last executing test programs: 3.012119664s ago: executing program 0 (id=1517): bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x482, &(0x7f0000000800)=ANY=[@ANYRESOCT], 0x1, 0x258, &(0x7f0000001140)="$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") socket$inet6(0xa, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$eJzs3c9rI2UYwPEnaTa/lm1yEEVB+qAXvQxt9KwG2QUx4NLdiLuCMLudaMiYlJlQiYitJ6/izX9AcNljbwX1H+jFW7148dZLQdAi4shMZtr8mCRNmpLWfj9Q8kze95mZNzOE5w3M28MPvvm0UXONmtmWZFYlISJyLFKUpEQS4WsyiNPSa0devfnHwYv3Hjx8t1yp3F5XvVO+/1pJVZdXfvzsi1zYbS8j+8WPDo9Kv+8/u//84b/3P6m7Wne12WqrqY9av7XNR7alG3W3YajetS3TtbTedC2n297qttfs1uZmR83mxq38pmO5rprNjjasjrZb2nY6an5s1ptqGIbeysv1kh3Y9hKTc6pP1tfN8owHfDxjHubtb8/zxjQ7TtlcEjFyQy3VJxd6XgAA4FIaqP+/i2qEoiRPCspE31xguP6P4qD+96vO0/r/6Us/t2++v7sc1v976bj6//Vfu/l99b9/9LnX/z8MbA9XRFfe9jSdz1X/43JYSQ+91T/18+v/fDh/D3z14dPVIKD+BwAAAAAAAAAAAAAAAAAAAADgKjj2vILneYXoNfo7fYQg3I62xj1ojCtn1PXPhCsKnNwP+F+69+ChZIMH91LLIvbXW9Wtavc1bI86rkpB/gnuh1B3wYmdoFF9RfnJ3g7zt7eqS0FLWUTFFkvWpCDFvvwgvvNO5faadvXnJ1J5P78m9SC/JAV5Jj6/FJufllde7sk3pCC/PJaW2LIRfo9F+V+uqb79XmUgPxf0i/PmxV8WAAAAAADmylDNhtPn2Pm7YajGtftzeemdnw//PnAyv16NnZ+nCi+kFjt2AAAAAACuCzf9ecO0bctxOyODnEzqkwn3Nn4/8UFqms5+cBAEN8b1WeoZ4Vn3nA7/g8YUJy/TjdS07T8zEvthRku49jVlz/GpmnY0/jN0zk57CRw3Of3YLcdd8c9HZxpOTxD9bDSqj9yddc+jgmjl3Emdn/v2+79mO0QiXLW3t+mN3eyEkQZBYuCdnQk37ZHnTTyfGxf5nQMAAABgMaKiP+dG77y12BMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAamusyaSOCRY8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuCz+CwAA//+9m/li") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r0, 0x0) r1 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r1, 0x10d, 0xdb, 0x0, &(0x7f00000000c0)) 2.8166796s ago: executing program 0 (id=1519): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000380), 0x208e24b) lseek(r0, 0x1000000, 0x5) 2.57173145s ago: executing program 0 (id=1521): r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5400000010000100"/20, @ANYRES32=r2, @ANYBLOB="7240146c00000000340012800c0001006d6163766c616e0024000280080001001000000010000900000000000000aaaaaabb0000"], 0x54}}, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 2.504692146s ago: executing program 0 (id=1522): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x318, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @filter_kind_options=@f_route={{0xa}, {0x2d0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_POLICE={0x4}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0x2b8, 0x6, [@m_ife={0x1d0, 0x0, 0x0, 0x0, {{0x8}, {0x64, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @dev}, @TCA_IFE_TYPE={0x6}, @TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_SKBMARK={0x8}, @IFE_META_SKBMARK={0x4, 0x1, @void}]}, @TCA_IFE_PARMS={0x1c}]}, {0x145, 0x6, "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"}, {0xc}, {0xc}}}, @m_nat={0x58, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x2d, 0x6, "ef93daeef78df7f9a037a0d7a2f92a1cc341deabba437fc636cbf66a843bc4e0304e79be1f16cfa199"}, {0xc}, {0xc}}}, @m_csum={0x50, 0x0, 0x0, 0x0, {{0x9}, {0x4}, {0x21, 0x6, "e9ff252f83b1f3f6b426a360538af449f620cbff2a93fab6f7262227dd"}, {0xc}, {0xc}}}, @m_bpf={0x3c, 0x0, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_OPS_LEN={0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x318}}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000006c0)=ANY=[@ANYBLOB="38000092986ad8bd9d3ffbd8f46c04c58bd7b500", @ANYRES16, @ANYBLOB="01000000000000000000010000000400048008000200010000000800010000000000100008800c00078008000500e0c7a529"], 0x38}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 2.485600677s ago: executing program 0 (id=1524): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='devlink_hwerr\x00'}, 0x10) connect$inet6(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) socket$nl_route(0x10, 0x3, 0x0) tkill(0x0, 0x0) r0 = open(0x0, 0x0, 0x0) preadv2(r0, 0x0, 0x0, 0x0, 0x0, 0x1d) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read(r1, &(0x7f0000000040)=""/148, 0xffffff96) 2.259787825s ago: executing program 0 (id=1527): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'virt_wifi0\x00'}) sendmsg$nl_route_sched(r0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) flock(0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r3, 0x0, r5, 0x0, 0x8000f28, 0x0) splice(r4, 0x0, r2, 0x0, 0x7f, 0x0) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r6, 0x0) set_mempolicy_home_node(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2, 0x0) set_mempolicy_home_node(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x9, &(0x7f0000000000)={[{@nombcache}, {@jqfmt_vfsv0}, {@jqfmt_vfsv1}, {@resgid}, {@delalloc}, {@usrjquota, 0x2e}], [], 0x2e}, 0x6, 0x48d, &(0x7f0000000980)="$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") mkdir(&(0x7f0000000400)='./file1\x00', 0x0) clock_gettime(0x0, &(0x7f00000000c0)) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004000)={&(0x7f0000000a40)=@newqdisc={0xbc, 0x24, 0x100, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xa}, {0x4, 0x10}, {0xe}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xfffffff0}, @qdisc_kind_options=@q_hhf={{0x8}, {0x24, 0x2, [@TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x84b5}, @TCA_HHF_QUANTUM={0x8, 0x2, 0xa599}, @TCA_HHF_NON_HH_WEIGHT={0x8, 0x7, 0x80}, @TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0xd}]}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x5}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x9f23}, @TCA_RATE={0x6, 0x5, {0x5, 0xa}}, @TCA_RATE={0x6, 0x5, {0x3, 0x40}}, @qdisc_kind_options=@q_fq={{0x7}, {0x34, 0x2, [@TCA_FQ_LOW_RATE_THRESHOLD={0x8, 0xb, 0x3}, @TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x7}, @TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x4}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8, 0xb, 0x6}, @TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x1}, @TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0x1ff}]}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x9}]}, 0xbc}}, 0x800) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x7, 0x6, 0x0, 0x1}, 0x48) r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018500000000000000000000000000000bf91000000000000b7020000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000500)='syzkaller\x00', 0x7, 0xe3, &(0x7f0000000540)=""/227, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=[r9]}, 0x90) 2.026301755s ago: executing program 3 (id=1530): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) socket$key(0xf, 0x3, 0x2) r1 = socket(0x1, 0x2, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x13}, 0x48) syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x10, &(0x7f0000000680), 0xfe, 0x252, &(0x7f00000003c0)="$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") r3 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r4 = creat(&(0x7f0000000140)='./bus\x00', 0x0) ftruncate(r4, 0x12081ff) fcntl$setstatus(r3, 0x4, 0x46100) write$cgroup_type(r3, &(0x7f0000000200), 0xf642e7e) fallocate(r3, 0x8, 0xc00, 0x1000) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000180), &(0x7f00000000c0)=@tcp6=r1}, 0x20) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000100)={&(0x7f00000005c0)="fa2c4133c08b321acc6df3ef09000cd6b78476c8519d9ed20fc8ee7e131f0cf1cb75ae9137ff38e611eede4b24960b9b0297efd2daeb5f0d012c807578cf630c765ca126008c506da6b8a64c40db823967d9e5161766aef853583062b243fca95325f960695aa39278aa43665a628eb771ee545c8f06a935ff90e639c697c98161faae2a76011382b011cbefc787", &(0x7f0000000180)=""/103, &(0x7f0000000680)="9cdb8704dd6dad7c50a53f31a2cd4bb40519dc08af20618d703c348ef9fd490c24237a1139dbc98de3606378c996bd072ab203097f9e9e6dca48abcdcb789e1c18a1d8d7f6d31950a5e77ba931c1da5c67160e68ec2667fda7ba4550ef16337df6b1", &(0x7f00000007c0)="fd95da450362f0e80be21136354a5d3d4c054d16a54c32c52c183fd047c57586f13e1815c14504bed12debd0c016ef9f5f36bdd91168b59eb13ac07ef9cd86cd8a856d87071e3afed4647177f714c8ee61118fe1b2b83ed8ada5026b75aaa53ca56d29cf586e739666ba31e8e0d36652781fa0417a35cda4865c7523e2aaa9780b72d30e9dc15b3cf89ad22c4eb256a32e095918483a66bbf51374ca62c790466c0d6ec5b088492171fd6cd76ddfcd9d8b", 0x8, r2, 0x4}, 0x38) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r2, &(0x7f00000004c0)="01e83c4720d40fe9475dd19a83e7c21ec7927697d32fa5affba83e70da609f64d598303fcee5d33b5989309920560be9ab18fba1e9be33b2ec5c3e4887b66d12309dff842da606f8c7f314344dfa9095256c56a396bfca2f309a5e16b357a6d0c6ce38a76c7fdaaae05c21d510d87e205b4e1bd87f85823cda8ff6376ada48b7aade2d446e9cdd27e92b2b0446ebc1a62ca7bb80ae342163632dff8f4283baf7f19a4fc0d569ff8648ad388af3ae42eded336ad3037a82fe88debf0d6f5faac46675a21f3107e94cd068ee8c074a97a6e637d300f2a0e35902f495d16a3881d4ca7d24ffb8f4e0632c3525229773a89f168afc5faecc", &(0x7f00000008c0)=""/4096}, 0x20) r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000780)={'syzkaller0\x00', 0x0}) r7 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)=ANY=[@ANYBLOB="4414c7ef24af1caf7ff0370000000200", @ANYBLOB="7292133bad42f3dd310a6b93f12a83de1d36ccf4807108dc091af98d2ed73bdf973ac4d2284ffe67690c464ed6a5ea69e3496607ccddffb0b8a8d1260c", @ANYBLOB="00000000000000001c001a800800068004000500080000003e12000008000000000000000800000000000000"], 0x44}}, 0x0) r8 = dup(r2) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, r2, 0xffffffff, '\x00', r6, r8, 0x4, 0x1, 0x2}, 0x48) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x5452, &(0x7f00000003c0)={'syztnl1\x00', 0x0}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000940)={0x1, 0xffffffffffffffff}, 0x4) r10 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000980), 0x2, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a40)={{0xffffffffffffffff, 0xffffffffffffffff}, 0x0, 0x0}, 0x20) creat(0x0, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) r13 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000ac0)={0x1b, 0x0, 0x0, 0x8001, 0x0, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0xe, 0xe, &(0x7f0000001c00)=ANY=[@ANYBLOB="18000000b458000000000000000000000000000000000000389940000000000018660000070000000000000000000000186000000000000000000000000000008520000000000000181100000496b5824525be818c6171bcaa2960e6365696f43d12996b91175f379e9c409a86d5c29b77f16d70bd7839f55ff5e7d6bfeadf8f8960540751fb6bf1fade3571cdebb3dfd02c64aaeadd29360f5ae949b7113c61729b598ed4153e727dc8d314150f414d64871f4e914170f6bf5fcc1810efe061095ea5205e71d7a09a469a6ade55d3db38bdfa97b6a62f4d25ca4897be2e139d7e517ae2e03f84e95d009724620305", @ANYRES32, @ANYBLOB="0000170000000085000000860000009500"/32], &(0x7f0000000380)='syzkaller\x00', 0x26, 0x0, 0x0, 0x40f00, 0xd4, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x5, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000280)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r9, r10, r11, 0xffffffffffffffff, r12, r13], &(0x7f0000000b80)=[{0x0, 0x2, 0xc, 0xf}, {0x7, 0x3, 0x6, 0x9}], 0x10, 0x4}, 0x90) pipe(&(0x7f00000002c0)) 1.822117721s ago: executing program 3 (id=1536): r0 = socket$kcm(0xa, 0x3, 0x3a) sendmsg$kcm(r0, &(0x7f00000031c0)={&(0x7f00000006c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000540)=[{&(0x7f00000002c0)="b5640a", 0x3}], 0x1}, 0x8080) r1 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) socket$inet6_sctp(0xa, 0x1, 0x84) r2 = fsopen(&(0x7f0000000000)='autofs\x00', 0x0) r3 = socket$inet6_sctp(0xa, 0x801, 