaef 16:12:38 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x8d0b0000, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xeaffffff, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.271069][T16612] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 421.271148][T16612] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 421.271172][T16612] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 421.271189][T16612] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 421.271205][T16612] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xf0ffffff, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xfeffffff, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xffffa888, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.271272][T16612] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 421.271287][T16612] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 421.271305][T16612] [ 421.272834][T16612] loop4: detected capacity change from 0 to 512 [ 421.369400][T16622] FAULT_INJECTION: forcing a failure. [ 421.369400][T16622] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 421.369434][T16622] CPU: 0 PID: 16622 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xffffff7f, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xffffffea, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xfffffff0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.369465][T16622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 421.369480][T16622] Call Trace: [ 421.369543][T16622] [ 421.369551][T16622] dump_stack_lvl+0xda/0x130 [ 421.369589][T16622] dump_stack+0x15/0x20 [ 421.369619][T16622] should_fail_ex+0x21f/0x230 [ 421.369649][T16622] should_fail+0xb/0x10 [ 421.369677][T16622] should_fail_usercopy+0x1a/0x20 [ 421.369764][T16622] copy_page_from_iter_atomic+0x237/0xd90 [ 421.369799][T16622] ? shmem_write_begin+0xa0/0x1b0 [ 421.369825][T16622] ? shmem_write_begin+0x10c/0x1b0 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0xfffffffe, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x4, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x5, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.369852][T16622] generic_perform_write+0x20c/0x410 [ 421.369979][T16622] ? shmem_write_begin+0x1b0/0x1b0 [ 421.370002][T16622] shmem_file_write_iter+0xc8/0xe0 [ 421.370034][T16622] vfs_write+0x760/0x8d0 [ 421.370078][T16622] ksys_write+0xeb/0x1a0 [ 421.370192][T16622] __x64_sys_write+0x42/0x50 [ 421.370231][T16622] do_syscall_64+0xcd/0x1d0 [ 421.370274][T16622] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 421.370301][T16622] RIP: 0033:0x7f42009ffaef 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x10, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x2, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.370320][T16622] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 421.370345][T16622] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 421.370364][T16622] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 421.370377][T16622] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 421.370450][T16622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x3, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x4, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x5, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.370465][T16622] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 421.370482][T16622] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 421.370503][T16622] [ 421.371506][T16622] loop1: detected capacity change from 0 to 512 [ 421.372165][T16612] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 421.372217][T16612] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x6, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x7, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x8, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x9, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.372297][T16612] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 421.372344][T16612] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 421.372501][T16612] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 421.372711][T16612] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 421.392007][T16622] EXT4-fs: journaled quota format not specified [ 421.800709][T16670] FAULT_INJECTION: forcing a failure. [ 421.800709][T16670] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 421.812789][T16666] loop2: detected capacity change from 0 to 512 [ 421.814090][T16670] CPU: 0 PID: 16670 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 421.830706][T16670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 421.840842][T16670] Call Trace: [ 421.844145][T16670] [ 421.847160][T16670] dump_stack_lvl+0xda/0x130 [ 421.851807][T16670] dump_stack+0x15/0x20 [ 421.856127][T16670] should_fail_ex+0x21f/0x230 [ 421.860850][T16670] __should_fail_alloc_page+0xfd/0x110 [ 421.864745][T16666] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 421.866333][T16670] __alloc_pages+0x108/0x340 [ 421.866368][T16670] alloc_pages_mpol+0xb1/0x1d0 [ 421.877832][T16666] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 421.882390][T16670] shmem_get_folio_gfp+0x3b2/0xb40 [ 421.887168][T16666] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 421.897194][T16670] shmem_write_begin+0xa0/0x1b0 [ 421.897227][T16670] generic_perform_write+0x1c9/0x410 [ 421.905724][T16666] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 421.915589][T16670] ? shmem_write_begin+0x1b0/0x1b0 [ 421.915623][T16670] shmem_file_write_iter+0xc8/0xe0 [ 421.915656][T16670] vfs_write+0x760/0x8d0 [ 421.922947][T16666] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 421.925777][T16670] ksys_write+0xeb/0x1a0 [ 421.934696][T16666] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 421.939553][T16670] __x64_sys_write+0x42/0x50 [ 421.953326][T16666] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 421.963050][T16670] do_syscall_64+0xcd/0x1d0 [ 421.963089][T16670] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 421.967374][T16666] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 421.979448][T16670] RIP: 0033:0x7fe39bbcaaef [ 421.979471][T16670] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:12:39 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:39 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 42) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0xa, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 421.984141][T16666] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 421.995571][T16670] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 422.003611][T16666] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 422.005951][T16670] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 422.005970][T16670] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 422.016127][T16666] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 422.020491][T16670] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 422.040161][T16666] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 422.053252][T16670] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 422.053270][T16670] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0xb, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 33) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0xc, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0xd, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 422.066341][T16666] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 422.073285][T16670] [ 422.078607][T16674] loop3: detected capacity change from 0 to 512 [ 422.118193][T16679] FAULT_INJECTION: forcing a failure. [ 422.118193][T16679] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 422.180119][T16679] CPU: 1 PID: 16679 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 422.180205][T16679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 422.180221][T16679] Call Trace: [ 422.180229][T16679] [ 422.180237][T16679] dump_stack_lvl+0xda/0x130 [ 422.180329][T16679] dump_stack+0x15/0x20 [ 422.180359][T16679] should_fail_ex+0x21f/0x230 [ 422.180394][T16679] __should_fail_alloc_page+0xfd/0x110 [ 422.180423][T16679] __alloc_pages+0x108/0x340 [ 422.180481][T16679] alloc_pages_mpol+0xb1/0x1d0 [ 422.180527][T16679] shmem_get_folio_gfp+0x3b2/0xb40 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0xe, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:39 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 43) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0xf, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 422.180607][T16679] shmem_write_begin+0xa0/0x1b0 [ 422.180636][T16679] generic_perform_write+0x1c9/0x410 [ 422.180674][T16679] ? shmem_write_begin+0x1b0/0x1b0 [ 422.180699][T16679] shmem_file_write_iter+0xc8/0xe0 [ 422.180778][T16679] vfs_write+0x760/0x8d0 [ 422.180820][T16679] ksys_write+0xeb/0x1a0 [ 422.180871][T16679] __x64_sys_write+0x42/0x50 [ 422.180912][T16679] do_syscall_64+0xcd/0x1d0 [ 422.181003][T16679] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 422.181029][T16679] RIP: 0033:0x7f42009ffaef [ 422.181044][T16679] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 422.181183][T16679] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 422.181202][T16679] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 422.181215][T16679] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 422.181227][T16679] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 422.181241][T16679] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 422.181257][T16679] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 422.181280][T16679] [ 422.194887][T16684] FAULT_INJECTION: forcing a failure. [ 422.194887][T16684] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 422.194914][T16684] CPU: 1 PID: 16684 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 422.194940][T16684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 422.194995][T16684] Call Trace: [ 422.195005][T16684] [ 422.195014][T16684] dump_stack_lvl+0xda/0x130 [ 422.195048][T16684] dump_stack+0x15/0x20 [ 422.195079][T16684] should_fail_ex+0x21f/0x230 [ 422.195106][T16684] should_fail+0xb/0x10 [ 422.195128][T16684] should_fail_usercopy+0x1a/0x20 [ 422.195240][T16684] copy_page_from_iter_atomic+0x237/0xd90 [ 422.195275][T16684] ? shmem_write_begin+0xa0/0x1b0 [ 422.195302][T16684] ? shmem_write_begin+0x10c/0x1b0 [ 422.195398][T16684] generic_perform_write+0x20c/0x410 [ 422.195479][T16684] ? shmem_write_begin+0x1b0/0x1b0 [ 422.195501][T16684] shmem_file_write_iter+0xc8/0xe0 [ 422.195526][T16684] vfs_write+0x760/0x8d0 [ 422.195603][T16684] ksys_write+0xeb/0x1a0 [ 422.195645][T16684] __x64_sys_write+0x42/0x50 [ 422.195683][T16684] do_syscall_64+0xcd/0x1d0 [ 422.195709][T16684] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 422.195812][T16684] RIP: 0033:0x7fe39bbcaaef [ 422.195880][T16684] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 422.195904][T16684] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 422.195930][T16684] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 422.195944][T16684] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 422.195956][T16684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 422.196012][T16684] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 422.196033][T16684] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 422.196068][T16684] [ 422.197398][T16684] loop4: detected capacity change from 0 to 512 [ 422.199591][T16674] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 422.285912][T16684] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 422.287140][T16674] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 422.292995][T16684] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 422.297431][T16674] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 422.303530][T16695] FAULT_INJECTION: forcing a failure. [ 422.303530][T16695] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 422.317225][T16684] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 422.318047][T16674] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 422.325880][T16695] CPU: 0 PID: 16695 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 422.339389][T16674] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 422.341764][T16695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 16:12:39 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x10, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 422.349948][T16674] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 422.357714][T16695] Call Trace: [ 422.357724][T16695] [ 422.357733][T16695] dump_stack_lvl+0xda/0x130 [ 422.716582][T16695] dump_stack+0x15/0x20 [ 422.716612][T16695] should_fail_ex+0x21f/0x230 [ 422.716664][T16695] should_fail+0xb/0x10 [ 422.716770][T16695] should_fail_usercopy+0x1a/0x20 [ 422.716797][T16695] copy_page_from_iter_atomic+0x237/0xd90 [ 422.716828][T16695] ? shmem_write_begin+0xa0/0x1b0 [ 422.716850][T16695] ? shmem_write_begin+0x10c/0x1b0 [ 422.716893][T16695] generic_perform_write+0x20c/0x410 [ 422.716924][T16695] ? shmem_write_begin+0x1b0/0x1b0 [ 422.716989][T16695] shmem_file_write_iter+0xc8/0xe0 [ 422.717015][T16695] vfs_write+0x760/0x8d0 [ 422.717051][T16695] ksys_write+0xeb/0x1a0 [ 422.717116][T16695] __x64_sys_write+0x42/0x50 [ 422.717149][T16695] do_syscall_64+0xcd/0x1d0 [ 422.717175][T16695] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 422.717235][T16695] RIP: 0033:0x7f42009ffaef 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x11, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 34) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x12, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 422.717251][T16695] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 422.717271][T16695] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 422.717291][T16695] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 422.717304][T16695] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 422.717317][T16695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x25, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x48, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x4c, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 422.717357][T16695] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 422.717370][T16695] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 422.717387][T16695] [ 422.720123][T16684] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 422.723516][T16684] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 422.729810][T16695] loop1: detected capacity change from 0 to 512 16:12:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x60, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 44) [ 422.741311][T16684] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 422.754066][T16695] EXT4-fs: journaled quota format not specified [ 422.807246][T16699] loop2: detected capacity change from 0 to 512 [ 422.923783][ T3088] EXT4-fs unmount: 97 callbacks suppressed [ 422.923799][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x68, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 422.962518][T16715] FAULT_INJECTION: forcing a failure. [ 422.962518][T16715] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 422.975837][T16715] CPU: 1 PID: 16715 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 422.978319][T16699] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e018, mo2=0002] [ 422.986345][T16715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 422.986362][T16715] Call Trace: [ 422.986371][T16715] [ 422.986379][T16715] dump_stack_lvl+0xda/0x130 [ 422.995474][T16699] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 423.004323][T16715] dump_stack+0x15/0x20 [ 423.007643][T16699] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 423.010539][T16715] should_fail_ex+0x21f/0x230 [ 423.015143][T16699] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 423.026547][T16715] __should_fail_alloc_page+0xfd/0x110 [ 423.031491][T16699] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 423.040784][T16715] __alloc_pages+0x108/0x340 [ 423.040819][T16715] alloc_pages_mpol+0xb1/0x1d0 [ 423.055003][T16699] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 423.058662][T16715] shmem_get_folio_gfp+0x3b2/0xb40 [ 423.064357][T16699] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 423.072092][T16715] shmem_write_begin+0xa0/0x1b0 [ 423.072125][T16715] generic_perform_write+0x1c9/0x410 [ 423.079589][T16699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 423.081454][T16715] ? shmem_write_begin+0x1b0/0x1b0 [ 423.081487][T16715] shmem_file_write_iter+0xc8/0xe0 [ 423.103756][T16718] loop3: detected capacity change from 0 to 512 [ 423.112970][T16715] vfs_write+0x760/0x8d0 [ 423.132986][T16699] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 423.135643][T16715] ksys_write+0xeb/0x1a0 [ 423.140804][T16699] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 423.145904][T16715] __x64_sys_write+0x42/0x50 [ 423.145947][T16715] do_syscall_64+0xcd/0x1d0 [ 423.145973][T16715] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 423.152221][T16699] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:12:40 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 45) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x6c, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.156465][T16715] RIP: 0033:0x7f42009ffaef [ 423.156486][T16715] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 423.172050][T16699] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 423.172665][T16715] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 [ 423.182754][T16699] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x74, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x7a, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.187290][T16715] ORIG_RAX: 0000000000000001 [ 423.187300][T16715] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 423.191829][T16699] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 423.197704][T16715] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 423.197722][T16715] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 423.197736][T16715] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.213897][T16699] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 423.215416][T16715] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 423.215440][T16715] [ 423.241650][T16722] FAULT_INJECTION: forcing a failure. [ 423.241650][T16722] name fail_usercopy, interval 1, probability 0, space 0, times 0 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x2, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.350736][T16718] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 423.358123][T16722] CPU: 1 PID: 16722 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 423.369623][T16718] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 423.380043][T16722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 423.380061][T16722] Call Trace: [ 423.380070][T16722] [ 423.380078][T16722] dump_stack_lvl+0xda/0x130 [ 423.390161][T16718] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 423.400204][T16722] dump_stack+0x15/0x20 [ 423.415342][T16718] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 423.424239][T16722] should_fail_ex+0x21f/0x230 [ 423.430531][T16718] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 423.436365][T16722] should_fail+0xb/0x10 [ 423.436399][T16722] should_fail_usercopy+0x1a/0x20 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x3, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x4, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.442064][T16718] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 423.455281][T16722] copy_page_from_iter_atomic+0x237/0xd90 [ 423.455323][T16722] ? shmem_write_begin+0xa0/0x1b0 [ 423.461822][T16718] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 423.464499][T16722] ? shmem_write_begin+0x10c/0x1b0 [ 423.464535][T16722] generic_perform_write+0x20c/0x410 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x5, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.511154][T16722] ? shmem_write_begin+0x1b0/0x1b0 [ 423.511255][T16722] shmem_file_write_iter+0xc8/0xe0 [ 423.511293][T16722] vfs_write+0x760/0x8d0 [ 423.511341][T16722] ksys_write+0xeb/0x1a0 [ 423.511455][T16722] __x64_sys_write+0x42/0x50 [ 423.511499][T16722] do_syscall_64+0xcd/0x1d0 [ 423.511537][T16722] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 423.511566][T16722] RIP: 0033:0x7f42009ffaef 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x6, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.511586][T16722] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 423.511711][T16722] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 423.511737][T16722] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 423.511755][T16722] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 423.511779][T16722] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 423.511796][T16722] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 423.511813][T16722] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 423.511898][T16722] [ 423.530066][T16722] loop1: detected capacity change from 0 to 512 [ 423.553068][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.590599][T16739] FAULT_INJECTION: forcing a failure. [ 423.590599][T16739] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 423.623306][T16722] EXT4-fs: journaled quota format not specified 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x7, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 35) [ 423.628146][T16739] CPU: 0 PID: 16739 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 423.676261][T16739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 423.676346][T16739] Call Trace: [ 423.676355][T16739] [ 423.676390][T16739] dump_stack_lvl+0xda/0x130 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x8, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x9, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xa, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.676487][T16739] dump_stack+0x15/0x20 [ 423.676511][T16739] should_fail_ex+0x21f/0x230 [ 423.676594][T16739] __should_fail_alloc_page+0xfd/0x110 [ 423.676620][T16739] __alloc_pages+0x108/0x340 [ 423.676644][T16739] alloc_pages_mpol+0xb1/0x1d0 [ 423.676666][T16739] shmem_get_folio_gfp+0x3b2/0xb40 [ 423.676761][T16739] shmem_write_begin+0xa0/0x1b0 [ 423.676785][T16739] generic_perform_write+0x1c9/0x410 [ 423.676925][T16739] ? shmem_write_begin+0x1b0/0x1b0 [ 423.676949][T16739] shmem_file_write_iter+0xc8/0xe0 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xb, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xc, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xd, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.677040][T16739] vfs_write+0x760/0x8d0 [ 423.677077][T16739] ksys_write+0xeb/0x1a0 [ 423.677110][T16739] __x64_sys_write+0x42/0x50 [ 423.677164][T16739] do_syscall_64+0xcd/0x1d0 [ 423.677191][T16739] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 423.677215][T16739] RIP: 0033:0x7fe39bbcaaef [ 423.677230][T16739] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xe, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xf, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x10, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.677250][T16739] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 423.677270][T16739] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 423.677326][T16739] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 423.677340][T16739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 423.677353][T16739] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 423.677365][T16739] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 423.677383][T16739] 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x11, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x12, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x25, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x48, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.712473][T16747] FAULT_INJECTION: forcing a failure. [ 423.712473][T16747] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 423.877735][T16747] CPU: 0 PID: 16747 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 423.888189][T16747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 423.898302][T16747] Call Trace: [ 423.901648][T16747] [ 423.904598][T16747] dump_stack_lvl+0xda/0x130 [ 423.909267][T16747] dump_stack+0x15/0x20 16:12:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x4c, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x60, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x68, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.913456][T16747] should_fail_ex+0x21f/0x230 [ 423.918343][T16747] should_fail+0xb/0x10 [ 423.922555][T16747] should_fail_usercopy+0x1a/0x20 [ 423.927612][T16747] copy_page_from_iter_atomic+0x237/0xd90 [ 423.933464][T16747] ? shmem_write_begin+0xa0/0x1b0 [ 423.938545][T16747] ? shmem_write_begin+0x10c/0x1b0 [ 423.943694][T16747] generic_perform_write+0x20c/0x410 [ 423.949022][T16747] ? shmem_write_begin+0x1b0/0x1b0 [ 423.954237][T16747] shmem_file_write_iter+0xc8/0xe0 [ 423.959386][T16747] vfs_write+0x760/0x8d0 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x6c, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x74, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 423.963803][T16747] ksys_write+0xeb/0x1a0 [ 423.968193][T16747] __x64_sys_write+0x42/0x50 [ 423.972984][T16747] do_syscall_64+0xcd/0x1d0 [ 423.977571][T16747] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 423.983523][T16747] RIP: 0033:0x7fe39bbcaaef [ 423.987963][T16747] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 424.007665][T16747] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 424.016107][T16747] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 424.024178][T16747] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 424.032257][T16747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 424.040344][T16747] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 424.048327][T16747] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 424.056600][T16747] [ 424.061459][T16747] loop4: detected capacity change from 0 to 512 [ 424.066108][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.078556][T16747] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 424.090140][T16747] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 424.092937][T16786] loop2: detected capacity change from 0 to 512 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x7a, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 46) [ 424.100259][T16747] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 424.120994][T16747] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 424.129145][T16747] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 424.141286][T16786] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 424.154983][T16786] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 424.163742][T16790] FAULT_INJECTION: forcing a failure. [ 424.163742][T16790] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 424.165282][T16786] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 424.178487][T16790] CPU: 1 PID: 16790 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 424.202162][T16790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 424.212296][T16790] Call Trace: [ 424.215586][T16790] [ 424.218596][T16790] dump_stack_lvl+0xda/0x130 [ 424.223206][T16790] dump_stack+0x15/0x20 [ 424.227505][T16790] should_fail_ex+0x21f/0x230 [ 424.232203][T16790] __should_fail_alloc_page+0xfd/0x110 [ 424.237714][T16790] __alloc_pages+0x108/0x340 [ 424.242319][T16790] alloc_pages_mpol+0xb1/0x1d0 [ 424.247186][T16790] shmem_get_folio_gfp+0x3b2/0xb40 [ 424.252331][T16790] shmem_write_begin+0xa0/0x1b0 [ 424.257280][T16790] generic_perform_write+0x1c9/0x410 [ 424.262597][T16790] ? shmem_write_begin+0x1b0/0x1b0 [ 424.267724][T16790] shmem_file_write_iter+0xc8/0xe0 [ 424.272851][T16790] vfs_write+0x760/0x8d0 [ 424.277134][T16790] ksys_write+0xeb/0x1a0 [ 424.281449][T16790] __x64_sys_write+0x42/0x50 [ 424.286060][T16790] do_syscall_64+0xcd/0x1d0 [ 424.290840][T16790] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 424.296761][T16790] RIP: 0033:0x7f42009ffaef [ 424.301690][T16790] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 424.321310][T16790] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 424.329748][T16790] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 424.337733][T16790] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 424.345800][T16790] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 424.353779][T16790] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x300, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.361757][T16790] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 424.369809][T16790] [ 424.373755][T16786] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 424.384477][T16747] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 424.399601][T16786] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 424.423431][T16747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 424.430752][T16786] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 424.449711][T16786] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 424.453937][T16795] loop3: detected capacity change from 0 to 512 [ 424.465295][T16786] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 424.480517][T16786] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 424.482352][T16795] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 424.490611][T16786] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 424.491721][T16786] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 424.502364][T16795] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 424.502383][T16795] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 424.505779][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.520292][T16786] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 424.534686][T16795] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 424.542065][T16786] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 424.569756][T16795] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:12:41 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 47) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x500, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 36) [ 424.588615][T16786] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 424.596045][T16795] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 424.648557][T16799] FAULT_INJECTION: forcing a failure. [ 424.648557][T16799] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 424.648562][T16795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. 16:12:41 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 424.661862][T16799] CPU: 0 PID: 16799 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 424.684628][T16799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 424.684649][T16799] Call Trace: [ 424.684656][T16799] [ 424.684663][T16799] dump_stack_lvl+0xda/0x130 [ 424.684773][T16799] dump_stack+0x15/0x20 [ 424.684797][T16799] should_fail_ex+0x21f/0x230 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x600, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 37) 16:12:41 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 424.684828][T16799] __should_fail_alloc_page+0xfd/0x110 [ 424.684933][T16799] __alloc_pages+0x108/0x340 [ 424.684966][T16799] alloc_pages_mpol+0xb1/0x1d0 [ 424.684992][T16799] shmem_get_folio_gfp+0x3b2/0xb40 [ 424.685079][T16799] shmem_write_begin+0xa0/0x1b0 [ 424.685109][T16799] generic_perform_write+0x1c9/0x410 [ 424.685150][T16799] ? shmem_write_begin+0x1b0/0x1b0 [ 424.685181][T16799] shmem_file_write_iter+0xc8/0xe0 [ 424.685212][T16799] vfs_write+0x760/0x8d0 [ 424.685284][T16799] ksys_write+0xeb/0x1a0 [ 424.685317][T16799] __x64_sys_write+0x42/0x50 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x700, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.685347][T16799] do_syscall_64+0xcd/0x1d0 [ 424.685380][T16799] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 424.685487][T16799] RIP: 0033:0x7fe39bbcaaef [ 424.685502][T16799] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 424.685535][T16799] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x900, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xa00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xb00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.685560][T16799] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 424.685574][T16799] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 424.685586][T16799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 424.685598][T16799] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 424.685671][T16799] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 424.685694][T16799] [ 424.687459][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.689452][T16801] FAULT_INJECTION: forcing a failure. 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xb8d, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xc00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xd00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.689452][T16801] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 424.689481][T16801] CPU: 1 PID: 16801 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 424.689503][T16801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 424.689517][T16801] Call Trace: [ 424.689526][T16801] [ 424.689534][T16801] dump_stack_lvl+0xda/0x130 [ 424.689594][T16801] dump_stack+0x15/0x20 [ 424.689670][T16801] should_fail_ex+0x21f/0x230 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xe00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0xf00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x1100, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.689767][T16801] should_fail+0xb/0x10 [ 424.689791][T16801] should_fail_usercopy+0x1a/0x20 [ 424.689877][T16801] copy_page_from_iter_atomic+0x237/0xd90 [ 424.689965][T16801] ? shmem_write_begin+0xa0/0x1b0 [ 424.689996][T16801] ? shmem_write_begin+0x10c/0x1b0 [ 424.690027][T16801] generic_perform_write+0x20c/0x410 [ 424.690068][T16801] ? shmem_write_begin+0x1b0/0x1b0 [ 424.690098][T16801] shmem_file_write_iter+0xc8/0xe0 [ 424.690193][T16801] vfs_write+0x760/0x8d0 [ 424.690238][T16801] ksys_write+0xeb/0x1a0 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x1200, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x2500, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x4788, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.690306][T16801] __x64_sys_write+0x42/0x50 [ 424.690338][T16801] do_syscall_64+0xcd/0x1d0 [ 424.690419][T16801] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 424.690451][T16801] RIP: 0033:0x7f42009ffaef [ 424.690472][T16801] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 424.690498][T16801] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x4800, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x4888, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x4c00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x5865, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.690525][T16801] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 424.690611][T16801] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 424.690628][T16801] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 424.690643][T16801] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 424.690725][T16801] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 424.690741][T16801] [ 424.692019][T16801] loop1: detected capacity change from 0 to 512 [ 424.756719][T16805] FAULT_INJECTION: forcing a failure. 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x6000, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x6558, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 424.756719][T16805] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 424.791888][T16801] EXT4-fs: journaled quota format not specified [ 424.810076][T16805] CPU: 0 PID: 16805 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 425.100974][T16805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 425.111198][T16805] Call Trace: [ 425.114493][T16805] [ 425.117438][T16805] dump_stack_lvl+0xda/0x130 [ 425.122065][T16805] dump_stack+0x15/0x20 [ 425.126261][T16805] should_fail_ex+0x21f/0x230 [ 425.131055][T16805] should_fail+0xb/0x10 [ 425.135301][T16805] should_fail_usercopy+0x1a/0x20 [ 425.140457][T16805] copy_page_from_iter_atomic+0x237/0xd90 [ 425.146273][T16805] ? shmem_write_begin+0xa0/0x1b0 [ 425.151350][T16805] ? shmem_write_begin+0x10c/0x1b0 [ 425.156536][T16805] generic_perform_write+0x20c/0x410 [ 425.162634][T16805] ? shmem_write_begin+0x1b0/0x1b0 [ 425.163544][T16850] __nla_validate_parse: 96 callbacks suppressed 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x6800, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x6c00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 425.163560][T16850] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 425.167764][T16805] shmem_file_write_iter+0xc8/0xe0 [ 425.188356][T16805] vfs_write+0x760/0x8d0 [ 425.191662][T16852] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 425.192702][T16805] ksys_write+0xeb/0x1a0 [ 425.192747][T16805] __x64_sys_write+0x42/0x50 [ 425.210846][T16805] do_syscall_64+0xcd/0x1d0 [ 425.215397][T16805] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 425.220211][T16854] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 425.221375][T16805] RIP: 0033:0x7fe39bbcaaef [ 425.221397][T16805] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 425.246836][T16856] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 425.254599][T16805] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x7400, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x7a00, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x8100, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x8847, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 425.254628][T16805] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 425.254666][T16805] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 425.254683][T16805] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 425.296825][T16805] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 425.304861][T16805] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 425.312842][T16805] [ 425.317716][T16805] loop4: detected capacity change from 0 to 512 [ 425.321109][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.339100][T16805] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 425.350664][T16805] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 425.360942][T16805] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 425.370773][T16859] loop2: detected capacity change from 0 to 512 16:12:42 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 48) 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x8848, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 425.400405][T16805] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 425.410368][T16805] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 425.421869][T16863] FAULT_INJECTION: forcing a failure. [ 425.421869][T16863] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 425.429341][T16866] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x8d0b, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 425.437853][T16863] CPU: 1 PID: 16863 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 425.457442][T16863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 425.457458][T16863] Call Trace: [ 425.457465][T16863] [ 425.457473][T16863] dump_stack_lvl+0xda/0x130 [ 425.457549][T16863] dump_stack+0x15/0x20 [ 425.457576][T16863] should_fail_ex+0x21f/0x230 [ 425.457602][T16863] __should_fail_alloc_page+0xfd/0x110 [ 425.457650][T16863] __alloc_pages+0x108/0x340 [ 425.457674][T16863] alloc_pages_mpol+0xb1/0x1d0 [ 425.457768][T16863] shmem_get_folio_gfp+0x3b2/0xb40 [ 425.457801][T16863] shmem_write_begin+0xa0/0x1b0 [ 425.457832][T16863] generic_perform_write+0x1c9/0x410 [ 425.457873][T16863] ? shmem_write_begin+0x1b0/0x1b0 [ 425.457921][T16863] shmem_file_write_iter+0xc8/0xe0 [ 425.457946][T16863] vfs_write+0x760/0x8d0 [ 425.458064][T16863] ksys_write+0xeb/0x1a0 [ 425.458107][T16863] __x64_sys_write+0x42/0x50 [ 425.458149][T16863] do_syscall_64+0xcd/0x1d0 [ 425.458180][T16863] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 425.458216][T16863] RIP: 0033:0x7f42009ffaef [ 425.458235][T16863] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 425.458259][T16863] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 425.458284][T16863] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 425.458362][T16863] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 425.458375][T16863] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 425.458386][T16863] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 425.458398][T16863] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 425.458415][T16863] [ 425.470144][T16805] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 425.481368][T16805] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.489593][T16869] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 425.490251][T16859] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 425.507891][T16868] loop3: detected capacity change from 0 to 512 [ 425.534002][T16859] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 425.552928][T16868] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 425.554919][T16859] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 425.554941][T16859] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 425.559343][T16868] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 425.559363][T16868] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 425.561295][T16868] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 425.582411][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.588425][T16868] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 425.595787][T16859] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 425.609073][T16868] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 425.612210][T16859] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 425.619861][T16868] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.630388][T16859] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 425.842931][T16859] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.859372][T16859] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 425.859730][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.870975][T16859] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 425.870996][T16859] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 425.871215][T16859] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 425.914997][T16859] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 425.925118][T16859] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:12:43 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 38) 16:12:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:43 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 49) 16:12:43 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:43 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 425.938955][T16859] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 425.968476][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.982881][T16874] FAULT_INJECTION: forcing a failure. [ 425.982881][T16874] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 425.996184][T16874] CPU: 1 PID: 16874 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 425.997594][T16872] FAULT_INJECTION: forcing a failure. [ 425.997594][T16872] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 426.006673][T16874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 426.006694][T16874] Call Trace: [ 426.006704][T16874] [ 426.006713][T16874] dump_stack_lvl+0xda/0x130 [ 426.040678][T16874] dump_stack+0x15/0x20 [ 426.044855][T16874] should_fail_ex+0x21f/0x230 [ 426.049660][T16874] __should_fail_alloc_page+0xfd/0x110 [ 426.055148][T16874] __alloc_pages+0x108/0x340 [ 426.059764][T16874] alloc_pages_mpol+0xb1/0x1d0 [ 426.064547][T16874] shmem_get_folio_gfp+0x3b2/0xb40 [ 426.069685][T16874] shmem_write_begin+0xa0/0x1b0 [ 426.074626][T16874] generic_perform_write+0x1c9/0x410 [ 426.079948][T16874] ? shmem_write_begin+0x1b0/0x1b0 [ 426.085082][T16874] shmem_file_write_iter+0xc8/0xe0 [ 426.090275][T16874] vfs_write+0x760/0x8d0 [ 426.094565][T16874] ksys_write+0xeb/0x1a0 [ 426.098984][T16874] __x64_sys_write+0x42/0x50 [ 426.103628][T16874] do_syscall_64+0xcd/0x1d0 [ 426.108152][T16874] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 426.114061][T16874] RIP: 0033:0x7fe39bbcaaef [ 426.118536][T16874] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 426.138516][T16874] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 426.146942][T16874] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 426.154925][T16874] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 426.162909][T16874] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 426.170954][T16874] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 426.178938][T16874] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 426.186940][T16874] [ 426.189974][T16872] CPU: 0 PID: 16872 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:12:43 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 39) [ 426.200493][T16872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 426.200584][T16872] Call Trace: [ 426.200593][T16872] [ 426.200599][T16872] dump_stack_lvl+0xda/0x130 [ 426.200629][T16872] dump_stack+0x15/0x20 [ 426.200651][T16872] should_fail_ex+0x21f/0x230 [ 426.200685][T16872] should_fail+0xb/0x10 [ 426.200759][T16872] should_fail_usercopy+0x1a/0x20 [ 426.200795][T16872] copy_page_from_iter_atomic+0x237/0xd90 [ 426.200834][T16872] ? shmem_write_begin+0xa0/0x1b0 [ 426.200863][T16872] ? shmem_write_begin+0x10c/0x1b0 [ 426.200959][T16872] generic_perform_write+0x20c/0x410 [ 426.200999][T16872] ? shmem_write_begin+0x1b0/0x1b0 [ 426.201150][T16872] shmem_file_write_iter+0xc8/0xe0 [ 426.201186][T16872] vfs_write+0x760/0x8d0 [ 426.201232][T16872] ksys_write+0xeb/0x1a0 [ 426.201287][T16872] __x64_sys_write+0x42/0x50 [ 426.201328][T16872] do_syscall_64+0xcd/0x1d0 [ 426.201353][T16872] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 426.201451][T16872] RIP: 0033:0x7f42009ffaef [ 426.201475][T16872] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 426.201498][T16872] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 426.201517][T16872] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 426.201550][T16872] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 426.201566][T16872] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 426.201582][T16872] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 426.201598][T16872] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 426.201642][T16872] [ 426.205905][T16872] loop1: detected capacity change from 0 to 512 [ 426.219535][T16876] loop3: detected capacity change from 0 to 512 [ 426.235930][T16879] FAULT_INJECTION: forcing a failure. [ 426.235930][T16879] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 426.252283][T16872] EXT4-fs: journaled quota format not specified [ 426.257197][T16879] CPU: 1 PID: 16879 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 426.414370][T16879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 426.424664][T16879] Call Trace: [ 426.427954][T16879] [ 426.430907][T16879] dump_stack_lvl+0xda/0x130 [ 426.435958][T16879] dump_stack+0x15/0x20 [ 426.440136][T16879] should_fail_ex+0x21f/0x230 [ 426.444834][T16879] should_fail+0xb/0x10 [ 426.449006][T16879] should_fail_usercopy+0x1a/0x20 [ 426.454206][T16879] copy_page_from_iter_atomic+0x237/0xd90 [ 426.460044][T16879] ? shmem_write_begin+0xa0/0x1b0 [ 426.465097][T16879] ? shmem_write_begin+0x10c/0x1b0 [ 426.470225][T16879] generic_perform_write+0x20c/0x410 [ 426.475637][T16879] ? shmem_write_begin+0x1b0/0x1b0 [ 426.480836][T16879] shmem_file_write_iter+0xc8/0xe0 [ 426.486040][T16879] vfs_write+0x760/0x8d0 [ 426.490323][T16879] ksys_write+0xeb/0x1a0 [ 426.494588][T16879] __x64_sys_write+0x42/0x50 [ 426.499302][T16879] do_syscall_64+0xcd/0x1d0 [ 426.503991][T16879] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 426.509936][T16879] RIP: 0033:0x7fe39bbcaaef [ 426.514372][T16879] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 426.534099][T16879] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 426.542523][T16879] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef 16:12:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x2}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 426.550501][T16879] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 426.558510][T16879] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 426.566536][T16879] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 426.574523][T16879] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 426.582518][T16879] [ 426.587888][T16880] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x3}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 426.615537][T16879] loop4: detected capacity change from 0 to 512 [ 426.617326][T16883] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 426.622729][T16876] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 426.642722][T16876] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 426.652920][T16876] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 426.666292][T16876] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 426.674278][T16886] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 426.680114][T16879] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 426.695061][T16879] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it 16:12:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 426.705187][T16879] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 426.716775][T16876] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 426.728620][T16891] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 426.736224][T16890] loop2: detected capacity change from 0 to 512 [ 426.748802][T16876] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:12:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x5}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:43 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 50) 16:12:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 426.749138][T16879] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 426.781418][T16876] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.799985][T16896] FAULT_INJECTION: forcing a failure. [ 426.799985][T16896] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 426.800118][T16890] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 426.813498][T16896] CPU: 0 PID: 16896 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 426.824950][T16890] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 426.835269][T16896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 426.835287][T16896] Call Trace: [ 426.835295][T16896] [ 426.835304][T16896] dump_stack_lvl+0xda/0x130 [ 426.835337][T16896] dump_stack+0x15/0x20 [ 426.835359][T16896] should_fail_ex+0x21f/0x230 [ 426.845490][T16890] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 426.855514][T16896] __should_fail_alloc_page+0xfd/0x110 [ 426.862224][T16890] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 426.866471][T16896] __alloc_pages+0x108/0x340 [ 426.871338][T16890] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 426.875359][T16896] alloc_pages_mpol+0xb1/0x1d0 [ 426.875390][T16896] shmem_get_folio_gfp+0x3b2/0xb40 [ 426.875425][T16896] shmem_write_begin+0xa0/0x1b0 [ 426.889653][T16879] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 426.894129][T16896] generic_perform_write+0x1c9/0x410 [ 426.902775][T16879] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 426.906693][T16896] ? shmem_write_begin+0x1b0/0x1b0 [ 426.906727][T16896] shmem_file_write_iter+0xc8/0xe0 [ 426.921465][T16890] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 426.925689][T16896] vfs_write+0x760/0x8d0 [ 426.925752][T16896] ksys_write+0xeb/0x1a0 [ 426.931907][T16890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.935709][T16896] __x64_sys_write+0x42/0x50 [ 426.950899][T16879] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.955579][T16896] do_syscall_64+0xcd/0x1d0 [ 426.955619][T16896] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 426.998958][T16890] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 427.011543][T16896] RIP: 0033:0x7f42009ffaef 16:12:44 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 40) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x7}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 51) [ 427.011586][T16896] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 427.016210][T16890] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 427.028735][T16896] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 427.028763][T16896] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 427.033379][T16890] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 427.039259][T16896] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 427.052604][T16890] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 427.055169][T16896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 427.055193][T16896] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 427.055210][T16896] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 427.074914][T16890] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 427.084953][T16896] [ 427.128778][T16902] FAULT_INJECTION: forcing a failure. [ 427.128778][T16902] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 427.135482][T16890] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 427.143420][T16902] CPU: 0 PID: 16902 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 427.164747][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:12:44 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x9}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xa}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 427.169421][T16902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 427.229152][T16902] Call Trace: [ 427.229163][T16902] [ 427.229171][T16902] dump_stack_lvl+0xda/0x130 [ 427.229202][T16902] dump_stack+0x15/0x20 [ 427.229295][T16902] should_fail_ex+0x21f/0x230 [ 427.229350][T16902] should_fail+0xb/0x10 [ 427.229374][T16902] should_fail_usercopy+0x1a/0x20 [ 427.229401][T16902] copy_page_from_iter_atomic+0x237/0xd90 16:12:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xb}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xc}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 427.229500][T16902] ? shmem_write_begin+0xa0/0x1b0 [ 427.229524][T16902] ? shmem_write_begin+0x10c/0x1b0 [ 427.229547][T16902] generic_perform_write+0x20c/0x410 [ 427.229580][T16902] ? shmem_write_begin+0x1b0/0x1b0 [ 427.229666][T16902] shmem_file_write_iter+0xc8/0xe0 [ 427.229693][T16902] vfs_write+0x760/0x8d0 [ 427.229730][T16902] ksys_write+0xeb/0x1a0 [ 427.229763][T16902] __x64_sys_write+0x42/0x50 [ 427.229809][T16902] do_syscall_64+0xcd/0x1d0 [ 427.229835][T16902] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 427.229925][T16902] RIP: 0033:0x7f42009ffaef 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xd}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xe}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xf}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 427.229964][T16902] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 427.229983][T16902] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 427.230004][T16902] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 427.230053][T16902] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x10}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x11}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 427.230066][T16902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 427.230079][T16902] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 427.230092][T16902] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 427.230109][T16902] [ 427.230673][T16890] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 427.249021][T16902] loop1: detected capacity change from 0 to 512 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x12}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x25}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 427.419709][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.425704][T16902] EXT4-fs: journaled quota format not specified [ 427.441487][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:12:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 52) [ 427.479188][T16929] loop3: detected capacity change from 0 to 512 [ 427.498457][T16932] FAULT_INJECTION: forcing a failure. [ 427.498457][T16932] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 427.511767][T16932] CPU: 1 PID: 16932 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 427.522424][T16932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 427.532598][T16932] Call Trace: [ 427.533579][T16934] FAULT_INJECTION: forcing a failure. [ 427.533579][T16934] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 427.535891][T16932] [ 427.535902][T16932] dump_stack_lvl+0xda/0x130 [ 427.535954][T16932] dump_stack+0x15/0x20 [ 427.560861][T16932] should_fail_ex+0x21f/0x230 [ 427.565565][T16932] __should_fail_alloc_page+0xfd/0x110 [ 427.571045][T16932] __alloc_pages+0x108/0x340 [ 427.575780][T16932] alloc_pages_mpol+0xb1/0x1d0 [ 427.580636][T16932] shmem_get_folio_gfp+0x3b2/0xb40 [ 427.585860][T16932] shmem_write_begin+0xa0/0x1b0 [ 427.590728][T16932] generic_perform_write+0x1c9/0x410 [ 427.596197][T16932] ? shmem_write_begin+0x1b0/0x1b0 [ 427.601348][T16932] shmem_file_write_iter+0xc8/0xe0 [ 427.606548][T16932] vfs_write+0x760/0x8d0 [ 427.610851][T16932] ksys_write+0xeb/0x1a0 [ 427.615232][T16932] __x64_sys_write+0x42/0x50 [ 427.619906][T16932] do_syscall_64+0xcd/0x1d0 [ 427.624434][T16932] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 427.630423][T16932] RIP: 0033:0x7fe39bbcaaef [ 427.634847][T16932] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 427.654522][T16932] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 427.662990][T16932] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 427.670975][T16932] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 427.679016][T16932] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 427.687243][T16932] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 427.695221][T16932] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 427.703204][T16932] [ 427.706314][T16934] CPU: 0 PID: 16934 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 427.707959][T16931] loop2: detected capacity change from 0 to 512 [ 427.716838][T16934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 427.716855][T16934] Call Trace: [ 427.716863][T16934] [ 427.739456][T16934] dump_stack_lvl+0xda/0x130 [ 427.744159][T16934] dump_stack+0x15/0x20 [ 427.748388][T16934] should_fail_ex+0x21f/0x230 [ 427.753080][T16934] __should_fail_alloc_page+0xfd/0x110 [ 427.758599][T16934] __alloc_pages+0x108/0x340 [ 427.763261][T16934] alloc_pages_mpol+0xb1/0x1d0 [ 427.768036][T16934] shmem_get_folio_gfp+0x3b2/0xb40 [ 427.773216][T16934] shmem_write_begin+0xa0/0x1b0 [ 427.778166][T16934] generic_perform_write+0x1c9/0x410 [ 427.783539][T16934] ? shmem_write_begin+0x1b0/0x1b0 [ 427.788664][T16934] shmem_file_write_iter+0xc8/0xe0 [ 427.793882][T16934] vfs_write+0x760/0x8d0 [ 427.798148][T16934] ksys_write+0xeb/0x1a0 [ 427.802441][T16934] __x64_sys_write+0x42/0x50 [ 427.807094][T16934] do_syscall_64+0xcd/0x1d0 [ 427.811717][T16934] ? irqentry_exit+0x12/0x40 [ 427.816328][T16934] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 427.822264][T16934] RIP: 0033:0x7f42009ffaef [ 427.826687][T16934] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 427.846567][T16934] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 427.855001][T16934] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 427.863332][T16934] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 427.871324][T16934] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x48}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:44 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 41) [ 427.879309][T16934] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 427.887287][T16934] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 427.895312][T16934] [ 427.929084][T16939] FAULT_INJECTION: forcing a failure. [ 427.929084][T16939] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 427.930296][T16931] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e018, mo2=0002] [ 427.942251][T16939] CPU: 0 PID: 16939 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 427.960849][T16939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 427.970974][T16939] Call Trace: [ 427.974266][T16939] [ 427.977214][T16939] dump_stack_lvl+0xda/0x130 [ 427.981870][T16939] dump_stack+0x15/0x20 [ 427.986055][T16939] should_fail_ex+0x21f/0x230 [ 427.990838][T16939] should_fail+0xb/0x10 [ 427.995123][T16939] should_fail_usercopy+0x1a/0x20 [ 428.000179][T16939] copy_page_from_iter_atomic+0x237/0xd90 [ 428.006054][T16939] ? shmem_write_begin+0xa0/0x1b0 [ 428.011131][T16939] ? shmem_write_begin+0x10c/0x1b0 [ 428.012833][T16931] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.016262][T16939] generic_perform_write+0x20c/0x410 [ 428.027831][T16931] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 428.033096][T16939] ? shmem_write_begin+0x1b0/0x1b0 [ 428.043153][T16931] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 428.048232][T16939] shmem_file_write_iter+0xc8/0xe0 [ 428.048266][T16939] vfs_write+0x760/0x8d0 [ 428.067574][T16945] FAULT_INJECTION: forcing a failure. [ 428.067574][T16945] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 428.070931][T16939] ksys_write+0xeb/0x1a0 [ 428.088420][T16939] __x64_sys_write+0x42/0x50 [ 428.093147][T16939] do_syscall_64+0xcd/0x1d0 [ 428.097733][T16939] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 428.103709][T16939] RIP: 0033:0x7fe39bbcaaef [ 428.108200][T16939] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4c}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:45 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 53) 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x60}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 428.127933][T16939] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 428.136458][T16939] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 428.144499][T16939] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 428.152542][T16939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 428.160524][T16939] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 428.168527][T16939] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 428.176575][T16939] [ 428.179640][T16945] CPU: 1 PID: 16945 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 428.180854][T16931] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 428.190080][T16945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 428.190097][T16945] Call Trace: [ 428.190106][T16945] [ 428.190114][T16945] dump_stack_lvl+0xda/0x130 [ 428.210855][T16931] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 428.211443][T16945] dump_stack+0x15/0x20 [ 428.217317][T16929] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.218984][T16945] should_fail_ex+0x21f/0x230 [ 428.233152][T16929] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 428.237276][T16945] should_fail+0xb/0x10 [ 428.248774][T16929] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 428.253408][T16945] should_fail_usercopy+0x1a/0x20 [ 428.263654][T16931] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 428.267747][T16945] copy_page_from_iter_atomic+0x237/0xd90 [ 428.283195][T16929] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 428.286073][T16945] ? shmem_write_begin+0xa0/0x1b0 [ 428.300706][T16929] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 428.303957][T16945] ? shmem_write_begin+0x10c/0x1b0 [ 428.312466][T16931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.316964][T16945] generic_perform_write+0x20c/0x410 [ 428.333554][T16929] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 428.336248][T16945] ? shmem_write_begin+0x1b0/0x1b0 [ 428.351311][T16929] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.353932][T16945] shmem_file_write_iter+0xc8/0xe0 [ 428.369903][T16939] loop4: detected capacity change from 0 to 512 [ 428.371259][T16945] vfs_write+0x760/0x8d0 [ 428.393596][T16931] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.395111][T16945] ksys_write+0xeb/0x1a0 [ 428.399320][T16931] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 428.410778][T16945] __x64_sys_write+0x42/0x50 [ 428.410837][T16945] do_syscall_64+0xcd/0x1d0 [ 428.415114][T16931] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 428.425163][T16945] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 428.433329][T16931] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.434261][T16945] RIP: 0033:0x7f42009ffaef 16:12:45 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x68}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 428.434283][T16945] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 428.447513][T16931] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 428.453335][T16945] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 [ 428.464797][T16931] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 428.469170][T16945] ORIG_RAX: 0000000000000001 [ 428.469181][T16945] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 428.492146][T16931] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 428.498812][T16945] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 428.498831][T16945] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 428.568605][T16945] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 428.568623][T16945] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 428.568643][T16945] [ 428.579673][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.591523][T16939] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.594647][T16945] loop1: detected capacity change from 0 to 512 [ 428.601817][T16939] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it 16:12:45 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6c}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x74}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 428.621022][T16945] EXT4-fs: journaled quota format not specified [ 428.629639][T16939] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 428.655055][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.664929][T16939] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 16:12:45 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 54) 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x7a}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 428.673527][T16939] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 428.692823][T16939] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 428.707349][T16939] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.711589][T16955] FAULT_INJECTION: forcing a failure. [ 428.711589][T16955] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 428.733110][T16955] CPU: 1 PID: 16955 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 428.743716][T16955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 428.753810][T16955] Call Trace: [ 428.757115][T16955] [ 428.760066][T16955] dump_stack_lvl+0xda/0x130 [ 428.762381][T16959] loop2: detected capacity change from 0 to 512 [ 428.764686][T16955] dump_stack+0x15/0x20 [ 428.764729][T16955] should_fail_ex+0x21f/0x230 16:12:45 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 42) 16:12:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x300}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 428.764758][T16955] __should_fail_alloc_page+0xfd/0x110 [ 428.785462][T16955] __alloc_pages+0x108/0x340 [ 428.790239][T16955] alloc_pages_mpol+0xb1/0x1d0 [ 428.795077][T16955] shmem_get_folio_gfp+0x3b2/0xb40 [ 428.800239][T16955] shmem_write_begin+0xa0/0x1b0 [ 428.802559][T16959] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.805106][T16955] generic_perform_write+0x1c9/0x410 [ 428.816652][T16959] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 428.821900][T16955] ? shmem_write_begin+0x1b0/0x1b0 [ 428.831979][T16959] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 428.837042][T16955] shmem_file_write_iter+0xc8/0xe0 [ 428.853128][T16959] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 428.855432][T16955] vfs_write+0x760/0x8d0 [ 428.863720][T16959] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 428.867655][T16955] ksys_write+0xeb/0x1a0 [ 428.867737][T16955] __x64_sys_write+0x42/0x50 [ 428.884714][T16959] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 428.886064][T16955] do_syscall_64+0xcd/0x1d0 [ 428.890812][T16959] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.902782][T16955] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 428.902830][T16955] RIP: 0033:0x7f42009ffaef [ 428.902850][T16955] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 428.914053][T16959] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.919722][T16955] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 428.919749][T16955] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 428.919766][T16955] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 428.925691][T16959] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 428.930051][T16955] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 428.949705][T16959] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 428.961093][T16955] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 428.961147][T16955] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x500}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x600}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:46 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 55) 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x700}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 428.978560][T16959] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 428.986008][T16955] [ 428.996123][T16959] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 429.058570][T16959] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x900}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xa00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 429.074738][T16959] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 429.090562][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.097599][T16969] FAULT_INJECTION: forcing a failure. [ 429.097599][T16969] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 429.117832][T16969] CPU: 0 PID: 16969 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:12:46 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 429.128288][T16969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 429.138371][T16969] Call Trace: [ 429.141723][T16969] [ 429.144676][T16969] dump_stack_lvl+0xda/0x130 [ 429.149347][T16969] dump_stack+0x15/0x20 [ 429.153518][T16969] should_fail_ex+0x21f/0x230 [ 429.158293][T16969] should_fail+0xb/0x10 [ 429.162462][T16969] should_fail_usercopy+0x1a/0x20 [ 429.167505][T16969] copy_page_from_iter_atomic+0x237/0xd90 [ 429.173331][T16969] ? shmem_write_begin+0xa0/0x1b0 [ 429.178379][T16969] ? shmem_write_begin+0x10c/0x1b0 [ 429.183617][T16969] generic_perform_write+0x20c/0x410 [ 429.188997][T16969] ? shmem_write_begin+0x1b0/0x1b0 [ 429.194153][T16969] shmem_file_write_iter+0xc8/0xe0 [ 429.199343][T16969] vfs_write+0x760/0x8d0 [ 429.203671][T16969] ksys_write+0xeb/0x1a0 [ 429.208001][T16969] __x64_sys_write+0x42/0x50 [ 429.212621][T16969] do_syscall_64+0xcd/0x1d0 [ 429.217248][T16969] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 429.223263][T16969] RIP: 0033:0x7f42009ffaef [ 429.227754][T16969] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 429.247440][T16969] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 429.255865][T16969] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 429.263911][T16969] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 429.271950][T16969] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xb00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 429.279927][T16969] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 429.287906][T16969] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 429.295993][T16969] [ 429.315798][T16976] loop3: detected capacity change from 0 to 512 [ 429.316020][T16969] loop1: detected capacity change from 0 to 512 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xb8d}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 429.331006][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.344484][T16976] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 429.345093][T16969] EXT4-fs: journaled quota format not specified [ 429.356307][T16976] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 429.356332][T16976] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xc00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xd00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xe00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 429.386364][T16976] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 429.398830][T16976] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 429.413952][T16976] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:12:46 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 56) 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xf00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 429.440886][T16976] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 429.482514][T16990] loop2: detected capacity change from 0 to 512 [ 429.484933][T16991] FAULT_INJECTION: forcing a failure. [ 429.484933][T16991] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 429.502042][T16991] CPU: 0 PID: 16991 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 429.512508][T16991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 429.522596][T16991] Call Trace: [ 429.525893][T16991] [ 429.525954][T16995] FAULT_INJECTION: forcing a failure. [ 429.525954][T16995] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 429.528915][T16991] dump_stack_lvl+0xda/0x130 [ 429.546773][T16991] dump_stack+0x15/0x20 [ 429.550955][T16991] should_fail_ex+0x21f/0x230 [ 429.555665][T16991] __should_fail_alloc_page+0xfd/0x110 [ 429.561298][T16991] __alloc_pages+0x108/0x340 [ 429.565904][T16991] alloc_pages_mpol+0xb1/0x1d0 [ 429.570703][T16991] shmem_get_folio_gfp+0x3b2/0xb40 [ 429.575875][T16991] shmem_write_begin+0xa0/0x1b0 [ 429.580738][T16991] generic_perform_write+0x1c9/0x410 [ 429.586045][T16991] ? shmem_write_begin+0x1b0/0x1b0 [ 429.591285][T16991] shmem_file_write_iter+0xc8/0xe0 [ 429.596444][T16991] vfs_write+0x760/0x8d0 [ 429.600830][T16991] ksys_write+0xeb/0x1a0 [ 429.605099][T16991] __x64_sys_write+0x42/0x50 [ 429.609735][T16991] do_syscall_64+0xcd/0x1d0 [ 429.614263][T16991] ? switch_fpu_return+0xe/0x10 [ 429.619249][T16991] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 429.625244][T16991] RIP: 0033:0x7f42009ffaef [ 429.629839][T16991] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 429.649520][T16991] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 429.657942][T16991] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 429.665958][T16991] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 429.673944][T16991] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:46 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x1100}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:46 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 57) [ 429.681935][T16991] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 429.689922][T16991] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 429.697911][T16991] [ 429.700935][T16995] CPU: 1 PID: 16995 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 429.711444][T16995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 429.721600][T16995] Call Trace: [ 429.725028][T16995] [ 429.727977][T16995] dump_stack_lvl+0xda/0x130 [ 429.731384][T16998] FAULT_INJECTION: forcing a failure. [ 429.731384][T16998] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 429.732584][T16995] dump_stack+0x15/0x20 [ 429.749851][T16995] should_fail_ex+0x21f/0x230 [ 429.754555][T16995] __should_fail_alloc_page+0xfd/0x110 [ 429.760035][T16995] __alloc_pages+0x108/0x340 [ 429.764645][T16995] alloc_pages_mpol+0xb1/0x1d0 [ 429.769434][T16995] shmem_get_folio_gfp+0x3b2/0xb40 [ 429.774584][T16995] shmem_write_begin+0xa0/0x1b0 [ 429.779468][T16995] generic_perform_write+0x1c9/0x410 [ 429.784849][T16995] ? shmem_write_begin+0x1b0/0x1b0 [ 429.790010][T16995] shmem_file_write_iter+0xc8/0xe0 [ 429.795158][T16995] vfs_write+0x760/0x8d0 [ 429.799428][T16995] ksys_write+0xeb/0x1a0 [ 429.803693][T16995] __x64_sys_write+0x42/0x50 [ 429.808313][T16995] do_syscall_64+0xcd/0x1d0 [ 429.812906][T16995] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 429.818849][T16995] RIP: 0033:0x7fe39bbcaaef [ 429.823277][T16995] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 429.842895][T16995] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 429.851364][T16995] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 429.859484][T16995] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 429.867541][T16995] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 429.875627][T16995] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 429.883603][T16995] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 429.891677][T16995] [ 429.894700][T16998] CPU: 0 PID: 16998 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 429.905224][T16998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 429.905440][T16990] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 429.915415][T16998] Call Trace: [ 429.915426][T16998] [ 429.915435][T16998] dump_stack_lvl+0xda/0x130 [ 429.923773][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.926657][T16998] dump_stack+0x15/0x20 [ 429.926690][T16998] should_fail_ex+0x21f/0x230 [ 429.930653][T16990] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 429.934184][T16998] should_fail+0xb/0x10 [ 429.943197][T16990] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 429.947325][T16998] should_fail_usercopy+0x1a/0x20 [ 429.947364][T16998] copy_page_from_iter_atomic+0x237/0xd90 [ 429.952038][T16990] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 429.963486][T16998] ? shmem_write_begin+0xa0/0x1b0 [ 429.968114][T16990] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 429.978029][T16998] ? shmem_write_begin+0x10c/0x1b0 [ 429.978061][T16998] generic_perform_write+0x20c/0x410 [ 430.025903][T16998] ? shmem_write_begin+0x1b0/0x1b0 [ 430.028454][T17003] FAULT_INJECTION: forcing a failure. [ 430.028454][T17003] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 430.031085][T16998] shmem_file_write_iter+0xc8/0xe0 [ 430.049332][T16998] vfs_write+0x760/0x8d0 [ 430.053780][T16998] ksys_write+0xeb/0x1a0 [ 430.058106][T16998] __x64_sys_write+0x42/0x50 [ 430.062803][T16998] do_syscall_64+0xcd/0x1d0 [ 430.067366][T16998] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 430.073327][T16998] RIP: 0033:0x7f42009ffaef [ 430.077786][T16998] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 430.097422][T16998] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 430.105878][T16998] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 430.113857][T16998] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 430.121850][T16998] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:47 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 43) 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x1200}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.129837][T16998] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 430.137821][T16998] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 430.145893][T16998] [ 430.149003][T17003] CPU: 1 PID: 17003 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 430.159459][T17003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 430.169599][T17003] Call Trace: [ 430.172904][T17003] [ 430.173911][T16998] loop1: detected capacity change from 0 to 512 [ 430.175844][T17003] dump_stack_lvl+0xda/0x130 [ 430.175881][T17003] dump_stack+0x15/0x20 [ 430.190979][T17003] should_fail_ex+0x21f/0x230 [ 430.195736][T17003] should_fail+0xb/0x10 [ 430.199906][T17003] should_fail_usercopy+0x1a/0x20 [ 430.204946][T17003] copy_page_from_iter_atomic+0x237/0xd90 [ 430.210839][T17003] ? shmem_write_begin+0xa0/0x1b0 [ 430.215898][T17003] ? shmem_write_begin+0x10c/0x1b0 [ 430.221024][T17003] generic_perform_write+0x20c/0x410 [ 430.226396][T17003] ? shmem_write_begin+0x1b0/0x1b0 [ 430.231582][T17003] shmem_file_write_iter+0xc8/0xe0 [ 430.236709][T17003] vfs_write+0x760/0x8d0 [ 430.240985][T17003] ksys_write+0xeb/0x1a0 [ 430.245335][T17003] __x64_sys_write+0x42/0x50 [ 430.250006][T17003] do_syscall_64+0xcd/0x1d0 [ 430.254546][T17003] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 430.260457][T17003] RIP: 0033:0x7fe39bbcaaef [ 430.264905][T17003] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 430.284531][T17003] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 430.292954][T17003] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 430.300933][T17003] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 430.308986][T17003] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 430.317125][T17003] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 430.325110][T17003] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 430.333334][T17003] 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x2500}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.336492][T16990] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 430.346625][T16998] EXT4-fs: journaled quota format not specified [ 430.353951][T16990] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 430.362086][T17006] __nla_validate_parse: 36 callbacks suppressed [ 430.362103][T17006] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4788}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.375459][T16990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 430.376964][T17003] loop4: detected capacity change from 0 to 512 [ 430.404213][T16990] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 430.410604][T17008] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.415865][T16990] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4800}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.435291][T16990] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 430.456150][T17003] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 430.467730][T17003] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 430.469078][T17011] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 58) [ 430.477812][T17003] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 430.477878][T17003] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 430.512910][T16990] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 430.524553][T16990] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 430.531650][T17015] FAULT_INJECTION: forcing a failure. [ 430.531650][T17015] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 430.534671][T16990] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 430.547885][T17015] CPU: 0 PID: 17015 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 430.561158][T16990] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 430.571468][T17015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 430.571485][T17015] Call Trace: [ 430.571495][T17015] [ 430.604018][T17003] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 430.605137][T17015] dump_stack_lvl+0xda/0x130 [ 430.605176][T17015] dump_stack+0x15/0x20 [ 430.615861][T17017] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.622510][T17015] should_fail_ex+0x21f/0x230 [ 430.643554][T17019] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.645222][T17015] __should_fail_alloc_page+0xfd/0x110 [ 430.645261][T17015] __alloc_pages+0x108/0x340 [ 430.659792][T17003] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 430.659936][T17015] alloc_pages_mpol+0xb1/0x1d0 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4888}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4c00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x5865}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:47 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:47 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 44) [ 430.669470][T17003] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 430.676651][T17015] shmem_get_folio_gfp+0x3b2/0xb40 [ 430.676693][T17015] shmem_write_begin+0xa0/0x1b0 [ 430.704196][T17015] generic_perform_write+0x1c9/0x410 [ 430.704244][T17015] ? shmem_write_begin+0x1b0/0x1b0 [ 430.704302][T17015] shmem_file_write_iter+0xc8/0xe0 [ 430.704338][T17015] vfs_write+0x760/0x8d0 [ 430.704381][T17015] ksys_write+0xeb/0x1a0 [ 430.704443][T17015] __x64_sys_write+0x42/0x50 16:12:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 59) [ 430.704482][T17015] do_syscall_64+0xcd/0x1d0 [ 430.704583][T17015] ? irqentry_exit+0x12/0x40 [ 430.704623][T17015] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 430.704649][T17015] RIP: 0033:0x7f42009ffaef [ 430.704668][T17015] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 430.704692][T17015] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.704718][T17015] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 430.704735][T17015] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 430.704751][T17015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 430.704767][T17015] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 430.704780][T17015] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 430.704801][T17015] [ 430.711693][T17021] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.719429][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.726423][T17022] loop3: detected capacity change from 0 to 512 [ 430.763884][T17024] FAULT_INJECTION: forcing a failure. [ 430.763884][T17024] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 430.811260][T17027] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.815150][T17024] CPU: 1 PID: 17024 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:12:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6558}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.831682][T17022] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 430.835365][T17024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 430.835383][T17024] Call Trace: [ 430.835392][T17024] [ 430.835400][T17024] dump_stack_lvl+0xda/0x130 [ 430.844327][T17022] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 430.850557][T17024] dump_stack+0x15/0x20 [ 430.850589][T17024] should_fail_ex+0x21f/0x230 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6800}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.863713][T17022] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 430.872904][T17024] should_fail+0xb/0x10 [ 430.893651][T17022] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 430.895544][T17024] should_fail_usercopy+0x1a/0x20 [ 430.895579][T17024] copy_page_from_iter_atomic+0x237/0xd90 [ 430.908213][T17022] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6c00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x7400}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 430.908928][T17024] ? shmem_write_begin+0xa0/0x1b0 [ 430.912044][T17022] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 430.916438][T17024] ? shmem_write_begin+0x10c/0x1b0 [ 430.930016][T17022] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 430.930844][T17024] generic_perform_write+0x20c/0x410 [ 430.943668][T17029] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x7a00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8100}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 430.948760][T17024] ? shmem_write_begin+0x1b0/0x1b0 [ 430.973284][T17031] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.985928][T17024] shmem_file_write_iter+0xc8/0xe0 [ 430.985969][T17024] vfs_write+0x760/0x8d0 [ 430.986013][T17024] ksys_write+0xeb/0x1a0 [ 431.015004][T17033] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 431.020794][T17024] __x64_sys_write+0x42/0x50 [ 431.077824][T17024] do_syscall_64+0xcd/0x1d0 [ 431.083348][T17024] entry_SYSCALL_64_after_hwframe+0x63/0x6b 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8847}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8848}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8d0b}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 431.089293][T17024] RIP: 0033:0x7f42009ffaef [ 431.093817][T17024] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 431.113616][T17024] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 431.122149][T17024] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 431.130189][T17024] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x34000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x400300}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 431.138188][T17024] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 431.146735][T17024] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 431.154756][T17024] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 431.163242][T17024] [ 431.167860][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 431.168395][T17024] loop1: detected capacity change from 0 to 512 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x1000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 431.183844][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x2000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 431.212914][T17024] EXT4-fs: journaled quota format not specified [ 431.232143][T17055] loop2: detected capacity change from 0 to 512 [ 431.236145][T17054] FAULT_INJECTION: forcing a failure. [ 431.236145][T17054] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 431.252007][T17054] CPU: 0 PID: 17054 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 431.261727][T17055] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e018, mo2=0002] [ 431.262468][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 431.262486][T17054] Call Trace: [ 431.262494][T17054] [ 431.262501][T17054] dump_stack_lvl+0xda/0x130 [ 431.281013][T17055] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 431.284181][T17054] dump_stack+0x15/0x20 [ 431.287147][T17055] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 431.291702][T17054] should_fail_ex+0x21f/0x230 [ 431.303264][T17055] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 431.307383][T17054] __should_fail_alloc_page+0xfd/0x110 [ 431.307420][T17054] __alloc_pages+0x108/0x340 [ 431.307465][T17054] alloc_pages_mpol+0xb1/0x1d0 [ 431.320678][T17055] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 431.322341][T17054] shmem_get_folio_gfp+0x3b2/0xb40 [ 431.336168][T17055] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 431.341618][T17054] shmem_write_begin+0xa0/0x1b0 [ 431.347081][T17055] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 431.351577][T17054] generic_perform_write+0x1c9/0x410 [ 431.359826][T17055] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 431.364818][T17054] ? shmem_write_begin+0x1b0/0x1b0 [ 431.364851][T17054] shmem_file_write_iter+0xc8/0xe0 [ 431.384464][T17055] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 431.396143][T17054] vfs_write+0x760/0x8d0 [ 431.396195][T17054] ksys_write+0xeb/0x1a0 [ 431.401728][T17055] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 