0x84) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @private2}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000380)={0x0, 0x5, 0xc59}) setgid(0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000780)={r5, 0x100000000, 0x0, 0x1}) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000200)) getsockopt$inet_sctp6_SCTP_MAXSEG(r3, 0x84, 0xd, 0x0, &(0x7f0000000180)) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0) sendfile(r6, 0xffffffffffffffff, 0x0, 0x6) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='fd', &(0x7f00000000c0)='3', 0x0) writev(r1, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1) ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000000)) socket$nl_route(0x10, 0x3, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/address_bits', 0x0, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000a40)={@map, 0xffffffffffffffff, 0xe, 0x0, 0xffffffffffffffff, @link_id}, 0x20) socket$inet6_sctp(0xa, 0x0, 0x84) r7 = socket$unix(0x1, 0x2, 0x0) bind$unix(r7, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r8 = socket$unix(0x1, 0x2, 0x0) connect$unix(r8, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 1.626416047s ago: executing program 1 (id=1541): prctl$PR_GET_TSC(0x19, &(0x7f0000000040)) r0 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_DEL_MIF(r0, 0x29, 0xc8, 0x0, 0xc000000) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r2}, 0x10) r3 = socket(0x10, 0x3, 0x0) r4 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x24, 0x24, 0x931, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000", @ANYRES32, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000058c0)='/proc/locks\x00', 0x0, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r6) r7 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}}, 0x5c) setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0}) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x68, @remote}, {0xa, 0x4e22, 0x0, @loopback}, 0x1, {[0xfc3, 0x100, 0x1, 0x0, 0x0, 0x80, 0x8a1, 0xfffffffe]}}, 0x5c) r8 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_DEL_MIF(r8, 0x29, 0xc8, 0x0, 0xc000000) setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @empty}}, 0x5c) setsockopt$MRT6_ADD_MFC(r8, 0x29, 0xcc, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r7, 0x89f1, 0x0) setsockopt$MRT6_DEL_MIF(0xffffffffffffffff, 0x29, 0xcb, &(0x7f0000000180)={0xffffffffffffffff, 0x0, 0x8, 0x0, 0x1}, 0xc) setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 1.536560115s ago: executing program 3 (id=1542): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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") r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x700, &(0x7f00000002c0)={&(0x7f0000000180)={0x60, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0xa, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @empty}}}}]}]}, 0x60}}, 0x0) 1.519656256s ago: executing program 1 (id=1543): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000600), 0x4) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000080)={'veth0_to_batadv\x00', {0x2, 0x0, @private}}) r2 = socket(0x10, 0x3, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5400000010000100"/20, @ANYRES32=r4, @ANYBLOB="7240146c00000000340012800c0001006d6163766c616e0024000280080001001000000010000900000000000000aaaaaabb0000080003"], 0x54}}, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_MEDIA_GET(r6, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0xa68}], 0x1, 0x0, 0x46, 0x407006}, 0x104) 1.510968436s ago: executing program 3 (id=1544): ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004c}, 0x90) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f0000000500)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x1000000, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x90) write$binfmt_elf32(r0, &(0x7f0000002180)=ANY=[@ANYBLOB="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"/5152], 0x1658) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0xd, 0x1, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x200080c0}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000009c0)=@newtaction={0x19c, 0x30, 0x10b, 0x0, 0x25dfdbfe, {}, [{0x188, 0x1, [@m_ife={0x130, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @link_local}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffffffd}, 0x1}}]}, {0xde, 0x6, "8a8bb57dc646c0b7a8f00ce5456009b72e898c65fe7527276f7b17d704375adb844e1dc1de2cbe0c26319fccf93589e5f93ab01f2c5b2ba66292b2e8f78617400ee883a40d5d84e3bb2e050adf7361dc34f609df0d537ee40ab2706d425c742f76beb06f0164ae7cccdc109c89f84ab3c1c0b570285069e5396d288a08a5f15e52a491283d5f06fed0801ac32a299957ec810c71270a6588602943f981b33f398010dd14c2965979c280d21c686d2eab2fcea887b216fe7c7837924c0a5e4d986dc2cbbca3fbf06a46b14c189371927e912f1fee6a997a0aeb9f"}, {0xc}, {0xc}}}, @m_skbmod={0x54, 0x1d, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @remote}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local}]}, {0xf, 0x6, "90bca485b7cff19dc0a67c"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x19c}}, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r4, 0x0) r5 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40041, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62) ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) r6 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r8) r9 = add_key$keyring(&(0x7f0000000380), &(0x7f00000004c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0xa, r9, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000000)=@chain) memfd_create(&(0x7f0000000240)='+\x8b\x8a\xa9\x16\x11\x91J\xbc+ \x18\x17\xc2:}\xa3\x9bO\xdd\xdf\xdf\x92\xd5\xed\xb4\x17\xe5\xd6\x9a\xb2\xd8\x9ba\xde\xb2.F\xc0\x99}|\xaf\xd3\x1d\x84[*_\x9f\x9d\xb0rYP\x1b\x9f \xe0\x9cgq\x103\x89\x11\x87Rv\x169\xdf\xe3>B\x04\x00\x00\x00W\xd3\xec\xfb\xdf?\xa2\x90+\xa4!\xb2\xf2\xff\x90\a\xc3\x12\xc4;\xffh\xf1x=\xb9c\xce\x03h\xdap\x88U\x1788\x82\xd7\xfd\x83\x00Sx\x91%\x99_\xfe\xd4c\x83\x86\x0f\xa4a-\xaf\x9e\xd9\xef\xe0)]\x00F\xfa\x03\xbc4\xc4\x9a\v\x03\x8b\xa4\xf3\x8f\xf4\"\'\xd3\a9\x14H}j&~\xe9\x16\x83o\xbd\xab\xcd[\xbd\xcb\x04\xfc\xe7\xe3\x9e?\x12\xf0\xf4\x83M3\xd88\x92?@\v\xe6\xd1\xd2\xe4\xde\xdaUeJ\x9fR\xd1`\xfa\xc8\v\xed\xfd\x0e\xc8\x89W\x847\x88\x82\x94\x14\xe33\xb7H\xc8b\xd6@3F#\xb7\x04C\x8dm\t\x16a\x0fI\xf4\xfe\xf8\x06j\x19Pz&\xb8\x0f\x98`W\xdb\xc6\"81A\xa4\x8bT\xf1\xcb\xab\xa3\t\xef\xdf&\x0e\xad\x03\x123.\xc2V\xaa\xd5\xf8\xde\x8aV\xa4p{\xcez\xa2\x92\xdb8*wLO\f\x97X\x05\x9a\xc2\xe8\x85\x9d\xcb\xc8\xf0\xc4\x01\x03\xe3?\x9f1\xf4\xfb\xa5y`KB\xdf\xae#\x94C\a\x04\xea\xccG\xf2\b\x8f\xf7\xb1\xe96\x90\xf5P\xa4\'\xce\xe3\xa24\x196\xc5Q\xa1K\x95\xd6\xfal\xe9\xd1\\\r&\xb2c\xb3\x8d\xa7\xb7\xa8\x03S\xbd\xdd\b{\xae\f\x10\xc2\xbb\xd0\xdd*\xa3\xb4\fJ\x00X\xab`N; LF\xa5D\xee\xdf\x7f\x80p\xf6o\x1c\xbdXR\xf2\xa0\x81a\xa1\xe1B\x93Xn\xaf\xfc\x05?\xab\xac\x91x\xa8#\xe1\xbeQ\xd1^\x9b\xb9)\xd3\n\xf7(3!\x18\b\xc0\xaampRl\xfdQ\x03\x8c\xd5\xe4\\\xed\x9a\xd1?\xd21\xc8\x90\x1dl|\xd1\x14\xbc3\xe0\x1e\x0e\xe6\x88Y\x99K\x93\x1c@_P\x8c\xc7\x9eZ\xb74KT:\x8a\xdbJ#w\x18\x14\x00\x93\x86\xa5wo\xf6M\xe7D\xf4*\xe3X\x1d\x19\x83\xa7w\xc7+7\x89s\xed\x8a\xd7O\xdd\rhh`\xc0\xa8$\x06pu\xa0\xd0L\x0ez@I\xb8\x83\xb2f\x93j\a0I\xc8l\xe5\x9b\x06\xb5\xac`d\xa3\xcf/\x14\x10\xab\xab\t\xec\xc1c\fA\xaf\x14\xef\xbap@*7\x86\xdf\',\x03Y\xb1$\xf0\xb5}\xf0\x82%)9`\x8f\x04\x85m\x80\xd2\xcf@\x06}\xea\xe7w`\xa5\x11\x9f\x9b\x9e\x8f\xb7cb\x1a\xe1\xcf\x87\x1c\\\xf5\xc21\xf7\x82C*\xd5;\x00\x00\x00\x00\x03\xba\xe3\xdc\x92\'\x8e\xd5\x7fG\xfd.\x91\x89T\x99t\xd4d,\xd5\x92O\xf1\xafT!Y\x8e\\\xac\xf7\x11R\x05p\x1a\"\r\xe9\xe5\x8b&\x0f\x8c\xfb\xef\xf8\xd5\x18\xde\xeb\xe5\x19\xdd\xebQ8\xc5iS+\x06D\x16\xfe\xf5.\xe5\v\x89\xb0\"\xa3M\xe9\x81\x11P\xdb\xc4\xc2y\x14\x04\x06\xf6\f\xb0\xecz\x8d`\xb5\x9b\xb43\xcc1\xa7\x9e\xa8\xb5\'\xc6MAe\x0f\xd1\xfcG\xc2/\xe8\xe9t\xcaQ\xf1\fI\x1chM\xc1\x92\xe3\xc3\x01M\xc8/\xefJ\xcb\xd0]\f\xff\xf5\x92\xce\x97Z\xea\xe8\x99\xfa\x96\xce\xa7\x02\xad\xa2\xce\x955\xeaNg\x02\xcd\xfd\x1a}.\xd3\"x\x89/8H\xc2\x93B\na)\x86\xa9U\xa0\xb7\x18\xfb\xe9\xd1\x97', 0x3) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1) perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 1.453400601s ago: executing program 1 (id=1545): socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket(0x10, 0x80002, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xf101}) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000100)=0x200) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x8202) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000640)=@newtaction={0x13c, 0x30, 0x53b, 0x0, 0x0, {}, [{0x128, 0x1, [@m_mirred={0x124, 0x4, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x1, 0x4, 0x7, 0x7}, 0x2}}]}, {0xd7, 0x6, "482b3e15a289cbec8b6dad40d3467c1010f8c84e09a6f174aa4fe55c188c36618c88d0a2204766eba30ca8bacf42e0095abfc529129d13fa14f09d868e12c032e627a77951e173e7abfffc645ac969e36c592447318ae1c7e13b147cea0e3c449ca37f8b9c022b4c6258ded46536baf071a3b343621de83b1281891c3916a7442aa54742ee751f6ca6e57c2b9bf7b01db0bb7d872d91fd8553e93d97bdeb16e4adcc8d09e5b5c6bd92c88ed20854329e036f539883b0685bc748bc43e098825a720fb25e663e15777e6b771cd77e6c9462cf99"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x7, 0x3}}}}]}]}, 0x13c}}, 0x11) perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$TIPC_NL_NET_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x0) io_setup(0x9, &(0x7f0000000180)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x11, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x8814) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00'}, 0x10) socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x108) r5 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) 1.092482621s ago: executing program 1 (id=1550): r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = socket$inet6(0xa, 0x2, 0x3a) readv(r1, &(0x7f00000006c0)=[{&(0x7f0000000440)=""/129, 0x81}], 0x1) connect$inet6(r1, &(0x7f0000000040), 0x1c) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x3f, &(0x7f0000000000)=0x1, 0x4) sendto$inet6(r1, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0) bind$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x1, @local}, 0x10) listen(r0, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) accept4$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x0) connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) shutdown(r2, 0x1) ppoll(&(0x7f00000002c0)=[{r2}], 0x1, 0x0, 0x0, 0xfffffffffffffd4c) 1.091665111s ago: executing program 4 (id=1552): r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080), 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_SHUTDOWN={0x22, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r1}}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB=' '], 0x118) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00') close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) mkdir(0x0, 0x0) getsockopt$inet_mptcp_buf(r4, 0x11c, 0x3, &(0x7f0000000000)=""/25, &(0x7f0000000040)=0x19) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c) listen(r5, 0x80080400) socket$inet_dccp(0x2, 0x6, 0x0) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7) r6 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) write$evdev(r6, &(0x7f0000000100)=[{{}, 0x11, 0x5}, {}], 0x30) ioctl$KDSKBMODE(0xffffffffffffffff, 0x4b45, &(0x7f0000000180)) close_range(r3, 0xffffffffffffffff, 0xa000000) 1.019529597s ago: executing program 4 (id=1553): r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f00000000c0)={0x1, 'bridge_slave_0\x00'}, 0x18) socket$kcm(0x21, 0x2, 0x2) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x400}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@generic={0x1, 0x5, 0x8, 0x814, 0x4}, @func={0x85, 0x0, 0x1, 0x0, 0x5}, @map_idx={0x18, 0x6, 0x5, 0x0, 0xd}, @initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xfe9dee114c88b463}}}, &(0x7f0000000200)='syzkaller\x00', 0x40000, 0x1a, &(0x7f0000000240)=""/26, 0x40f00, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0x6, 0x1ff, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000300)=[0xffffffffffffffff, r0, 0xffffffffffffffff], &(0x7f0000000340), 0x10, 0xffffffff}, 0x90) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) r3 = creat(&(0x7f0000000140)='./bus\x00', 0x0) ftruncate(r3, 0x12081ff) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x10, 0xffffffffffffffff, 0x0) io_setup(0x7f, &(0x7f0000000100)=0x0) io_submit(r4, 0x1, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) perf_event_open(&(0x7f0000002100)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0xa0, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffed5}, 0x15) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r5, 0x5416, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r1) r6 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r6, &(0x7f0000000180)={0xa, 0x0, 0x0, @mcast1, 0x1}, 0x1c) connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote}, 0x1c) r7 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x100, 0x140) r8 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x511000, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r7, &(0x7f0000000040)="dcd60aab744aa716", &(0x7f0000000100)=@udp6=r8, 0x3}, 0x20) sendto$inet6(r6, 0x0, 0x0, 0x0, 0x0, 0x0) 917.419255ms ago: executing program 4 (id=1555): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000600), 0x4) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000080)={'veth0_to_batadv\x00', {0x2, 0x0, @private}}) r2 = socket(0x10, 0x3, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5400000010000100"/20, @ANYRES32=r4, @ANYBLOB="7240146c00000000340012800c0001006d6163766c616e0024000280080001001000000010000900000000000000aaaaaabb0000080003"], 0x54}}, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_MEDIA_GET(r6, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0xa68}], 0x1, 0x0, 0x46, 0x407006}, 0x104) 855.25974ms ago: executing program 4 (id=1558): r0 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6(0xa, 0x1, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r2, &(0x7f00000000c0), 0x10) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYRES32=r1], 0x448}}, 0x0) sendmsg$can_bcm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x5, 0x808, 0x0, {}, {0x77359400}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "f3668d3d1d1a7834313117f693b1796314416836cdb45961f89c3f3421927b848e15337a8da6ac921d9395e146c2898d275fb842ccbb7e3f7f66fd6840480edf"}}, 0x80}}, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/partitions\x00', 0x0, 0x0) read$char_usb(r3, &(0x7f0000001840)=""/4090, 0xffa) preadv(r3, &(0x7f0000000040)=[{&(0x7f0000000180)=""/128, 0x80}], 0x1, 0x0, 0x0) read$char_usb(r3, &(0x7f0000000240)=""/34, 0x43) sendmmsg$inet(r2, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=ANY=[@ANYBLOB="5400000018000100000000000000000002000000000000090000000005001b003a00000008000500e000000108000600ff07000008000400", @ANYRES32, @ANYBLOB="08001e00ff"], 0x54}}, 0x0) 740.60807ms ago: executing program 4 (id=1559): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000600)=ANY=[@ANYRES16=r1, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f8d7843e40108804400008024000100000000000100000000000000fdffff01000000000000000000000000000000001400040002000000ac1414bb00000000000000000600050000000000000100802400020073e591ec06154031d3954ac0e16752e72640f08b5281a8461d17d26d12f2bbb6060005000021000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39228c00098028000080060001000a0000001400020020010000000000000000000000000001050003000000000088000080060001000a0000001400020020010000000000000000000000000002050003000000001003800080060001008c0e000008000200ac1414aa05000300000000001c000080060001000200000008000200ac1414bb0500030000000000200004000e00000000000000fe800000000000000000000000000000000000009c0000802400020073961633df6dc9cb418b15afd0bae7b90f1e6cfed8bb423cf9285c474163154908000a00010000002400010000000000000000000000000000000000000000000000000000000000000000004800098028000080060001000a00000014000200fe8000000000000000000000000000bb05000300000000001c000080060001000200000008000200000000000500030000000000080005000100000008000100", @ANYRES32=r2], 0x22c}}, 0x0) 736.69021ms ago: executing program 4 (id=1561): ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x541b, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) r0 = getpid() setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=ANY=[@ANYBLOB="1c0000001d00070f000000000000000007000000", @ANYRES32=r2, @ANYBLOB='@\x002'], 0x1c}}, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1b}, @NFTA_META_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$RTC_WKALM_SET(r6, 0x4028700f, &(0x7f0000000240)={0x1, 0x1, {0x14, 0x19, 0x17, 0x8, 0x4, 0xffffffff, 0x5, 0x108}}) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f00000001c0)=0x8, 0x4) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e6400000000180002801400088008"], 0x48}}, 0x0) sendmmsg$inet(r5, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0) 461.842543ms ago: executing program 2 (id=1564): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$ppp(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) set_mempolicy(0x4, 0x0, 0x0) mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r2, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x14, 0x2f, 0x301, 0xffffffa6, 0x0, {0x8}}, 0x14}}, 0x0) 437.004644ms ago: executing program 2 (id=1565): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000800)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x42}}, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2400c044) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x60, 0x0, 0x0) 377.280419ms ago: executing program 2 (id=1566): r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f00000000c0)=0x10000) connect$inet(r0, &(0x7f0000001fc0)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x9, &(0x7f0000000040)=0x1, 0x4) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x9, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000000c0), &(0x7f00000001c0)=0x4) write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0) getsockopt$llc_int(r1, 0x10c, 0x5, 0x0, &(0x7f0000000000)) r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="20f725f2709a70fd3a6200266ba8fdfb10ae721c8203b6651eaf764358faa00b1b1449f402ca515bcddc58b9a4401eecf879f6f76f2f99c8779f41d4eb33b94d1704d12c1b42d9c84f3fa77dc8095f66a451d8b484b2290c2e3cb30088f8c1d5b41bd5a9d03542c45d9d8a29cfbeeb2b3efdc6ac8156cdd9beecf40cba631ed5ecfd2f4ed1bc95827ae95fbd7cb55eb529d15d2bd6562a0717a78fbeb3e1b30abe86a43e591a9a91e5f20e598271f36f464c541cd61a5fd46d0a2569de21fdcb85bf4198ff83e5c4206b022b8a528baf1e15a9db7aaddf2b1d3db74a7a3233ca9534681f53e347106fcd", 0xea, 0xffffffffffffffff) keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000180)={r3, 0xd6, 0x17}, &(0x7f00000001c0)={'enc=', 'oaep', ' hash=', {'sha384-avx2\x00'}}, &(0x7f0000000240)="cda6309cca182e967d400e98078215439737c5b2f90fac27899ec7652e5151e7be978aed09b1da4ce9c4173dc2d2e671e50c808d31ef084df3f87b5e39ad30f3547850fe7f061637833076247dcbf234745936f04b703c2028bdb5629a82e82991d555f86b2c7273e9da4aba63274b6b984dfb0a0da829c0572a18b2442d3543c93b8504471563d13e2aa14a6375c7cd731f661c7760a06c84959319a19d088904317c0cf96a6683f60ea4bc6d31e6a02d54b827f695f97833aec8d7b6bce62f3887c51bb9fba6baf1833486fff404fb4f36bc0590da", &(0x7f0000000340)=""/23) 376.52045ms ago: executing program 3 (id=1567): socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000000040), 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0, 0xfffffffffffffe54}) unshare(0x68040200) (fail_nth: 5) 234.096291ms ago: executing program 1 (id=1568): r0 = open(&(0x7f0000000000)='./bus\x00', 0x1c5c7e, 0x0) r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) close(r1) mount$9p_fd(0xedc0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 233.824091ms ago: executing program 1 (id=1569): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000340)="$eJzs3d9rW1UcAPDvTdv91nUwhvoghT04mUvX1h8TfJiPosOBvs/Q3pXRZBlNOtY6cHtwL77IEEQciH+A7z4O/wH/ioEOhoyiD75EbnrTZWvSZm22Zubzgduec89Nzz0593t6bk5CAhhaE9mPQsSrEfFtEnG4rWw08sKJteNWH16fzbYkGo3P/koiyfe1jk/y3wfzzCsR8dvXEScLG+utLa8slMrldDHPT9YrVyZryyunLlVK8+l8enl6ZubMOzPT77/3bt/a+ub5f3749O5HZ745vvr9L/eP3E7ibBzKy9rbsQM32jMTMZE/J2Nx9okDp/pQ2SBJdvsE2JaRPM7HIhsDDsdIHvXA/99XEdEAhlQi/mFIteYBrXv7Pt0HvzAefLh2A7Sx/aNrr43Evua90YHV5LE7o+x+d7wP9Wd1/PrnndvZFv17HQJgSzduRsTp0dGN41+Sj3/bd7qHY56sw/gHz8/dbP7zVqf5T2F9/hMd5j8HO8Tudmwd/4X7faimq2z+90HH+e/6otX4SJ57qTnnG0suXiqn2dj2ckSciLG9WX6z9Zwzq/ca3cra53/ZltXfmgvm53F/dO/jj5kr1Us7aXO7BzcjXus4/03W+z/p0P/Z83G+xzqOpXde71a2dfufrcbPEW907P9HK1rJ5uuTk83rYbJ1VWz0961jv3erf7fbn/X/gc3bP560r9fWnr6On/b9m3Yr2+71vyf5vJnek++7VqrXF6ci9iSfbNw//eixrXzr+Kz9J45vPv51uv73R8QXPbb/1tFbXQ8dhP6fe6r+f/rEvY+//LFb/b31/9vN1Il8Ty/jX68nuJPnDgAAAAAAAAZNISIORVIorqcLhWJx7f0dR+NAoVyt1U9erC5dnovmZ2XHY6zQWuk+3PZ+iKn8/bCt/PQT+ZmIOBIR343sb+aLs9Xy3G43HgAAAAAAAAAAAAAAAAAAAAbEwYh9nT7/n/ljZLfPDnjmfOU3DK/u8Z+X9OObnoCB5P8/DC/xD8NL/MPwEv8wvMQ/DC/xD8NL/MPwEv8AAAAAAAAAAAAAAAAAAAAAAAAAAADQV+fPncu2xurD67NZfu7q8tJC9eqpubS2UKwszRZnq4tXivPV6nw5Lc5WK1v9vXK1emVqOpauTdbTWn2ytrxyoVJduly/cKlSmk8vpGPPpVUAAAAAAAAAAAAAAAAAAADwYqktryyUyuV0UUJiW4nRwTgNiT4ndntkAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBH/gsAAP//sQI4ww==") sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0xc0000000}, 0x9c) bind$inet6(0xffffffffffffffff, 0x0, 0x0) getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x0, &(0x7f0000000000)=""/152, 0x0) openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0) mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f3850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xc1) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$IMSETDEVNAME(0xffffffffffffffff, 0x80184947, 0x0) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x32, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0) process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/80, 0x50}], 0x1, 0x0) set_mempolicy(0x4005, &(0x7f0000000280)=0x103, 0x4) socket$kcm(0x2, 0xa, 0x2) write$tun(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xfdef) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_write_pages\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000000)={[{@jqfmt_vfsv0}, {@errors_remount}]}, 0x1, 0x784, &(0x7f00000007c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) 90.054963ms ago: executing program 3 (id=1570): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"/315], 0x1, 0x217, &(0x7f00000004c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000080)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = socket$can_j1939(0x1d, 0x2, 0x7) msgget$private(0x0, 0x0) msgrcv(0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0) msgsnd(0x0, &(0x7f0000000040)=ANY=[@ANYRES64=r2], 0x8, 0x0) ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000)) 