431.414132][T17054] __x64_sys_write+0x42/0x50 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x3000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 45) [ 431.419268][T17055] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 431.424745][T17054] do_syscall_64+0xcd/0x1d0 [ 431.424779][T17054] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 431.424809][T17054] RIP: 0033:0x7fe39bbcaaef [ 431.424827][T17054] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 431.439666][T17055] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 431.440565][T17054] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 431.440594][T17054] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 431.444872][T17055] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 431.454984][T17054] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 431.455005][T17054] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 431.459581][T17055] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 431.474141][T17054] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 431.474159][T17054] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 431.474178][T17054] 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 60) 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x5000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:48 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 431.481396][T17055] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 431.518690][T17062] FAULT_INJECTION: forcing a failure. [ 431.518690][T17062] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 431.600392][T17068] loop3: detected capacity change from 0 to 512 [ 431.617846][T17062] CPU: 0 PID: 17062 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 431.617879][T17062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 431.617917][T17062] Call Trace: [ 431.617925][T17062] [ 431.617934][T17062] dump_stack_lvl+0xda/0x130 [ 431.617968][T17062] dump_stack+0x15/0x20 [ 431.617996][T17062] should_fail_ex+0x21f/0x230 [ 431.618058][T17062] should_fail+0xb/0x10 [ 431.618088][T17062] should_fail_usercopy+0x1a/0x20 [ 431.618119][T17062] copy_page_from_iter_atomic+0x237/0xd90 [ 431.618155][T17062] ? shmem_write_begin+0xa0/0x1b0 [ 431.618221][T17062] ? shmem_write_begin+0x10c/0x1b0 [ 431.618264][T17062] generic_perform_write+0x20c/0x410 16:12:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 431.618295][T17062] ? shmem_write_begin+0x1b0/0x1b0 [ 431.618318][T17062] shmem_file_write_iter+0xc8/0xe0 [ 431.668034][T17071] FAULT_INJECTION: forcing a failure. [ 431.668034][T17071] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 431.670396][T17062] vfs_write+0x760/0x8d0 [ 431.738324][T17062] ksys_write+0xeb/0x1a0 [ 431.738366][T17062] __x64_sys_write+0x42/0x50 [ 431.738400][T17062] do_syscall_64+0xcd/0x1d0 16:12:48 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 61) [ 431.738482][T17062] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 431.738512][T17062] RIP: 0033:0x7fe39bbcaaef [ 431.738528][T17062] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 431.738559][T17062] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 431.738579][T17062] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 431.738594][T17062] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 431.738630][T17062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 431.738643][T17062] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 431.738656][T17062] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 431.738735][T17062] [ 431.738743][T17071] CPU: 1 PID: 17071 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 431.738836][T17071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 431.738851][T17071] Call Trace: [ 431.738858][T17071] [ 431.738865][T17071] dump_stack_lvl+0xda/0x130 [ 431.738898][T17071] dump_stack+0x15/0x20 [ 431.738926][T17071] should_fail_ex+0x21f/0x230 [ 431.738958][T17071] __should_fail_alloc_page+0xfd/0x110 [ 431.739086][T17071] __alloc_pages+0x108/0x340 [ 431.739118][T17071] alloc_pages_mpol+0xb1/0x1d0 [ 431.739142][T17071] shmem_get_folio_gfp+0x3b2/0xb40 [ 431.739178][T17071] shmem_write_begin+0xa0/0x1b0 [ 431.739258][T17071] generic_perform_write+0x1c9/0x410 [ 431.739294][T17071] ? shmem_write_begin+0x1b0/0x1b0 [ 431.739325][T17071] shmem_file_write_iter+0xc8/0xe0 [ 431.739360][T17071] vfs_write+0x760/0x8d0 [ 431.739419][T17071] ksys_write+0xeb/0x1a0 [ 431.739460][T17071] __x64_sys_write+0x42/0x50 [ 431.739500][T17071] do_syscall_64+0xcd/0x1d0 [ 431.739533][T17071] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 431.739606][T17071] RIP: 0033:0x7f42009ffaef [ 431.739651][T17071] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 431.739670][T17071] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 431.739695][T17071] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 431.739712][T17071] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 431.739728][T17071] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 431.739744][T17071] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 431.739816][T17071] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 431.739834][T17071] [ 431.743809][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 431.744645][T17068] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 431.744670][T17068] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 431.744691][T17068] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 431.744789][T17068] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 431.757804][T17062] loop4: detected capacity change from 0 to 512 [ 431.758869][T17068] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 431.763840][T17068] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 431.770316][T17068] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 431.773160][T17062] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 431.781304][T17075] FAULT_INJECTION: forcing a failure. [ 431.781304][T17075] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 431.795016][T17062] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 431.803444][T17075] CPU: 1 PID: 17075 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 431.811550][T17062] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 431.819472][T17075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 431.819490][T17075] Call Trace: [ 431.819498][T17075] [ 431.819507][T17075] dump_stack_lvl+0xda/0x130 [ 432.204988][T17075] dump_stack+0x15/0x20 16:12:49 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x7000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.205021][T17075] should_fail_ex+0x21f/0x230 [ 432.205091][T17075] should_fail+0xb/0x10 [ 432.205115][T17075] should_fail_usercopy+0x1a/0x20 [ 432.205173][T17075] copy_page_from_iter_atomic+0x237/0xd90 [ 432.205204][T17075] ? shmem_write_begin+0xa0/0x1b0 [ 432.205227][T17075] ? shmem_write_begin+0x10c/0x1b0 [ 432.205250][T17075] generic_perform_write+0x20c/0x410 [ 432.205352][T17075] ? shmem_write_begin+0x1b0/0x1b0 [ 432.205376][T17075] shmem_file_write_iter+0xc8/0xe0 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x9000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xa000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.205403][T17075] vfs_write+0x760/0x8d0 [ 432.205483][T17075] ksys_write+0xeb/0x1a0 [ 432.205522][T17075] __x64_sys_write+0x42/0x50 [ 432.205555][T17075] do_syscall_64+0xcd/0x1d0 [ 432.205631][T17075] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 432.205726][T17075] RIP: 0033:0x7f42009ffaef [ 432.205742][T17075] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xb000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xc000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.205762][T17075] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 432.205796][T17075] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 432.205809][T17075] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 432.205822][T17075] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 432.205835][T17075] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 432.205847][T17075] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 432.205865][T17075] 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xd000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.209617][T17075] loop1: detected capacity change from 0 to 512 [ 432.215662][T17075] EXT4-fs: journaled quota format not specified [ 432.229427][T17062] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 432.384581][T17062] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 432.387277][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xe000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xf000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x10000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.401395][T17062] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 432.430045][T17093] loop2: detected capacity change from 0 to 512 [ 432.440904][T12979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 16:12:49 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 62) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x11000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.458783][T17062] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 432.478427][T17093] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 432.490019][T17093] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 432.500888][T17093] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x12000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.523241][T17093] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 432.528215][T17103] FAULT_INJECTION: forcing a failure. [ 432.528215][T17103] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 432.538561][T17093] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 432.544970][T17103] CPU: 1 PID: 17103 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:12:49 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 46) [ 432.565476][T17093] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 432.569530][T17103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 432.569548][T17103] Call Trace: [ 432.569557][T17103] [ 432.569565][T17103] dump_stack_lvl+0xda/0x130 [ 432.584349][T17093] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 432.591827][T17103] dump_stack+0x15/0x20 [ 432.591863][T17103] should_fail_ex+0x21f/0x230 [ 432.603915][T17093] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 432.615158][T17103] __should_fail_alloc_page+0xfd/0x110 [ 432.615197][T17103] __alloc_pages+0x108/0x340 [ 432.619363][T17093] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 432.624109][T17103] alloc_pages_mpol+0xb1/0x1d0 [ 432.635624][T17093] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 432.641000][T17103] shmem_get_folio_gfp+0x3b2/0xb40 [ 432.649068][T17093] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 432.655623][T17103] shmem_write_begin+0xa0/0x1b0 [ 432.660403][T17093] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 432.673568][T17103] generic_perform_write+0x1c9/0x410 [ 432.673610][T17103] ? shmem_write_begin+0x1b0/0x1b0 16:12:49 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x25000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x48000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.678725][T17093] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 432.690132][T17103] shmem_file_write_iter+0xc8/0xe0 [ 432.697759][T17093] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 432.705021][T17103] vfs_write+0x760/0x8d0 [ 432.758775][T17103] ksys_write+0xeb/0x1a0 [ 432.763093][T17103] __x64_sys_write+0x42/0x50 [ 432.767794][T17103] do_syscall_64+0xcd/0x1d0 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x4c000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x60000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x65580000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.772406][T17103] ? switch_fpu_return+0xe/0x10 [ 432.777380][T17103] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 432.783404][T17103] RIP: 0033:0x7f42009ffaef [ 432.787842][T17103] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 432.807475][T17103] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 432.815911][T17103] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x68000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x6c000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.823931][T17103] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 432.831946][T17103] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 432.840026][T17103] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 432.848064][T17103] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 432.856084][T17103] [ 432.861002][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x74000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x7a000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 432.861372][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.889942][T17122] loop3: detected capacity change from 0 to 512 [ 432.907254][T17122] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:12:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x81000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:49 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 63) [ 432.918815][T17122] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 432.928942][T17122] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 432.949686][T17131] FAULT_INJECTION: forcing a failure. [ 432.949686][T17131] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 432.957507][T17122] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 432.962839][T17131] CPU: 0 PID: 17131 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 432.981244][T17131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 432.982161][T17122] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 432.991310][T17131] Call Trace: [ 432.991321][T17131] [ 432.991330][T17131] dump_stack_lvl+0xda/0x130 [ 433.016450][T17131] dump_stack+0x15/0x20 [ 433.020719][T17131] should_fail_ex+0x21f/0x230 [ 433.025434][T17131] should_fail+0xb/0x10 [ 433.029627][T17131] should_fail_usercopy+0x1a/0x20 [ 433.034754][T17131] copy_page_from_iter_atomic+0x237/0xd90 [ 433.040552][T17131] ? shmem_write_begin+0xa0/0x1b0 [ 433.045607][T17131] ? shmem_write_begin+0x10c/0x1b0 [ 433.050755][T17131] generic_perform_write+0x20c/0x410 [ 433.051403][T17137] FAULT_INJECTION: forcing a failure. [ 433.051403][T17137] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 433.056068][T17131] ? shmem_write_begin+0x1b0/0x1b0 [ 433.056102][T17131] shmem_file_write_iter+0xc8/0xe0 [ 433.079719][T17131] vfs_write+0x760/0x8d0 [ 433.083990][T17131] ksys_write+0xeb/0x1a0 [ 433.088278][T17131] __x64_sys_write+0x42/0x50 [ 433.092950][T17131] do_syscall_64+0xcd/0x1d0 [ 433.097474][T17131] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 433.103379][T17131] RIP: 0033:0x7f42009ffaef [ 433.107823][T17131] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 433.127495][T17131] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 433.135950][T17131] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 433.143985][T17131] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 433.152002][T17131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 433.159981][T17131] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 433.168096][T17131] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 433.176084][T17131] [ 433.179115][T17137] CPU: 1 PID: 17137 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 433.189590][T17137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 433.194499][T17139] loop2: detected capacity change from 0 to 512 [ 433.199708][T17137] Call Trace: [ 433.199720][T17137] [ 433.199727][T17137] dump_stack_lvl+0xda/0x130 [ 433.199757][T17137] dump_stack+0x15/0x20 [ 433.199779][T17137] should_fail_ex+0x21f/0x230 [ 433.218468][T17122] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 433.221112][T17137] __should_fail_alloc_page+0xfd/0x110 [ 433.228187][T17122] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 433.237937][T17137] __alloc_pages+0x108/0x340 [ 433.237974][T17137] alloc_pages_mpol+0xb1/0x1d0 [ 433.247121][T17131] loop1: detected capacity change from 0 to 512 [ 433.255817][T17137] shmem_get_folio_gfp+0x3b2/0xb40 [ 433.255860][T17137] shmem_write_begin+0xa0/0x1b0 [ 433.268385][T17131] EXT4-fs: journaled quota format not specified [ 433.271507][T17137] generic_perform_write+0x1c9/0x410 [ 433.293149][T17137] ? shmem_write_begin+0x1b0/0x1b0 [ 433.298353][T17137] shmem_file_write_iter+0xc8/0xe0 [ 433.303484][T17137] vfs_write+0x760/0x8d0 [ 433.307752][T17137] ksys_write+0xeb/0x1a0 [ 433.312037][T17137] __x64_sys_write+0x42/0x50 [ 433.316667][T17137] do_syscall_64+0xcd/0x1d0 [ 433.321198][T17137] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 433.327114][T17137] RIP: 0033:0x7fe39bbcaaef [ 433.331591][T17137] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 433.351224][T17137] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 433.359869][T17137] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 433.367846][T17137] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 16:12:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x88470000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x88480000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:50 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:50 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 47) 16:12:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x88a8ffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 433.375866][T17137] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 433.383909][T17137] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 433.391893][T17137] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 433.399976][T17137] 16:12:50 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 64) [ 433.421887][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 433.431073][T17139] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 433.440957][T12979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 433.458230][T17139] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:12:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x8d0b0000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 433.469769][T17139] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 433.479909][T17139] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 433.492708][T17144] FAULT_INJECTION: forcing a failure. [ 433.492708][T17144] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 433.501997][T17139] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 433.506389][T17144] CPU: 0 PID: 17144 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 433.524749][T17144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 433.529367][T17147] loop3: detected capacity change from 0 to 512 [ 433.534847][T17144] Call Trace: [ 433.534857][T17144] [ 433.534865][T17144] dump_stack_lvl+0xda/0x130 [ 433.534896][T17144] dump_stack+0x15/0x20 [ 433.534921][T17144] should_fail_ex+0x21f/0x230 [ 433.549226][T17150] FAULT_INJECTION: forcing a failure. [ 433.549226][T17150] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 433.551973][T17144] should_fail+0xb/0x10 [ 433.578211][T17144] should_fail_usercopy+0x1a/0x20 [ 433.583319][T17144] copy_page_from_iter_atomic+0x237/0xd90 [ 433.589060][T17144] ? shmem_write_begin+0xa0/0x1b0 [ 433.594103][T17144] ? shmem_write_begin+0x10c/0x1b0 [ 433.599426][T17144] generic_perform_write+0x20c/0x410 [ 433.604745][T17144] ? shmem_write_begin+0x1b0/0x1b0 [ 433.609921][T17144] shmem_file_write_iter+0xc8/0xe0 [ 433.615054][T17144] vfs_write+0x760/0x8d0 [ 433.619328][T17144] ksys_write+0xeb/0x1a0 [ 433.623594][T17144] __x64_sys_write+0x42/0x50 [ 433.628279][T17144] do_syscall_64+0xcd/0x1d0 [ 433.632809][T17144] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 433.638710][T17144] RIP: 0033:0x7fe39bbcaaef [ 433.643130][T17144] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 433.662885][T17144] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:12:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xeaffffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 433.671383][T17144] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 433.679360][T17144] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 433.687393][T17144] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 433.695387][T17144] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 433.703384][T17144] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 433.711367][T17144] [ 433.714388][T17150] CPU: 1 PID: 17150 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 433.725044][T17150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 433.728838][T17144] loop4: detected capacity change from 0 to 512 [ 433.735102][T17150] Call Trace: [ 433.735114][T17150] [ 433.735142][T17150] dump_stack_lvl+0xda/0x130 [ 433.752235][T17150] dump_stack+0x15/0x20 [ 433.756480][T17150] should_fail_ex+0x21f/0x230 [ 433.761216][T17150] __should_fail_alloc_page+0xfd/0x110 [ 433.766734][T17150] __alloc_pages+0x108/0x340 [ 433.769633][T17139] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 433.771557][T17150] alloc_pages_mpol+0xb1/0x1d0 [ 433.789135][T17139] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 433.791018][T17150] shmem_get_folio_gfp+0x3b2/0xb40 [ 433.791056][T17150] shmem_write_begin+0xa0/0x1b0 [ 433.791079][T17150] generic_perform_write+0x1c9/0x410 [ 433.791111][T17150] ? shmem_write_begin+0x1b0/0x1b0 [ 433.803682][T17139] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 433.808438][T17150] shmem_file_write_iter+0xc8/0xe0 [ 433.808475][T17150] vfs_write+0x760/0x8d0 [ 433.818558][T17139] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 433.823725][T17150] ksys_write+0xeb/0x1a0 [ 433.836212][T17139] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 433.841241][T17150] __x64_sys_write+0x42/0x50 [ 433.845683][T17139] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 433.857088][T17150] do_syscall_64+0xcd/0x1d0 [ 433.857126][T17150] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 433.864145][T17139] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 433.872354][T17150] RIP: 0033:0x7f42009ffaef 16:12:51 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xf0ffffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 433.872375][T17150] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 433.872399][T17150] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 [ 433.877010][T17139] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 433.890226][T17150] ORIG_RAX: 0000000000000001 [ 433.890237][T17150] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 433.894753][T17139] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 433.900607][T17150] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 433.914566][T17139] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 433.916693][T17150] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 433.916712][T17150] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xfeffffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:51 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 65) [ 433.978755][T17144] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 433.986457][T17150] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 433.986483][T17150] [ 434.017337][T17158] FAULT_INJECTION: forcing a failure. [ 434.017337][T17158] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 434.022983][T17144] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 434.023007][T17144] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 434.034504][T17158] CPU: 1 PID: 17158 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 434.042747][T17144] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 434.045475][T17158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 434.084636][T17144] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 434.092219][T17158] Call Trace: [ 434.092232][T17158] [ 434.092241][T17158] dump_stack_lvl+0xda/0x130 [ 434.101772][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.110312][T17158] dump_stack+0x15/0x20 [ 434.125064][T17147] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 434.127740][T17158] should_fail_ex+0x21f/0x230 [ 434.130687][T17147] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 434.135263][T17158] should_fail+0xb/0x10 [ 434.144201][T17147] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 434.148341][T17158] should_fail_usercopy+0x1a/0x20 [ 434.148378][T17158] copy_page_from_iter_atomic+0x237/0xd90 [ 434.162664][T17144] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 434.164482][T17158] ? shmem_write_begin+0xa0/0x1b0 [ 434.164511][T17158] ? shmem_write_begin+0x10c/0x1b0 [ 434.177505][T17144] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.178721][T17158] generic_perform_write+0x20c/0x410 [ 434.243322][T17158] ? shmem_write_begin+0x1b0/0x1b0 [ 434.248455][T17158] shmem_file_write_iter+0xc8/0xe0 [ 434.253598][T17158] vfs_write+0x760/0x8d0 [ 434.257886][T17158] ksys_write+0xeb/0x1a0 [ 434.262147][T17158] __x64_sys_write+0x42/0x50 [ 434.266759][T17158] do_syscall_64+0xcd/0x1d0 [ 434.271320][T17158] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 434.277248][T17158] RIP: 0033:0x7f42009ffaef [ 434.281669][T17158] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 434.301288][T17158] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 434.309777][T17158] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 434.317755][T17158] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xffffa888}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 434.325732][T17158] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 434.333708][T17158] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 434.341834][T17158] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 434.349815][T17158] [ 434.354958][T17147] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 434.359392][T17158] loop1: detected capacity change from 0 to 512 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xffffff7f}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 48) 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xffffffea}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 434.371215][T17147] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 434.386390][T17158] EXT4-fs: journaled quota format not specified [ 434.400558][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.414073][T17147] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xfffffff0}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:51 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 66) 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0xfffffffe}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:51 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 434.430820][T17147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x2}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 434.474132][T17173] loop2: detected capacity change from 0 to 512 [ 434.478711][T17174] FAULT_INJECTION: forcing a failure. [ 434.478711][T17174] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 434.493952][T17174] CPU: 0 PID: 17174 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 434.504482][T17174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 434.514561][T17174] Call Trace: [ 434.517856][T17174] 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x3}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 434.520804][T17174] dump_stack_lvl+0xda/0x130 [ 434.525492][T17174] dump_stack+0x15/0x20 [ 434.529692][T17174] should_fail_ex+0x21f/0x230 [ 434.534418][T17174] __should_fail_alloc_page+0xfd/0x110 [ 434.539910][T17174] __alloc_pages+0x108/0x340 [ 434.544653][T17174] alloc_pages_mpol+0xb1/0x1d0 [ 434.548904][T17173] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 434.549429][T17174] shmem_get_folio_gfp+0x3b2/0xb40 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 434.560949][T17173] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 434.566034][T17174] shmem_write_begin+0xa0/0x1b0 [ 434.566068][T17174] generic_perform_write+0x1c9/0x410 [ 434.576383][T17173] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 434.581203][T17174] ? shmem_write_begin+0x1b0/0x1b0 [ 434.593602][T17173] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 434.599737][T17174] shmem_file_write_iter+0xc8/0xe0 [ 434.599776][T17174] vfs_write+0x760/0x8d0 16:12:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x5}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 434.599822][T17174] ksys_write+0xeb/0x1a0 [ 434.608454][T17173] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 434.612984][T17174] __x64_sys_write+0x42/0x50 [ 434.618402][T17173] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 434.622385][T17174] do_syscall_64+0xcd/0x1d0 [ 434.626829][T17173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.640758][T17174] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 434.640808][T17174] RIP: 0033:0x7f42009ffaef [ 434.669143][T17173] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 434.674403][T17174] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 434.674428][T17174] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 [ 434.680335][T17173] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 434.680353][T17173] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 434.684758][T17174] ORIG_RAX: 0000000000000001 [ 434.684769][T17174] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 434.702800][T17173] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 434.715803][T17174] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 434.715824][T17174] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 434.715839][T17174] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 434.721910][T17173] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 434.731946][T17174] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 434.731969][T17174] [ 434.751062][T17187] FAULT_INJECTION: forcing a failure. [ 434.751062][T17187] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 434.757951][T17173] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 434.769412][T17187] CPU: 0 PID: 17187 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 434.789538][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.793315][T17187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 434.870947][T17187] Call Trace: [ 434.874243][T17187] [ 434.877184][T17187] dump_stack_lvl+0xda/0x130 [ 434.881882][T17187] dump_stack+0x15/0x20 [ 434.886050][T17187] should_fail_ex+0x21f/0x230 [ 434.890842][T17187] __should_fail_alloc_page+0xfd/0x110 [ 434.896359][T17187] __alloc_pages+0x108/0x340 [ 434.901027][T17187] alloc_pages_mpol+0xb1/0x1d0 [ 434.905806][T17187] shmem_get_folio_gfp+0x3b2/0xb40 [ 434.910942][T17187] shmem_write_begin+0xa0/0x1b0 [ 434.915812][T17187] generic_perform_write+0x1c9/0x410 [ 434.921152][T17187] ? shmem_write_begin+0x1b0/0x1b0 [ 434.926279][T17187] shmem_file_write_iter+0xc8/0xe0 [ 434.931407][T17187] vfs_write+0x760/0x8d0 [ 434.935674][T17187] ksys_write+0xeb/0x1a0 [ 434.939938][T17187] __x64_sys_write+0x42/0x50 [ 434.944547][T17187] do_syscall_64+0xcd/0x1d0 [ 434.949097][T17187] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 434.955079][T17187] RIP: 0033:0x7fe39bbcaaef [ 434.959499][T17187] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 434.979115][T17187] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 434.987582][T17187] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 434.995578][T17187] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 435.003557][T17187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 435.011607][T17187] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 67) 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x7}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 435.019587][T17187] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 435.027624][T17187] [ 435.031503][T17173] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 435.072757][T17191] FAULT_INJECTION: forcing a failure. [ 435.072757][T17191] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.086281][T17191] CPU: 1 PID: 17191 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 435.093521][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 435.096711][T17191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 435.096729][T17191] Call Trace: [ 435.096737][T17191] [ 435.122292][T17191] dump_stack_lvl+0xda/0x130 [ 435.126957][T17191] dump_stack+0x15/0x20 [ 435.131154][T17191] should_fail_ex+0x21f/0x230 [ 435.135934][T17191] should_fail+0xb/0x10 [ 435.139309][T17196] FAULT_INJECTION: forcing a failure. [ 435.139309][T17196] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.140145][T17191] should_fail_usercopy+0x1a/0x20 [ 435.158754][T17191] copy_page_from_iter_atomic+0x237/0xd90 [ 435.164565][T17191] ? shmem_write_begin+0xa0/0x1b0 [ 435.169617][T17191] ? shmem_write_begin+0x10c/0x1b0 [ 435.174745][T17191] generic_perform_write+0x20c/0x410 [ 435.180103][T17191] ? shmem_write_begin+0x1b0/0x1b0 [ 435.185300][T17191] shmem_file_write_iter+0xc8/0xe0 [ 435.190484][T17191] vfs_write+0x760/0x8d0 [ 435.194750][T17191] ksys_write+0xeb/0x1a0 [ 435.199028][T17191] __x64_sys_write+0x42/0x50 [ 435.203770][T17191] do_syscall_64+0xcd/0x1d0 [ 435.208294][T17191] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 435.214201][T17191] RIP: 0033:0x7f42009ffaef [ 435.218621][T17191] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 435.238772][T17191] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 435.247204][T17191] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 435.255195][T17191] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 435.263173][T17191] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:52 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 49) [ 435.271200][T17191] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 435.279178][T17191] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 435.287235][T17191] [ 435.290313][T17196] CPU: 0 PID: 17196 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 435.300768][T17196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 435.305896][T17191] loop1: detected capacity change from 0 to 512 [ 435.310905][T17196] Call Trace: [ 435.310914][T17196] [ 435.310923][T17196] dump_stack_lvl+0xda/0x130 [ 435.328050][T17196] dump_stack+0x15/0x20 [ 435.332224][T17196] should_fail_ex+0x21f/0x230 [ 435.336973][T17196] should_fail+0xb/0x10 [ 435.341227][T17196] should_fail_usercopy+0x1a/0x20 [ 435.346264][T17196] copy_page_from_iter_atomic+0x237/0xd90 [ 435.352069][T17196] ? shmem_write_begin+0xa0/0x1b0 [ 435.357101][T17196] ? shmem_write_begin+0x10c/0x1b0 [ 435.362275][T17196] generic_perform_write+0x20c/0x410 [ 435.367580][T17196] ? shmem_write_begin+0x1b0/0x1b0 [ 435.372747][T17196] shmem_file_write_iter+0xc8/0xe0 [ 435.377870][T17196] vfs_write+0x760/0x8d0 [ 435.382210][T17196] ksys_write+0xeb/0x1a0 [ 435.386546][T17196] __x64_sys_write+0x42/0x50 [ 435.391241][T17196] do_syscall_64+0xcd/0x1d0 [ 435.395758][T17196] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 435.401662][T17196] RIP: 0033:0x7fe39bbcaaef [ 435.406128][T17196] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 435.425743][T17196] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 435.434171][T17196] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 435.442146][T17196] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 435.450201][T17196] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 435.458175][T17196] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 435.466151][T17196] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x9}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 435.474161][T17196] [ 435.481835][T17191] EXT4-fs: journaled quota format not specified [ 435.484076][T17199] __nla_validate_parse: 56 callbacks suppressed [ 435.484178][T17199] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.498143][T17196] loop4: detected capacity change from 0 to 512 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xa}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xb}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 435.523738][T17196] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 435.535287][T17196] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 435.536924][T17202] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.545481][T17196] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xc}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 68) [ 435.568058][T17196] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 435.573883][T17204] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.576196][T17196] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 435.609727][T17196] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 435.634563][T17209] loop2: detected capacity change from 0 to 512 [ 435.639327][T17211] FAULT_INJECTION: forcing a failure. [ 435.639327][T17211] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 435.642886][T17210] loop3: detected capacity change from 0 to 512 [ 435.654085][T17211] CPU: 1 PID: 17211 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 435.666950][T17212] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.670693][T17211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 435.670711][T17211] Call Trace: [ 435.670719][T17211] [ 435.696386][T17211] dump_stack_lvl+0xda/0x130 [ 435.701011][T17211] dump_stack+0x15/0x20 [ 435.705190][T17211] should_fail_ex+0x21f/0x230 [ 435.709892][T17211] __should_fail_alloc_page+0xfd/0x110 [ 435.712592][T17196] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 435.715370][T17211] __alloc_pages+0x108/0x340 [ 435.715406][T17211] alloc_pages_mpol+0xb1/0x1d0 [ 435.737246][T17211] shmem_get_folio_gfp+0x3b2/0xb40 [ 435.742434][T17211] shmem_write_begin+0xa0/0x1b0 [ 435.747377][T17211] generic_perform_write+0x1c9/0x410 [ 435.752730][T17211] ? shmem_write_begin+0x1b0/0x1b0 [ 435.757892][T17211] shmem_file_write_iter+0xc8/0xe0 [ 435.760250][T17216] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.763048][T17211] vfs_write+0x760/0x8d0 [ 435.763093][T17211] ksys_write+0xeb/0x1a0 [ 435.780775][T17211] __x64_sys_write+0x42/0x50 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xd}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 50) 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xe}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 435.785438][T17211] do_syscall_64+0xcd/0x1d0 [ 435.789977][T17211] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 435.795954][T17211] RIP: 0033:0x7f42009ffaef [ 435.800388][T17211] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 435.803438][T17209] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e018, mo2=0002] 16:12:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 69) 16:12:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xf}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 435.819998][T17211] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 435.820027][T17211] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 435.820044][T17211] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 435.820060][T17211] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 435.831503][T17209] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 435.836392][T17211] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 435.836411][T17211] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 435.836433][T17211] [ 435.842941][T17218] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.844475][T17209] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 435.844499][T17209] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 435.878858][T17210] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 435.890856][T17221] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.891153][T17210] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 435.906602][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 435.910472][T17210] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 435.926546][T17222] FAULT_INJECTION: forcing a failure. [ 435.926546][T17222] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.935538][T17209] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 435.944344][T17222] CPU: 0 PID: 17222 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 435.944371][T17222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 435.944383][T17222] Call Trace: [ 435.944389][T17222] [ 435.957013][T17209] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 435.963380][T17222] dump_stack_lvl+0xda/0x130 [ 435.977065][T17209] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 435.989591][T17222] dump_stack+0x15/0x20 [ 435.989621][T17222] should_fail_ex+0x21f/0x230 [ 435.997711][T17210] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 436.008024][T17222] should_fail+0xb/0x10 [ 436.008057][T17222] should_fail_usercopy+0x1a/0x20 [ 436.008094][T17222] copy_page_from_iter_atomic+0x237/0xd90 [ 436.021402][T17209] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 436.021498][T17222] ? shmem_write_begin+0xa0/0x1b0 [ 436.024948][T17210] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 436.038544][T17222] ? shmem_write_begin+0x10c/0x1b0 [ 436.038577][T17222] generic_perform_write+0x20c/0x410 [ 436.043419][T17210] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 436.055291][T17222] ? shmem_write_begin+0x1b0/0x1b0 [ 436.055324][T17222] shmem_file_write_iter+0xc8/0xe0 [ 436.059684][T17210] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 436.064169][T17222] vfs_write+0x760/0x8d0 [ 436.168481][T17222] ksys_write+0xeb/0x1a0 [ 436.172789][T17222] __x64_sys_write+0x42/0x50 [ 436.177405][T17222] do_syscall_64+0xcd/0x1d0 [ 436.182030][T17222] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 436.187936][T17222] RIP: 0033:0x7f42009ffaef [ 436.192353][T17222] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 436.211968][T17222] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 436.220391][T17222] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 436.228370][T17222] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 436.236346][T17222] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 436.244402][T17222] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 436.252463][T17222] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 436.260519][T17222] [ 436.268147][T17222] loop1: detected capacity change from 0 to 512 [ 436.269360][T17209] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 436.285924][T17209] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 436.287475][T17222] EXT4-fs: journaled quota format not specified [ 436.296102][T17209] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 436.302668][T17209] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 436.327374][T17209] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x10}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:53 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 436.327399][T17209] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 436.333662][T17209] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 436.340840][T17224] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:53 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x11}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x12}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 436.382167][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.401036][T17226] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 436.406676][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.421839][T17228] FAULT_INJECTION: forcing a failure. [ 436.421839][T17228] name fail_page_alloc, interval 1, probability 0, space 0, times 0 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x25}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 436.429860][T17230] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 436.435139][T17228] CPU: 1 PID: 17228 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 436.435165][T17228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 436.435177][T17228] Call Trace: [ 436.435183][T17228] [ 436.471726][T17228] dump_stack_lvl+0xda/0x130 [ 436.476337][T17228] dump_stack+0x15/0x20 [ 436.480530][T17228] should_fail_ex+0x21f/0x230 [ 436.485233][T17228] __should_fail_alloc_page+0xfd/0x110 [ 436.490765][T17228] __alloc_pages+0x108/0x340 [ 436.495368][T17228] alloc_pages_mpol+0xb1/0x1d0 [ 436.500136][T17228] shmem_get_folio_gfp+0x3b2/0xb40 [ 436.505367][T17228] shmem_write_begin+0xa0/0x1b0 [ 436.510233][T17228] generic_perform_write+0x1c9/0x410 [ 436.516089][T17228] ? shmem_write_begin+0x1b0/0x1b0 [ 436.521216][T17228] shmem_file_write_iter+0xc8/0xe0 [ 436.526453][T17228] vfs_write+0x760/0x8d0 [ 436.530716][T17228] ksys_write+0xeb/0x1a0 [ 436.535080][T17228] __x64_sys_write+0x42/0x50 [ 436.539718][T17228] do_syscall_64+0xcd/0x1d0 [ 436.544232][T17228] ? switch_fpu_return+0xe/0x10 [ 436.549155][T17228] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 436.555056][T17228] RIP: 0033:0x7fe39bbcaaef [ 436.559471][T17228] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 436.579085][T17228] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:12:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 70) 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x48}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:53 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 51) [ 436.587529][T17228] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 436.595582][T17228] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 436.603639][T17228] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 436.611614][T17228] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 436.619679][T17228] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 436.627665][T17228] 