55.810556ms ago: executing program 2 (id=1571): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000600)=ANY=[@ANYRES16=r1, @ANYBLOB="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", @ANYRES32=r2], 0x22c}}, 0x0) 630.461µs ago: executing program 2 (id=1572): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x358, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth1_virt_wifi\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_CHAIN={0x8}, @TCA_RATE={0x6, 0x5, {0x3, 0x7}}, @filter_kind_options=@f_route={{0xa}, {0x2b4, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_POLICE={0x4}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0x29c, 0x6, [@m_ife={0x1d0, 0x0, 0x0, 0x0, {{0x8}, {0x64, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @dev}, @TCA_IFE_TYPE={0x6}, @TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_SKBMARK={0x8}, @IFE_META_SKBMARK={0x4, 0x1, @void}]}, @TCA_IFE_PARMS={0x1c}]}, {0x148, 0x6, "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"}, {0xc}, {0xc}}}, @m_nat={0x40, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x17, 0x6, "ef93daeef78df7f9a037a0d7a2f92a1cc341de"}, {0xc}, {0xc}}}, @m_csum={0x4c, 0x0, 0x0, 0x0, {{0x9}, {0x4}, {0x1d, 0x6, "e9ff252f83b1f3f6b426a360538af449f620cbff2a93fab6f7"}, {0xc}, {0xc}}}, @m_bpf={0x3c, 0x0, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_OPS_LEN={0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x358}}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000006c0)=ANY=[@ANYBLOB="38000092986ad8bd9d3ffbd8f46c04c58bd7b500", @ANYRES16, @ANYBLOB="01000000000000000000010000000400048008000200010000000800010000000000100008800c00078008000500e0c7a529"], 0x38}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 0s ago: executing program 2 (id=1573): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000000000000000000000a00000000000000000000000d"], 0x0, 0x32}, 0x20) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket(0x10, 0x3, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close(r3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) recvmsg$kcm(r4, &(0x7f0000000a80)={0x0, 0x0, 0x0}, 0x40012002) recvmsg(r4, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES8=r1, @ANYBLOB="d5"], 0x24}}, 0x0) recvmmsg$unix(r2, &(0x7f0000005480)=[{{&(0x7f0000000300), 0x6e, &(0x7f0000002a00)=[{&(0x7f00000000c0)=""/52, 0x34}, {&(0x7f0000000480)=""/187, 0xbb}, {&(0x7f0000000640)=""/249, 0xf9}, {&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f0000000840)=""/216, 0xd8}], 0x5}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000004b00), 0x0, &(0x7f0000004b40)=[@cred={{0x1c}}, @rights={{0x10}}], 0x30}}, {{&(0x7f0000004c40), 0x6e, &(0x7f0000005100)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x4}}, {{&(0x7f0000005180), 0x6e, &(0x7f00000053c0)=[{&(0x7f0000005200)=""/193, 0xc1}, {&(0x7f0000005300)=""/60, 0x3c}], 0x2, &(0x7f0000005400)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}], 0x5, 0x0, 0x0) write(r2, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, r0, 0x131f1000) setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0x7, &(0x7f0000000380)={0x3, 0x7, 0x1}, 0x10) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r8 = socket$rds(0x15, 0x5, 0x0) bind$rds(r6, &(0x7f00000001c0)={0x2, 0x4e21, @broadcast}, 0x10) sendmsg$rds(r8, &(0x7f00000002c0)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000880)=""/4094, 0xffe}], 0x1}, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000c0000001800018014000200697036677265300000000000000041e7ec0ee10000140003800800020000000000040005"], 0x40}}, 0x0) kernel console output (not intermixed with test programs): butes in process `syz.1.1185'. [ 137.462624][ T1569] team0 (unregistering): Port device team_slave_1 removed [ 137.474872][ T1569] team0 (unregistering): Port device team_slave_0 removed [ 137.520479][ T8303] ip6gretap0: entered promiscuous mode [ 137.527037][ T8303] vlan2: entered promiscuous mode [ 137.532138][ T8303] vlan2: entered allmulticast mode [ 137.537384][ T8303] ip6gretap0: entered allmulticast mode [ 137.544431][ T8303] ip6gretap0: left allmulticast mode [ 137.544581][ T7445] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.549850][ T8303] ip6gretap0: left promiscuous mode [ 137.574195][ T8304] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1185'. [ 137.607925][ T8308] loop1: detected capacity change from 0 to 512 [ 137.614999][ T8308] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 137.631279][ T8308] EXT4-fs (loop1): 1 truncate cleaned up [ 137.641556][ T8308] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.655845][ T8308] FAULT_INJECTION: forcing a failure. [ 137.655845][ T8308] name failslab, interval 1, probability 0, space 0, times 0 [ 137.668645][ T8308] CPU: 0 PID: 8308 Comm: syz.1.1187 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 137.678833][ T8308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 137.688876][ T8308] Call Trace: [ 137.692140][ T8308] [ 137.695084][ T8308] dump_stack_lvl+0xf2/0x150 [ 137.699672][ T8308] dump_stack+0x15/0x20 [ 137.703818][ T8308] should_fail_ex+0x229/0x230 [ 137.708541][ T8308] ? proc_alloc_inode+0x34/0x90 [ 137.713395][ T8308] __should_failslab+0x92/0xa0 [ 137.718145][ T8308] should_failslab+0x9/0x20 [ 137.722699][ T8308] kmem_cache_alloc_lru_noprof+0x51/0x2a0 [ 137.728410][ T8308] proc_alloc_inode+0x34/0x90 [ 137.733257][ T8308] ? __pfx_proc_alloc_inode+0x10/0x10 [ 137.738699][ T8308] alloc_inode+0x3c/0x160 [ 137.743018][ T8308] new_inode+0x1d/0x130 [ 137.747207][ T8308] proc_get_inode+0x1f/0x370 [ 137.751836][ T8308] proc_fill_super+0x317/0x3f0 [ 137.756584][ T8308] ? __pfx_proc_fill_super+0x10/0x10 [ 137.761913][ T8308] get_tree_nodev+0x7a/0xf0 [ 137.766420][ T8308] proc_get_tree+0x1c/0x30 [ 137.770917][ T8308] vfs_get_tree+0x56/0x1d0 [ 137.775409][ T8308] do_new_mount+0x227/0x690 [ 137.779904][ T8308] path_mount+0x49b/0xb30 [ 137.784365][ T8308] __se_sys_mount+0x27f/0x2d0 [ 137.789030][ T8308] ? fput+0x13b/0x180 [ 137.793001][ T8308] __x64_sys_mount+0x67/0x80 [ 137.797580][ T8308] x64_sys_call+0x25c9/0x2d70 [ 137.802249][ T8308] do_syscall_64+0xc9/0x1c0 [ 137.806779][ T8308] ? clear_bhb_loop+0x55/0xb0 [ 137.811445][ T8308] ? clear_bhb_loop+0x55/0xb0 [ 137.816169][ T8308] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.822049][ T8308] RIP: 0033:0x7fd8b086ebd9 [ 137.826480][ T8308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 137.846074][ T8308] RSP: 002b:00007fd8afaf0048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 137.854471][ T8308] RAX: ffffffffffffffda RBX: 00007fd8b09fcf60 RCX: 00007fd8b086ebd9 [ 137.862439][ T8308] RDX: 0000000020000000 RSI: 0000000020000980 RDI: 0000000000000000 [ 137.870412][ T8308] RBP: 00007fd8afaf00a0 R08: 0000000000000000 R09: 0000000000000000 [ 137.878372][ T8308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 137.886428][ T8308] R13: 000000000000000b R14: 00007fd8b09fcf60 R15: 00007ffe9488ca18 [ 137.894439][ T8308] [ 137.897485][ T8308] proc_fill_super: get root inode failed [ 137.911074][ T8311] FAULT_INJECTION: forcing a failure. [ 137.911074][ T8311] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 137.924392][ T8311] CPU: 0 PID: 8311 Comm: syz.4.1186 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 137.934453][ T8311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 137.944496][ T8311] Call Trace: [ 137.947758][ T8311] [ 137.950678][ T8311] dump_stack_lvl+0xf2/0x150 [ 137.955306][ T8311] dump_stack+0x15/0x20 [ 137.959452][ T8311] should_fail_ex+0x229/0x230 [ 137.964185][ T8311] __should_fail_alloc_page+0xfd/0x110 [ 137.969645][ T8311] __alloc_pages_noprof+0x109/0x360 [ 137.974911][ T8311] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 137.980310][ T8311] vma_alloc_folio_noprof+0x176/0x2d0 [ 137.985820][ T8311] handle_mm_fault+0xd2c/0x2a80 [ 137.990674][ T8311] exc_page_fault+0x296/0x650 [ 137.995337][ T8311] asm_exc_page_fault+0x26/0x30 [ 138.000177][ T8311] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 138.005976][ T8311] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 138.025577][ T8311] RSP: 0018:ffffc90000f17d60 EFLAGS: 00050206 [ 138.031629][ T8311] RAX: ffff8881079a6d80 RBX: 000000002001f238 RCX: 0000000000000238 [ 138.039639][ T8311] RDX: 0000000000000000 RSI: ffff888112c11dc8 RDI: 0000000020020000 [ 138.047619][ T8311] RBP: 0000000000001000 R08: 0000000080000000 R09: 0000000000000000 [ 138.055573][ T8311] R10: 0001888112c11000 R11: 0001888112c11fff R12: 0000000020020238 [ 138.063604][ T8311] R13: 0000000020c00000 R14: 0000000000001000 R15: ffff888112c11000 [ 138.071567][ T8311] _copy_to_user+0x77/0xa0 [ 138.076019][ T8311] pagemap_read+0x3b5/0x610 [ 138.080595][ T8311] ? __pfx_pagemap_read+0x10/0x10 [ 138.085733][ T8311] vfs_read+0x1a2/0x6e0 [ 138.089874][ T8311] ? __rcu_read_unlock+0x4e/0x70 [ 138.094804][ T8311] ? __fget_files+0x1da/0x210 [ 138.099587][ T8311] __x64_sys_pread64+0xf7/0x150 [ 138.104447][ T8311] x64_sys_call+0x2673/0x2d70 [ 138.109184][ T8311] do_syscall_64+0xc9/0x1c0 [ 138.113746][ T8311] ? clear_bhb_loop+0x55/0xb0 [ 138.118428][ T8311] ? clear_bhb_loop+0x55/0xb0 [ 138.123153][ T8311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.129059][ T8311] RIP: 0033:0x7fe52585ebd9 [ 138.133467][ T8311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.153115][ T8311] RSP: 002b:00007fe524ae0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 138.161545][ T8311] RAX: ffffffffffffffda RBX: 00007fe5259ecf60 RCX: 00007fe52585ebd9 [ 138.169587][ T8311] RDX: 0000000000019000 RSI: 000000002001a240 RDI: 0000000000000005 [ 138.177588][ T8311] RBP: 00007fe524ae00a0 R08: 0000000000000000 R09: 0000000000000000 [ 138.185543][ T8311] R10: 0000000000100008 R11: 0000000000000246 R12: 0000000000000002 [ 138.193497][ T8311] R13: 000000000000000b R14: 00007fe5259ecf60 R15: 00007ffe88de7b08 [ 138.201487][ T8311] [ 138.210133][ T7357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.255759][ T8317] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6 sclass=netlink_route_socket pid=8317 comm=syz.4.1190 [ 138.286782][ T8326] FAULT_INJECTION: forcing a failure. [ 138.286782][ T8326] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 138.299933][ T8326] CPU: 0 PID: 8326 Comm: syz.3.1193 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 138.301859][ T8321] loop2: detected capacity change from 0 to 8192 [ 138.309989][ T8326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 138.310004][ T8326] Call Trace: [ 138.310012][ T8326] [ 138.310019][ T8326] dump_stack_lvl+0xf2/0x150 [ 138.310047][ T8326] dump_stack+0x15/0x20 [ 138.310067][ T8326] should_fail_ex+0x229/0x230 [ 138.346041][ T8326] should_fail+0xb/0x10 [ 138.350283][ T8326] should_fail_usercopy+0x1a/0x20 [ 138.355343][ T8326] _copy_from_user+0x1e/0xd0 [ 138.359987][ T8326] kstrtouint_from_user+0x76/0xe0 [ 138.365026][ T8326] proc_fail_nth_write+0x4f/0x160 [ 138.370093][ T8326] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 138.375720][ T8326] vfs_write+0x28b/0x900 [ 138.379998][ T8326] ? __fget_files+0x1da/0x210 [ 138.384667][ T8326] ksys_write+0xeb/0x1b0 [ 138.388934][ T8326] __x64_sys_write+0x42/0x50 [ 138.393523][ T8326] x64_sys_call+0x27ef/0x2d70 [ 138.398193][ T8326] do_syscall_64+0xc9/0x1c0 [ 138.402796][ T8326] ? clear_bhb_loop+0x55/0xb0 [ 138.407463][ T8326] ? clear_bhb_loop+0x55/0xb0 [ 138.412128][ T8326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.418087][ T8326] RIP: 0033:0x7fe0453fc75f [ 138.422488][ T8326] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48 [ 138.442089][ T8326] RSP: 002b:00007fe04467f040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 138.450488][ T8326] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe0453fc75f [ 138.458460][ T8326] RDX: 0000000000000001 RSI: 00007fe04467f0b0 RDI: 0000000000000005 [ 138.466418][ T8326] RBP: 00007fe04467f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 138.474374][ T8326] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 138.482391][ T8326] R13: 000000000000000b R14: 00007fe04558bf60 R15: 00007fff895dcda8 [ 138.490400][ T8326] [ 138.508916][ T29] audit: type=1400 audit(2000000099.789:994): avc: denied { audit_write } for pid=8330 comm="syz.1.1194" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 138.530135][ T29] audit: type=1107 audit(2000000099.789:995): pid=8330 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 138.543596][ T8321] loop2: p1 p2 p4 < > [ 138.547954][ T8321] loop2: partition table partially beyond EOD, truncated [ 138.555619][ T8321] loop2: p1 size 108986237 extends beyond EOD, truncated [ 138.565426][ T8328] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1190'. [ 138.570383][ T8334] loop1: detected capacity change from 0 to 128 [ 138.580863][ T8321] loop2: p2 start 65535 is beyond EOD, truncated [ 138.582417][ T8334] FAT-fs (loop1): Unrecognized mount option "01777777777777777777777" or missing value [ 138.587265][ T8321] loop2: p4 start 50331648 is beyond EOD, truncated [ 138.612077][ T29] audit: type=1400 audit(2000000099.889:996): avc: denied { write } for pid=8335 comm="syz.3.1196" name="file0" dev="tmpfs" ino=178 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 138.634972][ T29] audit: type=1400 audit(2000000099.889:997): avc: denied { open } for pid=8335 comm="syz.3.1196" path="/30/file0" dev="tmpfs" ino=178 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 138.657593][ T29] audit: type=1400 audit(2000000099.889:998): avc: denied { ioctl } for pid=8335 comm="syz.3.1196" path="/30/file0" dev="tmpfs" ino=178 ioctlcmd=0x1272 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 138.698403][ T8334] loop1: detected capacity change from 0 to 128 [ 138.709663][ T8334] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 138.762493][ T8230] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 138.800859][ T8230] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 138.817362][ T29] audit: type=1326 audit(2000000100.099:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8342 comm="syz.1.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8b086ebd9 code=0x7ffc0000 [ 138.841406][ T8230] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 138.866566][ T8230] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 138.920650][ T8345] loop1: detected capacity change from 0 to 128 [ 138.933107][ T8345] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 138.971187][ T8230] 8021q: adding VLAN 0 to HW filter on device bond0 [ 138.987625][ T8230] 8021q: adding VLAN 0 to HW filter on device team0 [ 139.023907][ T8346] FAT-fs (loop1): error, invalid access to FAT (entry 0x0affffff) [ 139.031900][ T8346] FAT-fs (loop1): Filesystem has been set read-only [ 139.041755][ T3156] bridge0: port 1(bridge_slave_0) entered blocking state [ 139.048867][ T3156] bridge0: port 1(bridge_slave_0) entered forwarding state [ 139.068670][ T3156] bridge0: port 2(bridge_slave_1) entered blocking state [ 139.075752][ T3156] bridge0: port 2(bridge_slave_1) entered forwarding state [ 139.095471][ T8230] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 139.106244][ T8230] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 139.120636][ T8349] netlink: 'syz.4.1200': attribute type 9 has an invalid length. [ 139.244537][ T8230] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 139.284965][ T8359] 9pnet_fd: Insufficient options for proto=fd [ 139.301550][ T8359] loop4: detected capacity change from 0 to 128 [ 139.364854][ T8230] veth0_vlan: entered promiscuous mode [ 139.383574][ T8230] veth1_vlan: entered promiscuous mode [ 139.415282][ T8230] veth0_macvtap: entered promiscuous mode [ 139.432171][ T8230] veth1_macvtap: entered promiscuous mode [ 139.458680][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 139.469314][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.479207][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 139.489674][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.499537][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 139.509970][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.519863][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 139.530451][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.540285][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 139.550714][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.562878][ T8230] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 139.573586][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 139.584151][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.593998][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 139.604440][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.614296][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 139.624742][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.634592][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 139.645016][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.655001][ T8230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 139.665470][ T8230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 139.676935][ T8230] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 139.687038][ T8230] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.695753][ T8230] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.704484][ T8230] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.713295][ T8230] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.793473][ T8367] loop1: detected capacity change from 0 to 512 [ 139.805225][ T8367] EXT4-fs: Ignoring removed i_version option [ 139.824816][ T8369] SELinux: failed to load policy [ 139.825075][ T8367] EXT4-fs (loop1): orphan cleanup on readonly fs [ 139.836713][ T8367] EXT4-fs warning (device loop1): ext4_enable_quotas:7078: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 139.867594][ T8367] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 139.879564][ T8367] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #13: comm syz.1.1203: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 139.904725][ T8367] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz.1.1203: couldn't read orphan inode 13 (err -117) [ 139.918608][ T8367] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 139.931950][ T8372] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0) [ 139.978934][ T8378] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1207'. [ 139.998441][ T7357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.009250][ T8378] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1207'. [ 140.037413][ T8381] loop0: detected capacity change from 0 to 1024 [ 140.044438][ T8381] EXT4-fs: Ignoring removed oldalloc option [ 140.050996][ T8381] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 140.090678][ T8389] loop1: detected capacity change from 0 to 128 [ 140.099738][ T8389] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 140.109431][ T8381] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.158248][ T8397] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1213'. [ 140.215692][ T8402] FAT-fs (loop1): error, invalid access to FAT (entry 0x0affffff) [ 140.223850][ T8402] FAT-fs (loop1): Filesystem has been set read-only [ 140.239016][ T8408] netlink: 'syz.3.1217': attribute type 13 has an invalid length. [ 140.249542][ T8408] tmpfs: Bad value for 'mpol' [ 140.259618][ T8410] tmpfs: Bad value for 'mpol' [ 140.295383][ T8407] loop2: detected capacity change from 0 to 2048 [ 140.309295][ T8414] loop3: detected capacity change from 0 to 1024 [ 140.316008][ T8414] journal_path: Lookup failure for './file1' [ 140.322024][ T8414] EXT4-fs: error: could not find journal device path [ 140.333687][ T8407] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 140.358896][ T8414] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1218'. [ 140.373762][ T8414] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1218'. [ 140.385797][ T8414] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55402 sclass=netlink_route_socket pid=8414 comm=syz.3.1218 [ 140.471223][ T8422] netlink: 4552 bytes leftover after parsing attributes in process `syz.3.1220'. [ 140.480723][ T8422] netlink: 4552 bytes leftover after parsing attributes in process `syz.3.1220'. [ 140.542018][ T8407] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1216: bg 0: block 234: padding at end of block bitmap is not set [ 140.567153][ T8407] EXT4-fs (loop2): Remounting filesystem read-only [ 140.595277][ T8420] EXT4-fs (loop2): ext4_do_writepages: jbd2_start: 9223372036854775807 pages, ino 18; err -5 [ 140.676880][ T8429] loop3: detected capacity change from 0 to 8192 [ 140.685572][ T8142] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.717386][ T8429] loop3: p1 p2 p4 < > [ 140.721480][ T8429] loop3: partition table partially beyond EOD, truncated [ 140.728663][ T8429] loop3: p1 size 108986237 extends beyond EOD, truncated [ 140.738799][ T8429] loop3: p2 start 65535 is beyond EOD, truncated [ 140.745141][ T8429] loop3: p4 start 50331648 is beyond EOD, truncated [ 140.879212][ T8442] loop3: detected capacity change from 0 to 128 [ 140.885830][ T8442] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 140.952808][ T8445] tipc: Started in network mode [ 140.957822][ T8445] tipc: Node identity aaaaaaaaaa34, cluster identity 4711 [ 140.965037][ T8445] tipc: Enabled bearer , priority 0 [ 140.982763][ T8442] loop3: detected capacity change from 0 to 128 [ 140.992004][ T8442] FAT-fs (loop3): Unrecognized mount option "" or missing value [ 141.000739][ T8230] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.051822][ T8453] FAULT_INJECTION: forcing a failure. [ 141.051822][ T8453] name failslab, interval 1, probability 0, space 0, times 0 [ 141.064508][ T8453] CPU: 0 PID: 8453 Comm: syz.3.1233 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 141.067290][ T8451] loop2: detected capacity change from 0 to 8192 [ 141.074638][ T8453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 141.074651][ T8453] Call Trace: [ 141.074658][ T8453] [ 141.074665][ T8453] dump_stack_lvl+0xf2/0x150 [ 141.074692][ T8453] dump_stack+0x15/0x20 [ 141.074775][ T8453] should_fail_ex+0x229/0x230 [ 141.074802][ T8453] ? device_add+0x89/0x790 [ 141.115177][ T8453] __should_failslab+0x92/0xa0 [ 141.119969][ T8453] should_failslab+0x9/0x20 [ 141.124540][ T8453] kmalloc_trace_noprof+0x4b/0x2a0 [ 141.129649][ T8453] device_add+0x89/0x790 [ 141.133956][ T8453] netdev_register_kobject+0x100/0x230 [ 141.139412][ T8453] register_netdevice+0x8b9/0xdd0 [ 141.144431][ T8453] wg_newlink+0x28d/0x450 [ 141.148822][ T8453] ? __pfx_wg_newlink+0x10/0x10 [ 141.153670][ T8453] rtnl_newlink+0xefd/0x1690 [ 141.158474][ T8453] ? security_capable+0x64/0x80 [ 141.163318][ T8453] ? ns_capable+0x7d/0xb0 [ 141.167681][ T8453] ? __pfx_rtnl_newlink+0x10/0x10 [ 141.172691][ T8453] rtnetlink_rcv_msg+0x85e/0x910 [ 141.177619][ T8453] ? memcg_list_lru_alloc+0xd2/0x740 [ 141.182904][ T8453] ? mod_objcg_state+0x2e2/0x4e0 [ 141.187863][ T8453] ? __memcg_slab_free_hook+0xc9/0x1e0 [ 141.193337][ T8453] ? xas_load+0x3ae/0x3d0 [ 141.197743][ T8453] ? kmem_cache_free+0xd8/0x280 [ 141.202600][ T8453] ? nlmon_xmit+0x51/0x60 [ 141.206931][ T8453] ? __kfree_skb+0x102/0x150 [ 141.211556][ T8453] ? consume_skb+0x57/0x180 [ 141.216060][ T8453] ? nlmon_xmit+0x51/0x60 [ 141.220468][ T8453] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 141.225783][ T8453] ? __dev_queue_xmit+0xb21/0x1e50 [ 141.230913][ T8453] ? ref_tracker_free+0x3a5/0x410 [ 141.235950][ T8453] netlink_rcv_skb+0x12c/0x230 [ 141.240717][ T8453] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 141.246172][ T8453] rtnetlink_rcv+0x1c/0x30 [ 141.250680][ T8453] netlink_unicast+0x58d/0x660 [ 141.255452][ T8453] netlink_sendmsg+0x5ca/0x6e0 [ 141.260219][ T8453] ? __pfx_netlink_sendmsg+0x10/0x10 [ 141.265516][ T8453] __sock_sendmsg+0x140/0x180 [ 141.270266][ T8453] ____sys_sendmsg+0x312/0x410 [ 141.275025][ T8453] __sys_sendmsg+0x1e9/0x280 [ 141.279692][ T8453] __x64_sys_sendmsg+0x46/0x50 [ 141.284471][ T8453] x64_sys_call+0xb25/0x2d70 [ 141.289056][ T8453] do_syscall_64+0xc9/0x1c0 [ 141.293629][ T8453] ? clear_bhb_loop+0x55/0xb0 [ 141.298312][ T8453] ? clear_bhb_loop+0x55/0xb0 [ 141.303027][ T8453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.308984][ T8453] RIP: 0033:0x7fe0453fdbd9 [ 141.313384][ T8453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.333202][ T8453] RSP: 002b:00007fe04467f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 141.341617][ T8453] RAX: ffffffffffffffda RBX: 00007fe04558bf60 RCX: 00007fe0453fdbd9 [ 141.349608][ T8453] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000006 [ 141.357645][ T8453] RBP: 00007fe04467f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 141.365628][ T8453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 141.373628][ T8453] R13: 000000000000000b R14: 00007fe04558bf60 R15: 00007fff895dcda8 [ 141.381713][ T8453] [ 141.406486][ T8451] loop2: p1 p2 p4 < > [ 141.410633][ T8451] loop2: partition table partially beyond EOD, truncated [ 141.411054][ T8461] loop3: detected capacity change from 0 to 512 [ 141.425237][ T8451] loop2: p1 size 108986237 extends beyond EOD, truncated [ 141.425620][ T8451] loop2: p2 start 65535 is beyond EOD, truncated [ 141.436689][ T8461] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.1234: bg 0: block 5: invalid block bitmap [ 141.438735][ T8451] loop2: p4 start 50331648 is beyond EOD, truncated [ 141.454153][ T8461] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 141.467806][ T8461] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1234: invalid indirect mapped block 3 (level 2) [ 141.468096][ T8461] EXT4-fs (loop3): 1 orphan inode deleted [ 141.486797][ T8461] EXT4-fs (loop3): 1 truncate cleaned up [ 141.487430][ T8461] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.506586][ T7645] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.548851][ T8472] loop0: detected capacity change from 0 to 128 [ 141.555402][ T8472] FAT-fs (loop0): Unrecognized mount option "01777777777777777777777" or missing value [ 141.611937][ T8476] loop3: detected capacity change from 0 to 2048 [ 141.619869][ T8476] ext4: Bad value for 'commit' [ 141.620300][ T8472] loop0: detected capacity change from 0 to 128 [ 141.631459][ T8472] FAT-fs (loop0): Unrecognized mount option "" or missing value [ 141.664670][ T8470] wireguard0: entered promiscuous mode [ 141.670260][ T8470] wireguard0: entered allmulticast mode [ 141.703379][ T8483] loop0: detected capacity change from 0 to 128 [ 141.710215][ T8483] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 141.786071][ T8484] FAT-fs (loop0): error, invalid access to FAT (entry 0x0affffff) [ 141.793907][ T8484] FAT-fs (loop0): Filesystem has been set read-only [ 141.887498][ T8492] loop1: detected capacity change from 0 to 128 [ 141.933780][ T8492] ebt_among: dst integrity fail: 200 [ 141.992625][ T8511] loop1: detected capacity change from 0 to 8192 [ 142.000796][ T29] kauditd_printk_skb: 85 callbacks suppressed [ 142.000808][ T29] audit: type=1326 audit(2000000103.279:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8506 comm="syz.2.1247" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8fce282bd9 code=0x0 [ 142.058394][ T8523] loop4: detected capacity change from 0 to 128 [ 142.065043][ T8523] FAT-fs (loop4): Unrecognized mount option "01777777777777777777777" or missing value [ 142.066415][ T8511] loop1: p1 p2 p4 < > [ 142.076432][ T3155] tipc: Node number set to 10398378 [ 142.078778][ T8511] loop1: partition table partially beyond EOD, truncated [ 142.091391][ T8511] loop1: p1 size 108986237 extends beyond EOD, truncated [ 142.099619][ T8511] loop1: p2 start 65535 is beyond EOD, truncated [ 142.106003][ T8511] loop1: p4 start 50331648 is beyond EOD, truncated [ 142.107060][ T8523] loop4: detected capacity change from 0 to 128 [ 142.120334][ T8523] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 142.430036][ T29] audit: type=1400 audit(2000000103.709:1086): avc: denied { listen } for pid=8541 comm="syz.1.1257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 142.502357][ T29] audit: type=1400 audit(2000000103.779:1087): avc: denied { accept } for pid=8541 comm="syz.1.1257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 142.503644][ T5086] tipc: Subscription rejected, illegal request [ 142.545072][ T29] audit: type=1400 audit(2000000103.779:1088): avc: denied { connect } for pid=8541 comm="syz.1.1257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 142.577696][ T8548] loop3: detected capacity change from 0 to 128 [ 142.584335][ T8548] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 142.632647][ T8548] loop3: detected capacity change from 0 to 128 [ 142.639143][ T8554] __nla_validate_parse: 8 callbacks suppressed [ 142.639156][ T8554] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1261'. [ 142.645735][ T8548] FAT-fs (loop3): Unrecognized mount option "" or missing value [ 142.654577][ T8554] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1261'. [ 143.000147][ T8650] loop3: detected capacity change from 0 to 1024 [ 143.038165][ T8650] EXT4-fs: Ignoring removed oldalloc option [ 143.044682][ T8650] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 143.066813][ T8650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 143.081034][ T8658] FAULT_INJECTION: forcing a failure. [ 143.081034][ T8658] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 143.094159][ T8658] CPU: 0 PID: 8658 Comm: syz.0.1271 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 143.104224][ T8658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 143.114335][ T8658] Call Trace: [ 143.117603][ T8658] [ 143.120519][ T8658] dump_stack_lvl+0xf2/0x150 [ 143.125103][ T8658] dump_stack+0x15/0x20 [ 143.129316][ T8658] should_fail_ex+0x229/0x230 [ 143.134061][ T8658] should_fail+0xb/0x10 [ 143.138343][ T8658] should_fail_usercopy+0x1a/0x20 [ 143.143367][ T8658] fpu__restore_sig+0x11a/0xaf0 [ 143.148267][ T8658] ? copy_fpstate_to_sigframe+0x61d/0x720 [ 143.154065][ T8658] restore_sigcontext+0x1b5/0x220 [ 143.159133][ T8658] __do_sys_rt_sigreturn+0xc5/0x150 [ 143.164325][ T8658] x64_sys_call+0x28f3/0x2d70 [ 143.168993][ T8658] do_syscall_64+0xc9/0x1c0 [ 143.173488][ T8658] ? clear_bhb_loop+0x55/0xb0 [ 143.178213][ T8658] ? clear_bhb_loop+0x55/0xb0 [ 143.182953][ T8658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.188905][ T8658] RIP: 0033:0x7f8ae7e04bd9 [ 143.193311][ T8658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.213019][ T8658] RSP: 002b:00007f8ae7086048 EFLAGS: 00000246 [ 143.219148][ T8658] RAX: fffffffffffffff2 RBX: 00007f8ae7f92f60 RCX: 00007f8ae7e04bd9 [ 143.227109][ T8658] RDX: 0000000020000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 143.235088][ T8658] RBP: 00007f8ae70860a0 R08: 0000000000000000 R09: 0000000000000000 [ 143.243124][ T8658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 143.251171][ T8658] R13: 000000000000000b R14: 00007f8ae7f92f60 R15: 00007ffe5bafbe28 [ 143.259138][ T8658] [ 143.283203][ T8665] netlink: 4552 bytes leftover after parsing attributes in process `syz.2.1273'. [ 143.293541][ T8655] loop1: detected capacity change from 0 to 8192 [ 143.293563][ T8665] netlink: 4552 bytes leftover after parsing attributes in process `syz.2.1273'. [ 143.328272][ T8670] loop0: detected capacity change from 0 to 128 [ 143.331080][ T8669] loop2: detected capacity change from 0 to 256 [ 143.334906][ T8670] FAT-fs (loop0): Unrecognized mount option "01777777777777777777777" or missing value [ 143.341784][ T8669] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 143.364143][ T8669] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 143.375759][ T8655] netlink: 'syz.1.1269': attribute type 5 has an invalid length. [ 143.400531][ T8670] loop0: detected capacity change from 0 to 128 [ 143.407321][ T8670] FAT-fs (loop0): Unrecognized mount option "" or missing value [ 143.482056][ T8674] loop1: detected capacity change from 0 to 128 [ 143.494106][ T8674] FAT-fs (loop1): Unrecognized mount option "01777777777777777777777" or missing value [ 143.569555][ T8682] loop1: detected capacity change from 0 to 256 [ 143.586495][ T29] audit: type=1400 audit(2000000104.859:1089): avc: denied { remount } for pid=8681 comm="syz.1.1280" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 143.633441][ T29] audit: type=1400 audit(2000000104.909:1090): avc: denied { lock } for pid=8681 comm="syz.1.1280" path="socket:[27099]" dev="sockfs" ino=27099 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 143.654579][ T8680] loop2: detected capacity change from 0 to 8192 [ 143.707314][ T8680] loop2: p1 p2 p4 < > [ 143.711415][ T8680] loop2: partition table partially beyond EOD, truncated [ 143.737849][ T8694] netlink: 4552 bytes leftover after parsing attributes in process `syz.1.1284'. [ 143.741829][ T8680] loop2: p1 size 108986237 extends beyond EOD, truncated [ 143.754743][ T8680] loop2: p2 start 65535 is beyond EOD, truncated [ 143.761122][ T8680] loop2: p4 start 50331648 is beyond EOD, truncated [ 143.768263][ T8694] netlink: 4552 bytes leftover after parsing attributes in process `syz.1.1284'. [ 143.794965][ T8698] netlink: 'syz.1.1286': attribute type 9 has an invalid length. [ 143.831970][ T8702] loop1: detected capacity change from 0 to 128 [ 143.838637][ T8702] FAT-fs (loop1): Unrecognized mount option "01777777777777777777777" or missing value [ 143.880037][ T8706] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1291'. [ 143.880915][ T7645] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.889464][ T8706] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1291'. [ 143.918734][ T8702] loop1: detected capacity change from 0 to 128 [ 143.925570][ T8702] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 143.959285][ T8718] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1292'. [ 143.986778][ T29] audit: type=1326 audit(2000000105.259:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8717 comm="syz.2.