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4c}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 436.669003][T17234] FAULT_INJECTION: forcing a failure. [ 436.669003][T17234] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 436.682292][T17234] CPU: 1 PID: 17234 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 436.692723][T17234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 436.693134][T17238] FAULT_INJECTION: forcing a failure. [ 436.693134][T17238] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 436.702775][T17234] Call Trace: [ 436.702792][T17234] [ 436.702801][T17234] dump_stack_lvl+0xda/0x130 [ 436.702836][T17234] dump_stack+0x15/0x20 [ 436.730883][T17234] should_fail_ex+0x21f/0x230 [ 436.735608][T17234] __should_fail_alloc_page+0xfd/0x110 [ 436.741082][T17234] __alloc_pages+0x108/0x340 [ 436.745691][T17234] alloc_pages_mpol+0xb1/0x1d0 [ 436.750460][T17234] shmem_get_folio_gfp+0x3b2/0xb40 [ 436.755588][T17234] shmem_write_begin+0xa0/0x1b0 [ 436.760448][T17234] generic_perform_write+0x1c9/0x410 [ 436.765851][T17234] ? shmem_write_begin+0x1b0/0x1b0 [ 436.771016][T17234] shmem_file_write_iter+0xc8/0xe0 [ 436.776145][T17234] vfs_write+0x760/0x8d0 [ 436.780410][T17234] ksys_write+0xeb/0x1a0 [ 436.784675][T17234] __x64_sys_write+0x42/0x50 [ 436.789284][T17234] do_syscall_64+0xcd/0x1d0 [ 436.793827][T17234] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 436.799731][T17234] RIP: 0033:0x7f42009ffaef [ 436.804170][T17234] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 436.823830][T17234] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 436.832328][T17234] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 436.840326][T17234] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 436.848384][T17234] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 436.856560][T17234] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 436.864540][T17234] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 436.872572][T17234] [ 436.875733][T17238] CPU: 0 PID: 17238 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 436.886178][T17238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 436.896301][T17238] Call Trace: [ 436.899602][T17238] [ 436.902578][T17238] dump_stack_lvl+0xda/0x130 [ 436.907197][T17238] dump_stack+0x15/0x20 [ 436.911479][T17238] should_fail_ex+0x21f/0x230 [ 436.916200][T17238] should_fail+0xb/0x10 [ 436.920444][T17238] should_fail_usercopy+0x1a/0x20 [ 436.925510][T17238] copy_page_from_iter_atomic+0x237/0xd90 [ 436.931307][T17238] ? shmem_write_begin+0xa0/0x1b0 [ 436.936367][T17238] ? shmem_write_begin+0x10c/0x1b0 [ 436.941512][T17238] generic_perform_write+0x20c/0x410 [ 436.946886][T17238] ? shmem_write_begin+0x1b0/0x1b0 [ 436.952024][T17238] shmem_file_write_iter+0xc8/0xe0 [ 436.957235][T17238] vfs_write+0x760/0x8d0 [ 436.961591][T17238] ksys_write+0xeb/0x1a0 [ 436.964264][T17245] loop2: detected capacity change from 0 to 512 [ 436.965845][T17238] __x64_sys_write+0x42/0x50 [ 436.976707][T17238] do_syscall_64+0xcd/0x1d0 [ 436.981299][T17238] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 436.985208][T17245] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 436.987204][T17238] RIP: 0033:0x7fe39bbcaaef 16:12:53 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 71) 16:12:53 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x60}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x68}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6c}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 436.987226][T17238] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 436.998675][T17245] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.003050][T17238] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 [ 437.022852][T17245] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.033146][T17238] ORIG_RAX: 0000000000000001 [ 437.033157][T17238] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 437.033175][T17238] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 437.064956][T17245] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 437.065090][T17238] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 437.065110][T17238] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 437.065124][T17238] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 437.073208][T17245] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 437.081051][T17238] [ 437.087673][T17251] FAULT_INJECTION: forcing a failure. [ 437.087673][T17251] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 437.091826][T17245] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 437.097141][T17251] CPU: 0 PID: 17251 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 437.097185][T17251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 437.097198][T17251] Call Trace: [ 437.097207][T17251] [ 437.105709][T17245] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 437.119440][T17251] dump_stack_lvl+0xda/0x130 [ 437.119481][T17251] dump_stack+0x15/0x20 [ 437.125386][T17245] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.135495][T17251] should_fail_ex+0x21f/0x230 [ 437.135536][T17251] should_fail+0xb/0x10 [ 437.147801][T17245] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.158145][T17251] should_fail_usercopy+0x1a/0x20 [ 437.168244][T17245] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.171499][T17251] copy_page_from_iter_atomic+0x237/0xd90 [ 437.176474][T17238] loop4: detected capacity change from 0 to 512 [ 437.186813][T17251] ? shmem_write_begin+0xa0/0x1b0 [ 437.218703][T17238] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.226014][T17251] ? shmem_write_begin+0x10c/0x1b0 [ 437.231048][T17238] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 437.244221][T17251] generic_perform_write+0x20c/0x410 [ 437.250040][T17238] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 437.256171][T17251] ? shmem_write_begin+0x1b0/0x1b0 [ 437.268132][T17245] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.272620][T17251] shmem_file_write_iter+0xc8/0xe0 [ 437.277801][T17245] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.287965][T17251] vfs_write+0x760/0x8d0 [ 437.293261][T17245] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.306541][T17251] ksys_write+0xeb/0x1a0 [ 437.306651][T17251] __x64_sys_write+0x42/0x50 16:12:54 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x74}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 52) [ 437.315879][T17238] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 437.323174][T17251] do_syscall_64+0xcd/0x1d0 [ 437.328570][T17238] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 437.338331][T17251] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 437.342747][T17238] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 437.355743][T17251] RIP: 0033:0x7f42009ffaef 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x7a}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x300}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x500}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.355764][T17251] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 437.360132][T17245] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 437.364609][T17251] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 437.364636][T17251] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x600}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.364652][T17251] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 437.364668][T17251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 437.364754][T17251] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 437.364770][T17251] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 437.491583][T17267] loop3: detected capacity change from 0 to 512 [ 437.494232][T17251] [ 437.496300][T17251] loop1: detected capacity change from 0 to 512 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x700}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.520185][T17251] EXT4-fs: journaled quota format not specified [ 437.533405][T17267] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.545052][T17267] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 437.555255][T17267] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x900}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.571786][T17267] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 437.574839][T17274] loop2: detected capacity change from 0 to 512 [ 437.581893][T17267] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 437.607504][T17277] FAULT_INJECTION: forcing a failure. [ 437.607504][T17277] name fail_page_alloc, interval 1, probability 0, space 0, times 0 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xa00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xb00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xb8d}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.620807][T17277] CPU: 0 PID: 17277 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 437.631367][T17277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 437.641491][T17277] Call Trace: [ 437.644791][T17277] [ 437.647743][T17277] dump_stack_lvl+0xda/0x130 [ 437.652381][T17277] dump_stack+0x15/0x20 [ 437.656571][T17277] should_fail_ex+0x21f/0x230 [ 437.661359][T17277] __should_fail_alloc_page+0xfd/0x110 [ 437.666903][T17277] __alloc_pages+0x108/0x340 16:12:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 72) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xc00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.671532][T17277] alloc_pages_mpol+0xb1/0x1d0 [ 437.676365][T17277] shmem_get_folio_gfp+0x3b2/0xb40 [ 437.681604][T17277] shmem_write_begin+0xa0/0x1b0 [ 437.686478][T17277] generic_perform_write+0x1c9/0x410 [ 437.691800][T17277] ? shmem_write_begin+0x1b0/0x1b0 [ 437.695098][T17267] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 437.697018][T17277] shmem_file_write_iter+0xc8/0xe0 16:12:54 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 73) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xd00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xe00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:54 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 53) [ 437.714308][T17277] vfs_write+0x760/0x8d0 [ 437.714357][T17277] ksys_write+0xeb/0x1a0 [ 437.714398][T17277] __x64_sys_write+0x42/0x50 [ 437.714507][T17277] do_syscall_64+0xcd/0x1d0 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xf00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.714537][T17277] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 437.714566][T17277] RIP: 0033:0x7fe39bbcaaef [ 437.714585][T17277] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 437.714654][T17277] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 437.714680][T17277] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 437.714695][T17277] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 437.714707][T17277] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 437.714754][T17277] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 437.714795][T17277] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 437.714813][T17277] [ 437.720643][T17287] FAULT_INJECTION: forcing a failure. [ 437.720643][T17287] name fail_page_alloc, interval 1, probability 0, space 0, times 0 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x1100}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:54 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) getpid() r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 437.720666][T17287] CPU: 1 PID: 17287 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 437.720775][T17287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 437.720790][T17287] Call Trace: [ 437.720798][T17287] [ 437.720806][T17287] dump_stack_lvl+0xda/0x130 [ 437.720845][T17287] dump_stack+0x15/0x20 [ 437.720874][T17287] should_fail_ex+0x21f/0x230 [ 437.720907][T17287] __should_fail_alloc_page+0xfd/0x110 [ 437.720962][T17287] __alloc_pages+0x108/0x340 16:12:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x1200}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x2500}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.720986][T17287] alloc_pages_mpol+0xb1/0x1d0 [ 437.721005][T17287] shmem_get_folio_gfp+0x3b2/0xb40 [ 437.721037][T17287] shmem_write_begin+0xa0/0x1b0 [ 437.721119][T17287] generic_perform_write+0x1c9/0x410 [ 437.721149][T17287] ? shmem_write_begin+0x1b0/0x1b0 [ 437.721245][T17287] shmem_file_write_iter+0xc8/0xe0 [ 437.721275][T17287] vfs_write+0x760/0x8d0 [ 437.721317][T17287] ksys_write+0xeb/0x1a0 [ 437.721348][T17287] __x64_sys_write+0x42/0x50 [ 437.721455][T17287] do_syscall_64+0xcd/0x1d0 [ 437.721487][T17287] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 437.721563][T17287] RIP: 0033:0x7f42009ffaef [ 437.721577][T17287] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 437.721599][T17287] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 437.721624][T17287] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 437.721640][T17287] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 437.721655][T17287] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 437.721673][T17287] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 437.721688][T17287] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 437.721704][T17287] [ 437.730751][T17274] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 437.731311][T17274] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:12:55 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3EtvG0UcAPD/rpOUPhNKefQBNRRERCFp0gI9cAGB1AsSEhzgGFJTlbotaoJEq4oWhMoR8QmAIxKfgBNcEHACcYU7QqpQLy0ckNHau62TOCGx4zplfz/Jzsw+PPPf2Ylnd2wHUFrV7CmJ2BYRv0bEaCu7cINq68+Naxdn/7p2cTaJRuPVP5PmdtevXZwtNi3225pnxtOI9KMk9nYod+78hVMz9XrtXJ6fnD/9zuTc+QtPnTw9c6J2onZm+ujRI4ennn1m+ul1iTOL6/qe98/u233sjU9fnm3Emz98ldX33nx9exwtYz2XWY1qNBqNRrpg6Ujz+bGeX31j2d6WToYGWBHWpBIRWXMNN/v/aFTiVuONxksfDrRyQF9l70+bliyt5H+HmuuB/6tEH4eSKt7xs+vf4nE7xx+DdvX57LnWjP9G/mitGYrsuj0Za12xV/pU/raIeP3y359lj+h4HwIAYH19k41/nuw0/kvjvrbtduRzKGMRcTAidkbEPRGxK59Dyba9PyIeWGP51UX5peOfnzd3FdgqZeO/5/K5rYXjv5uzNmOVPLe9Gf9w8tbJeu1QfkzGY3hTlp9aoYxvX/zlk+XWVdvGf9kjK78YC+b1+GNo0Q264zPzM73E3O7qBxF7hjrFn9ycCUgiYndE7Oni9bNjdvKJL/dl6R1bl67/7/hXsA7zTI0vIh5vtf/lWBR/IWmVtNz85ORdUa8dmizOiqV+/OnKK+354bZ0T/Gvg6z9t3Q8//P4i25QzNfOrb2MK799vOw1Tbfn/0jyWjM9ki97b2Z+/txUxEi+YMHy6Vv7Fvli+yz+8QOd+//OiH8+z/fbGxHZSfxgRDwUEfvzuj8cEY9ExIEV4v/+hUffXvkIDbb9j6/U/hFjSft8fReJyqnvvl6u/NW1/5Fmajxfspr/f6utYC/HDgAAAO4UaXMOOkknbqbTdGKi9Rn+XbElrZ+dmz9YjXfPHG/NVY/FcFrc6Rptux86ld8bLvLTi/KHI+Lu5ieNNjfzE7Nn69sHHTyU3NZl+n/m93596AXYONY0j5b0rx7A7ef7mlBe+j+Ul/4P5aX/Q3l16v+XIm4MoCrAbeb9H8pL/4fy0v+hvPR/KKWlX4kvfm6lm2/630rsPNbT7iVKVPr0ytH+ox19SEQ68EPXfSLdCNXYnyc2RcRq97rU1zZdfP4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADc+f4NAAD//00a4+c=") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 437.731419][T17274] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.731441][T17274] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.731537][T17274] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 437.731696][T17274] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4788}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4800}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4888}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.731873][T17274] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 437.735091][T17274] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.735167][T17274] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.735230][T17274] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.735383][T17274] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4c00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x5865}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 437.735413][T17274] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.735435][T17274] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.735552][T17274] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 437.773984][T17294] FAULT_INJECTION: forcing a failure. [ 437.773984][T17294] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 437.774017][T17294] CPU: 0 PID: 17294 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 437.774048][T17294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 437.774135][T17294] Call Trace: [ 437.774144][T17294] [ 437.774152][T17294] dump_stack_lvl+0xda/0x130 [ 437.774190][T17294] dump_stack+0x15/0x20 [ 437.774244][T17294] should_fail_ex+0x21f/0x230 [ 437.774451][T17294] should_fail+0xb/0x10 [ 437.774481][T17294] should_fail_usercopy+0x1a/0x20 [ 437.774545][T17294] copy_page_from_iter_atomic+0x237/0xd90 [ 437.774581][T17294] ? shmem_write_begin+0xa0/0x1b0 [ 437.774607][T17294] ? shmem_write_begin+0x10c/0x1b0 [ 437.774633][T17294] generic_perform_write+0x20c/0x410 [ 437.774814][T17294] ? shmem_write_begin+0x1b0/0x1b0 [ 437.774844][T17294] shmem_file_write_iter+0xc8/0xe0 [ 437.774978][T17294] vfs_write+0x760/0x8d0 [ 437.775023][T17294] ksys_write+0xeb/0x1a0 [ 437.775059][T17294] __x64_sys_write+0x42/0x50 [ 437.775100][T17294] do_syscall_64+0xcd/0x1d0 [ 437.775130][T17294] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 437.775153][T17294] RIP: 0033:0x7f42009ffaef [ 437.775167][T17294] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 437.775235][T17294] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 437.775312][T17294] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 437.775329][T17294] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 437.775345][T17294] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 437.775361][T17294] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 437.775376][T17294] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 437.775398][T17294] [ 437.807857][T17294] loop1: detected capacity change from 0 to 512 [ 437.825217][T17299] loop2: detected capacity change from 0 to 512 [ 437.842407][T17294] EXT4-fs: journaled quota format not specified [ 437.869223][T17301] FAULT_INJECTION: forcing a failure. [ 437.869223][T17301] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 437.899358][T17299] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.899563][T17301] CPU: 0 PID: 17301 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 437.902801][T17299] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 437.905711][T17301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 437.905728][T17301] Call Trace: [ 437.905737][T17301] [ 437.905745][T17301] dump_stack_lvl+0xda/0x130 [ 437.910337][T17299] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 437.914478][T17301] dump_stack+0x15/0x20 [ 437.920447][T17299] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 437.924575][T17301] should_fail_ex+0x21f/0x230 [ 437.945961][T17299] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 437.949252][T17301] should_fail+0xb/0x10 [ 437.949286][T17301] should_fail_usercopy+0x1a/0x20 [ 437.955277][T17299] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 437.959493][T17301] copy_page_from_iter_atomic+0x237/0xd90 [ 437.981991][T17299] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 437.982984][T17301] ? shmem_write_begin+0xa0/0x1b0 [ 437.987421][T17299] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 438.006995][T17301] ? shmem_write_begin+0x10c/0x1b0 [ 438.007029][T17301] generic_perform_write+0x20c/0x410 [ 438.015731][T17299] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 438.023402][T17301] ? shmem_write_begin+0x1b0/0x1b0 [ 438.040894][T17299] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 438.047301][T17301] shmem_file_write_iter+0xc8/0xe0 [ 438.047340][T17301] vfs_write+0x760/0x8d0 [ 438.055306][T17299] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 438.058307][T17301] ksys_write+0xeb/0x1a0 [ 438.066230][T17299] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 438.077608][T17301] __x64_sys_write+0x42/0x50 [ 438.090353][T17299] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 438.100829][T17301] do_syscall_64+0xcd/0x1d0 [ 438.100868][T17301] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 438.713728][T17301] RIP: 0033:0x7fe39bbcaaef [ 438.718154][T17301] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 438.737790][T17301] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 438.746201][T17301] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 438.754169][T17301] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 438.762198][T17301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 438.770181][T17301] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6558}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6800}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6c00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x7400}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x7a00}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8100}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8847}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8848}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8d0b}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x34000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x400300}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x1000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x2000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x3000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 438.778149][T17301] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 438.786123][T17301] [ 438.795803][T17301] loop4: detected capacity change from 0 to 512 16:12:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 74) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x5000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 438.837949][T17301] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 438.849545][T17301] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 438.859822][T17301] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 438.873286][T17301] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:55 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 54) 16:12:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x7000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 438.884629][T17301] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 438.899671][T17301] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 438.903550][T17355] loop3: detected capacity change from 0 to 512 [ 438.923039][T17358] loop2: detected capacity change from 0 to 512 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x9000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 438.943219][T17355] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 438.954786][T17355] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 438.965002][T17355] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 438.983250][T17366] FAULT_INJECTION: forcing a failure. [ 438.983250][T17366] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 438.991389][T17355] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 438.996534][T17366] CPU: 1 PID: 17366 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 439.007714][T17355] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 439.014876][T17366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 439.014899][T17366] Call Trace: [ 439.014908][T17366] [ 439.014916][T17366] dump_stack_lvl+0xda/0x130 [ 439.031384][T17355] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 439.039149][T17366] dump_stack+0x15/0x20 [ 439.049643][T17358] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e018, mo2=0002] [ 439.049986][T17366] should_fail_ex+0x21f/0x230 [ 439.062774][T17358] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 439.066465][T17366] __should_fail_alloc_page+0xfd/0x110 [ 439.074379][T17358] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 439.079052][T17366] __alloc_pages+0x108/0x340 [ 439.079090][T17366] alloc_pages_mpol+0xb1/0x1d0 [ 439.090556][T17358] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 439.095982][T17366] shmem_get_folio_gfp+0x3b2/0xb40 [ 439.096023][T17366] shmem_write_begin+0xa0/0x1b0 [ 439.108502][T17358] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 439.110781][T17366] generic_perform_write+0x1c9/0x410 [ 439.116119][T17358] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 439.128756][T17366] ? shmem_write_begin+0x1b0/0x1b0 [ 439.128786][T17366] shmem_file_write_iter+0xc8/0xe0 [ 439.128819][T17366] vfs_write+0x760/0x8d0 [ 439.136508][T17358] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 439.138754][T17366] ksys_write+0xeb/0x1a0 [ 439.161683][T17358] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 439.166140][T17366] __x64_sys_write+0x42/0x50 [ 439.166191][T17366] do_syscall_64+0xcd/0x1d0 [ 439.171283][T17358] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 439.176451][T17366] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 439.180719][T17358] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 439.192844][T17366] RIP: 0033:0x7f42009ffaef [ 439.199613][T17358] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 439.208521][T17366] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 439.208546][T17366] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 [ 439.213131][T17358] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 439.217604][T17366] ORIG_RAX: 0000000000000001 [ 439.217616][T17366] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 439.227716][T17358] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 439.233562][T17366] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:12:56 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) getpid() r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:56 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xa000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 75) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xb000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.249370][T17358] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 439.251156][T17366] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 439.251175][T17366] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 439.370046][T17366] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 439.378192][T17366] 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xc000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xd000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xe000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.409773][T17373] FAULT_INJECTION: forcing a failure. [ 439.409773][T17373] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 439.423286][T17373] CPU: 0 PID: 17373 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 439.433799][T17373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 439.443888][T17373] Call Trace: [ 439.447186][T17373] [ 439.450129][T17373] dump_stack_lvl+0xda/0x130 [ 439.454786][T17373] dump_stack+0x15/0x20 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xf000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x10000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x11000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x12000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.458960][T17373] should_fail_ex+0x21f/0x230 [ 439.463745][T17373] should_fail+0xb/0x10 [ 439.468047][T17373] should_fail_usercopy+0x1a/0x20 [ 439.473100][T17373] copy_page_from_iter_atomic+0x237/0xd90 [ 439.478911][T17373] ? shmem_write_begin+0xa0/0x1b0 [ 439.484008][T17373] ? shmem_write_begin+0x10c/0x1b0 [ 439.489160][T17373] generic_perform_write+0x20c/0x410 [ 439.494521][T17373] ? shmem_write_begin+0x1b0/0x1b0 [ 439.499787][T17373] shmem_file_write_iter+0xc8/0xe0 [ 439.504927][T17373] vfs_write+0x760/0x8d0 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x25000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x48000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4c000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.509222][T17373] ksys_write+0xeb/0x1a0 [ 439.513514][T17373] __x64_sys_write+0x42/0x50 [ 439.518144][T17373] do_syscall_64+0xcd/0x1d0 [ 439.522916][T17373] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 439.528924][T17373] RIP: 0033:0x7f42009ffaef [ 439.533457][T17373] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x60000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x65580000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x68000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.553196][T17373] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 439.561643][T17373] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 439.569659][T17373] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 439.577644][T17373] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 439.585643][T17373] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 439.593682][T17373] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 439.601697][T17373] [ 439.626786][T17406] loop2: detected capacity change from 0 to 512 [ 439.631224][T17402] FAULT_INJECTION: forcing a failure. [ 439.631224][T17402] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 439.641462][T17373] loop1: detected capacity change from 0 to 512 [ 439.646354][T17402] CPU: 1 PID: 17402 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 439.662999][T17402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 439.673076][T17402] Call Trace: 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x6c000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x74000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x7a000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.676367][T17402] [ 439.679312][T17402] dump_stack_lvl+0xda/0x130 [ 439.683926][T17402] dump_stack+0x15/0x20 [ 439.687019][T17373] EXT4-fs: journaled quota format not specified [ 439.688133][T17402] should_fail_ex+0x21f/0x230 [ 439.699288][T17402] __should_fail_alloc_page+0xfd/0x110 [ 439.699319][T17402] __alloc_pages+0x108/0x340 [ 439.699345][T17402] alloc_pages_mpol+0xb1/0x1d0 [ 439.699367][T17402] shmem_get_folio_gfp+0x3b2/0xb40 16:12:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x81000000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 439.699461][T17402] shmem_write_begin+0xa0/0x1b0 [ 439.699516][T17402] generic_perform_write+0x1c9/0x410 [ 439.699549][T17402] ? shmem_write_begin+0x1b0/0x1b0 [ 439.699573][T17402] shmem_file_write_iter+0xc8/0xe0 [ 439.699600][T17402] vfs_write+0x760/0x8d0 [ 439.699713][T17402] ksys_write+0xeb/0x1a0 [ 439.699753][T17402] __x64_sys_write+0x42/0x50 [ 439.699932][T17402] do_syscall_64+0xcd/0x1d0 [ 439.699959][T17402] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 439.699983][T17402] RIP: 0033:0x7fe39bbcaaef 16:12:56 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 55) 16:12:56 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 76) [ 439.699998][T17402] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 439.700056][T17402] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 439.700112][T17402] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 439.700125][T17402] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 439.700138][T17402] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 439.700151][T17402] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 439.700164][T17402] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 439.700248][T17402] [ 439.741814][T17406] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 439.767308][T17414] loop3: detected capacity change from 0 to 512 [ 439.846434][T17406] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 439.860698][T17421] FAULT_INJECTION: forcing a failure. [ 439.860698][T17421] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 439.871896][T17406] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 439.871918][T17406] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 439.878987][T17418] FAULT_INJECTION: forcing a failure. [ 439.878987][T17418] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 439.885153][T17421] CPU: 1 PID: 17421 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 439.932334][T17421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 439.942399][T17421] Call Trace: [ 439.945683][T17421] [ 439.948653][T17421] dump_stack_lvl+0xda/0x130 [ 439.953384][T17421] dump_stack+0x15/0x20 [ 439.957578][T17421] should_fail_ex+0x21f/0x230 [ 439.962272][T17421] __should_fail_alloc_page+0xfd/0x110 [ 439.967749][T17421] __alloc_pages+0x108/0x340 [ 439.972359][T17421] alloc_pages_mpol+0xb1/0x1d0 [ 439.977152][T17421] shmem_get_folio_gfp+0x3b2/0xb40 [ 439.982301][T17421] shmem_write_begin+0xa0/0x1b0 [ 439.987233][T17421] generic_perform_write+0x1c9/0x410 [ 439.992540][T17421] ? shmem_write_begin+0x1b0/0x1b0 [ 439.997663][T17421] shmem_file_write_iter+0xc8/0xe0 [ 440.002791][T17421] vfs_write+0x760/0x8d0 [ 440.007063][T17421] ksys_write+0xeb/0x1a0 [ 440.011327][T17421] __x64_sys_write+0x42/0x50 [ 440.015967][T17421] do_syscall_64+0xcd/0x1d0 [ 440.020489][T17421] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 440.026401][T17421] RIP: 0033:0x7f42009ffaef [ 440.030824][T17421] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 440.050606][T17421] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 440.059655][T17421] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 440.067646][T17421] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 440.075621][T17421] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 440.083598][T17421] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 440.091642][T17421] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 440.099800][T17421] [ 440.102882][T17418] CPU: 0 PID: 17418 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 440.110626][T17406] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 440.113348][T17418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 440.113366][T17418] Call Trace: [ 440.113375][T17418] [ 440.113383][T17418] dump_stack_lvl+0xda/0x130 [ 440.113412][T17418] dump_stack+0x15/0x20 [ 440.128987][T17406] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 440.131523][T17418] should_fail_ex+0x21f/0x230 [ 440.135074][T17406] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 440.137744][T17418] should_fail+0xb/0x10 [ 440.137796][T17418] should_fail_usercopy+0x1a/0x20 [ 440.137822][T17418] copy_page_from_iter_atomic+0x237/0xd90 [ 440.148162][T17406] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 440.160692][T17418] ? shmem_write_begin+0xa0/0x1b0 [ 440.160725][T17418] ? shmem_write_begin+0x10c/0x1b0 [ 440.166282][T17406] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x88470000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 77) 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x88480000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 440.178401][T17418] generic_perform_write+0x20c/0x410 [ 440.182593][T17406] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 440.206120][T17406] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 440.209896][T17418] ? shmem_write_begin+0x1b0/0x1b0 [ 440.209928][T17418] shmem_file_write_iter+0xc8/0xe0 [ 440.215067][T17406] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 440.225089][T17418] vfs_write+0x760/0x8d0 [ 440.230369][T17406] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 440.243553][T17418] ksys_write+0xeb/0x1a0 [ 440.257067][T17406] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 440.260092][T17418] __x64_sys_write+0x42/0x50 [ 440.289100][T17427] FAULT_INJECTION: forcing a failure. [ 440.289100][T17427] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 440.292897][T17418] do_syscall_64+0xcd/0x1d0 [ 440.292937][T17418] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 440.345769][T17418] RIP: 0033:0x7fe39bbcaaef [ 440.350212][T17418] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 440.369922][T17418] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 440.378363][T17418] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 440.386438][T17418] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 440.394460][T17418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 440.402511][T17418] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 440.410565][T17418] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 440.418642][T17418] [ 440.421673][T17427] CPU: 1 PID: 17427 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 440.429251][T17418] loop4: detected capacity change from 0 to 512 [ 440.432132][T17427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 440.432185][T17427] Call Trace: [ 440.432193][T17427] [ 440.432199][T17427] dump_stack_lvl+0xda/0x130 [ 440.448181][T17414] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 440.448487][T17427] dump_stack+0x15/0x20 [ 440.451786][T17414] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 440.454686][T17427] should_fail_ex+0x21f/0x230 [ 440.454726][T17427] should_fail+0xb/0x10 [ 440.454754][T17427] should_fail_usercopy+0x1a/0x20 [ 440.459337][T17414] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 440.470773][T17427] copy_page_from_iter_atomic+0x237/0xd90 [ 440.480165][T17414] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 440.485085][T17427] ? shmem_write_begin+0xa0/0x1b0 [ 440.485118][T17427] ? shmem_write_begin+0x10c/0x1b0 [ 440.490110][T17414] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 440.493933][T17427] generic_perform_write+0x20c/0x410 [ 440.501869][T17414] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 440.512135][T17427] ? shmem_write_begin+0x1b0/0x1b0 [ 440.538744][T17418] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 440.550809][T17427] shmem_file_write_iter+0xc8/0xe0 [ 440.556186][T17418] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 440.568625][T17427] vfs_write+0x760/0x8d0 [ 440.573751][T17418] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 440.585197][T17427] ksys_write+0xeb/0x1a0 [ 440.593236][T17418] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 16:12:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 56) 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x88a8ffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:57 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 440.600353][T17427] __x64_sys_write+0x42/0x50 [ 440.600399][T17427] do_syscall_64+0xcd/0x1d0 [ 440.607144][T17418] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 440.617792][T17427] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 440.617825][T17427] RIP: 0033:0x7f42009ffaef [ 440.622757][T17418] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x8d0b0000}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 440.630092][T17427] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 440.630118][T17427] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 440.630138][T17427] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 440.630160][T17427] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 440.630176][T17427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xeaffffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 440.673898][T17432] __nla_validate_parse: 68 callbacks suppressed [ 440.673938][T17432] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 440.675854][T17427] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 440.675922][T17427] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 440.714140][T17434] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 440.719917][T17427] [ 440.724486][T17427] loop1: detected capacity change from 0 to 512 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xf0ffffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:57 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) getpid() r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xfeffffff}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 440.742995][T17436] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 440.753007][T17427] EXT4-fs: journaled quota format not specified [ 440.810012][T17438] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:12:57 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 78) [ 440.833302][T17440] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 440.851203][T17443] loop2: detected capacity change from 0 to 512 [ 440.875573][T17445] FAULT_INJECTION: forcing a failure. [ 440.875573][T17445] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 440.888890][T17445] CPU: 1 PID: 17445 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 440.893426][T17446] FAULT_INJECTION: forcing a failure. [ 440.893426][T17446] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 440.899384][T17445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 440.899402][T17445] Call Trace: [ 440.899410][T17445] [ 440.899419][T17445] dump_stack_lvl+0xda/0x130 [ 440.933602][T17445] dump_stack+0x15/0x20 [ 440.937780][T17445] should_fail_ex+0x21f/0x230 [ 440.942492][T17445] __should_fail_alloc_page+0xfd/0x110 [ 440.947965][T17445] __alloc_pages+0x108/0x340 [ 440.952654][T17445] alloc_pages_mpol+0xb1/0x1d0 [ 440.957450][T17445] shmem_get_folio_gfp+0x3b2/0xb40 [ 440.962576][T17445] shmem_write_begin+0xa0/0x1b0 [ 440.967533][T17445] generic_perform_write+0x1c9/0x410 [ 440.972866][T17445] ? shmem_write_begin+0x1b0/0x1b0 [ 440.977993][T17445] shmem_file_write_iter+0xc8/0xe0 [ 440.983163][T17445] vfs_write+0x760/0x8d0 [ 440.987431][T17445] ksys_write+0xeb/0x1a0 [ 440.991696][T17445] __x64_sys_write+0x42/0x50 [ 440.996498][T17445] do_syscall_64+0xcd/0x1d0 [ 441.001082][T17445] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 441.007028][T17445] RIP: 0033:0x7f42009ffaef [ 441.011497][T17445] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 441.032486][T17445] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 441.040991][T17445] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 441.048972][T17445] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 441.056949][T17445] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 441.064937][T17445] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 441.072933][T17445] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 441.080995][T17445] [ 441.084025][T17446] CPU: 0 PID: 17446 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 441.094484][T17446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 441.104563][T17446] Call Trace: [ 441.107563][T17450] FAULT_INJECTION: forcing a failure. [ 441.107563][T17450] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 441.107854][T17446] [ 441.107864][T17446] dump_stack_lvl+0xda/0x130 [ 441.107908][T17446] dump_stack+0x15/0x20 [ 441.132645][T17446] should_fail_ex+0x21f/0x230 [ 441.137403][T17446] __should_fail_alloc_page+0xfd/0x110 [ 441.143401][T17446] __alloc_pages+0x108/0x340 [ 441.148006][T17446] alloc_pages_mpol+0xb1/0x1d0 [ 441.152930][T17446] shmem_get_folio_gfp+0x3b2/0xb40 [ 441.158058][T17446] shmem_write_begin+0xa0/0x1b0 [ 441.162923][T17446] generic_perform_write+0x1c9/0x410 [ 441.168231][T17446] ? shmem_write_begin+0x1b0/0x1b0 [ 441.173413][T17446] shmem_file_write_iter+0xc8/0xe0 [ 441.178566][T17446] vfs_write+0x760/0x8d0 [ 441.183685][T17446] ksys_write+0xeb/0x1a0 [ 441.188003][T17446] __x64_sys_write+0x42/0x50 [ 441.192631][T17446] do_syscall_64+0xcd/0x1d0 [ 441.197154][T17446] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 441.203058][T17446] RIP: 0033:0x7fe39bbcaaef [ 441.208782][T17446] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 441.228399][T17446] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 441.236908][T17446] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 441.244933][T17446] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 441.252983][T17446] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 441.261125][T17446] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 441.269166][T17446] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 16:12:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 79) 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xffffa888}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.277161][T17446] [ 441.280186][T17450] CPU: 1 PID: 17450 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 441.290650][T17450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 441.290670][T17450] Call Trace: [ 441.290679][T17450] [ 441.290688][T17450] dump_stack_lvl+0xda/0x130 [ 441.290726][T17450] dump_stack+0x15/0x20 [ 441.290754][T17450] should_fail_ex+0x21f/0x230 [ 441.290850][T17450] should_fail+0xb/0x10 [ 441.290880][T17450] should_fail_usercopy+0x1a/0x20 [ 441.290914][T17450] copy_page_from_iter_atomic+0x237/0xd90 [ 441.290958][T17450] ? shmem_write_begin+0xa0/0x1b0 [ 441.291064][T17450] ? shmem_write_begin+0x10c/0x1b0 [ 441.291093][T17450] generic_perform_write+0x20c/0x410 [ 441.291124][T17450] ? shmem_write_begin+0x1b0/0x1b0 [ 441.291189][T17450] shmem_file_write_iter+0xc8/0xe0 [ 441.291233][T17450] vfs_write+0x760/0x8d0 [ 441.291278][T17450] ksys_write+0xeb/0x1a0 [ 441.291334][T17450] __x64_sys_write+0x42/0x50 16:12:58 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 57) [ 441.291368][T17450] do_syscall_64+0xcd/0x1d0 [ 441.291423][T17450] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 441.291452][T17450] RIP: 0033:0x7f42009ffaef [ 441.291471][T17450] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 441.291495][T17450] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 441.291541][T17450] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 441.291553][T17450] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 441.291566][T17450] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 441.291582][T17450] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 441.291597][T17450] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 441.291663][T17450] [ 441.293120][T17450] loop1: detected capacity change from 0 to 512 [ 441.314120][T17448] loop3: detected capacity change from 0 to 512 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xffffff7f}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.321463][T17450] EXT4-fs: journaled quota format not specified [ 441.333969][T17453] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 441.373896][T17455] FAULT_INJECTION: forcing a failure. [ 441.373896][T17455] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 441.386129][T17448] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 441.387391][T17455] CPU: 1 PID: 17455 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 441.391775][T17448] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 441.411544][T17455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 441.411562][T17455] Call Trace: [ 441.411599][T17455] [ 441.411607][T17455] dump_stack_lvl+0xda/0x130 [ 441.420046][T17448] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 441.427988][T17455] dump_stack+0x15/0x20 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xffffffea}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.428019][T17455] should_fail_ex+0x21f/0x230 [ 441.439718][T17443] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 441.443981][T17455] should_fail+0xb/0x10 [ 441.452004][T17443] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 441.459933][T17455] should_fail_usercopy+0x1a/0x20 [ 441.459972][T17455] copy_page_from_iter_atomic+0x237/0xd90 [ 441.462999][T17443] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 441.470316][T17455] ? shmem_write_begin+0xa0/0x1b0 [ 441.470349][T17455] ? shmem_write_begin+0x10c/0x1b0 [ 441.483712][T17448] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 441.492069][T17455] generic_perform_write+0x20c/0x410 [ 441.492110][T17455] ? shmem_write_begin+0x1b0/0x1b0 [ 441.515154][T17443] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 441.516712][T17455] shmem_file_write_iter+0xc8/0xe0 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xfffffff0}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0xfffffffe}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.529520][T17443] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 441.537261][T17455] vfs_write+0x760/0x8d0 [ 441.550391][T17448] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 441.550636][T17455] ksys_write+0xeb/0x1a0 [ 441.553902][T17448] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 441.558131][T17455] __x64_sys_write+0x42/0x50 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x3, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.558175][T17455] do_syscall_64+0xcd/0x1d0 [ 441.573974][T17443] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 441.575588][T17455] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 441.575620][T17455] RIP: 0033:0x7fe39bbcaaef [ 441.594220][T17459] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 441.595879][T17455] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 441.595902][T17455] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 441.595927][T17455] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 441.595943][T17455] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 441.621164][T17443] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 441.630011][T17455] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:12:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 80) 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x4, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:58 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0xc, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.630030][T17455] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 441.630045][T17455] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 441.630067][T17455] [ 441.638514][T17461] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 441.640292][T17443] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 441.658817][T17455] loop4: detected capacity change from 0 to 512 [ 441.669637][T17463] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 441.672027][T17443] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 441.707605][T17455] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 441.714660][T17466] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 441.721243][T17455] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 441.731148][T17443] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 441.742549][T17455] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 441.748450][T17443] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 441.748473][T17443] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 441.761513][T17455] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 441.775448][T17443] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 441.787450][T17455] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 441.868622][T17473] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 441.877304][T17474] FAULT_INJECTION: forcing a failure. 