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fce282bd9 code=0x7ffc0000 [ 144.010220][ T29] audit: type=1326 audit(2000000105.259:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8717 comm="syz.2.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f8fce282bd9 code=0x7ffc0000 [ 144.024070][ T8724] netlink: 'syz.3.1299': attribute type 9 has an invalid length. [ 144.033715][ T29] audit: type=1326 audit(2000000105.269:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8717 comm="syz.2.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fce282bd9 code=0x7ffc0000 [ 144.064943][ T29] audit: type=1326 audit(2000000105.269:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8717 comm="syz.2.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fce282bd9 code=0x7ffc0000 [ 144.185763][ T8734] FAULT_INJECTION: forcing a failure. [ 144.185763][ T8734] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 144.198881][ T8734] CPU: 1 PID: 8734 Comm: syz.3.1301 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 144.209027][ T8734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 144.219109][ T8734] Call Trace: [ 144.222386][ T8734] [ 144.224779][ T8738] loop2: detected capacity change from 0 to 1024 [ 144.225323][ T8734] dump_stack_lvl+0xf2/0x150 [ 144.232382][ T8738] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 144.236205][ T8734] dump_stack+0x15/0x20 [ 144.236232][ T8734] should_fail_ex+0x229/0x230 [ 144.249185][ T8738] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1303: Invalid block bitmap block 0 in block_group 0 [ 144.250692][ T8734] should_fail+0xb/0x10 [ 144.255540][ T8738] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.1303: Failed to acquire dquot type 0 [ 144.268703][ T8734] should_fail_usercopy+0x1a/0x20 [ 144.268749][ T8734] _copy_to_iter+0xd3/0xaf0 [ 144.268776][ T8734] ? __check_object_size+0x8b/0x510 [ 144.268798][ T8734] tty_read+0x1c3/0x480 [ 144.274401][ T8738] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.1303: Freeing blocks not in datazone - block = 0, count = 4096 [ 144.284146][ T8734] vfs_read+0x5e9/0x6e0 [ 144.284170][ T8734] ? __rcu_read_unlock+0x4e/0x70 [ 144.290549][ T8738] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.1303: Invalid inode bitmap blk 0 in block_group 0 [ 144.293659][ T8734] ksys_read+0xeb/0x1b0 [ 144.293684][ T8734] __x64_sys_read+0x42/0x50 [ 144.301067][ T8738] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem [ 144.302985][ T8734] x64_sys_call+0x27e5/0x2d70 [ 144.303030][ T8734] do_syscall_64+0xc9/0x1c0 [ 144.317673][ T4225] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:23: Failed to release dquot type 0 [ 144.320394][ T8734] ? clear_bhb_loop+0x55/0xb0 [ 144.325506][ T8738] EXT4-fs (loop2): 1 orphan inode deleted [ 144.337878][ T8734] ? clear_bhb_loop+0x55/0xb0 [ 144.337902][ T8734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.343526][ T8738] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.346539][ T8734] RIP: 0033:0x7fe0453fdbd9 [ 144.346556][ T8734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 144.346574][ T8734] RSP: 002b:00007fe04465e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 144.441694][ T8734] RAX: ffffffffffffffda RBX: 00007fe04558c038 RCX: 00007fe0453fdbd9 [ 144.449647][ T8734] RDX: 0000000000001000 RSI: 0000000020000e00 RDI: 0000000000000004 [ 144.457618][ T8734] RBP: 00007fe04465e0a0 R08: 0000000000000000 R09: 0000000000000000 [ 144.465583][ T8734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 144.473613][ T8734] R13: 000000000000006e R14: 00007fe04558c038 R15: 00007fff895dcda8 [ 144.481644][ T8734] [ 144.485858][ T8142] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.495488][ T5267] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:32: Failed to release dquot type 0 [ 144.552221][ T8742] netlink: 4552 bytes leftover after parsing attributes in process `syz.2.1304'. [ 144.657097][ T8751] loop2: detected capacity change from 0 to 1024 [ 144.663759][ T8751] EXT4-fs: Ignoring removed oldalloc option [ 144.670116][ T8751] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 144.674551][ T8755] loop4: detected capacity change from 0 to 128 [ 144.686707][ T8755] FAT-fs (loop4): Unrecognized mount option "01777777777777777777777" or missing value [ 144.698297][ T8751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.724888][ T8142] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.733504][ T8755] loop4: detected capacity change from 0 to 128 [ 144.740716][ T8755] FAT-fs (loop4): Unrecognized mount option "" or missing value [ 144.782653][ T8759] netlink: 'syz.2.1310': attribute type 9 has an invalid length. [ 144.790598][ T8759] tipc: Resetting bearer [ 144.832754][ T8766] FAULT_INJECTION: forcing a failure. [ 144.832754][ T8766] name failslab, interval 1, probability 0, space 0, times 0 [ 144.845457][ T8766] CPU: 0 PID: 8766 Comm: syz.0.1313 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 144.855529][ T8766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 144.865619][ T8766] Call Trace: [ 144.868894][ T8766] [ 144.871833][ T8766] dump_stack_lvl+0xf2/0x150 [ 144.876433][ T8766] dump_stack+0x15/0x20 [ 144.880634][ T8766] should_fail_ex+0x229/0x230 [ 144.885331][ T8766] ? sctp_add_bind_addr+0x6f/0x1e0 [ 144.890447][ T8766] __should_failslab+0x92/0xa0 [ 144.895220][ T8766] should_failslab+0x9/0x20 [ 144.899788][ T8766] kmalloc_trace_noprof+0x4b/0x2a0 [ 144.904919][ T8766] sctp_add_bind_addr+0x6f/0x1e0 [ 144.909897][ T8766] sctp_copy_local_addr_list+0x19b/0x220 [ 144.915552][ T8766] sctp_copy_one_addr+0x83/0x410 [ 144.920506][ T8766] sctp_bind_addr_copy+0x81/0x2b0 [ 144.925592][ T8766] sctp_assoc_set_bind_addr_from_ep+0xc0/0xd0 [ 144.931667][ T8766] sctp_connect_new_asoc+0x1d0/0x3b0 [ 144.936960][ T8766] sctp_sendmsg+0xf05/0x1920 [ 144.941600][ T8766] ? __pfx_sctp_sendmsg+0x10/0x10 [ 144.946641][ T8766] inet_sendmsg+0xc5/0xd0 [ 144.950976][ T8766] __sock_sendmsg+0x102/0x180 [ 144.955664][ T8766] ____sys_sendmsg+0x312/0x410 [ 144.960446][ T8766] __sys_sendmsg+0x1e9/0x280 [ 144.965047][ T8766] __x64_sys_sendmsg+0x46/0x50 [ 144.969845][ T8766] x64_sys_call+0xb25/0x2d70 [ 144.974442][ T8766] do_syscall_64+0xc9/0x1c0 [ 144.978989][ T8766] ? clear_bhb_loop+0x55/0xb0 [ 144.983656][ T8766] ? clear_bhb_loop+0x55/0xb0 [ 144.988322][ T8766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.994288][ T8766] RIP: 0033:0x7f8ae7e04bd9 [ 144.998688][ T8766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.018310][ T8766] RSP: 002b:00007f8ae7086048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 145.026706][ T8766] RAX: ffffffffffffffda RBX: 00007f8ae7f92f60 RCX: 00007f8ae7e04bd9 [ 145.034754][ T8766] RDX: 00000000000003e8 RSI: 00000000200004c0 RDI: 0000000000000004 [ 145.042709][ T8766] RBP: 00007f8ae70860a0 R08: 0000000000000000 R09: 0000000000000000 [ 145.050667][ T8766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 145.058624][ T8766] R13: 000000000000000b R14: 00007f8ae7f92f60 R15: 00007ffe5bafbe28 [ 145.066587][ T8766] [ 145.089317][ T8779] loop3: detected capacity change from 0 to 1024 [ 145.120323][ T8787] loop0: detected capacity change from 0 to 512 [ 145.126994][ T8787] EXT4-fs: Ignoring removed i_version option [ 145.127735][ T8779] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.146247][ T8784] loop1: detected capacity change from 0 to 128 [ 145.162058][ T8784] FAT-fs (loop1): Unrecognized mount option "01777777777777777777777" or missing value [ 145.177295][ T8787] EXT4-fs (loop0): orphan cleanup on readonly fs [ 145.185024][ T7645] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.191567][ T8787] EXT4-fs warning (device loop0): ext4_enable_quotas:7078: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 145.195075][ T8791] FAULT_INJECTION: forcing a failure. [ 145.195075][ T8791] name failslab, interval 1, probability 0, space 0, times 0 [ 145.209087][ T8787] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 145.221224][ T8791] CPU: 0 PID: 8791 Comm: syz.4.1322 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 145.237942][ T8791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 145.248023][ T8791] Call Trace: [ 145.251294][ T8791] [ 145.254216][ T8791] dump_stack_lvl+0xf2/0x150 [ 145.258826][ T8791] dump_stack+0x15/0x20 [ 145.262990][ T8791] should_fail_ex+0x229/0x230 [ 145.267727][ T8791] ? kernfs_fop_open+0x4e0/0x6e0 [ 145.272731][ T8791] __should_failslab+0x92/0xa0 [ 145.277484][ T8791] should_failslab+0x9/0x20 [ 145.281981][ T8791] kmalloc_trace_noprof+0x4b/0x2a0 [ 145.287086][ T8791] kernfs_fop_open+0x4e0/0x6e0 [ 145.291841][ T8791] ? __pfx_kernfs_fop_open+0x10/0x10 [ 145.297113][ T8791] do_dentry_open+0x647/0xa60 [ 145.301790][ T8791] vfs_open+0x3b/0x1f0 [ 145.305907][ T8791] path_openat+0x1ad9/0x1fa0 [ 145.310582][ T8791] ? _parse_integer+0x27/0x30 [ 145.315354][ T8791] ? kstrtoull+0x110/0x140 [ 145.319771][ T8791] do_filp_open+0xf7/0x200 [ 145.324182][ T8791] do_sys_openat2+0xab/0x120 [ 145.328766][ T8791] __x64_sys_openat+0xf3/0x120 [ 145.333518][ T8791] x64_sys_call+0x1057/0x2d70 [ 145.338194][ T8791] do_syscall_64+0xc9/0x1c0 [ 145.342702][ T8791] ? clear_bhb_loop+0x55/0xb0 [ 145.347420][ T8791] ? clear_bhb_loop+0x55/0xb0 [ 145.352107][ T8791] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.358009][ T8791] RIP: 0033:0x7fe52585ebd9 [ 145.362410][ T8791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.382007][ T8791] RSP: 002b:00007fe524ae0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 145.390406][ T8791] RAX: ffffffffffffffda RBX: 00007fe5259ecf60 RCX: 00007fe52585ebd9 [ 145.398426][ T8791] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 0000000000000006 [ 145.406382][ T8791] RBP: 00007fe524ae00a0 R08: 0000000000000000 R09: 0000000000000000 [ 145.414374][ T8791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 145.422334][ T8791] R13: 000000000000000b R14: 00007fe5259ecf60 R15: 00007ffe88de7b08 [ 145.430291][ T8791] [ 145.435875][ T8787] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #13: comm syz.0.1321: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 145.448716][ T8796] loop4: detected capacity change from 0 to 512 [ 145.460455][ T8796] ext4: Unknown parameter 'smackfsdef' [ 145.467422][ T8787] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz.0.1321: couldn't read orphan inode 13 (err -117) [ 145.473423][ T8784] loop1: detected capacity change from 0 to 128 [ 145.479851][ T8787] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 145.494891][ T8784] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 145.519165][ T8796] loop4: detected capacity change from 0 to 128 [ 145.525762][ T8796] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 145.542031][ T8802] netlink: 'syz.3.1323': attribute type 9 has an invalid length. [ 145.550656][ T4411] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 145.564721][ T8230] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.662707][ T8815] loop2: detected capacity change from 0 to 1024 [ 145.704615][ T8832] loop3: detected capacity change from 0 to 512 [ 145.710589][ T8831] loop4: detected capacity change from 0 to 1024 [ 145.721191][ T8832] EXT4-fs: Ignoring removed i_version option [ 145.738334][ T8832] EXT4-fs (loop3): orphan cleanup on readonly fs [ 145.747835][ T8831] EXT4-fs: Ignoring removed oldalloc