16:12:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 441.877304][T17474] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 441.883270][T17455] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 441.893267][T17474] CPU: 1 PID: 17474 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 441.893299][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 442.070335][T17474] Call Trace: 16:12:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x0, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 81) 16:12:59 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 58) [ 442.070346][T17474] [ 442.070354][T17474] dump_stack_lvl+0xda/0x130 [ 442.070386][T17474] dump_stack+0x15/0x20 [ 442.070501][T17474] should_fail_ex+0x21f/0x230 [ 442.070528][T17474] __should_fail_alloc_page+0xfd/0x110 16:12:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x2, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 442.070589][T17474] __alloc_pages+0x108/0x340 16:12:59 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 59) [ 442.070615][T17474] alloc_pages_mpol+0xb1/0x1d0 16:12:59 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:12:59 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:12:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x3, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 442.070701][T17474] shmem_get_folio_gfp+0x3b2/0xb40 [ 442.070730][T17474] shmem_write_begin+0xa0/0x1b0 [ 442.070753][T17474] generic_perform_write+0x1c9/0x410 [ 442.070785][T17474] ? shmem_write_begin+0x1b0/0x1b0 [ 442.070839][T17474] shmem_file_write_iter+0xc8/0xe0 [ 442.070927][T17474] vfs_write+0x760/0x8d0 [ 442.070988][T17474] ksys_write+0xeb/0x1a0 [ 442.071084][T17474] __x64_sys_write+0x42/0x50 [ 442.071141][T17474] do_syscall_64+0xcd/0x1d0 [ 442.071168][T17474] entry_SYSCALL_64_after_hwframe+0x63/0x6b 16:12:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x4, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:12:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 82) [ 442.071192][T17474] RIP: 0033:0x7f42009ffaef [ 442.071214][T17474] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 442.071233][T17474] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 442.071253][T17474] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 442.071267][T17474] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:12:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x5, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 442.071279][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 442.071292][T17474] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 442.071305][T17474] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 442.071323][T17474] [ 442.132956][T17479] FAULT_INJECTION: forcing a failure. [ 442.132956][T17479] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 442.132981][T17479] CPU: 1 PID: 17479 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 442.133082][T17479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 442.133099][T17479] Call Trace: [ 442.133108][T17479] [ 442.133115][T17479] dump_stack_lvl+0xda/0x130 [ 442.133219][T17479] dump_stack+0x15/0x20 [ 442.133251][T17479] should_fail_ex+0x21f/0x230 [ 442.133288][T17479] should_fail+0xb/0x10 [ 442.133337][T17479] should_fail_usercopy+0x1a/0x20 [ 442.133370][T17479] copy_page_from_iter_atomic+0x237/0xd90 [ 442.133408][T17479] ? shmem_write_begin+0xa0/0x1b0 [ 442.133437][T17479] ? shmem_write_begin+0x10c/0x1b0 [ 442.133464][T17479] generic_perform_write+0x20c/0x410 [ 442.133494][T17479] ? shmem_write_begin+0x1b0/0x1b0 [ 442.133515][T17479] shmem_file_write_iter+0xc8/0xe0 [ 442.133585][T17479] vfs_write+0x760/0x8d0 [ 442.133652][T17479] ksys_write+0xeb/0x1a0 [ 442.133806][T17479] __x64_sys_write+0x42/0x50 [ 442.133915][T17479] do_syscall_64+0xcd/0x1d0 [ 442.133941][T17479] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 442.134031][T17479] RIP: 0033:0x7f42009ffaef [ 442.134050][T17479] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 442.134069][T17479] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 442.134088][T17479] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 442.134101][T17479] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 442.134118][T17479] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 442.134135][T17479] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 442.134151][T17479] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 442.134173][T17479] [ 442.136250][T17479] loop1: detected capacity change from 0 to 512 [ 442.150564][T17482] loop2: detected capacity change from 0 to 512 [ 442.161280][T17479] EXT4-fs: journaled quota format not specified [ 442.161646][T17484] FAULT_INJECTION: forcing a failure. [ 442.161646][T17484] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 442.161676][T17484] CPU: 1 PID: 17484 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 442.161703][T17484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 442.161714][T17484] Call Trace: [ 442.161721][T17484] [ 442.161728][T17484] dump_stack_lvl+0xda/0x130 [ 442.161756][T17484] dump_stack+0x15/0x20 [ 442.161786][T17484] should_fail_ex+0x21f/0x230 [ 442.161821][T17484] __should_fail_alloc_page+0xfd/0x110 [ 442.161861][T17484] __alloc_pages+0x108/0x340 [ 442.161893][T17484] alloc_pages_mpol+0xb1/0x1d0 [ 442.161920][T17484] shmem_get_folio_gfp+0x3b2/0xb40 [ 442.162036][T17484] shmem_write_begin+0xa0/0x1b0 [ 442.162066][T17484] generic_perform_write+0x1c9/0x410 [ 442.162105][T17484] ? shmem_write_begin+0x1b0/0x1b0 [ 442.162136][T17484] shmem_file_write_iter+0xc8/0xe0 [ 442.162173][T17484] vfs_write+0x760/0x8d0 [ 442.162207][T17484] ksys_write+0xeb/0x1a0 [ 442.162307][T17484] __x64_sys_write+0x42/0x50 [ 442.162342][T17484] do_syscall_64+0xcd/0x1d0 [ 442.162368][T17484] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 442.162457][T17484] RIP: 0033:0x7fe39bbcaaef [ 442.162474][T17484] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 442.162498][T17484] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 442.162517][T17484] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 442.162529][T17484] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 442.162541][T17484] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 442.162555][T17484] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 442.162626][T17484] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 442.162647][T17484] [ 442.169839][T17482] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e018, mo2=0002] [ 442.170421][T17482] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 442.170444][T17482] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 442.170460][T17482] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 442.170540][T17482] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 442.170616][T17482] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 442.170750][T17482] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 442.171563][T17482] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 442.171587][T17482] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 442.171607][T17482] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 442.171781][T17482] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 442.171809][T17482] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 442.171829][T17482] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 442.171885][T17482] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 442.204332][T17488] FAULT_INJECTION: forcing a failure. [ 442.204332][T17488] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 442.300287][T17495] FAULT_INJECTION: forcing a failure. [ 442.300287][T17495] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 442.307344][T17488] CPU: 1 PID: 17488 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 442.307375][T17488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 442.929118][T17488] Call Trace: [ 442.932402][T17488] [ 442.935349][T17488] dump_stack_lvl+0xda/0x130 [ 442.939959][T17488] dump_stack+0x15/0x20 [ 442.944129][T17488] should_fail_ex+0x21f/0x230 [ 442.948825][T17488] should_fail+0xb/0x10 [ 442.953138][T17488] should_fail_usercopy+0x1a/0x20 [ 442.958284][T17488] copy_page_from_iter_atomic+0x237/0xd90 [ 442.964025][T17488] ? shmem_write_begin+0xa0/0x1b0 [ 442.969076][T17488] ? shmem_write_begin+0x10c/0x1b0 [ 442.974211][T17488] generic_perform_write+0x20c/0x410 [ 442.979674][T17488] ? shmem_write_begin+0x1b0/0x1b0 [ 442.984799][T17488] shmem_file_write_iter+0xc8/0xe0 [ 442.989928][T17488] vfs_write+0x760/0x8d0 [ 442.994199][T17488] ksys_write+0xeb/0x1a0 [ 442.998606][T17488] __x64_sys_write+0x42/0x50 [ 443.003271][T17488] do_syscall_64+0xcd/0x1d0 [ 443.007789][T17488] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 443.013708][T17488] RIP: 0033:0x7fe39bbcaaef [ 443.018140][T17488] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 443.037857][T17488] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 443.046277][T17488] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 443.054262][T17488] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 443.062247][T17488] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 443.070230][T17488] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 443.078259][T17488] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 443.086241][T17488] [ 443.089281][T17495] CPU: 0 PID: 17495 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 443.099731][T17495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 443.102378][T17488] loop4: detected capacity change from 0 to 512 [ 443.109804][T17495] Call Trace: [ 443.109816][T17495] [ 443.109825][T17495] dump_stack_lvl+0xda/0x130 [ 443.109861][T17495] dump_stack+0x15/0x20 [ 443.131107][T17495] should_fail_ex+0x21f/0x230 [ 443.135857][T17495] __should_fail_alloc_page+0xfd/0x110 [ 443.141359][T17495] __alloc_pages+0x108/0x340 [ 443.146418][T17495] alloc_pages_mpol+0xb1/0x1d0 [ 443.151298][T17495] shmem_get_folio_gfp+0x3b2/0xb40 [ 443.153101][T17488] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 443.156435][T17495] shmem_write_begin+0xa0/0x1b0 [ 443.167932][T17488] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 443.172749][T17495] generic_perform_write+0x1c9/0x410 [ 443.182828][T17488] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 443.188080][T17495] ? shmem_write_begin+0x1b0/0x1b0 [ 443.188114][T17495] shmem_file_write_iter+0xc8/0xe0 [ 443.211343][T17488] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 443.211604][T17495] vfs_write+0x760/0x8d0 [ 443.219881][T17488] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x6, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x7, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 60) 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 443.223821][T17495] ksys_write+0xeb/0x1a0 [ 443.238533][T17488] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 443.242213][T17495] __x64_sys_write+0x42/0x50 [ 443.259148][T17495] do_syscall_64+0xcd/0x1d0 [ 443.263816][T17495] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 443.269736][T17495] RIP: 0033:0x7f42009ffaef 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x9, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0xa, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0xb, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 443.274170][T17495] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 443.293891][T17495] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 443.302337][T17495] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 443.310427][T17495] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 443.318420][T17495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 443.326590][T17495] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0xc, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:00 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 83) 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0xd, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 443.334634][T17495] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 443.342670][T17495] 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0xe, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 443.387648][T17518] loop2: detected capacity change from 0 to 512 [ 443.410459][T17523] FAULT_INJECTION: forcing a failure. [ 443.410459][T17523] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 443.420782][T17518] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 443.423708][T17523] CPU: 1 PID: 17523 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 443.435236][T17518] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 443.445544][T17523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 443.445562][T17523] Call Trace: [ 443.445571][T17523] [ 443.445579][T17523] dump_stack_lvl+0xda/0x130 [ 443.455681][T17518] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 443.465696][T17523] dump_stack+0x15/0x20 [ 443.465732][T17523] should_fail_ex+0x21f/0x230 [ 443.469882][T17514] FAULT_INJECTION: forcing a failure. [ 443.469882][T17514] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 443.471955][T17523] __should_fail_alloc_page+0xfd/0x110 [ 443.517236][T17523] __alloc_pages+0x108/0x340 [ 443.521912][T17523] alloc_pages_mpol+0xb1/0x1d0 [ 443.526685][T17523] shmem_get_folio_gfp+0x3b2/0xb40 [ 443.531868][T17523] shmem_write_begin+0xa0/0x1b0 [ 443.536776][T17523] generic_perform_write+0x1c9/0x410 [ 443.542138][T17523] ? shmem_write_begin+0x1b0/0x1b0 [ 443.547331][T17523] shmem_file_write_iter+0xc8/0xe0 [ 443.552466][T17523] vfs_write+0x760/0x8d0 [ 443.556778][T17523] ksys_write+0xeb/0x1a0 [ 443.561065][T17523] __x64_sys_write+0x42/0x50 [ 443.565708][T17523] do_syscall_64+0xcd/0x1d0 [ 443.570304][T17523] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 443.576210][T17523] RIP: 0033:0x7fe39bbcaaef [ 443.580680][T17523] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 443.600411][T17523] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 443.608872][T17523] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 443.616940][T17523] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 443.624920][T17523] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 443.632952][T17523] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 443.640933][T17523] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 443.648919][T17523] [ 443.651960][T17514] CPU: 0 PID: 17514 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 443.656501][T17518] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 443.662528][T17514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 16:13:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0xf, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 443.678649][T17518] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 443.680627][T17514] Call Trace: [ 443.680637][T17514] [ 443.680646][T17514] dump_stack_lvl+0xda/0x130 [ 443.704345][T17518] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 443.705662][T17514] dump_stack+0x15/0x20 [ 443.705695][T17514] should_fail_ex+0x21f/0x230 [ 443.724861][T17518] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 443.726796][T17514] should_fail+0xb/0x10 [ 443.738255][T17518] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 443.742473][T17514] should_fail_usercopy+0x1a/0x20 [ 443.752541][T17518] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 443.757531][T17514] copy_page_from_iter_atomic+0x237/0xd90 [ 443.757573][T17514] ? shmem_write_begin+0xa0/0x1b0 [ 443.757600][T17514] ? shmem_write_begin+0x10c/0x1b0 [ 443.777984][T17530] loop3: detected capacity change from 0 to 512 [ 443.781522][T17514] generic_perform_write+0x20c/0x410 [ 443.792485][T17530] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 443.792864][T17514] ? shmem_write_begin+0x1b0/0x1b0 [ 443.798183][T17530] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 443.809672][T17514] shmem_file_write_iter+0xc8/0xe0 [ 443.809715][T17514] vfs_write+0x760/0x8d0 [ 443.814875][T17530] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 443.824903][T17514] ksys_write+0xeb/0x1a0 [ 443.824947][T17514] __x64_sys_write+0x42/0x50 [ 443.833062][T17518] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 443.834279][T17514] do_syscall_64+0xcd/0x1d0 [ 443.847505][T17518] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 443.851719][T17514] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 443.856318][T17518] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 443.868078][T17514] RIP: 0033:0x7f42009ffaef [ 443.868106][T17514] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 443.868130][T17514] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:13:01 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 61) [ 443.868174][T17514] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 443.877582][T17530] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 443.882705][T17514] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 443.882725][T17514] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 443.888800][T17530] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 443.901784][T17514] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 443.901802][T17514] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 443.901826][T17514] [ 443.906709][T17518] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 443.971481][T17530] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 443.989579][T17533] FAULT_INJECTION: forcing a failure. 16:13:01 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x11, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 443.989579][T17533] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 444.019398][T17514] loop1: detected capacity change from 0 to 512 [ 444.020744][T17533] CPU: 1 PID: 17533 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 444.064163][T17533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 444.064198][T17533] Call Trace: [ 444.064206][T17533] 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x12, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x13, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x29, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.064213][T17533] dump_stack_lvl+0xda/0x130 [ 444.064245][T17533] dump_stack+0x15/0x20 [ 444.064269][T17533] should_fail_ex+0x21f/0x230 [ 444.064297][T17533] should_fail+0xb/0x10 [ 444.064335][T17533] should_fail_usercopy+0x1a/0x20 [ 444.064363][T17533] copy_page_from_iter_atomic+0x237/0xd90 [ 444.064394][T17533] ? shmem_write_begin+0xa0/0x1b0 [ 444.064433][T17533] ? shmem_write_begin+0x10c/0x1b0 [ 444.064456][T17533] generic_perform_write+0x20c/0x410 [ 444.064489][T17533] ? shmem_write_begin+0x1b0/0x1b0 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x2, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x3, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.064520][T17533] shmem_file_write_iter+0xc8/0xe0 [ 444.064552][T17533] vfs_write+0x760/0x8d0 [ 444.064650][T17533] ksys_write+0xeb/0x1a0 [ 444.064685][T17533] __x64_sys_write+0x42/0x50 [ 444.064784][T17533] do_syscall_64+0xcd/0x1d0 [ 444.064811][T17533] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 444.064837][T17533] RIP: 0033:0x7fe39bbcaaef [ 444.064953][T17533] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x5, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x6, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x7, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.064973][T17533] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 444.064996][T17533] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 444.065009][T17533] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 444.065080][T17533] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 444.065093][T17533] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 444.065105][T17533] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x8, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.065155][T17533] [ 444.067403][T17533] loop4: detected capacity change from 0 to 512 [ 444.073735][T17514] EXT4-fs: journaled quota format not specified [ 444.183090][T17533] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 444.267044][T17533] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 444.267063][T17533] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x9, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0xa, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 62) 16:13:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 84) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0xb, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.271268][T17533] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 444.300794][T17533] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 444.319898][T17533] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 444.321551][T17558] loop2: detected capacity change from 0 to 512 [ 444.381801][T17562] loop3: detected capacity change from 0 to 512 [ 444.388175][T17558] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8846e01c, mo2=0002] [ 444.400707][T17558] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 444.412250][T17558] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 444.415083][T17566] FAULT_INJECTION: forcing a failure. [ 444.415083][T17566] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 444.422432][T17558] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 444.435672][T17566] CPU: 1 PID: 17566 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 444.449486][T17558] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 444.459217][T17566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 444.459251][T17566] Call Trace: [ 444.459260][T17566] [ 444.467280][T17558] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 444.477261][T17566] dump_stack_lvl+0xda/0x130 [ 444.477298][T17566] dump_stack+0x15/0x20 [ 444.477328][T17566] should_fail_ex+0x21f/0x230 [ 444.498576][T17558] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 444.502276][T17566] __should_fail_alloc_page+0xfd/0x110 [ 444.502310][T17566] __alloc_pages+0x108/0x340 [ 444.502334][T17566] alloc_pages_mpol+0xb1/0x1d0 [ 444.502377][T17566] shmem_get_folio_gfp+0x3b2/0xb40 [ 444.518704][T17558] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 444.523329][T17566] shmem_write_begin+0xa0/0x1b0 [ 444.528834][T17558] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 444.533383][T17566] generic_perform_write+0x1c9/0x410 [ 444.538176][T17558] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 444.543300][T17566] ? shmem_write_begin+0x1b0/0x1b0 [ 444.561026][T17558] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 444.570407][T17566] shmem_file_write_iter+0xc8/0xe0 [ 444.570448][T17566] vfs_write+0x760/0x8d0 [ 444.575797][T17558] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 444.588907][T17566] ksys_write+0xeb/0x1a0 16:13:01 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6PlKsb42jaaTrMutRj0aj0UgXLB3Knx/r+tU3lu0t6WSgjxVhTWoRkTXXYN7/h6MWtxpvOF76sK+VA3oqe3/atGRprfg7kK8H/q8SfRwqqnzHz65/y8ftHH/029Xns+eZPP4bxaO5ZiCy6/ZkpHnFXutR+dsi4vXLf3+WPaLtfQgAgPX1TTb+ebLd+C+N+1q221HMoYxExMGI2BkR90TEroi4NyLf9v6IeGCN5dcX5ZeOf37e3FFgq5SN/54r5rYWjv9uztqM1Irc9jz+weStk7Mzh4pjMhqDm7L8xAplfPviL58st67eMv7LHln55ViwqMcfA4tu0B2fmp/qJuZWVz+I2DPQLv7k5kxAEhG7I2JPB6+fHbOTT3y5L0vv2Lp0/X/Hv4J1mGdqfBHxeLP9L8ei+EtJs6Tl5ifH74rZmUPj5Vmx1I8/XXmlNT/Yku4q/nWQtf+Wtud/EX/ZDcr52rm1l3Hlt4+Xvabp9PwfSl7L00PFsvem5ufPTUQMFQsWLJ+8tW+ZL7fP4h890L7/74z45/Niv70RkZ3ED0bEQxGxv6j7w8Uc8oEV4v/+hUffXvkI9bf9j6/U/hEjSet8fQeJ2qnvvl6u/NW1/5E8NVosWc3/v9VWsJtjBwAAAHeKNJ+DTtKxm+k0HRtrfoZ/V2xJZ8/OzR+sx7tnjjfnqkdiMC3vdA233A+dKO4Nl/nJRfnDEXF3/kmjzXl+bPrs7PZ+Bw8Vt3WZ/p/5vVcfegE2jjXNoyW9qwdw+/m+JlSX/g/Vpf9Dden/UF3t+v+liBt9qApwm3n/h+rS/6G69H+oLv0fKmnpV+LLn1vp5Jv+txI7j3W1e4UStR69crT+aEcPEpH2/dB1nkg3QjX2F4lNEbHavS71tE0Xnz8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB3vn8DAAD//w8m4/Q=") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0xc, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.594040][T17558] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 444.605553][T17566] __x64_sys_write+0x42/0x50 [ 444.614125][T17558] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 444.614912][T17566] do_syscall_64+0xcd/0x1d0 [ 444.614950][T17566] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 444.654400][T17562] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 444.668976][T17566] RIP: 0033:0x7f42009ffaef [ 444.669007][T17566] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 444.669030][T17566] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 444.669053][T17566] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0xd, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:01 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 85) 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0xe, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.669070][T17566] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 444.673651][T17562] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 444.679524][T17566] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 444.691012][T17562] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 444.695404][T17566] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 444.695422][T17566] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 444.695442][T17566] [ 444.724317][T17562] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 444.801751][T17578] FAULT_INJECTION: forcing a failure. [ 444.801751][T17578] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 444.809702][T17562] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:13:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x10, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 444.814914][T17578] CPU: 0 PID: 17578 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 444.839535][T17578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 444.845931][T17562] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 444.849627][T17578] Call Trace: [ 444.849636][T17578] [ 444.849644][T17578] dump_stack_lvl+0xda/0x130 [ 444.872764][T17578] dump_stack+0x15/0x20 [ 444.876949][T17578] should_fail_ex+0x21f/0x230 [ 444.881761][T17578] should_fail+0xb/0x10 [ 444.885943][T17578] should_fail_usercopy+0x1a/0x20 [ 444.891078][T17578] copy_page_from_iter_atomic+0x237/0xd90 [ 444.896871][T17578] ? shmem_write_begin+0xa0/0x1b0 [ 444.902005][T17578] ? shmem_write_begin+0x10c/0x1b0 [ 444.907160][T17578] generic_perform_write+0x20c/0x410 [ 444.912524][T17578] ? shmem_write_begin+0x1b0/0x1b0 [ 444.917649][T17578] shmem_file_write_iter+0xc8/0xe0 [ 444.922775][T17578] vfs_write+0x760/0x8d0 [ 444.927142][T17578] ksys_write+0xeb/0x1a0 [ 444.931477][T17578] __x64_sys_write+0x42/0x50 [ 444.936087][T17578] do_syscall_64+0xcd/0x1d0 [ 444.941137][T17578] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 444.947129][T17578] RIP: 0033:0x7f42009ffaef [ 444.951648][T17578] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 444.972298][T17578] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 444.980810][T17578] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 444.988790][T17578] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 444.996974][T17578] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 445.004966][T17578] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 445.012944][T17578] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 445.021201][T17578] [ 445.028587][T17578] loop1: detected capacity change from 0 to 512 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x11, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x12, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.030542][T17580] FAULT_INJECTION: forcing a failure. [ 445.030542][T17580] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 445.046639][T17578] EXT4-fs: journaled quota format not specified [ 445.049608][T17580] CPU: 0 PID: 17580 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 445.066279][T17580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 445.066330][T17580] Call Trace: 16:13:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 63) 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x64, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.066337][T17580] [ 445.066344][T17580] dump_stack_lvl+0xda/0x130 [ 445.066373][T17580] dump_stack+0x15/0x20 [ 445.066400][T17580] should_fail_ex+0x21f/0x230 [ 445.066500][T17580] __should_fail_alloc_page+0xfd/0x110 [ 445.066529][T17580] __alloc_pages+0x108/0x340 [ 445.066553][T17580] alloc_pages_mpol+0xb1/0x1d0 [ 445.066589][T17580] shmem_get_folio_gfp+0x3b2/0xb40 [ 445.066623][T17580] shmem_write_begin+0xa0/0x1b0 [ 445.066652][T17580] generic_perform_write+0x1c9/0x410 16:13:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 86) 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 64) [ 445.066682][T17580] ? shmem_write_begin+0x1b0/0x1b0 [ 445.066789][T17580] shmem_file_write_iter+0xc8/0xe0 [ 445.066815][T17580] vfs_write+0x760/0x8d0 [ 445.066933][T17580] ksys_write+0xeb/0x1a0 [ 445.066970][T17580] __x64_sys_write+0x42/0x50 16:13:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 87) 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x0, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.067046][T17580] do_syscall_64+0xcd/0x1d0 [ 445.067076][T17580] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 445.067104][T17580] RIP: 0033:0x7fe39bbcaaef [ 445.067123][T17580] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 16:13:02 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 445.067147][T17580] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 445.067179][T17580] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 445.067191][T17580] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 445.067205][T17580] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 445.067221][T17580] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0x3, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:02 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 65) 16:13:02 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 88) [ 445.067237][T17580] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 445.067320][T17580] [ 445.163250][T17591] FAULT_INJECTION: forcing a failure. [ 445.163250][T17591] name fail_usercopy, interval 1, probability 0, space 0, times 0 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0x4, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.163282][T17591] CPU: 0 PID: 17591 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 445.163313][T17591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 445.163329][T17591] Call Trace: [ 445.163336][T17591] [ 445.163423][T17591] dump_stack_lvl+0xda/0x130 [ 445.163461][T17591] dump_stack+0x15/0x20 [ 445.163489][T17591] should_fail_ex+0x21f/0x230 [ 445.163584][T17591] should_fail+0xb/0x10 [ 445.163615][T17591] should_fail_usercopy+0x1a/0x20 [ 445.163647][T17591] copy_page_from_iter_atomic+0x237/0xd90 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0x9, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.163737][T17591] ? shmem_write_begin+0xa0/0x1b0 [ 445.163759][T17591] ? shmem_write_begin+0x10c/0x1b0 [ 445.163816][T17591] generic_perform_write+0x20c/0x410 [ 445.163860][T17591] ? shmem_write_begin+0x1b0/0x1b0 [ 445.163889][T17591] shmem_file_write_iter+0xc8/0xe0 [ 445.163993][T17591] vfs_write+0x760/0x8d0 [ 445.164085][T17591] ksys_write+0xeb/0x1a0 [ 445.164122][T17591] __x64_sys_write+0x42/0x50 [ 445.164153][T17591] do_syscall_64+0xcd/0x1d0 [ 445.164178][T17591] entry_SYSCALL_64_after_hwframe+0x63/0x6b 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0x10, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.164207][T17591] RIP: 0033:0x7fe39bbcaaef [ 445.164227][T17591] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 445.164252][T17591] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 445.164279][T17591] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 445.164296][T17591] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0x1a, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0x28, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.164311][T17591] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 445.164324][T17591] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 445.164336][T17591] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 445.164408][T17591] [ 445.165430][T17591] loop4: detected capacity change from 0 to 512 [ 445.172356][T17591] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.172390][T17591] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 445.172411][T17591] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 445.172447][T17591] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 445.172588][T17591] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 445.177120][T17591] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) 16:13:02 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x2, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 445.191684][T17595] loop2: detected capacity change from 0 to 512 [ 445.194010][T17595] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 445.197958][T17595] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.197983][T17595] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 445.198003][T17595] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 445.198077][T17595] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 445.198326][T17595] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 445.200338][T17597] FAULT_INJECTION: forcing a failure. [ 445.200338][T17597] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 445.200408][T17597] CPU: 0 PID: 17597 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:13:02 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 445.200442][T17597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 445.200456][T17597] Call Trace: [ 445.200465][T17597] [ 445.200473][T17597] dump_stack_lvl+0xda/0x130 [ 445.200513][T17597] dump_stack+0x15/0x20 [ 445.200594][T17597] should_fail_ex+0x21f/0x230 [ 445.200621][T17597] __should_fail_alloc_page+0xfd/0x110 [ 445.200651][T17597] __alloc_pages+0x108/0x340 [ 445.200682][T17597] alloc_pages_mpol+0xb1/0x1d0 [ 445.200727][T17597] shmem_get_folio_gfp+0x3b2/0xb40 [ 445.200758][T17597] shmem_write_begin+0xa0/0x1b0 [ 445.200835][T17597] generic_perform_write+0x1c9/0x410 [ 445.200870][T17597] ? shmem_write_begin+0x1b0/0x1b0 [ 445.200926][T17597] shmem_file_write_iter+0xc8/0xe0 [ 445.200961][T17597] vfs_write+0x760/0x8d0 [ 445.200998][T17597] ksys_write+0xeb/0x1a0 [ 445.201039][T17597] __x64_sys_write+0x42/0x50 [ 445.201092][T17597] do_syscall_64+0xcd/0x1d0 [ 445.201126][T17597] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 445.201155][T17597] RIP: 0033:0x7f42009ffaef [ 445.201170][T17597] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 445.201231][T17597] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 445.201251][T17597] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 445.201265][T17597] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 445.201278][T17597] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 445.201290][T17597] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 445.201305][T17597] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 445.201326][T17597] [ 445.201390][T17595] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 445.209483][T17595] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.209569][T17595] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 445.209592][T17595] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 445.209762][T17595] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.209783][T17595] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 445.209800][T17595] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 445.209859][T17595] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 445.271282][T17601] FAULT_INJECTION: forcing a failure. [ 445.271282][T17601] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 445.271314][T17601] CPU: 0 PID: 17601 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 445.271351][T17601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 445.271363][T17601] Call Trace: [ 445.271373][T17601] [ 445.271392][T17601] dump_stack_lvl+0xda/0x130 [ 445.271452][T17601] dump_stack+0x15/0x20 [ 445.271482][T17601] should_fail_ex+0x21f/0x230 [ 445.271564][T17601] should_fail+0xb/0x10 [ 445.271587][T17601] should_fail_usercopy+0x1a/0x20 [ 445.271699][T17601] copy_page_from_iter_atomic+0x237/0xd90 [ 445.271733][T17601] ? shmem_write_begin+0xa0/0x1b0 [ 445.271756][T17601] ? shmem_write_begin+0x10c/0x1b0 [ 445.271832][T17601] generic_perform_write+0x20c/0x410 [ 445.271880][T17601] ? shmem_write_begin+0x1b0/0x1b0 [ 445.271909][T17601] shmem_file_write_iter+0xc8/0xe0 [ 445.271939][T17601] vfs_write+0x760/0x8d0 [ 445.271998][T17601] ksys_write+0xeb/0x1a0 [ 445.272086][T17601] __x64_sys_write+0x42/0x50 [ 445.272128][T17601] do_syscall_64+0xcd/0x1d0 [ 445.272262][T17601] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 445.272292][T17601] RIP: 0033:0x7f42009ffaef [ 445.272310][T17601] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 445.272335][T17601] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 445.272357][T17601] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 445.272370][T17601] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 445.272414][T17601] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 445.272430][T17601] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 445.272444][T17601] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 445.272464][T17601] [ 445.273310][T17601] loop1: detected capacity change from 0 to 512 [ 445.281876][T17604] FAULT_INJECTION: forcing a failure. [ 445.281876][T17604] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 445.281930][T17604] CPU: 0 PID: 17604 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 445.281953][T17604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 445.281965][T17604] Call Trace: [ 445.282003][T17604] [ 445.282013][T17604] dump_stack_lvl+0xda/0x130 [ 445.282053][T17604] dump_stack+0x15/0x20 [ 445.282078][T17604] should_fail_ex+0x21f/0x230 [ 445.282106][T17604] __should_fail_alloc_page+0xfd/0x110 [ 445.282142][T17604] __alloc_pages+0x108/0x340 [ 445.282175][T17604] alloc_pages_mpol+0xb1/0x1d0 [ 445.282202][T17604] shmem_get_folio_gfp+0x3b2/0xb40 [ 445.282289][T17604] shmem_write_begin+0xa0/0x1b0 [ 445.282384][T17604] generic_perform_write+0x1c9/0x410 [ 445.282421][T17604] ? shmem_write_begin+0x1b0/0x1b0 [ 445.282447][T17604] shmem_file_write_iter+0xc8/0xe0 [ 445.282482][T17604] vfs_write+0x760/0x8d0 [ 445.282623][T17604] ksys_write+0xeb/0x1a0 [ 445.282665][T17604] __x64_sys_write+0x42/0x50 [ 445.282706][T17604] do_syscall_64+0xcd/0x1d0 [ 445.282738][T17604] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 445.282795][T17604] RIP: 0033:0x7fe39bbcaaef [ 445.282810][T17604] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 445.282829][T17604] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 445.282857][T17604] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 445.282870][T17604] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 445.282883][T17604] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 445.282896][T17604] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 445.282909][T17604] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 445.282927][T17604] [ 445.293820][T17601] EXT4-fs: journaled quota format not specified [ 445.336494][T17607] loop2: detected capacity change from 0 to 512 [ 445.344595][T17607] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 445.358640][T17610] FAULT_INJECTION: forcing a failure. [ 445.358640][T17610] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 445.362900][T17607] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e01c, mo2=0002] [ 445.370200][T17610] CPU: 1 PID: 17610 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 445.374115][T17607] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.376380][T17610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 445.376397][T17610] Call Trace: [ 445.376407][T17610] [ 445.376415][T17610] dump_stack_lvl+0xda/0x130 [ 445.381006][T17607] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 445.385151][T17610] dump_stack+0x15/0x20 [ 445.389836][T17607] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 445.393978][T17610] should_fail_ex+0x21f/0x230 [ 445.421997][T17607] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 445.425326][T17610] should_fail+0xb/0x10 [ 445.438984][T17607] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 445.443573][T17610] should_fail_usercopy+0x1a/0x20 [ 445.461783][T17607] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 445.477973][T17610] copy_page_from_iter_atomic+0x237/0xd90 [ 445.536855][T17607] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.547280][T17610] ? shmem_write_begin+0xa0/0x1b0 [ 445.557423][T17607] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 445.570563][T17610] ? shmem_write_begin+0x10c/0x1b0 [ 445.578620][T17607] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 445.592719][T17610] generic_perform_write+0x20c/0x410 [ 445.621223][T17607] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 445.632563][T17610] ? shmem_write_begin+0x1b0/0x1b0 [ 445.632669][T17610] shmem_file_write_iter+0xc8/0xe0 [ 445.642758][T17607] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 445.655907][T17610] vfs_write+0x760/0x8d0 [ 445.663887][T17607] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 445.678018][T17610] ksys_write+0xeb/0x1a0 [ 445.694258][T17607] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 445.701610][T17610] __x64_sys_write+0x42/0x50 [ 445.734582][T17624] FAULT_INJECTION: forcing a failure. [ 445.734582][T17624] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 445.736772][T17610] do_syscall_64+0xcd/0x1d0 [ 446.679563][T17610] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 446.685474][T17610] RIP: 0033:0x7fe39bbcaaef [ 446.689895][T17610] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 446.709532][T17610] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 446.718010][T17610] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 446.726043][T17610] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 446.734084][T17610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 446.742175][T17610] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 446.750150][T17610] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 446.758220][T17610] [ 446.761238][T17624] CPU: 0 PID: 17624 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 446.771687][T17624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 446.774678][T17610] loop4: detected capacity change from 0 to 512 [ 446.781749][T17624] Call Trace: [ 446.781761][T17624] [ 446.781769][T17624] dump_stack_lvl+0xda/0x130 [ 446.791609][T17625] __nla_validate_parse: 21 callbacks suppressed [ 446.791636][T17625] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 446.794210][T17624] dump_stack+0x15/0x20 [ 446.818473][T17624] should_fail_ex+0x21f/0x230 [ 446.819779][T17610] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 446.823265][T17624] __should_fail_alloc_page+0xfd/0x110 [ 446.834736][T17610] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 446.840158][T17624] __alloc_pages+0x108/0x340 [ 446.850223][T17610] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 446.854783][T17624] alloc_pages_mpol+0xb1/0x1d0 [ 446.871467][T17610] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 446.872711][T17624] shmem_get_folio_gfp+0x3b2/0xb40 [ 446.880871][T17610] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 446.885791][T17624] shmem_write_begin+0xa0/0x1b0 [ 446.885824][T17624] generic_perform_write+0x1c9/0x410 16:13:03 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x3, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:03 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 66) 16:13:03 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x5, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 446.900528][T17610] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 446.904822][T17624] ? shmem_write_begin+0x1b0/0x1b0 [ 446.925796][T17628] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 446.927412][T17624] shmem_file_write_iter+0xc8/0xe0 [ 446.942009][T17624] vfs_write+0x760/0x8d0 [ 446.946311][T17624] ksys_write+0xeb/0x1a0 [ 446.950609][T17624] __x64_sys_write+0x42/0x50 [ 446.955241][T17624] do_syscall_64+0xcd/0x1d0 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x6, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 446.956822][T17630] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 446.959754][T17624] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 446.974931][T17624] RIP: 0033:0x7f42009ffaef [ 446.979367][T17624] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 446.990072][T17632] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x7, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x8, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 446.999008][T17624] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 446.999035][T17624] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 446.999053][T17624] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 447.032666][T17624] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 447.040701][T17624] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 447.042737][T17636] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x9, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 89) 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0xa, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 447.048673][T17624] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 447.048704][T17624] [ 447.084761][T17638] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 447.107748][T17642] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 447.128654][T17640] FAULT_INJECTION: forcing a failure. [ 447.128654][T17640] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 447.141778][T17640] CPU: 0 PID: 17640 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0xb, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 447.141858][T17640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 447.141873][T17640] Call Trace: [ 447.141882][T17640] [ 447.141890][T17640] dump_stack_lvl+0xda/0x130 [ 447.142016][T17640] dump_stack+0x15/0x20 [ 447.142046][T17640] should_fail_ex+0x21f/0x230 [ 447.142075][T17640] should_fail+0xb/0x10 [ 447.142097][T17640] should_fail_usercopy+0x1a/0x20 [ 447.142124][T17640] copy_page_from_iter_atomic+0x237/0xd90 [ 447.142236][T17640] ? shmem_write_begin+0xa0/0x1b0 [ 447.142264][T17640] ? shmem_write_begin+0x10c/0x1b0 [ 447.142344][T17640] generic_perform_write+0x20c/0x410 [ 447.142382][T17640] ? shmem_write_begin+0x1b0/0x1b0 [ 447.142411][T17640] shmem_file_write_iter+0xc8/0xe0 [ 447.142478][T17640] vfs_write+0x760/0x8d0 [ 447.142589][T17640] ksys_write+0xeb/0x1a0 [ 447.142628][T17640] __x64_sys_write+0x42/0x50 [ 447.142703][T17640] do_syscall_64+0xcd/0x1d0 [ 447.142735][T17640] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 447.142764][T17640] RIP: 0033:0x7f42009ffaef [ 447.142782][T17640] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 447.142894][T17640] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 447.142917][T17640] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 447.142933][T17640] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 447.142949][T17640] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 447.142964][T17640] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 447.142979][T17640] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 447.143052][T17640] [ 447.143904][T17646] FAULT_INJECTION: forcing a failure. [ 447.143904][T17646] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 447.167642][T17648] loop2: detected capacity change from 0 to 512 [ 447.169881][T17646] CPU: 1 PID: 17646 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 447.169909][T17646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 447.169921][T17646] Call Trace: [ 447.169927][T17646] [ 447.169933][T17646] dump_stack_lvl+0xda/0x130 [ 447.179048][T17648] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 447.183413][T17646] dump_stack+0x15/0x20 [ 447.223639][T17644] loop3: detected capacity change from 0 to 512 [ 447.224017][T17646] should_fail_ex+0x21f/0x230 [ 447.242793][T17640] loop1: detected capacity change from 0 to 512 [ 447.247528][T17646] __should_fail_alloc_page+0xfd/0x110 [ 447.247566][T17646] __alloc_pages+0x108/0x340 [ 447.415216][T17646] alloc_pages_mpol+0xb1/0x1d0 [ 447.420047][T17646] shmem_get_folio_gfp+0x3b2/0xb40 [ 447.425178][T17646] shmem_write_begin+0xa0/0x1b0 [ 447.430233][T17646] generic_perform_write+0x1c9/0x410 [ 447.435536][T17646] ? shmem_write_begin+0x1b0/0x1b0 [ 447.440656][T17646] shmem_file_write_iter+0xc8/0xe0 [ 447.445834][T17646] vfs_write+0x760/0x8d0 [ 447.450122][T17646] ksys_write+0xeb/0x1a0 [ 447.454420][T17646] __x64_sys_write+0x42/0x50 [ 447.459033][T17646] do_syscall_64+0xcd/0x1d0 [ 447.463643][T17646] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 447.469545][T17646] RIP: 0033:0x7fe39bbcaaef [ 447.473971][T17646] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 447.493681][T17646] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 447.502164][T17646] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 447.510140][T17646] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 447.518147][T17646] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 447.526122][T17646] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 447.534101][T17646] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 447.542118][T17646] [ 447.554066][T17648] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 447.554701][T17640] EXT4-fs: journaled quota format not specified [ 447.565627][T17648] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 447.576403][T17644] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 447.582048][T17648] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0xc, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:04 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 67) 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0xd, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 447.593481][T17644] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 447.593502][T17644] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 447.635341][T17644] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 447.646800][T17644] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0xe, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 447.650912][T17648] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 447.670918][T17657] FAULT_INJECTION: forcing a failure. [ 447.670918][T17657] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 447.684099][T17657] CPU: 0 PID: 17657 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 447.694566][T17657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 447.704652][T17657] Call Trace: 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x10, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:04 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 90) [ 447.706548][T17648] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 447.707936][T17657] [ 447.707945][T17657] dump_stack_lvl+0xda/0x130 [ 447.727039][T17644] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 447.729597][T17657] dump_stack+0x15/0x20 [ 447.745935][T17657] should_fail_ex+0x21f/0x230 [ 447.746332][T17648] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x11, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x12, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x64, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 447.750628][T17657] should_fail+0xb/0x10 [ 447.750660][T17657] should_fail_usercopy+0x1a/0x20 [ 447.750687][T17657] copy_page_from_iter_atomic+0x237/0xd90 [ 447.777831][T17657] ? shmem_write_begin+0xa0/0x1b0 [ 447.782975][T17657] ? shmem_write_begin+0x10c/0x1b0 [ 447.788125][T17657] generic_perform_write+0x20c/0x410 [ 447.793589][T17657] ? shmem_write_begin+0x1b0/0x1b0 [ 447.798729][T17657] shmem_file_write_iter+0xc8/0xe0 [ 447.803872][T17657] vfs_write+0x760/0x8d0 [ 447.808273][T17657] ksys_write+0xeb/0x1a0 [ 447.812619][T17657] __x64_sys_write+0x42/0x50 [ 447.817279][T17657] do_syscall_64+0xcd/0x1d0 [ 447.821307][T17648] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 447.821838][T17657] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 447.821871][T17657] RIP: 0033:0x7fe39bbcaaef [ 447.833314][T17648] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 447.839172][T17657] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 447.839205][T17657] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 447.839230][T17657] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 447.839245][T17657] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 447.839259][T17657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 447.843683][T17648] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 447.853814][T17657] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 447.853832][T17657] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 447.853854][T17657] [ 447.878904][T17648] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 447.885501][T17664] FAULT_INJECTION: forcing a failure. [ 447.885501][T17664] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 447.889835][T17648] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 447.897791][T17664] CPU: 0 PID: 17664 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 447.897818][T17664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 447.897833][T17664] Call Trace: [ 447.905801][T17648] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 447.909800][T17648] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 447.919045][T17664] [ 447.919056][T17664] dump_stack_lvl+0xda/0x130 [ 447.919094][T17664] dump_stack+0x15/0x20 [ 447.919121][T17664] should_fail_ex+0x21f/0x230 [ 447.928573][T17657] loop4: detected capacity change from 0 to 512 [ 447.935049][T17664] __should_fail_alloc_page+0xfd/0x110 16:13:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 91) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 68) 16:13:05 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 448.058379][T17664] __alloc_pages+0x108/0x340 [ 448.058472][T17664] alloc_pages_mpol+0xb1/0x1d0 [ 448.058494][T17664] shmem_get_folio_gfp+0x3b2/0xb40 [ 448.058529][T17664] shmem_write_begin+0xa0/0x1b0 [ 448.058553][T17664] generic_perform_write+0x1c9/0x410 [ 448.058637][T17664] ? shmem_write_begin+0x1b0/0x1b0 [ 448.058662][T17664] shmem_file_write_iter+0xc8/0xe0 [ 448.058690][T17664] vfs_write+0x760/0x8d0 [ 448.058727][T17664] ksys_write+0xeb/0x1a0 16:13:05 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x0, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 448.058866][T17664] __x64_sys_write+0x42/0x50 [ 448.058900][T17664] do_syscall_64+0xcd/0x1d0 [ 448.058927][T17664] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 448.058952][T17664] RIP: 0033:0x7f42009ffaef [ 448.059037][T17664] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 448.059057][T17664] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x2}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x4}]}}]}]}, 0x34}}, 0x0) [ 448.059077][T17664] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 448.059091][T17664] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 448.059104][T17664] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 448.059144][T17664] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 448.059157][T17664] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 448.059175][T17664] 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x5}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x6}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x7}]}}]}]}, 0x34}}, 0x0) [ 448.090506][T17657] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 448.090535][T17657] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 448.090625][T17657] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 448.090659][T17657] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 448.090728][T17657] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x8}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x9}]}}]}]}, 0x34}}, 0x0) [ 448.090845][T17657] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 448.127611][T17674] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 448.139845][T17675] FAULT_INJECTION: forcing a failure. [ 448.139845][T17675] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 448.196910][T17679] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0xa}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0xb}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0xc}]}}]}]}, 0x34}}, 0x0) [ 448.200340][T17675] CPU: 0 PID: 17675 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 448.302988][T17691] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 448.312025][T17675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 448.312043][T17675] Call Trace: [ 448.312051][T17675] [ 448.312059][T17675] dump_stack_lvl+0xda/0x130 [ 448.312096][T17675] dump_stack+0x15/0x20 [ 448.356869][T17675] should_fail_ex+0x21f/0x230 [ 448.361582][T17675] should_fail+0xb/0x10 [ 448.365779][T17675] should_fail_usercopy+0x1a/0x20 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0xd}]}}]}]}, 0x34}}, 0x0) [ 448.370846][T17675] copy_page_from_iter_atomic+0x237/0xd90 [ 448.376726][T17675] ? shmem_write_begin+0xa0/0x1b0 [ 448.381781][T17675] ? shmem_write_begin+0x10c/0x1b0 [ 448.387408][T17675] generic_perform_write+0x20c/0x410 [ 448.392729][T17675] ? shmem_write_begin+0x1b0/0x1b0 [ 448.397939][T17675] shmem_file_write_iter+0xc8/0xe0 [ 448.403143][T17675] vfs_write+0x760/0x8d0 [ 448.407447][T17675] ksys_write+0xeb/0x1a0 [ 448.411868][T17675] __x64_sys_write+0x42/0x50 [ 448.416570][T17675] do_syscall_64+0xcd/0x1d0 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0xe}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x10}]}}]}]}, 0x34}}, 0x0) [ 448.421193][T17675] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 448.427220][T17675] RIP: 0033:0x7f42009ffaef [ 448.431721][T17675] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 448.451404][T17675] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 448.459848][T17675] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x11}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x12}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x2}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x3}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x4}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 92) [ 448.467899][T17675] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 448.475954][T17675] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 448.483952][T17675] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 448.492023][T17675] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 448.500042][T17675] [ 448.503999][T17675] loop1: detected capacity change from 0 to 512 [ 448.513988][T17675] EXT4-fs: journaled quota format not specified 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x5}]}}]}]}, 0x34}}, 0x0) 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x6}]}}]}]}, 0x34}}, 0x0) [ 448.550545][T17719] loop2: detected capacity change from 0 to 512 [ 448.579139][T17719] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 448.583321][T17725] loop3: detected capacity change from 0 to 512 16:13:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x7}]}}]}]}, 0x34}}, 0x0) [ 448.598831][T17719] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 448.610459][T17719] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 448.617194][T17721] FAULT_INJECTION: forcing a failure. [ 448.617194][T17721] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 448.620626][T17719] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 448.633626][T17721] CPU: 0 PID: 17721 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 448.648091][T17719] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 448.657211][T17721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 448.657229][T17721] Call Trace: [ 448.657238][T17721] [ 448.657248][T17721] dump_stack_lvl+0xda/0x130 [ 448.673984][T17717] FAULT_INJECTION: forcing a failure. [ 448.673984][T17717] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 448.675270][T17721] dump_stack+0x15/0x20 [ 448.703623][T17721] should_fail_ex+0x21f/0x230 [ 448.708379][T17721] should_fail+0xb/0x10 [ 448.712556][T17721] should_fail_usercopy+0x1a/0x20 [ 448.717673][T17721] copy_page_from_iter_atomic+0x237/0xd90 [ 448.723412][T17721] ? shmem_write_begin+0xa0/0x1b0 [ 448.728502][T17721] ? shmem_write_begin+0x10c/0x1b0 [ 448.733730][T17721] generic_perform_write+0x20c/0x410 [ 448.739043][T17721] ? shmem_write_begin+0x1b0/0x1b0 [ 448.744167][T17721] shmem_file_write_iter+0xc8/0xe0 [ 448.749333][T17721] vfs_write+0x760/0x8d0 [ 448.753607][T17721] ksys_write+0xeb/0x1a0 [ 448.757906][T17721] __x64_sys_write+0x42/0x50 [ 448.762551][T17721] do_syscall_64+0xcd/0x1d0 [ 448.767106][T17721] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 448.773010][T17721] RIP: 0033:0x7f42009ffaef [ 448.777426][T17721] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 448.797057][T17721] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 448.805475][T17721] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 448.813526][T17721] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 448.821520][T17721] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 448.829513][T17721] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 448.837520][T17721] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 448.845526][T17721] [ 448.848569][T17717] CPU: 1 PID: 17717 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 448.859030][T17717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 448.861356][T17721] loop1: detected capacity change from 0 to 512 [ 448.869081][T17717] Call Trace: [ 448.869092][T17717] [ 448.869100][T17717] dump_stack_lvl+0xda/0x130 [ 448.879292][T17721] EXT4-fs: journaled quota format not specified [ 448.881627][T17717] dump_stack+0x15/0x20 [ 448.896667][T17717] should_fail_ex+0x21f/0x230 [ 448.901397][T17717] __should_fail_alloc_page+0xfd/0x110 [ 448.906872][T17717] __alloc_pages+0x108/0x340 [ 448.911505][T17717] alloc_pages_mpol+0xb1/0x1d0 [ 448.916364][T17717] shmem_get_folio_gfp+0x3b2/0xb40 [ 448.921534][T17717] shmem_write_begin+0xa0/0x1b0 [ 448.926436][T17717] generic_perform_write+0x1c9/0x410 [ 448.931806][T17717] ? shmem_write_begin+0x1b0/0x1b0 [ 448.937000][T17717] shmem_file_write_iter+0xc8/0xe0 [ 448.942125][T17717] vfs_write+0x760/0x8d0 [ 448.946409][T17717] ksys_write+0xeb/0x1a0 [ 448.950673][T17717] __x64_sys_write+0x42/0x50 [ 448.955360][T17717] do_syscall_64+0xcd/0x1d0 [ 448.959889][T17717] ? irqentry_exit+0x12/0x40 [ 448.964498][T17717] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 448.970406][T17717] RIP: 0033:0x7fe39bbcaaef [ 448.974842][T17717] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 448.994508][T17717] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 449.002944][T17717] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 449.010945][T17717] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 449.018969][T17717] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 449.027057][T17717] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 449.035117][T17717] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 449.043097][T17717] [ 449.050623][T17719] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 449.069304][T17719] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 449.084209][T17719] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x8}]}}]}]}, 0x34}}, 0x0) [ 449.095761][T17719] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 449.101423][T17725] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 449.105851][T17719] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 449.117382][T17725] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 449.130883][T17719] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 449.140662][T17725] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 449.151173][T17725] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 449.152179][T17719] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 449.168485][T17725] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x9}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 69) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xa}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 93) [ 449.173330][T17719] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 449.201483][T17719] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 449.237085][T17725] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 449.250000][T17737] FAULT_INJECTION: forcing a failure. [ 449.250000][T17737] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 449.263261][T17737] CPU: 1 PID: 17737 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 449.271101][T17740] FAULT_INJECTION: forcing a failure. [ 449.271101][T17740] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 449.273675][T17737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 449.273693][T17737] Call Trace: [ 449.273702][T17737] [ 449.303070][T17737] dump_stack_lvl+0xda/0x130 [ 449.307733][T17737] dump_stack+0x15/0x20 [ 449.311936][T17737] should_fail_ex+0x21f/0x230 [ 449.316626][T17737] should_fail+0xb/0x10 [ 449.320869][T17737] should_fail_usercopy+0x1a/0x20 [ 449.325925][T17737] copy_page_from_iter_atomic+0x237/0xd90 [ 449.331720][T17737] ? shmem_write_begin+0xa0/0x1b0 [ 449.336801][T17737] ? shmem_write_begin+0x10c/0x1b0 [ 449.341918][T17737] generic_perform_write+0x20c/0x410 [ 449.347338][T17737] ? shmem_write_begin+0x1b0/0x1b0 [ 449.352523][T17737] shmem_file_write_iter+0xc8/0xe0 [ 449.357644][T17737] vfs_write+0x760/0x8d0 [ 449.361906][T17737] ksys_write+0xeb/0x1a0 [ 449.366219][T17737] __x64_sys_write+0x42/0x50 [ 449.370960][T17737] do_syscall_64+0xcd/0x1d0 [ 449.375473][T17737] ? switch_fpu_return+0xe/0x10 [ 449.380328][T17737] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 449.386232][T17737] RIP: 0033:0x7fe39bbcaaef [ 449.390650][T17737] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 449.410299][T17737] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 449.418720][T17737] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 449.426721][T17737] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 449.434698][T17737] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 449.442924][T17737] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 449.450900][T17737] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 449.458886][T17737] [ 449.461930][T17740] CPU: 0 PID: 17740 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 449.472415][T17740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 449.475100][T17737] loop4: detected capacity change from 0 to 512 [ 449.482475][T17740] Call Trace: [ 449.482491][T17740] [ 449.482500][T17740] dump_stack_lvl+0xda/0x130 [ 449.499749][T17740] dump_stack+0x15/0x20 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xb}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xc}]}}]}]}, 0x34}}, 0x0) [ 449.503934][T17740] should_fail_ex+0x21f/0x230 [ 449.508635][T17740] should_fail+0xb/0x10 [ 449.512925][T17740] should_fail_usercopy+0x1a/0x20 [ 449.518041][T17740] copy_page_from_iter_atomic+0x237/0xd90 [ 449.523789][T17740] ? shmem_write_begin+0xa0/0x1b0 [ 449.528944][T17740] ? shmem_write_begin+0x10c/0x1b0 [ 449.534072][T17740] generic_perform_write+0x20c/0x410 [ 449.539391][T17740] ? shmem_write_begin+0x1b0/0x1b0 [ 449.544588][T17740] shmem_file_write_iter+0xc8/0xe0 [ 449.549810][T17740] vfs_write+0x760/0x8d0 [ 449.551391][T17737] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 449.554155][T17740] ksys_write+0xeb/0x1a0 [ 449.565680][T17737] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 449.569826][T17740] __x64_sys_write+0x42/0x50 [ 449.579907][T17737] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 449.584456][T17740] do_syscall_64+0xcd/0x1d0 [ 449.601725][T17737] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 449.602110][T17740] ? irqentry_exit+0x12/0x40 [ 449.610766][T17737] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 449.615018][T17740] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 449.632175][T17737] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 449.635039][T17740] RIP: 0033:0x7f42009ffaef 16:13:06 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:06 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3MtvG8UfAPDvrpP012fyK+XRB9RQEBGFpEkL9MClCKRekJDgAMeQhqo0bVETJFpVtCBUjoi/ADgi8RdwggsCTiCucEdIFeqlhQMy2vVu6yROSOy4TtnPR7Izsw/PfHd24tkd2wFUVj17SiK2RcQvETHczC7coN78c/P6pek/r1+aTqLReOWPJN/uxvVL0+Wm5X5bi8xoGpF+mMTeNuXOXbh4emp2duZ8kR+fP/P2+NyFi0+dOjN1cubkzNnJo0ePHJ549pnJp9clziyuG3veO7dv9/HXP3lpuhFvfP9lVt8ni/WtcTSNdF1mPerRaDQa6YKlQ/nzY12/+sayvSWdDPSxIqxJLSKy5hrM+/9w1OJ24w3Hix/0tXJAT2XvT5uWLK0Vfwfy9cB/VaKPQ0WV7/jZ9W/5uJPjj367dix7nsnjv1k8mmsGIrtuT0aaV+y1HpW/LSJeu/LXp9kj2t6HAABYX18fa06CLB3/pXFfy3Y7ijmUkYg4GBE7I+KeiNgVEfdG5NveHxEPrLH8+qL80vHPT5s7CmyVsvHfc8Xc1sLx361Zm5Fakduexz+YvHlqduZQcUxGY3BTlp9YoYxvXvj54+XW1VvGf9kjK78cCxb1+H1g0Q26E1PzU93E3Ora+xF7BtrFn9yaCUgiYndE7Ong9bNjduqJL/Zl6R1bl67/9/hXsA7zTI3PIx5vtv+VWBR/KWmWtNz85Pj/Ynbm0Hh5Viz1w49XX27ND7aku4p/HWTtv6Xt+V/EX3aDcr52bu1lXP31o2WvaTo9/4eSV/P0ULHs3an5+fMTEUPFggXLJ2/vW+bL7bP4Rw+07/87I/7+rNhvb0RkJ/GDEfFQROwv6v5wRDwSEQdWiP+75x99a+Uj1N/2P7FS+0eMJK3z9R0kaqe//Wq58lfX/kfy1GixZDX//1ZbwW6OHQAAANwt0nwOOknHbqXTdGys+Rn+XbElnT03N3+wHu+cPdGcqx6JwbS80zXccj90org3XOYnF+UPR8T/808abc7zY9PnZrf3O3iouK3L9P/Mb7360AuwcaxpHi3pXT2AO8/3NaG69H+oLv0fqkv/h+pq1/8vR9zsQ1WAO8z7P1SX/g/Vpf9Dden/UElLvxJf/txKJ9/0v53Yebyr3SuUqPXolaP1Rzt6kIi074eu80S6Eaqxv0hsiojV7nW5p226+PwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4+/0TAAD//99v4/4=") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xd}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 70) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xe}]}}]}]}, 0x34}}, 0x0) [ 449.635062][T17740] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 449.671474][T17740] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 449.679969][T17740] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 449.687960][T17740] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 449.695960][T17740] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xf}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x10}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x11}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 94) [ 449.704048][T17740] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 449.712135][T17740] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 449.720136][T17740] [ 449.725712][T17740] loop1: detected capacity change from 0 to 512 [ 449.744106][T17740] EXT4-fs: journaled quota format not specified 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x12}]}}]}]}, 0x34}}, 0x0) [ 449.775349][T17757] FAULT_INJECTION: forcing a failure. [ 449.775349][T17757] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 449.788704][T17757] CPU: 1 PID: 17757 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 449.799209][T17757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 449.809285][T17757] Call Trace: [ 449.812587][T17757] [ 449.815536][T17757] dump_stack_lvl+0xda/0x130 [ 449.820200][T17757] dump_stack+0x15/0x20 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x25}]}}]}]}, 0x34}}, 0x0) [ 449.824401][T17757] should_fail_ex+0x21f/0x230 [ 449.829153][T17757] __should_fail_alloc_page+0xfd/0x110 [ 449.834651][T17757] __alloc_pages+0x108/0x340 [ 449.839310][T17757] alloc_pages_mpol+0xb1/0x1d0 [ 449.844111][T17757] shmem_get_folio_gfp+0x3b2/0xb40 [ 449.849438][T17757] shmem_write_begin+0xa0/0x1b0 [ 449.849470][T17757] generic_perform_write+0x1c9/0x410 [ 449.859644][T17757] ? shmem_write_begin+0x1b0/0x1b0 [ 449.864856][T17757] shmem_file_write_iter+0xc8/0xe0 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x48}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x4c}]}}]}]}, 0x34}}, 0x0) 16:13:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x60}]}}]}]}, 0x34}}, 0x0) [ 449.868905][T17764] loop3: detected capacity change from 0 to 512 [ 449.869983][T17757] vfs_write+0x760/0x8d0 [ 449.880647][T17757] ksys_write+0xeb/0x1a0 [ 449.884924][T17757] __x64_sys_write+0x42/0x50 [ 449.889623][T17757] do_syscall_64+0xcd/0x1d0 [ 449.894161][T17757] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 449.900081][T17757] RIP: 0033:0x7f42009ffaef [ 449.904520][T17757] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 449.924197][T17757] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 449.932643][T17757] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 449.939900][T17772] FAULT_INJECTION: forcing a failure. [ 449.939900][T17772] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 449.940645][T17757] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 449.940665][T17757] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 449.969833][T17757] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 449.977902][T17757] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 449.985884][T17757] [ 449.988905][T17772] CPU: 0 PID: 17772 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 449.999400][T17772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 450.009005][T17776] loop2: detected capacity change from 0 to 512 [ 450.009456][T17772] Call Trace: [ 450.009466][T17772] [ 450.009472][T17772] dump_stack_lvl+0xda/0x130 [ 450.026556][T17772] dump_stack+0x15/0x20 [ 450.030742][T17772] should_fail_ex+0x21f/0x230 [ 450.035536][T17772] __should_fail_alloc_page+0xfd/0x110 [ 450.041059][T17772] __alloc_pages+0x108/0x340 [ 450.045681][T17772] alloc_pages_mpol+0xb1/0x1d0 [ 450.048221][T17776] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 450.050458][T17772] shmem_get_folio_gfp+0x3b2/0xb40 [ 450.065448][T17772] shmem_write_begin+0xa0/0x1b0 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x68}]}}]}]}, 0x34}}, 0x0) 16:13:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 95) 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x6c}]}}]}]}, 0x34}}, 0x0) [ 450.069899][T17776] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 450.070314][T17772] generic_perform_write+0x1c9/0x410 [ 450.081788][T17776] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 450.087033][T17772] ? shmem_write_begin+0x1b0/0x1b0 [ 450.087069][T17772] shmem_file_write_iter+0xc8/0xe0 [ 450.087140][T17772] vfs_write+0x760/0x8d0 [ 450.087184][T17772] ksys_write+0xeb/0x1a0 [ 450.097252][T17776] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 450.102333][T17772] __x64_sys_write+0x42/0x50 [ 450.118238][T17776] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 450.129161][T17772] do_syscall_64+0xcd/0x1d0 [ 450.134072][T17776] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 450.141910][T17772] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 450.141942][T17772] RIP: 0033:0x7fe39bbcaaef [ 450.141983][T17772] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 450.150258][T17776] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 450.160659][T17772] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 450.160687][T17772] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 450.160703][T17772] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 450.170077][T17776] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 450.170981][T17772] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 450.171000][T17772] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 450.190621][T17776] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 450.202723][T17772] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 450.202751][T17772] [ 450.264145][T17782] FAULT_INJECTION: forcing a failure. [ 450.264145][T17782] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 450.265282][T17776] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 450.273358][T17782] CPU: 0 PID: 17782 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 450.277701][T17776] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 450.289497][T17782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 450.302711][T17776] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 450.313091][T17782] Call Trace: [ 450.313101][T17782] [ 450.313107][T17782] dump_stack_lvl+0xda/0x130 [ 450.324571][T17776] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 450.334605][T17782] dump_stack+0x15/0x20 [ 450.344802][T17776] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 450.347981][T17782] should_fail_ex+0x21f/0x230 [ 450.364466][T17764] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 450.368681][T17782] should_fail+0xb/0x10 [ 450.372842][T17764] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 450.393318][T17782] should_fail_usercopy+0x1a/0x20 [ 450.398086][T17764] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 450.409438][T17782] copy_page_from_iter_atomic+0x237/0xd90 [ 450.409481][T17782] ? shmem_write_begin+0xa0/0x1b0 [ 450.421718][T17785] FAULT_INJECTION: forcing a failure. [ 450.421718][T17785] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 450.423686][T17782] ? shmem_write_begin+0x10c/0x1b0 [ 450.471061][T17782] generic_perform_write+0x20c/0x410 [ 450.476422][T17782] ? shmem_write_begin+0x1b0/0x1b0 [ 450.481542][T17782] shmem_file_write_iter+0xc8/0xe0 [ 450.486743][T17782] vfs_write+0x760/0x8d0 [ 450.491056][T17782] ksys_write+0xeb/0x1a0 [ 450.495330][T17782] __x64_sys_write+0x42/0x50 [ 450.499949][T17782] do_syscall_64+0xcd/0x1d0 [ 450.504465][T17782] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 450.510374][T17782] RIP: 0033:0x7f42009ffaef [ 450.514805][T17782] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 450.534496][T17782] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 450.542964][T17782] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 450.550986][T17782] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 450.558959][T17782] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 450.566983][T17782] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 450.574954][T17782] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 450.582962][T17782] [ 450.585989][T17785] CPU: 1 PID: 17785 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 450.587529][T17764] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 450.596413][T17785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 450.596431][T17785] Call Trace: [ 450.596440][T17785] [ 450.596455][T17785] dump_stack_lvl+0xda/0x130 [ 450.608026][T17782] loop1: detected capacity change from 0 to 512 [ 450.614485][T17785] dump_stack+0x15/0x20 [ 450.614517][T17785] should_fail_ex+0x21f/0x230 [ 450.614549][T17785] should_fail+0xb/0x10 [ 450.644613][T17785] should_fail_usercopy+0x1a/0x20 [ 450.649662][T17785] copy_page_from_iter_atomic+0x237/0xd90 [ 450.655449][T17785] ? generic_perform_write+0x1f2/0x410 [ 450.660929][T17785] ? shmem_write_begin+0xa0/0x1b0 [ 450.665968][T17785] generic_perform_write+0x20c/0x410 [ 450.671291][T17785] ? shmem_write_begin+0x1b0/0x1b0 [ 450.676446][T17785] shmem_file_write_iter+0xc8/0xe0 [ 450.681642][T17785] vfs_write+0x760/0x8d0 [ 450.686073][T17785] ksys_write+0xeb/0x1a0 [ 450.690393][T17785] __x64_sys_write+0x42/0x50 [ 450.695097][T17785] do_syscall_64+0xcd/0x1d0 [ 450.699618][T17785] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 450.705563][T17785] RIP: 0033:0x7fe39bbcaaef [ 450.710066][T17785] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 450.729739][T17785] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 450.738166][T17785] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 450.746232][T17785] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 450.754209][T17785] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 450.762254][T17785] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 450.770309][T17785] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x74}]}}]}]}, 0x34}}, 0x0) 16:13:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 71) 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x7a}]}}]}]}, 0x34}}, 0x0) 16:13:07 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 450.778312][T17785] [ 450.786520][T17764] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 450.786675][T17782] EXT4-fs: journaled quota format not specified [ 450.808073][T17785] loop4: detected capacity change from 0 to 512 [ 450.817750][T17764] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x100}]}}]}]}, 0x34}}, 0x0) [ 450.832046][T17785] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 450.843612][T17785] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 450.853939][T17785] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 450.854241][T17785] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x300}]}}]}]}, 0x34}}, 0x0) 16:13:07 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x500}]}}]}]}, 0x34}}, 0x0) 16:13:07 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 96) [ 450.873091][T17785] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 450.904612][T17785] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x600}]}}]}]}, 0x34}}, 0x0) 16:13:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 72) 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x700}]}}]}]}, 0x34}}, 0x0) [ 450.949449][T17797] loop2: detected capacity change from 0 to 512 [ 450.950572][T17800] FAULT_INJECTION: forcing a failure. [ 450.950572][T17800] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 450.971068][T17800] CPU: 0 PID: 17800 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 450.981516][T17800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 450.991666][T17800] Call Trace: [ 450.994961][T17800] 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x800}]}}]}]}, 0x34}}, 0x0) [ 450.997363][T17797] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 450.997896][T17800] dump_stack_lvl+0xda/0x130 [ 451.012346][T17800] dump_stack+0x15/0x20 [ 451.016529][T17800] should_fail_ex+0x21f/0x230 [ 451.020459][T17797] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e018, mo2=0002] [ 451.021281][T17800] __should_fail_alloc_page+0xfd/0x110 [ 451.034724][T17800] __alloc_pages+0x108/0x340 [ 451.039401][T17800] alloc_pages_mpol+0xb1/0x1d0 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x900}]}}]}]}, 0x34}}, 0x0) [ 451.040558][T17797] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 451.044267][T17800] shmem_get_folio_gfp+0x3b2/0xb40 [ 451.044305][T17800] shmem_write_begin+0xa0/0x1b0 [ 451.055929][T17797] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 451.061001][T17800] generic_perform_write+0x1c9/0x410 [ 451.065852][T17797] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 451.075877][T17800] ? shmem_write_begin+0x1b0/0x1b0 [ 451.090710][T17797] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 451.094356][T17800] shmem_file_write_iter+0xc8/0xe0 [ 451.099616][T17797] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 451.107475][T17800] vfs_write+0x760/0x8d0 [ 451.107527][T17800] ksys_write+0xeb/0x1a0 [ 451.113264][T17797] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 451.126780][T17800] __x64_sys_write+0x42/0x50 [ 451.134111][T17797] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 451.135285][T17800] do_syscall_64+0xcd/0x1d0 [ 451.147578][T17797] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 451.152034][T17800] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 451.163517][T17797] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 451.167985][T17800] RIP: 0033:0x7f42009ffaef [ 451.185127][T17797] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 451.197098][T17800] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 451.197125][T17800] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 451.197184][T17800] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xa00}]}}]}]}, 0x34}}, 0x0) 16:13:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 97) [ 451.197198][T17800] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 451.201602][T17797] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 451.213289][T17800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 451.213311][T17800] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 451.232936][T17797] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xb00}]}}]}]}, 0x34}}, 0x0) 16:13:08 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 451.241405][T17800] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 451.241492][T17800] [ 451.252755][T17797] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 451.348815][T17817] FAULT_INJECTION: forcing a failure. [ 451.348815][T17817] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 451.360369][T17812] loop3: detected capacity change from 0 to 512 [ 451.361910][T17817] CPU: 0 PID: 17817 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 451.375698][T17812] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 451.378486][T17817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 451.389950][T17812] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 451.399971][T17817] Call Trace: [ 451.399981][T17817] [ 451.399990][T17817] dump_stack_lvl+0xda/0x130 [ 451.410052][T17812] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 451.413677][T17817] dump_stack+0x15/0x20 [ 451.418854][T17812] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 451.421168][T17817] should_fail_ex+0x21f/0x230 [ 451.434555][T17812] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 451.438475][T17817] should_fail+0xb/0x10 [ 451.446617][T17812] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 451.451085][T17817] should_fail_usercopy+0x1a/0x20 [ 451.486721][T17817] copy_page_from_iter_atomic+0x237/0xd90 [ 451.492460][T17817] ? shmem_write_begin+0xa0/0x1b0 [ 451.497492][T17817] ? shmem_write_begin+0x10c/0x1b0 [ 451.502661][T17817] generic_perform_write+0x20c/0x410 [ 451.508036][T17817] ? shmem_write_begin+0x1b0/0x1b0 [ 451.513234][T17817] shmem_file_write_iter+0xc8/0xe0 [ 451.518359][T17817] vfs_write+0x760/0x8d0 [ 451.522627][T17817] ksys_write+0xeb/0x1a0 [ 451.526909][T17817] __x64_sys_write+0x42/0x50 [ 451.531580][T17817] do_syscall_64+0xcd/0x1d0 [ 451.536096][T17817] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 451.542117][T17817] RIP: 0033:0x7f42009ffaef [ 451.546540][T17817] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 451.566241][T17817] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 451.574664][T17817] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 451.582646][T17817] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 451.590633][T17817] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xb8d}]}}]}]}, 0x34}}, 0x0) 16:13:08 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) getpgid(0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xc00}]}}]}]}, 0x34}}, 0x0) [ 451.598642][T17817] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 451.606659][T17817] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 451.614646][T17817] [ 451.649475][T17826] FAULT_INJECTION: forcing a failure. [ 451.649475][T17826] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 451.655338][T17817] loop1: detected capacity change from 0 to 512 [ 451.662804][T17826] CPU: 1 PID: 17826 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 451.679579][T17826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 451.689730][T17826] Call Trace: [ 451.693023][T17826] [ 451.695998][T17826] dump_stack_lvl+0xda/0x130 [ 451.700680][T17826] dump_stack+0x15/0x20 [ 451.704874][T17826] should_fail_ex+0x21f/0x230 [ 451.709638][T17826] __should_fail_alloc_page+0xfd/0x110 [ 451.715167][T17826] __alloc_pages+0x108/0x340 [ 451.719850][T17826] alloc_pages_mpol+0xb1/0x1d0 [ 451.724636][T17826] shmem_get_folio_gfp+0x3b2/0xb40 [ 451.729866][T17826] shmem_write_begin+0xa0/0x1b0 [ 451.734739][T17826] generic_perform_write+0x1c9/0x410 [ 451.740105][T17826] ? shmem_write_begin+0x1b0/0x1b0 [ 451.745235][T17826] shmem_file_write_iter+0xc8/0xe0 [ 451.750359][T17826] vfs_write+0x760/0x8d0 [ 451.754680][T17826] ksys_write+0xeb/0x1a0 [ 451.758987][T17826] __x64_sys_write+0x42/0x50 [ 451.763602][T17826] do_syscall_64+0xcd/0x1d0 [ 451.768218][T17826] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 451.774137][T17826] RIP: 0033:0x7fe39bbcaaef [ 451.778591][T17826] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 451.798281][T17826] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 451.806704][T17826] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 451.814738][T17826] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 451.822812][T17826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 451.830862][T17826] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 451.838860][T17826] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 451.846851][T17826] 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xd00}]}}]}]}, 0x34}}, 0x0) 16:13:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 73) 16:13:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xd0b}]}}]}]}, 0x34}}, 0x0) 16:13:08 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 98) [ 451.854043][T17817] EXT4-fs: journaled quota format not specified [ 451.870734][T17828] __nla_validate_parse: 44 callbacks suppressed [ 451.870770][T17828] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 451.897083][T17831] loop2: detected capacity change from 0 to 512 [ 451.921626][T17832] FAULT_INJECTION: forcing a failure. [ 451.921626][T17832] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 451.922680][T17831] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 451.934734][T17832] CPU: 1 PID: 17832 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 451.955118][T17832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 451.965221][T17832] Call Trace: [ 451.968518][T17832] [ 451.971463][T17832] dump_stack_lvl+0xda/0x130 [ 451.976125][T17832] dump_stack+0x15/0x20 [ 451.978606][T17837] FAULT_INJECTION: forcing a failure. [ 451.978606][T17837] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 451.980322][T17832] should_fail_ex+0x21f/0x230 [ 451.998214][T17832] should_fail+0xb/0x10 [ 452.002389][T17832] should_fail_usercopy+0x1a/0x20 [ 452.007445][T17832] copy_page_from_iter_atomic+0x237/0xd90 [ 452.013186][T17832] ? shmem_write_begin+0xa0/0x1b0 [ 452.018222][T17832] ? shmem_write_begin+0x10c/0x1b0 [ 452.023397][T17832] generic_perform_write+0x20c/0x410 [ 452.028767][T17832] ? shmem_write_begin+0x1b0/0x1b0 [ 452.033966][T17832] shmem_file_write_iter+0xc8/0xe0 [ 452.039095][T17832] vfs_write+0x760/0x8d0 [ 452.043420][T17832] ksys_write+0xeb/0x1a0 [ 452.047901][T17832] __x64_sys_write+0x42/0x50 [ 452.052534][T17832] do_syscall_64+0xcd/0x1d0 [ 452.057057][T17832] ? irqentry_exit+0x12/0x40 [ 452.061665][T17832] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 452.067580][T17832] RIP: 0033:0x7fe39bbcaaef [ 452.072015][T17832] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 452.091675][T17832] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 452.100113][T17832] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 452.108141][T17832] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 452.116184][T17832] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 452.124161][T17832] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 452.132184][T17832] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 452.140302][T17832] [ 452.143407][T17837] CPU: 0 PID: 17837 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 452.149101][T17832] loop4: detected capacity change from 0 to 512 [ 452.153836][T17837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 16:13:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xe00}]}}]}]}, 0x34}}, 0x0) [ 452.153854][T17837] Call Trace: [ 452.153864][T17837] [ 452.162970][T17839] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 452.170137][T17837] dump_stack_lvl+0xda/0x130 [ 452.190267][T17837] dump_stack+0x15/0x20 [ 452.190305][T17837] should_fail_ex+0x21f/0x230 [ 452.190339][T17837] __should_fail_alloc_page+0xfd/0x110 [ 452.190373][T17837] __alloc_pages+0x108/0x340 [ 452.190406][T17837] alloc_pages_mpol+0xb1/0x1d0 [ 452.190433][T17837] shmem_get_folio_gfp+0x3b2/0xb40 16:13:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 99) 16:13:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0xf00}]}}]}]}, 0x34}}, 0x0) [ 452.190462][T17837] shmem_write_begin+0xa0/0x1b0 [ 452.190489][T17837] generic_perform_write+0x1c9/0x410 [ 452.190522][T17837] ? shmem_write_begin+0x1b0/0x1b0 [ 452.190552][T17837] shmem_file_write_iter+0xc8/0xe0 [ 452.190580][T17837] vfs_write+0x760/0x8d0 [ 452.190629][T17837] ksys_write+0xeb/0x1a0 [ 452.190673][T17837] __x64_sys_write+0x42/0x50 [ 452.190732][T17837] do_syscall_64+0xcd/0x1d0 [ 452.190762][T17837] ? irqentry_exit+0x12/0x40 [ 452.190803][T17837] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 452.190904][T17837] RIP: 0033:0x7f42009ffaef [ 452.190922][T17837] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 452.190942][T17837] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 452.191041][T17837] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 452.191055][T17837] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 [ 452.191140][T17837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 452.191153][T17837] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 452.191168][T17837] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 452.191190][T17837] [ 452.197743][T17831] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 452.208188][T17834] loop3: detected capacity change from 0 to 512 16:13:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x1100}]}}]}]}, 0x34}}, 0x0) [ 452.212057][T17831] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 452.212081][T17831] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 452.222706][T17842] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 452.250427][T17831] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 452.280130][T17847] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 452.300270][T17845] FAULT_INJECTION: forcing a failure. [ 452.300270][T17845] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 452.304170][T17832] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 452.311508][T17845] CPU: 0 PID: 17845 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 452.319588][T17832] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 452.327524][T17845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 452.327542][T17845] Call Trace: 16:13:09 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 74) [ 452.327551][T17845] [ 452.335533][T17832] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 452.343468][T17845] dump_stack_lvl+0xda/0x130 [ 452.347410][T17832] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 452.358347][T17845] dump_stack+0x15/0x20 [ 452.358381][T17845] should_fail_ex+0x21f/0x230 [ 452.358413][T17845] should_fail+0xb/0x10 16:13:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x1200}]}}]}]}, 0x34}}, 0x0) [ 452.375554][T17831] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 452.387898][T17845] should_fail_usercopy+0x1a/0x20 [ 452.404276][T17831] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 452.405068][T17845] copy_page_from_iter_atomic+0x237/0xd90 [ 452.415101][T17832] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 452.427272][T17845] ? shmem_write_begin+0xa0/0x1b0 [ 452.427304][T17845] ? shmem_write_begin+0x10c/0x1b0 [ 452.427326][T17845] generic_perform_write+0x20c/0x410 [ 452.427391][T17845] ? shmem_write_begin+0x1b0/0x1b0 [ 452.427442][T17845] shmem_file_write_iter+0xc8/0xe0 [ 452.439530][T17832] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 452.449346][T17845] vfs_write+0x760/0x8d0 [ 452.449394][T17845] ksys_write+0xeb/0x1a0 [ 452.468808][T17834] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:09 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 100) 16:13:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x2000}]}}]}]}, 0x34}}, 0x0) [ 452.469617][T17845] __x64_sys_write+0x42/0x50 [ 452.469663][T17845] do_syscall_64+0xcd/0x1d0 [ 452.472948][T17834] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 452.475885][T17845] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 452.475915][T17845] RIP: 0033:0x7f42009ffaef [ 452.489092][T17834] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 452.493748][T17845] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 452.493770][T17845] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 452.504118][T17834] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 452.505959][T17845] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 452.505979][T17845] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:13:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x2500}]}}]}]}, 0x34}}, 0x0) [ 452.505996][T17845] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 452.510995][T17834] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 452.514800][T17845] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 452.514818][T17845] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 452.514842][T17845] [ 452.530336][T17834] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:13:09 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6jhfrW+NoGum6zHrUo9FoNNIFS4fy58e6fvWNZXtLOhnoY0VYk1pEZM01mPf/4ajFrcYbjpc+7GvlgJ7K3p82LVlaK/4O5OuB/6tEH4eKKt/xs+vf8nE7xx/9dvX57Hkmj/9G8WiuGYjsuj0ZaV6x13pU/raIeP3y359lj2h7HwIAYH19k41/nmw3/kvjvpbtdhRzKCMRcTAidkbEPRGxKyLujci3vT8iHlhj+fVF+aXjn583dxTYKmXjv+eKua2F47+bszYjtSK3PY9/MHnr5OzMoeKYjMbgpiw/sUIZ3774yyfLrau3jP+yR1Z+ORYs6vHHwKIbdMen5qe6ibnV1Q8i9gy0iz+5OROQRMTuiNjTwetnx+zkE1/uy9I7ti5d/9/xr2Ad5pkaX0Q83mz/y7Eo/lLSLGm5+cnxu2J25tB4eVYs9eNPV15pzQ+2pLuKfx1k7b+l7flfxF92g3K+dm7tZVz57eNlr2k6Pf+Hktfy9FCx7L2p+flzExFDxYIFyydv7Vvmy+2z+EcPtO//OyP++bzYb29EZCfxgxHxUETsL+r+cEQ8EhEHVoj/+xcefXvlI9Tf9j++UvtHjCSt8/UdJGqnvvt6ufJX1/5H8tRosWQ1//9WW8Fujh0AAADcKdJ8DjpJx26m03RsrPkZ/l2xJZ09Ozd/sB7vnjnenKseicG0vNM13HI/dKK4N1zmJxflD0fE3fknjTbn+bHps7Pb+x08VNzWZfp/5vdefegF2DjWNI+W9K4ewO3n+5pQXfo/VJf+D9Wl/0N1tev/lyJu9KEqwG3m/R+qS/+H6tL/obr0f6ikpV+JL39upZNv+t9K7DzW1e4VStR69MrR+qMdPUhE2vdD13ki3QjV2F8kNkXEave61NM2XXz+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3Pn+DQAA///RI+QB") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 452.542799][T17849] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 452.559122][T17845] loop1: detected capacity change from 0 to 512 [ 452.577561][T17831] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 452.596034][T17851] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 452.604330][T17831] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 452.616004][T17845] EXT4-fs: journaled quota format not specified [ 452.624281][T17831] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 452.657430][T17853] FAULT_INJECTION: forcing a failure. [ 452.657430][T17853] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 452.683093][T17855] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 452.687855][T17853] CPU: 1 PID: 17853 Comm: syz-executor.1 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 452.703970][T17831] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 452.704233][T17853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 452.704249][T17853] Call Trace: [ 452.704255][T17853] [ 452.704262][T17853] dump_stack_lvl+0xda/0x130 [ 452.712332][T17831] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 452.720291][T17853] dump_stack+0x15/0x20 [ 452.720345][T17853] should_fail_ex+0x21f/0x230 [ 452.728338][T17831] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 452.742423][T17853] __should_fail_alloc_page+0xfd/0x110 [ 452.765255][T17831] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 452.773546][T17853] __alloc_pages+0x108/0x340 [ 452.968015][T17853] alloc_pages_mpol+0xb1/0x1d0 16:13:10 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) getpgid(0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 452.968046][T17853] shmem_get_folio_gfp+0x3b2/0xb40 [ 452.968076][T17853] shmem_write_begin+0xa0/0x1b0 [ 452.968127][T17853] generic_perform_write+0x1c9/0x410 [ 452.968159][T17853] ? shmem_write_begin+0x1b0/0x1b0 [ 452.968256][T17853] shmem_file_write_iter+0xc8/0xe0 [ 452.968283][T17853] vfs_write+0x760/0x8d0 [ 452.968358][T17853] ksys_write+0xeb/0x1a0 [ 452.968392][T17853] __x64_sys_write+0x42/0x50 [ 452.968425][T17853] do_syscall_64+0xcd/0x1d0 [ 452.968452][T17853] entry_SYSCALL_64_after_hwframe+0x63/0x6b 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x2800}]}}]}]}, 0x34}}, 0x0) [ 452.968480][T17853] RIP: 0033:0x7f42009ffaef [ 452.968496][T17853] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 452.968540][T17853] RSP: 002b:00007f41ffd81e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 452.968560][T17853] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f42009ffaef [ 452.968574][T17853] RDX: 0000000000040000 RSI: 00007f41f7962000 RDI: 0000000000000004 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x2c00}]}}]}]}, 0x34}}, 0x0) [ 452.968587][T17853] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 452.968600][T17853] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 452.968645][T17853] R13: 00007f41ffd81f80 R14: 00007f41ffd81f40 R15: 00007f41f7962000 [ 452.968662][T17853] [ 452.973324][ T3094] EXT4-fs unmount: 75 callbacks suppressed [ 452.973377][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.027844][T17860] loop1: detected capacity change from 0 to 512 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x3400}]}}]}]}, 0x34}}, 0x0) [ 453.063221][T17862] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 453.066339][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.077080][T17860] EXT4-fs: journaled quota format not specified [ 453.109638][T17864] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 453.141473][T17866] loop2: detected capacity change from 0 to 512 [ 453.166361][T17866] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x3a00}]}}]}]}, 0x34}}, 0x0) [ 453.184250][T17868] FAULT_INJECTION: forcing a failure. [ 453.184250][T17868] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 453.189685][T17870] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 453.197664][T17868] CPU: 0 PID: 17868 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 453.197701][T17868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 453.197783][T17868] Call Trace: [ 453.197790][T17868] 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 453.197797][T17868] dump_stack_lvl+0xda/0x130 [ 453.238435][T17868] dump_stack+0x15/0x20 [ 453.242643][T17868] should_fail_ex+0x21f/0x230 [ 453.247367][T17868] __should_fail_alloc_page+0xfd/0x110 [ 453.248345][T17866] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e01c, mo2=0002] [ 453.252864][T17868] __alloc_pages+0x108/0x340 [ 453.265452][T17868] alloc_pages_mpol+0xb1/0x1d0 [ 453.270321][T17868] shmem_get_folio_gfp+0x3b2/0xb40 [ 453.271615][T17866] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.275516][T17868] shmem_write_begin+0xa0/0x1b0 [ 453.287560][T17866] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 453.292378][T17868] generic_perform_write+0x1c9/0x410 [ 453.302549][T17866] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 453.307771][T17868] ? shmem_write_begin+0x1b0/0x1b0 [ 453.326285][T17868] shmem_file_write_iter+0xc8/0xe0 [ 453.327308][T17866] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 453.331465][T17868] vfs_write+0x760/0x8d0 [ 453.331573][T17868] ksys_write+0xeb/0x1a0 [ 453.339810][T17866] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 453.343694][T17868] __x64_sys_write+0x42/0x50 [ 453.351662][T17866] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 453.362511][T17868] do_syscall_64+0xcd/0x1d0 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}}, 0x0) [ 453.367294][T17866] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 453.379271][T17868] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 453.379307][T17868] RIP: 0033:0x7fe39bbcaaef [ 453.379324][T17868] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 453.379348][T17868] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 [ 453.406055][T17866] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.406708][T17868] ORIG_RAX: 0000000000000001 [ 453.406719][T17868] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 453.426360][T17866] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 453.432389][T17868] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x2}]}}]}]}, 0x34}}, 0x0) 16:13:10 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 75) [ 453.443863][T17866] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 453.448490][T17868] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 453.448508][T17868] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 453.448522][T17868] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 453.448541][T17868] [ 453.507039][T17884] FAULT_INJECTION: forcing a failure. [ 453.507039][T17884] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 453.527314][T17866] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.529059][T17884] CPU: 0 PID: 17884 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 453.540512][T17866] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 453.550873][T17884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 453.550890][T17884] Call Trace: [ 453.550900][T17884] 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x3}]}}]}]}, 0x34}}, 0x0) 16:13:10 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4}]}}]}]}, 0x34}}, 0x0) [ 453.560955][T17866] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 453.570983][T17884] dump_stack_lvl+0xda/0x130 [ 453.574347][T17866] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 453.577196][T17884] dump_stack+0x15/0x20 16:13:10 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000002, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x5}]}}]}]}, 0x34}}, 0x0) [ 453.619857][T17884] should_fail_ex+0x21f/0x230 [ 453.619892][T17884] should_fail+0xb/0x10 [ 453.619989][T17884] should_fail_usercopy+0x1a/0x20 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6}]}}]}]}, 0x34}}, 0x0) [ 453.620016][T17884] copy_page_from_iter_atomic+0x237/0xd90 [ 453.620108][T17884] ? shmem_write_begin+0xa0/0x1b0 [ 453.620136][T17884] ? shmem_write_begin+0x10c/0x1b0 [ 453.620199][T17884] generic_perform_write+0x20c/0x410 [ 453.620230][T17884] ? shmem_write_begin+0x1b0/0x1b0 [ 453.620272][T17884] shmem_file_write_iter+0xc8/0xe0 [ 453.620306][T17884] vfs_write+0x760/0x8d0 [ 453.620352][T17884] ksys_write+0xeb/0x1a0 [ 453.620439][T17884] __x64_sys_write+0x42/0x50 [ 453.620518][T17884] do_syscall_64+0xcd/0x1d0 [ 453.620661][T17884] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 453.620690][T17884] RIP: 0033:0x7fe39bbcaaef [ 453.620707][T17884] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 453.620727][T17884] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 453.620787][T17884] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x7}]}}]}]}, 0x34}}, 0x0) [ 453.620802][T17884] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 453.620880][T17884] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 453.620897][T17884] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 453.620912][T17884] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 453.620940][T17884] [ 453.622529][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.629411][T17884] loop4: detected capacity change from 0 to 512 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8}]}}]}]}, 0x34}}, 0x0) 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x9}]}}]}]}, 0x34}}, 0x0) [ 453.643658][T17888] loop3: detected capacity change from 0 to 512 [ 453.679100][T17888] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.679126][T17888] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 453.679141][T17888] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 453.679233][T17888] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 453.683413][T17895] loop2: detected capacity change from 0 to 512 [ 453.688394][T17888] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 453.695142][T17891] loop1: detected capacity change from 0 to 512 [ 453.695408][T17888] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 453.726114][T17895] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode 16:13:10 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 76) 16:13:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xa}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xb}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xc}]}}]}]}, 0x34}}, 0x0) [ 453.732111][T17888] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 453.736344][T17891] EXT4-fs: journaled quota format not specified [ 453.779182][T17884] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.785684][T17895] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.792116][T17884] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xd}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xe}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xf}]}}]}]}, 0x34}}, 0x0) [ 453.800079][T17895] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 453.800113][T17895] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 453.808007][T17895] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 453.808226][T17884] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x10}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x11}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x12}]}}]}]}, 0x34}}, 0x0) [ 453.811482][T17895] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 453.835418][T17884] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 453.850148][T17895] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 453.869943][T17884] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x25}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x48}]}}]}]}, 0x34}}, 0x0) [ 453.877749][T17895] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 453.893349][T17884] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 453.901957][T17895] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 453.909640][T17884] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 453.914550][T17895] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4c}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) getpgid(0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x60}]}}]}]}, 0x34}}, 0x0) [ 454.130639][T17895] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 454.144639][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 454.144732][T17895] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 454.165562][T17895] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:13:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000003, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x68}]}}]}]}, 0x34}}, 0x0) [ 454.175764][T17895] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 454.190007][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 454.194567][T17895] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6c}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6ThbrW+NoGum6zHrUo9FoNNIFS4fy58e6fvWNZXtLOhnoY0VYk1pEZM01mPf/4ajFrcYbjpc+7GvlgJ7K3p82LVlaK/4O5OuB/6tEH4eKKt/xs+vf8nE7xx/9dvX57Hkmj/9G8WiuGYjsuj0ZaV6x13pU/raIeP3y359lj2h7HwIAYH19k41/nmw3/kvjvpbtdhRzKCMRcTAidkbEPRGxKyLujci3vT8iHlhj+fVF+aXjn583dxTYKmXjv+eKua2F47+bszYjtSK3PY9/MHnr5OzMoeKYjMbgpiw/sUIZ3774yyfLrau3jP+yR1Z+ORYs6vHHwKIbdMen5qe6ibnV1Q8i9gy0iz+5OROQRMTuiNjTwetnx+zkE1/uy9I7ti5d/9/xr2Ad5pkaX0Q83mz/y7Eo/lLSLGm5+cnxu2J25tB4eVYs9eNPV15pzQ+2pLuKfx1k7b+l7flfxF92g3K+dm7tZVz57eNlr2k6Pf+Hktfy9FCx7L2p+flzExFDxYIFyydv7Vvmy+2z+EcPtO//OyP++bzYb29EZCfxgxHxUETsL+r+cEQ8EhEHVoj/+xcefXvlI9Tf9j++UvtHjCSt8/UdJGqnvvt6ufJX1/5H8tRosWQ1//9WW8Fujh0AAADcKdJ8DjpJx26m03RsrPkZ/l2xJZ09Ozd/sB7vnjnenKseicG0vNM13HI/dKK4N1zmJxflD0fE3fknjTbn+bHps7Pb+x08VNzWZfp/5vdefegF2DjWNI+W9K4ewO3n+5pQXfo/VJf+D9Wl/0N1tev/lyJu9KEqwG3m/R+qS/+H6tL/obr0f6ikpV+JL39upZNv+t9K7DzW1e4VStR69MrR+qMdPUhE2vdD13ki3QjV2F8kNkXEave61NM2XXz+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3Pn+DQAA///C1+QE") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x74}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x7a}]}}]}]}, 0x34}}, 0x0) [ 454.248089][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 454.263749][T17939] loop1: detected capacity change from 0 to 512 [ 454.274042][T17939] EXT4-fs: journaled quota format not specified [ 454.311588][T17945] loop3: detected capacity change from 0 to 512 [ 454.329232][T17950] FAULT_INJECTION: forcing a failure. [ 454.329232][T17950] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 454.336431][T17947] loop2: detected capacity change from 0 to 512 [ 454.342673][T17950] CPU: 0 PID: 17950 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x300}]}}]}]}, 0x34}}, 0x0) [ 454.359224][T17950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 454.366643][T17947] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 454.369289][T17950] Call Trace: [ 454.369299][T17950] [ 454.369308][T17950] dump_stack_lvl+0xda/0x130 [ 454.389854][T17945] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 454.389911][T17950] dump_stack+0x15/0x20 [ 454.401532][T17945] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 454.405504][T17950] should_fail_ex+0x21f/0x230 [ 454.415584][T17945] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 454.420237][T17950] __should_fail_alloc_page+0xfd/0x110 [ 454.436043][T17945] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 454.438940][T17950] __alloc_pages+0x108/0x340 [ 454.438975][T17950] alloc_pages_mpol+0xb1/0x1d0 [ 454.448809][T17945] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 454.451695][T17950] shmem_get_folio_gfp+0x3b2/0xb40 [ 454.457142][T17945] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 454.470600][T17950] shmem_write_begin+0xa0/0x1b0 [ 454.470635][T17950] generic_perform_write+0x1c9/0x410 [ 454.476115][T17945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 454.487861][T17950] ? shmem_write_begin+0x1b0/0x1b0 [ 454.499889][T17947] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 454.510498][T17950] shmem_file_write_iter+0xc8/0xe0 [ 454.515825][T17947] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 454.527333][T17950] vfs_write+0x760/0x8d0 [ 454.527379][T17950] ksys_write+0xeb/0x1a0 [ 454.527411][T17950] __x64_sys_write+0x42/0x50 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x500}]}}]}]}, 0x34}}, 0x0) [ 454.532518][T17947] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 454.533459][T17947] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 454.542620][T17950] do_syscall_64+0xcd/0x1d0 [ 454.542655][T17950] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 454.548862][T17947] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 454.552424][T17950] RIP: 0033:0x7fe39bbcaaef 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x600}]}}]}]}, 0x34}}, 0x0) [ 454.557673][T17947] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 454.570449][T17950] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 454.570481][T17950] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 [ 454.578679][T17947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 454.582932][T17950] ORIG_RAX: 0000000000000001 16:13:11 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 77) [ 454.582943][T17950] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 454.582961][T17950] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 454.582993][T17950] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 454.583005][T17950] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 454.603900][T17947] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 454.607424][T17950] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 454.607448][T17950] [ 454.645813][T12981] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 454.678857][T17962] FAULT_INJECTION: forcing a failure. [ 454.678857][T17962] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 454.679077][T17947] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 454.687063][T17962] CPU: 0 PID: 17962 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 454.695066][T17947] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 454.706456][T17962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 454.706502][T17962] Call Trace: [ 454.706511][T17962] [ 454.723345][T17947] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 454.726979][T17962] dump_stack_lvl+0xda/0x130 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x700}]}}]}]}, 0x34}}, 0x0) 16:13:11 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000004, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") [ 454.740052][T17947] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 454.750173][T17962] dump_stack+0x15/0x20 [ 454.750205][T17962] should_fail_ex+0x21f/0x230 [ 454.750237][T17962] should_fail+0xb/0x10 [ 454.760730][T17947] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 454.773888][T17962] should_fail_usercopy+0x1a/0x20 16:13:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x900}]}}]}]}, 0x34}}, 0x0) [ 454.789624][T17947] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 454.790156][T17962] copy_page_from_iter_atomic+0x237/0xd90 [ 454.839088][T17966] loop1: detected capacity change from 0 to 512 [ 454.842797][T17962] ? shmem_write_begin+0xa0/0x1b0 [ 454.864412][T17966] EXT4-fs: journaled quota format not specified [ 454.868113][T17962] ? shmem_write_begin+0x10c/0x1b0 [ 454.868147][T17962] generic_perform_write+0x20c/0x410 [ 454.902384][T17962] ? shmem_write_begin+0x1b0/0x1b0 [ 454.902417][T17962] shmem_file_write_iter+0xc8/0xe0 [ 454.902446][T17962] vfs_write+0x760/0x8d0 [ 454.902538][T17962] ksys_write+0xeb/0x1a0 [ 454.902602][T17962] __x64_sys_write+0x42/0x50 [ 454.902636][T17962] do_syscall_64+0xcd/0x1d0 [ 454.902664][T17962] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 454.902688][T17962] RIP: 0033:0x7fe39bbcaaef 16:13:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:12 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000005, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xa00}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xb00}]}}]}]}, 0x34}}, 0x0) [ 454.902723][T17962] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 454.902743][T17962] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 454.902821][T17962] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 454.902836][T17962] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 454.902849][T17962] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 454.902862][T17962] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xb8d}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xc00}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xd00}]}}]}]}, 0x34}}, 0x0) [ 454.902891][T17962] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 454.902946][T17962] [ 454.916995][T17962] loop4: detected capacity change from 0 to 512 [ 455.014734][T17974] loop1: detected capacity change from 0 to 512 [ 455.034126][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.043737][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.058418][T17974] EXT4-fs: journaled quota format not specified 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xe00}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xf00}]}}]}]}, 0x34}}, 0x0) [ 455.076975][T17962] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 455.088733][T17962] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 455.098899][T17962] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 455.113256][T17962] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x1100}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000006, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 455.121974][T17962] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 455.164565][T17962] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x1200}]}}]}]}, 0x34}}, 0x0) [ 455.175335][T17988] loop2: detected capacity change from 0 to 512 [ 455.191375][T17962] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 455.203602][T17992] loop3: detected capacity change from 0 to 512 [ 455.215889][T17988] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x2500}]}}]}]}, 0x34}}, 0x0) [ 455.230183][T17995] loop1: detected capacity change from 0 to 512 [ 455.238568][T17992] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 455.250255][T17992] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 455.252390][T17995] EXT4-fs: journaled quota format not specified [ 455.260348][T17992] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended 16:13:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 78) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4788}]}}]}]}, 0x34}}, 0x0) [ 455.285938][T17992] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 455.293771][T17988] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 455.301197][T17992] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 455.305439][T17988] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 455.331321][T17988] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 455.332255][T12980] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 455.347394][T17992] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 455.362359][T17988] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 16:13:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000007, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4800}]}}]}]}, 0x34}}, 0x0) [ 455.368641][T17992] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 455.392042][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.397936][T17988] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 455.427229][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:12 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4888}]}}]}]}, 0x34}}, 0x0) [ 455.430750][T17988] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 455.443021][T18005] loop1: detected capacity change from 0 to 512 [ 455.460586][T18005] EXT4-fs: journaled quota format not specified [ 455.465969][T17988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 455.488939][T17988] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 455.496322][T18011] FAULT_INJECTION: forcing a failure. [ 455.496322][T18011] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 455.500489][T17988] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 455.513693][T18011] CPU: 1 PID: 18011 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 455.523736][T17988] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 455.534093][T18011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 455.548928][T17988] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 455.557339][T18011] Call Trace: [ 455.557349][T18011] [ 455.557357][T18011] dump_stack_lvl+0xda/0x130 [ 455.568851][T17988] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4c00}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 455.572101][T18011] dump_stack+0x15/0x20 [ 455.575053][T17988] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 455.579621][T18011] should_fail_ex+0x21f/0x230 [ 455.590884][T17988] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 455.593812][T18011] __should_fail_alloc_page+0xfd/0x110 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x5865}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6000}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6558}]}}]}]}, 0x34}}, 0x0) [ 455.593846][T18011] __alloc_pages+0x108/0x340 [ 455.642328][T18011] alloc_pages_mpol+0xb1/0x1d0 [ 455.647189][T18011] shmem_get_folio_gfp+0x3b2/0xb40 [ 455.652395][T18011] shmem_write_begin+0xa0/0x1b0 [ 455.657315][T18011] generic_perform_write+0x1c9/0x410 [ 455.662642][T18011] ? shmem_write_begin+0x1b0/0x1b0 [ 455.667867][T18011] shmem_file_write_iter+0xc8/0xe0 [ 455.673012][T18011] vfs_write+0x760/0x8d0 [ 455.677298][T18011] ksys_write+0xeb/0x1a0 [ 455.681696][T18011] __x64_sys_write+0x42/0x50 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6800}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6c00}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x7400}]}}]}]}, 0x34}}, 0x0) [ 455.686330][T18011] do_syscall_64+0xcd/0x1d0 [ 455.690865][T18011] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 455.696882][T18011] RIP: 0033:0x7fe39bbcaaef [ 455.701322][T18011] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 455.721058][T18011] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 455.729500][T18011] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x7a00}]}}]}]}, 0x34}}, 0x0) 16:13:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000008, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 79) [ 455.737590][T18011] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 455.745767][T18011] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 455.753775][T18011] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 455.761766][T18011] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 455.769765][T18011] 16:13:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8100}]}}]}]}, 0x34}}, 0x0) [ 455.795509][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.827270][T18032] FAULT_INJECTION: forcing a failure. [ 455.827270][T18032] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 455.828889][T18030] loop3: detected capacity change from 0 to 512 [ 455.840472][T18032] CPU: 1 PID: 18032 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 455.840497][T18032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 455.850211][T18034] loop1: detected capacity change from 0 to 512 [ 455.857204][T18032] Call Trace: [ 455.857216][T18032] [ 455.857224][T18032] dump_stack_lvl+0xda/0x130 [ 455.857261][T18032] dump_stack+0x15/0x20 [ 455.871995][T18034] EXT4-fs: journaled quota format not specified [ 455.873976][T18032] should_fail_ex+0x21f/0x230 [ 455.891341][T18030] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 455.895262][T18032] should_fail+0xb/0x10 [ 455.895297][T18032] should_fail_usercopy+0x1a/0x20 [ 455.899971][T18030] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 455.911408][T18032] copy_page_from_iter_atomic+0x237/0xd90 [ 455.915630][T18030] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 455.920623][T18032] ? shmem_write_begin+0xa0/0x1b0 [ 455.931981][T18030] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 455.936366][T18032] ? shmem_write_begin+0x10c/0x1b0 [ 455.936400][T18032] generic_perform_write+0x20c/0x410 [ 455.950368][T18030] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 455.954675][T18032] ? shmem_write_begin+0x1b0/0x1b0 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8847}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8848}]}}]}]}, 0x34}}, 0x0) [ 455.963197][T18030] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 455.967762][T18032] shmem_file_write_iter+0xc8/0xe0 [ 455.967800][T18032] vfs_write+0x760/0x8d0 [ 455.973535][T18030] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 455.987319][T18032] ksys_write+0xeb/0x1a0 [ 456.031087][T18032] __x64_sys_write+0x42/0x50 [ 456.031176][T18032] do_syscall_64+0xcd/0x1d0 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8d0b}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") [ 456.031211][T18032] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 456.031245][T18032] RIP: 0033:0x7fe39bbcaaef [ 456.031264][T18032] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 456.031292][T18032] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 456.031394][T18032] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x34000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x400300}]}}]}]}, 0x34}}, 0x0) [ 456.031409][T18032] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 456.031426][T18032] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 456.031442][T18032] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 456.031457][T18032] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 456.031510][T18032] [ 456.033490][T18032] loop4: detected capacity change from 0 to 512 [ 456.081072][T18047] loop2: detected capacity change from 0 to 512 [ 456.091522][T12979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 456.143570][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 456.158780][T18047] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 456.172341][T18032] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 456.183961][T18032] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x1000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000009, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x2000000}]}}]}]}, 0x34}}, 0x0) [ 456.188257][T18047] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e018, mo2=0002] [ 456.194141][T18032] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 456.205717][T18047] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 456.226940][T18047] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x3000000}]}}]}]}, 0x34}}, 0x0) [ 456.237300][T18047] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 456.251754][T18032] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 456.255735][T18047] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 456.268138][T18047] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4000000}]}}]}]}, 0x34}}, 0x0) [ 456.286075][T18047] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 456.294280][T18032] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 456.304821][T18061] loop1: detected capacity change from 0 to 512 [ 456.315986][T18032] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 456.319061][T18047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x5000000}]}}]}]}, 0x34}}, 0x0) [ 456.345937][T18032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 456.363661][T18061] EXT4-fs: journaled quota format not specified [ 456.366494][T18047] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 456.381552][T18047] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 456.387924][T18063] loop3: detected capacity change from 0 to 512 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 80) [ 456.391683][T18047] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 456.414691][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 456.428059][T18047] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x7000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8000000}]}}]}]}, 0x34}}, 0x0) [ 456.429466][T18063] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 456.439618][T18047] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 456.451092][T18063] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 456.451116][T18063] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 456.461217][T18047] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:13:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200000a, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 456.498840][T18063] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 456.510082][T18063] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 456.525671][T18047] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x9000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 456.549224][T18077] loop1: detected capacity change from 0 to 512 [ 456.557528][T18063] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 456.562026][T18077] EXT4-fs: journaled quota format not specified [ 456.579774][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xa000000}]}}]}]}, 0x34}}, 0x0) [ 456.587760][T18063] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 456.615478][T18081] FAULT_INJECTION: forcing a failure. [ 456.615478][T18081] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 456.628773][T18081] CPU: 1 PID: 18081 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 456.639315][T18081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 16:13:13 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xb000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xc000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xd000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xe000000}]}}]}]}, 0x34}}, 0x0) [ 456.649575][T18081] Call Trace: [ 456.652864][T18081] [ 456.655960][T18081] dump_stack_lvl+0xda/0x130 [ 456.660752][T18081] dump_stack+0x15/0x20 [ 456.665034][T18081] should_fail_ex+0x21f/0x230 [ 456.669745][T18081] __should_fail_alloc_page+0xfd/0x110 [ 456.675280][T18081] __alloc_pages+0x108/0x340 [ 456.679930][T18081] alloc_pages_mpol+0xb1/0x1d0 [ 456.684734][T18081] shmem_get_folio_gfp+0x3b2/0xb40 [ 456.690144][T18081] shmem_write_begin+0xa0/0x1b0 [ 456.695107][T18081] generic_perform_write+0x1c9/0x410 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xf000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x10000000}]}}]}]}, 0x34}}, 0x0) [ 456.700454][T18081] ? shmem_write_begin+0x1b0/0x1b0 [ 456.705782][T18081] shmem_file_write_iter+0xc8/0xe0 [ 456.710917][T18081] vfs_write+0x760/0x8d0 [ 456.715368][T18081] ksys_write+0xeb/0x1a0 [ 456.719723][T18081] __x64_sys_write+0x42/0x50 [ 456.724430][T18081] do_syscall_64+0xcd/0x1d0 [ 456.728972][T18081] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 456.734970][T18081] RIP: 0033:0x7fe39bbcaaef 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x11000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x12000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x25000000}]}}]}]}, 0x34}}, 0x0) [ 456.739404][T18081] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 456.759592][T18081] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 456.768040][T18081] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 456.776118][T18081] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 456.784199][T18081] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 456.792200][T18081] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x48000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200000b, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:13 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 81) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x4c000000}]}}]}]}, 0x34}}, 0x0) [ 456.800290][T18081] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 456.808308][T18081] [ 456.818252][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 456.851621][T18105] loop1: detected capacity change from 0 to 512 [ 456.864340][T18105] EXT4-fs: journaled quota format not specified [ 456.873833][T18109] FAULT_INJECTION: forcing a failure. [ 456.873833][T18109] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 456.886961][T18109] CPU: 0 PID: 18109 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x60000000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x65580000}]}}]}]}, 0x34}}, 0x0) 16:13:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x68000000}]}}]}]}, 0x34}}, 0x0) [ 456.889037][T18111] __nla_validate_parse: 79 callbacks suppressed [ 456.889054][T18111] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 456.897377][T18109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 456.897394][T18109] Call Trace: [ 456.897402][T18109] [ 456.897411][T18109] dump_stack_lvl+0xda/0x130 [ 456.921739][T18113] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 456.923165][T18109] dump_stack+0x15/0x20 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x6c000000}]}}]}]}, 0x34}}, 0x0) 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x74000000}]}}]}]}, 0x34}}, 0x0) [ 456.942780][T18115] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 456.943264][T18109] should_fail_ex+0x21f/0x230 [ 456.961498][T18109] should_fail+0xb/0x10 [ 456.965698][T18109] should_fail_usercopy+0x1a/0x20 [ 456.967150][T18117] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 456.970743][T18109] copy_page_from_iter_atomic+0x237/0xd90 [ 456.985774][T18109] ? shmem_write_begin+0xa0/0x1b0 [ 456.990832][T18109] ? shmem_write_begin+0x10c/0x1b0 [ 456.996073][T18109] generic_perform_write+0x20c/0x410 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x7a000000}]}}]}]}, 0x34}}, 0x0) 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x81000000}]}}]}]}, 0x34}}, 0x0) [ 456.998666][T18119] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 457.001408][T18109] ? shmem_write_begin+0x1b0/0x1b0 [ 457.001440][T18109] shmem_file_write_iter+0xc8/0xe0 [ 457.021107][T18109] vfs_write+0x760/0x8d0 [ 457.025391][T18109] ksys_write+0xeb/0x1a0 [ 457.026359][T18121] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 457.029660][T18109] __x64_sys_write+0x42/0x50 [ 457.043484][T18109] do_syscall_64+0xcd/0x1d0 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x88470000}]}}]}]}, 0x34}}, 0x0) [ 457.048442][T18109] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 457.054363][T18109] RIP: 0033:0x7fe39bbcaaef [ 457.058347][T18123] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 457.058777][T18109] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 457.084765][T18125] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x88480000}]}}]}]}, 0x34}}, 0x0) 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x88a8ffff}]}}]}]}, 0x34}}, 0x0) [ 457.087821][T18109] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 457.105574][T18109] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 457.113576][T18109] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 457.115586][T18127] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 457.121650][T18109] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 457.121669][T18109] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0x8d0b0000}]}}]}]}, 0x34}}, 0x0) 16:13:14 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200000c, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xeaffffff}]}}]}]}, 0x34}}, 0x0) [ 457.121685][T18109] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 457.151997][T18129] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 457.154848][T18109] [ 457.164853][T18109] loop4: detected capacity change from 0 to 512 [ 457.184392][T18131] loop2: detected capacity change from 0 to 512 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xf0ffffff}]}}]}]}, 0x34}}, 0x0) [ 457.209188][T18109] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 457.220811][T18109] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 457.231024][T18109] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 457.245493][T18109] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 457.245611][T18109] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 457.245685][T18131] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 457.254857][T18131] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xfeffffff}]}}]}]}, 0x34}}, 0x0) 16:13:14 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 82) [ 457.254894][T18131] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 457.254942][T18131] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 457.254993][T18131] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 457.255589][T18131] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 457.255742][T18137] loop1: detected capacity change from 0 to 512 [ 457.256652][T18109] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 457.257006][T18109] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 457.257872][T18131] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 457.259072][T18131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. 16:13:14 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xffffa888}]}}]}]}, 0x34}}, 0x0) [ 457.260207][T18131] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 457.260237][T18131] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 457.260301][T18131] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 457.260427][T18131] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 457.276902][T18137] EXT4-fs: journaled quota format not specified [ 457.282806][T18131] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 457.303645][T18140] loop3: detected capacity change from 0 to 512 [ 457.304144][T18131] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 457.354162][T18140] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 457.361176][T18131] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 457.370235][T18140] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 457.370299][T18140] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 457.545478][T18140] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 457.546785][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.553722][T18140] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 457.565513][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.583881][T18140] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:13:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xffffff7f}]}}]}]}, 0x34}}, 0x0) 16:13:14 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200000d, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:14 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 457.600012][T18140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 457.629181][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.647364][ T3094] ================================================================== [ 457.655507][ T3094] BUG: KCSAN: data-race in fsnotify / fsnotify_detach_connector_from_object [ 457.664228][ T3094] [ 457.666594][ T3094] write to 0xffff8881011da034 of 4 bytes by task 12979 on cpu 1: [ 457.666786][T18155] loop1: detected capacity change from 0 to 512 [ 457.674315][ T3094] fsnotify_detach_connector_from_object+0xcc/0x280 [ 457.674350][ T3094] fsnotify_put_mark+0x192/0x3b0 [ 457.674372][ T3094] __se_sys_inotify_rm_watch+0x105/0x180 [ 457.697758][ T3094] __x64_sys_inotify_rm_watch+0x31/0x40 [ 457.703418][ T3094] do_syscall_64+0xcd/0x1d0 [ 457.707939][ T3094] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 457.713934][ T3094] [ 457.716260][ T3094] read to 0xffff8881011da034 of 4 bytes by task 3094 on cpu 0: [ 457.723806][ T3094] fsnotify+0x2b9/0x1150 [ 457.728067][ T3094] __fsnotify_parent+0x307/0x480 [ 457.733102][ T3094] __fput+0x1da/0x630 [ 457.737093][ T3094] __fput_sync+0x44/0x50 [ 457.741343][ T3094] __se_sys_close+0xfa/0x1a0 [ 457.745950][ T3094] __x64_sys_close+0x1f/0x30 [ 457.750558][ T3094] do_syscall_64+0xcd/0x1d0 [ 457.755076][ T3094] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 457.760987][ T3094] [ 457.763309][ T3094] value changed: 0x00002008 -> 0x00000000 [ 457.769065][ T3094] [ 457.771395][ T3094] Reported by Kernel Concurrency Sanitizer on: [ 457.777543][ T3094] CPU: 0 PID: 3094 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 457.787876][ T3094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 457.797945][ T3094] ================================================================== [ 457.822366][T18154] FAULT_INJECTION: forcing a failure. [ 457.822366][T18154] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 457.825456][T18155] EXT4-fs: journaled quota format not specified [ 457.835636][T18154] CPU: 0 PID: 18154 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 457.852379][T18154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 457.862447][T18154] Call Trace: [ 457.865730][T18154] [ 457.868672][T18154] dump_stack_lvl+0xda/0x130 [ 457.873313][T18154] dump_stack+0x15/0x20 [ 457.877544][T18154] should_fail_ex+0x21f/0x230 [ 457.882316][T18154] __should_fail_alloc_page+0xfd/0x110 [ 457.887818][T18154] __alloc_pages+0x108/0x340 [ 457.892430][T18154] alloc_pages_mpol+0xb1/0x1d0 [ 457.897207][T18154] shmem_get_folio_gfp+0x3b2/0xb40 [ 457.902363][T18154] shmem_write_begin+0xa0/0x1b0 [ 457.907363][T18154] generic_perform_write+0x1c9/0x410 [ 457.912680][T18154] ? shmem_write_begin+0x1b0/0x1b0 [ 457.917850][T18154] shmem_file_write_iter+0xc8/0xe0 [ 457.923579][T18154] vfs_write+0x760/0x8d0 [ 457.927851][T18154] ksys_write+0xeb/0x1a0 [ 457.932118][T18154] __x64_sys_write+0x42/0x50 [ 457.936887][T18154] do_syscall_64+0xcd/0x1d0 [ 457.941413][T18154] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 457.947329][T18154] RIP: 0033:0x7fe39bbcaaef [ 457.951750][T18154] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 457.971597][T18154] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 457.980244][T18154] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 457.988233][T18154] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 457.996285][T18154] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 458.004361][T18154] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 458.012355][T18154] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 458.020380][T18154] 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xffffffea}]}}]}]}, 0x34}}, 0x0) 16:13:15 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 83) 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xfffffff0}]}}]}]}, 0x34}}, 0x0) [ 458.023592][T18157] loop2: detected capacity change from 0 to 512 [ 458.035283][T18157] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 458.062437][T18157] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e01c, mo2=0002] [ 458.070779][T18165] FAULT_INJECTION: forcing a failure. [ 458.070779][T18165] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 458.083958][T18165] CPU: 1 PID: 18165 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 458.089202][T18157] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.094419][T18165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 458.105935][T18157] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 458.115914][T18165] Call Trace: [ 458.115926][T18165] [ 458.115935][T18165] dump_stack_lvl+0xda/0x130 [ 458.126024][T18157] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 458.129292][T18165] dump_stack+0x15/0x20 [ 458.135558][T18157] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 458.136791][T18165] should_fail_ex+0x21f/0x230 [ 458.152575][T18157] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 458.154163][T18165] should_fail+0xb/0x10 [ 458.162621][T18157] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 458.166818][T18165] should_fail_usercopy+0x1a/0x20 [ 458.166853][T18165] copy_page_from_iter_atomic+0x237/0xd90 [ 458.166889][T18165] ? shmem_write_begin+0xa0/0x1b0 [ 458.183431][T18157] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.185150][T18165] ? shmem_write_begin+0x10c/0x1b0 [ 458.202621][T18157] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.208024][T18165] generic_perform_write+0x20c/0x410 [ 458.213081][T18157] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 458.225475][T18165] ? shmem_write_begin+0x1b0/0x1b0 [ 458.230655][T18157] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 458.242090][T18165] shmem_file_write_iter+0xc8/0xe0 [ 458.272838][T18157] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.275877][T18165] vfs_write+0x760/0x8d0 [ 458.281020][T18157] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 458.292542][T18165] ksys_write+0xeb/0x1a0 [ 458.296817][T18157] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3, 0x0, 0x0, 0x0, 0xfffffffe}]}}]}]}, 0x34}}, 0x0) 16:13:15 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6Hi3Wt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//+mP+QK") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200000e, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0xa}}, 0x0) [ 458.306845][T18165] __x64_sys_write+0x42/0x50 [ 458.313758][T18157] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 458.324268][T18165] do_syscall_64+0xcd/0x1d0 [ 458.324300][T18165] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 458.324336][T18165] RIP: 0033:0x7fe39bbcaaef 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0xf}}, 0x0) [ 458.365226][T18165] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 458.384867][T18165] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 458.393485][T18165] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 458.393989][T18170] loop1: detected capacity change from 0 to 512 [ 458.401467][T18165] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 458.401487][T18165] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 458.401502][T18165] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 458.432047][T18165] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 458.440094][T18165] [ 458.447648][T18170] EXT4-fs: journaled quota format not specified [ 458.449777][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x10}}, 0x0) [ 458.473221][T18175] loop3: detected capacity change from 0 to 512 [ 458.483276][T18165] loop4: detected capacity change from 0 to 512 [ 458.486309][T18175] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.501197][T18175] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 458.511534][T18175] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 458.518480][T18165] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.526659][T18175] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 458.536261][T18165] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 458.544749][T18175] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:13:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200000f, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x25}}, 0x0) [ 458.554750][T18165] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 458.570362][T18175] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 458.584032][T18165] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x30}}, 0x0) 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x31}}, 0x0) 16:13:15 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 458.623923][T18182] loop1: detected capacity change from 0 to 512 [ 458.628003][T18165] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 458.639141][T18182] EXT4-fs: journaled quota format not specified [ 458.651196][T18175] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.659348][T18185] loop2: detected capacity change from 0 to 512 [ 458.693558][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.696217][T18185] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 458.715102][T18165] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 458.716884][T12979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x32}}, 0x0) 16:13:15 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 84) [ 458.728754][T18185] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.748510][T18185] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 458.758785][T18185] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 458.772690][T18165] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.774641][T18185] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x33}}, 0x0) 16:13:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000011, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x35}}, 0x0) [ 458.801462][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.810772][T18185] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 458.832106][T18185] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 458.835695][T18195] loop1: detected capacity change from 0 to 512 [ 458.852162][T18195] EXT4-fs: journaled quota format not specified [ 458.873923][T18185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.877910][T18199] loop3: detected capacity change from 0 to 512 [ 458.889527][T18185] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.904294][T18185] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 458.906608][T18201] FAULT_INJECTION: forcing a failure. [ 458.906608][T18201] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 458.914417][T18185] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 458.927611][T18201] CPU: 0 PID: 18201 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 458.946499][T18185] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 458.951221][T18201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 458.951238][T18201] Call Trace: [ 458.951247][T18201] [ 458.962696][T18185] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 458.972723][T18201] dump_stack_lvl+0xda/0x130 [ 458.976052][T18185] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 458.978935][T18201] dump_stack+0x15/0x20 [ 458.989616][T18185] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 458.993572][T18201] should_fail_ex+0x21f/0x230 [ 459.036187][T18201] __should_fail_alloc_page+0xfd/0x110 [ 459.041741][T18201] __alloc_pages+0x108/0x340 [ 459.046463][T18201] alloc_pages_mpol+0xb1/0x1d0 [ 459.051291][T18201] shmem_get_folio_gfp+0x3b2/0xb40 [ 459.056431][T18201] shmem_write_begin+0xa0/0x1b0 [ 459.061298][T18201] generic_perform_write+0x1c9/0x410 [ 459.066675][T18201] ? shmem_write_begin+0x1b0/0x1b0 [ 459.071797][T18201] shmem_file_write_iter+0xc8/0xe0 [ 459.077098][T18201] vfs_write+0x760/0x8d0 [ 459.081366][T18201] ksys_write+0xeb/0x1a0 [ 459.085678][T18201] __x64_sys_write+0x42/0x50 [ 459.090354][T18201] do_syscall_64+0xcd/0x1d0 [ 459.094918][T18201] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 459.100868][T18201] RIP: 0033:0x7fe39bbcaaef [ 459.105317][T18201] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 459.125017][T18201] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 459.133469][T18201] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 459.141463][T18201] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x36}}, 0x0) [ 459.149495][T18201] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 459.157470][T18201] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 459.165443][T18201] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 459.173464][T18201] [ 459.188742][T18199] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 459.200469][T18199] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 459.210661][T18199] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 459.224826][T18199] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 459.233018][T18199] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x37}}, 0x0) 16:13:16 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 85) 16:13:16 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) 16:13:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000029, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 459.233671][T12981] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 459.260189][T18199] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x63}}, 0x0) [ 459.296255][T18210] FAULT_INJECTION: forcing a failure. [ 459.296255][T18210] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 459.298349][T18199] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 459.309355][T18210] CPU: 1 PID: 18210 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 459.330518][T18211] loop1: detected capacity change from 0 to 512 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x140}}, 0x0) 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0xec0}}, 0x0) [ 459.332232][T18210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 459.348575][T18210] Call Trace: [ 459.349126][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.351875][T18210] [ 459.351886][T18210] dump_stack_lvl+0xda/0x130 [ 459.368394][T18210] dump_stack+0x15/0x20 [ 459.372587][T18210] should_fail_ex+0x21f/0x230 [ 459.377306][T18210] should_fail+0xb/0x10 [ 459.381617][T18210] should_fail_usercopy+0x1a/0x20 [ 459.386683][T18210] copy_page_from_iter_atomic+0x237/0xd90 [ 459.392509][T18210] ? shmem_write_begin+0xa0/0x1b0 [ 459.397559][T18210] ? shmem_write_begin+0x10c/0x1b0 [ 459.402695][T18210] generic_perform_write+0x20c/0x410 [ 459.408077][T18210] ? shmem_write_begin+0x1b0/0x1b0 [ 459.413201][T18210] shmem_file_write_iter+0xc8/0xe0 [ 459.418330][T18210] vfs_write+0x760/0x8d0 [ 459.422615][T18210] ksys_write+0xeb/0x1a0 [ 459.426881][T18210] __x64_sys_write+0x42/0x50 [ 459.431563][T18210] do_syscall_64+0xcd/0x1d0 [ 459.436084][T18210] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 459.441984][T18210] RIP: 0033:0x7fe39bbcaaef [ 459.446455][T18210] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 459.466072][T18210] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 459.474609][T18210] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 459.482787][T18210] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 16:13:16 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x33fe0}}, 0x0) [ 459.490941][T18210] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 459.498997][T18210] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 459.506974][T18210] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 459.514999][T18210] [ 459.526162][T18210] loop4: detected capacity change from 0 to 512 [ 459.537342][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x220000fe, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0xfffffdef}}, 0x0) [ 459.557801][T12980] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 459.560519][T18210] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 459.578818][T18210] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 459.588936][T18210] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 459.610936][T18222] loop1: detected capacity change from 0 to 512 [ 459.626447][T18210] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 459.637871][T18225] loop2: detected capacity change from 0 to 512 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x2}, 0x0) 16:13:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000410, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 459.647873][T18210] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value [ 459.650505][T12979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 459.678597][T18228] loop3: detected capacity change from 0 to 512 [ 459.685077][T18210] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 459.686210][T18225] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 459.707591][T18210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 459.716683][T18231] loop1: detected capacity change from 0 to 512 [ 459.729796][T18228] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 459.741355][T18228] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x3}, 0x0) 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0xa}, 0x0) [ 459.751626][T18228] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 459.774601][T18228] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 459.774623][T18225] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e018, mo2=0002] [ 459.775229][T18225] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x10}, 0x0) [ 459.782785][T18228] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 459.790655][T18225] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 459.790679][T18225] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 459.806576][T18231] EXT4-fs: journaled quota format not specified [ 459.823907][T18228] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x25}, 0x0) 16:13:16 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 86) [ 459.828369][T18225] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 459.840353][T18228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 459.851149][T18225] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 459.893494][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:16 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x64}, 0x0) 16:13:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x7ffffff2}, 0x0) [ 459.901737][T18225] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 459.916825][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.922099][T18225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 459.943151][T18225] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x7ffffff8}, 0x0) 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x7ffffff9}, 0x0) [ 459.954732][T18225] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 459.964996][T18225] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 459.988303][T18251] FAULT_INJECTION: forcing a failure. [ 459.988303][T18251] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 460.000424][T18225] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.002208][T18251] CPU: 1 PID: 18251 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 460.013682][T18225] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 460.024089][T18251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 460.024107][T18251] Call Trace: [ 460.024116][T18251] [ 460.024124][T18251] dump_stack_lvl+0xda/0x130 16:13:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000500, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x2}, 0x0) [ 460.034271][T18225] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 460.044226][T18251] dump_stack+0x15/0x20 [ 460.044261][T18251] should_fail_ex+0x21f/0x230 [ 460.055342][T18225] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 460.055576][T18251] __should_fail_alloc_page+0xfd/0x110 [ 460.104044][T18251] __alloc_pages+0x108/0x340 [ 460.108718][T18251] alloc_pages_mpol+0xb1/0x1d0 [ 460.113554][T18251] shmem_get_folio_gfp+0x3b2/0xb40 [ 460.113858][T18256] loop1: detected capacity change from 0 to 512 [ 460.118688][T18251] shmem_write_begin+0xa0/0x1b0 [ 460.129851][T18251] generic_perform_write+0x1c9/0x410 [ 460.135180][T18251] ? shmem_write_begin+0x1b0/0x1b0 [ 460.140309][T18251] shmem_file_write_iter+0xc8/0xe0 [ 460.145442][T18251] vfs_write+0x760/0x8d0 [ 460.149722][T18251] ksys_write+0xeb/0x1a0 [ 460.153991][T18251] __x64_sys_write+0x42/0x50 [ 460.158651][T18251] do_syscall_64+0xcd/0x1d0 [ 460.163189][T18251] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 460.169109][T18251] RIP: 0033:0x7fe39bbcaaef [ 460.173529][T18251] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 460.193172][T18251] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 460.201616][T18251] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef 16:13:17 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 460.209594][T18251] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 460.217612][T18251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 460.225590][T18251] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 460.233598][T18251] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 460.241624][T18251] 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x3}, 0x0) 16:13:17 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") (fail_nth: 87) [ 460.261037][T18258] loop3: detected capacity change from 0 to 512 [ 460.268130][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.277854][T18256] EXT4-fs: journaled quota format not specified [ 460.298849][T18258] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.310455][T18258] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 460.316891][T18263] FAULT_INJECTION: forcing a failure. [ 460.316891][T18263] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 460.320597][T18258] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 460.333664][T18263] CPU: 1 PID: 18263 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x4}, 0x0) [ 460.351783][T18258] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 460.357234][T18263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 460.357251][T18263] Call Trace: [ 460.368211][T18258] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 460.375281][T18263] [ 460.375292][T18263] dump_stack_lvl+0xda/0x130 [ 460.379323][T18258] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x5}, 0x0) [ 460.392710][T18263] dump_stack+0x15/0x20 [ 460.398187][T18258] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 460.400261][T18263] should_fail_ex+0x21f/0x230 [ 460.433868][T18263] should_fail+0xb/0x10 [ 460.433903][T18263] should_fail_usercopy+0x1a/0x20 [ 460.434017][T18263] copy_page_from_iter_atomic+0x237/0xd90 [ 460.434114][T18263] ? shmem_write_begin+0xa0/0x1b0 [ 460.434139][T18263] ? shmem_write_begin+0x10c/0x1b0 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x6}, 0x0) 16:13:17 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r4, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r3, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000900, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") [ 460.434167][T18263] generic_perform_write+0x20c/0x410 [ 460.434198][T18263] ? shmem_write_begin+0x1b0/0x1b0 [ 460.434221][T18263] shmem_file_write_iter+0xc8/0xe0 [ 460.434292][T18263] vfs_write+0x760/0x8d0 [ 460.434338][T18263] ksys_write+0xeb/0x1a0 [ 460.434372][T18263] __x64_sys_write+0x42/0x50 [ 460.434452][T18263] do_syscall_64+0xcd/0x1d0 [ 460.434483][T18263] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 460.434510][T18263] RIP: 0033:0x7fe39bbcaaef [ 460.434527][T18263] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 460.434548][T18263] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 460.434612][T18263] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 460.434649][T18263] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 460.434666][T18263] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x7}, 0x0) 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x8}, 0x0) 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x9}, 0x0) 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0xa}, 0x0) 16:13:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000b00, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 460.434682][T18263] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 460.434698][T18263] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 460.434718][T18263] [ 460.438081][T18263] loop4: detected capacity change from 0 to 512 [ 460.492068][T18270] loop1: detected capacity change from 0 to 512 [ 460.512037][T18272] loop2: detected capacity change from 0 to 512 [ 460.585326][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.608719][T18270] EXT4-fs: journaled quota format not specified 16:13:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200ff03, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$eJzs3M9vFFUcAPDvzLZFfrYi/uCHsorGRrSlBZWDF40mXExM9KDHWipBChhaEyFE0Bg8Gv8C9WjiX+BJL0Y9abzq3ZgQwwX0YNbM7Axs221td7tscT6fZLfvzY997ztvXvfNvN0NoLLq2VMSsS0ifo2I4WZ24Qb15p8b1y5O/3Xt4nQSjcarfyb5dtevXZwuNy3321pkRtOI9KMk9rYpd+78hVNTs7Mz54r8+Pzpd8bnzl946uTpqRMzJ2bOTB49euTwxLPPTD69LnFmcV3f8/7ZfbuPvfHpy9ONePOHr7L6bivWt8bRNNJ1mfWoR6PRaKQLlg7lz491/eoby/aWdDLQx4qwJrWIyJprMO//w1GLW403HC992NfKAT2VvT9tWrK0VvwdyNcD/1eJPg4VVb7jZ9e/5eN2jj/67erz2fNMHv+N4tFcMxDZdXsy0rxir/Wo/G0R8frlvz/LHtH2PgQAwPr6Jhv/PNlu/JfGfS3b7SjmUEYi4mBE7IyIeyJiV0TcG5Fve39EPLDG8uuL8kvHPz9v7iiwVcrGf88Vc1sLx383Z21GakVuex7/YPLWydmZQ8UxGY3BTVl+YoUyvn3xl0+WW1dvGf9lj6z8cixY1OOPgUU36I5PzU91E3Orqx9E7BloF39ycyYgiYjdEbGng9fPjtnJJ77cl6V3bF26/r/jX8E6zDM1voh4vNn+l2NR/KWkWdJy85Pjd8XszKHx8qxY6sefrrzSmh9sSXcV/zrI2n9L2/O/iL/sBuV87dzay7jy28fLXtN0ev4PJa/l6aFi2XtT8/PnJiKGigULlk/e2rfMl9tn8Y8eaN//d0b883mx396IyE7iByPioYjYX9T94Yh4JCIOrBD/9y88+vbKR6i/7X98pfaPGEla5+s7SNROfff1cuWvrv2P5KnRYslq/v+ttoLdHDsAAAC4U6T5HHSSjt1Mp+nYWPMz/LtiSzp7dm7+YD3ePXO8OVc9EoNpeadruOV+6ERxb7jMTy7KH46Iu/NPGm3O82PTZ2e39zt4qLity/T/zO+9+tALsHGsaR4t6V09gNvP9zWhuvR/qC79H6pL/4fqatf/L0Xc6ENVgNvM+z9Ul/4P1aX/Q3Xp/1BJS78SX/7cSiff9L+V2Hmsq90rlKj16JWj9Uc7epCItO+HrvNEuhGqsb9IbIqI1e51qadtuvj8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuPP9GwAA//93/uPe") [ 460.625428][T18263] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.637002][T18263] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 460.639416][T18272] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 460.647118][T18263] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0xb}, 0x0) [ 460.669406][T18272] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.681763][T18272] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 460.692113][T18272] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 460.707151][T18272] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0xc}, 0x0) 16:13:17 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x2200fffe, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0xd}, 0x0) [ 460.720745][T18272] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 460.734194][T18289] loop1: detected capacity change from 0 to 512 [ 460.735247][T18263] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 460.757746][T18272] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0xe}, 0x0) [ 460.788953][T18272] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 460.791383][T18293] loop3: detected capacity change from 0 to 512 [ 460.819478][T18263] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.4: corrupted in-inode xattr: overlapping e_value 16:13:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0xf}, 0x0) [ 460.833113][T18272] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.845298][T18272] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 460.846694][T18299] loop1: detected capacity change from 0 to 512 [ 460.855419][T18272] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 460.870127][T18293] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.886590][T18293] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 460.886595][T18272] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 460.896673][T18293] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 460.908187][T18272] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x10}, 0x0) [ 460.931590][T18272] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 460.932056][T18293] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 460.945397][T18263] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 460.960829][T18293] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value 16:13:18 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 460.967872][T18272] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 460.986373][T18293] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 460.999945][T18263] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.025577][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 88) 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x11}, 0x0) 16:13:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity, 0x1e}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:18 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) socket$inet6(0xa, 0x1, 0x8010000000000084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0x2, 0x0}, 0x0, 0x0, 0x1, 0x3}, 0x20) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000004ac0)) getpgid(0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x34, r3, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}}, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4) dup2(r2, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x12}, 0x0) [ 461.040996][T12980] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 461.051541][ T3088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.063500][T18293] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.081903][T18307] loop1: detected capacity change from 0 to 512 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x25}, 0x0) [ 461.104994][T18310] loop2: detected capacity change from 0 to 512 [ 461.106969][T18307] ext4: Unknown parameter 'noblock_validitynouid32' [ 461.118445][T18310] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 461.132464][T13082] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.136831][T18310] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8006e01c, mo2=0002] 16:13:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity, 0x22}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") [ 461.150898][T18310] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 461.162417][T18310] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 461.172537][T18310] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 461.188955][T18310] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 461.206476][T18315] FAULT_INJECTION: forcing a failure. [ 461.206476][T18315] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 461.219879][T18315] CPU: 1 PID: 18315 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 461.226809][T18318] loop1: detected capacity change from 0 to 512 [ 461.230312][T18315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 461.230330][T18315] Call Trace: [ 461.236625][T18310] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 461.246601][T18315] [ 461.246612][T18315] dump_stack_lvl+0xda/0x130 [ 461.246650][T18315] dump_stack+0x15/0x20 [ 461.246674][T18315] should_fail_ex+0x21f/0x230 [ 461.246701][T18315] __should_fail_alloc_page+0xfd/0x110 [ 461.256820][T18318] ext4: Unknown parameter 'noblock_validity"nouid32' [ 461.264183][T18315] __alloc_pages+0x108/0x340 [ 461.297345][T18315] alloc_pages_mpol+0xb1/0x1d0 [ 461.302133][T18315] shmem_get_folio_gfp+0x3b2/0xb40 [ 461.307362][T18315] shmem_write_begin+0xa0/0x1b0 [ 461.312231][T18315] generic_perform_write+0x1c9/0x410 [ 461.317544][T18315] ? shmem_write_begin+0x1b0/0x1b0 [ 461.322739][T18315] shmem_file_write_iter+0xc8/0xe0 [ 461.327957][T18315] vfs_write+0x760/0x8d0 [ 461.332399][T18315] ksys_write+0xeb/0x1a0 [ 461.336753][T18315] __x64_sys_write+0x42/0x50 [ 461.341366][T18315] do_syscall_64+0xcd/0x1d0 [ 461.345900][T18315] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 461.351806][T18315] RIP: 0033:0x7fe39bbcaaef [ 461.356233][T18315] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 461.375960][T18315] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 461.384433][T18315] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 461.392427][T18315] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x48}, 0x0) 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x4c}, 0x0) [ 461.400441][T18315] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 461.408466][T18315] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 461.416566][T18315] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 461.424551][T18315] [ 461.431549][T18310] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) 16:13:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f626c6f636b5f76616c69646974792c6e6f75696433322c6e6f75696433322c6175746f5f64615f616c6c6f632c6a71666d743d76667376302c6772706a71756f74613d2e08c791e82b86671ea4e47d3fce69806a110158ab9cee44784ed16ef6a0ab875ac0481cfc0f48f2270fb8041906eedab28c271419113c8d4df9df9d84a189315130e3598db7ffa4db3547663ebc97b92a55420070e2f0c4058e8bb3237edcc6a35275b693"], 0x84, 0x46e, &(0x7f00000004c0)="$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") (fail_nth: 89) 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x60}, 0x0) [ 461.447311][T18310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.469980][T18310] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 461.481587][T18310] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 461.491767][T18310] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 461.497211][T18327] FAULT_INJECTION: forcing a failure. [ 461.497211][T18327] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 461.507257][T18310] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 461.518047][T18327] CPU: 0 PID: 18327 Comm: syz-executor.4 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 [ 461.529515][T18310] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 461.539888][T18327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 461.549965][T18310] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 461.559992][T18327] Call Trace: [ 461.560002][T18327] [ 461.560011][T18327] dump_stack_lvl+0xda/0x130 [ 461.560044][T18327] dump_stack+0x15/0x20 [ 461.588303][T18310] EXT4-fs error (device loop2): ext4_find_dest_de:2112: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 461.608683][T18327] should_fail_ex+0x21f/0x230 [ 461.613433][T18327] should_fail+0xb/0x10 [ 461.617627][T18327] should_fail_usercopy+0x1a/0x20 [ 461.622697][T18327] copy_page_from_iter_atomic+0x237/0xd90 [ 461.623700][T18325] loop3: detected capacity change from 0 to 512 [ 461.628431][T18327] ? shmem_write_begin+0xa0/0x1b0 [ 461.639728][T18327] ? shmem_write_begin+0x10c/0x1b0 [ 461.644965][T18327] generic_perform_write+0x20c/0x410 [ 461.650323][T18327] ? shmem_write_begin+0x1b0/0x1b0 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x68}, 0x0) 16:13:18 executing program 1: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity, 0x2b}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@grpid}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") 16:13:18 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22000010, &(0x7f0000000180)={[{@noblock_validity}, {@nouid32}, {@nouid32}, {@auto_da_alloc}, {@jqfmt_vfsv0}, {@grpjquota, 0x2e}], [], 0x8}, 0x84, 0x46e, &(0x7f00000004c0)="$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") creat(&(0x7f0000000000)='./file0\x00', 0x8) [ 461.655488][T18327] shmem_file_write_iter+0xc8/0xe0 [ 461.656738][T18334] loop1: detected capacity change from 0 to 512 [ 461.660662][T18327] vfs_write+0x760/0x8d0 [ 461.671224][T18327] ksys_write+0xeb/0x1a0 [ 461.675521][T18327] __x64_sys_write+0x42/0x50 [ 461.680159][T18327] do_syscall_64+0xcd/0x1d0 [ 461.684768][T18327] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 461.690831][T18327] RIP: 0033:0x7fe39bbcaaef [ 461.695256][T18327] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 461.714873][T18327] RSP: 002b:00007fe39af4ce80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 461.723314][T18327] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe39bbcaaef [ 461.731332][T18327] RDX: 0000000000040000 RSI: 00007fe392b2d000 RDI: 0000000000000004 [ 461.739310][T18327] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000468 [ 461.747286][T18327] R10: 00000000000003ba R11: 0000000000000293 R12: 0000000000000004 [ 461.755297][T18327] R13: 00007fe39af4cf80 R14: 00007fe39af4cf40 R15: 00007fe392b2d000 [ 461.763280][T18327] [ 461.768126][T18327] loop4: detected capacity change from 0 to 512 [ 461.770344][T18334] ext4: Unknown parameter 'noblock_validity+nouid32' [ 461.783427][T18325] EXT4-fs warning (device loop3): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 461.788497][ T3094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x6c}, 0x0) [ 461.794984][T18325] EXT4-fs warning (device loop3): dx_probe:880: Enable large directory feature to access it [ 461.814057][T18325] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 461.827538][T18325] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 461.828661][T18327] EXT4-fs warning (device loop4): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value 16:13:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@bridge_setlink={0x34, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x4, 0x0, 0x1, [{0x3}]}}]}]}, 0x34}, 0x1, 0x74}, 0x0) [ 461.842886][T18325] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2263: inode #15: comm syz-executor.3: corrupted in-inode xattr: overlapping e_value [ 461.847113][T18327] EXT4-fs warning (device loop4): dx_probe:880: Enable large directory feature to access it [ 461.847136][T18327] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended [ 461.848345][T18327] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 461.866022][T18325] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err