option [ 145.756355][ T8832] EXT4-fs warning (device loop3): ext4_enable_quotas:7078: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 145.771561][ T8831] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 145.782772][ T8832] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 145.789827][ T8832] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #13: comm syz.3.1338: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 145.811834][ T8837] loop2: detected capacity change from 0 to 128 [ 145.813562][ T8832] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.1338: couldn't read orphan inode 13 (err -117) [ 145.830429][ T8837] FAT-fs (loop2): Unrecognized mount option "01777777777777777777777" or missing value [ 145.879461][ T8837] loop2: detected capacity change from 0 to 128 [ 145.886298][ T8837] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 145.898680][ T8842] netlink: 'syz.1.1341': attribute type 9 has an invalid length. [ 145.918526][ T8840] loop0: detected capacity change from 0 to 128 [ 145.949377][ T8847] loop2: detected capacity change from 0 to 512 [ 146.704641][ T8956] loop2: detected capacity change from 0 to 1024 [ 146.857264][ T8973] loop2: detected capacity change from 0 to 128 [ 146.874246][ T8973] FAT-fs (loop2): Unrecognized mount option "01777777777777777777777" or missing value [ 146.942593][ T8973] loop2: detected capacity change from 0 to 128 [ 146.958755][ T8973] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 146.980950][ T8990] FAULT_INJECTION: forcing a failure. [ 146.980950][ T8990] name failslab, interval 1, probability 0, space 0, times 0 [ 146.993653][ T8990] CPU: 0 PID: 8990 Comm: syz.3.1360 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 147.003800][ T8990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 147.013846][ T8990] Call Trace: [ 147.017111][ T8990] [ 147.020082][ T8990] dump_stack_lvl+0xf2/0x150 [ 147.024668][ T8990] dump_stack+0x15/0x20 [ 147.028870][ T8990] should_fail_ex+0x229/0x230 [ 147.033642][ T8990] ? __alloc_skb+0x10b/0x300 [ 147.038262][ T8990] __should_failslab+0x92/0xa0 [ 147.043075][ T8990] should_failslab+0x9/0x20 [ 147.047571][ T8990] kmem_cache_alloc_node_noprof+0x51/0x2b0 [ 147.053390][ T8990] __alloc_skb+0x10b/0x300 [ 147.057800][ T8990] __ip_append_data+0x1838/0x2200 [ 147.062821][ T8990] ? __pfx_raw_getfrag+0x10/0x10 [ 147.067752][ T8990] ? __pfx_raw_getfrag+0x10/0x10 [ 147.072703][ T8990] ip_append_data+0x11f/0x150 [ 147.077539][ T8990] raw_sendmsg+0xce2/0xe50 [ 147.082060][ T8990] ? __pfx_raw_sendmsg+0x10/0x10 [ 147.087103][ T8990] inet_sendmsg+0xc5/0xd0 [ 147.091429][ T8990] __sock_sendmsg+0x102/0x180 [ 147.096106][ T8990] ____sys_sendmsg+0x312/0x410 [ 147.100965][ T8990] __sys_sendmmsg+0x269/0x500 [ 147.105646][ T8990] __x64_sys_sendmmsg+0x57/0x70 [ 147.110496][ T8990] x64_sys_call+0xa87/0x2d70 [ 147.115154][ T8990] do_syscall_64+0xc9/0x1c0 [ 147.119728][ T8990] ? clear_bhb_loop+0x55/0xb0 [ 147.124394][ T8990] ? clear_bhb_loop+0x55/0xb0 [ 147.129102][ T8990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.135005][ T8990] RIP: 0033:0x7fe0453fdbd9 [ 147.139406][ T8990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.159086][ T8990] RSP: 002b:00007fe04467f048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 147.167739][ T8990] RAX: ffffffffffffffda RBX: 00007fe04558bf60 RCX: 00007fe0453fdbd9 [ 147.175709][ T8990] RDX: 0000000000000001 RSI: 0000000020004840 RDI: 0000000000000004 [ 147.183709][ T8990] RBP: 00007fe04467f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 147.191683][ T8990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 147.199646][ T8990] R13: 000000000000000b R14: 00007fe04558bf60 R15: 00007fff895dcda8 [ 147.207637][ T8990] [ 147.241663][ T8994] loop1: detected capacity change from 0 to 1024 [ 147.249294][ T8994] EXT4-fs: Ignoring removed oldalloc option [ 147.251965][ T8988] loop0: detected capacity change from 0 to 128 [ 147.261942][ T8994] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 147.297700][ T8998] loop3: detected capacity change from 0 to 128 [ 147.304244][ T8998] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 147.334469][ T9012] sg_write: data in/out 1744900352/17 bytes for SCSI command 0x15-- guessing data in; [ 147.334469][ T9012] program syz.2.1368 not setting count and/or reply_len properly [ 147.363726][ T9020] loop2: detected capacity change from 0 to 128 [ 147.381731][ T9020] FAT-fs (loop2): Unrecognized mount option "01777777777777777777777" or missing value [ 147.397825][ T29] kauditd_printk_skb: 54 callbacks suppressed [ 147.397838][ T29] audit: type=1400 audit(2000000108.679:1145): avc: denied { read } for pid=9024 comm="syz.4.1375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 147.426562][ T9027] loop3: detected capacity change from 0 to 128 [ 147.433188][ T9027] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 147.449474][ T9020] loop2: detected capacity change from 0 to 128 [ 147.456129][ T9020] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 147.585104][ T9027] loop3: detected capacity change from 0 to 128 [ 147.603640][ T9027] FAT-fs (loop3): Unrecognized mount option "" or missing value [ 147.835525][ T9036] loop3: detected capacity change from 0 to 128 [ 147.957222][ T29] audit: type=1400 audit(2000000109.229:1146): avc: denied { read } for pid=9043 comm="syz.3.1382" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 147.980342][ T29] audit: type=1400 audit(2000000109.229:1147): avc: denied { open } for pid=9043 comm="syz.3.1382" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 148.046191][ T9048] loop0: detected capacity change from 0 to 1024 [ 148.057540][ T9053] loop2: detected capacity change from 0 to 128 [ 148.064084][ T9053] FAT-fs (loop2): Unrecognized mount option "01777777777777777777777" or missing value [ 148.129743][ T9062] loop3: detected capacity change from 0 to 128 [ 148.138196][ T9062] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 148.200688][ T9062] loop3: detected capacity change from 0 to 128 [ 148.219538][ T9062] FAT-fs (loop3): Unrecognized mount option "" or missing value [ 148.713684][ T9088] FAULT_INJECTION: forcing a failure. [ 148.713684][ T9088] name failslab, interval 1, probability 0, space 0, times 0 [ 148.726417][ T9088] CPU: 1 PID: 9088 Comm: syz.2.1396 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 148.736515][ T9088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 148.746602][ T9088] Call Trace: [ 148.749925][ T9088] [ 148.752837][ T9088] dump_stack_lvl+0xf2/0x150 [ 148.757413][ T9088] dump_stack+0x15/0x20 [ 148.761594][ T9088] should_fail_ex+0x229/0x230 [ 148.766306][ T9088] ? mas_alloc_nodes+0x1d3/0x4a0 [ 148.771360][ T9088] __should_failslab+0x92/0xa0 [ 148.776182][ T9088] should_failslab+0x9/0x20 [ 148.780724][ T9088] kmem_cache_alloc_noprof+0x4c/0x290 [ 148.786165][ T9088] mas_alloc_nodes+0x1d3/0x4a0 [ 148.790998][ T9088] mas_preallocate+0x773/0xc30 [ 148.795815][ T9088] __split_vma+0x244/0x690 [ 148.800308][ T9088] vma_modify+0x108/0x1f0 [ 148.804646][ T9088] mbind_range+0x2ab/0x460 [ 148.809073][ T9088] __se_sys_mbind+0x915/0x1160 [ 148.813883][ T9088] __x64_sys_mbind+0x78/0x90 [ 148.818473][ T9088] x64_sys_call+0x1d0a/0x2d70 [ 148.823154][ T9088] do_syscall_64+0xc9/0x1c0 [ 148.827683][ T9088] ? clear_bhb_loop+0x55/0xb0 [ 148.832380][ T9088] ? clear_bhb_loop+0x55/0xb0 [ 148.837077][ T9088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.843034][ T9088] RIP: 0033:0x7f8fce282bd9 [ 148.847442][ T9088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.867136][ T9088] RSP: 002b:00007f8fcd504048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 148.875542][ T9088] RAX: ffffffffffffffda RBX: 00007f8fce410f60 RCX: 00007f8fce282bd9 [ 148.883496][ T9088] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000000020001000 [ 148.891519][ T9088] RBP: 00007f8fcd5040a0 R08: 0000000000000000 R09: 0000000000000000 [ 148.899609][ T9088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 148.907558][ T9088] R13: 000000000000000b R14: 00007f8fce410f60 R15: 00007ffdf23327d8 [ 148.915595][ T9088] [ 148.929634][ T9094] loop3: detected capacity change from 0 to 128 [ 148.936478][ T9094] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 148.951000][ T9096] loop2: detected capacity change from 0 to 1024 [ 148.957704][ T9096] EXT4-fs: Ignoring removed oldalloc option [ 148.964010][ T9096] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 149.010422][ T9105] delete_channel: no stack [ 149.190258][ T9128] loop0: detected capacity change from 0 to 1024 [ 149.197446][ T9128] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 149.235697][ T9131] FAULT_INJECTION: forcing a failure. [ 149.235697][ T9131] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 149.249222][ T9131] CPU: 0 PID: 9131 Comm: syz.1.1411 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 149.259283][ T9131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 149.269323][ T9131] Call Trace: [ 149.272642][ T9131] [ 149.275586][ T9131] dump_stack_lvl+0xf2/0x150 [ 149.280279][ T9131] dump_stack+0x15/0x20 [ 149.284443][ T9131] should_fail_ex+0x229/0x230 [ 149.289110][ T9131] should_fail+0xb/0x10 [ 149.293338][ T9131] should_fail_usercopy+0x1a/0x20 [ 149.298340][ T9131] _copy_from_iter+0x249/0xb00 [ 149.303112][ T9131] ? avc_has_perm+0xd4/0x160 [ 149.307701][ T9131] ? __rcu_read_unlock+0x4e/0x70 [ 149.312735][ T9131] rawv6_sendmsg+0x6f7/0xf40 [ 149.317399][ T9131] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 149.322554][ T9131] inet_sendmsg+0xc5/0xd0 [ 149.326933][ T9131] __sock_sendmsg+0x102/0x180 [ 149.331627][ T9131] ____sys_sendmsg+0x312/0x410 [ 149.336390][ T9131] __sys_sendmsg+0x1e9/0x280 [ 149.340986][ T9131] __x64_sys_sendmsg+0x46/0x50 [ 149.345749][ T9131] x64_sys_call+0xb25/0x2d70 [ 149.350413][ T9131] do_syscall_64+0xc9/0x1c0 [ 149.354963][ T9131] ? clear_bhb_loop+0x55/0xb0 [ 149.359711][ T9131] ? clear_bhb_loop+0x55/0xb0 [ 149.364389][ T9131] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.370366][ T9131] RIP: 0033:0x7fd8b086ebd9 [ 149.374772][ T9131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.394419][ T9131] RSP: 002b:00007fd8afaf0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 149.402829][ T9131] RAX: ffffffffffffffda RBX: 00007fd8b09fcf60 RCX: 00007fd8b086ebd9 [ 149.410793][ T9131] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000003 [ 149.418766][ T9131] RBP: 00007fd8afaf00a0 R08: 0000000000000000 R09: 0000000000000000 [ 149.426793][ T9131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.434786][ T9131] R13: 000000000000000b R14: 00007fd8b09fcf60 R15: 00007ffe9488ca18 [ 149.442822][ T9131] [ 149.618466][ T9145] __nla_validate_parse: 13 callbacks suppressed [ 149.618496][ T9145] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1417'. [ 149.634762][ T9147] FAULT_INJECTION: forcing a failure. [ 149.634762][ T9147] name failslab, interval 1, probability 0, space 0, times 0 [ 149.647453][ T9147] CPU: 1 PID: 9147 Comm: syz.4.1418 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 149.657540][ T9147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 149.667592][ T9147] Call Trace: [ 149.670920][ T9147] [ 149.673921][ T9147] dump_stack_lvl+0xf2/0x150 [ 149.678517][ T9147] dump_stack+0x15/0x20 [ 149.682713][ T9147] should_fail_ex+0x229/0x230 [ 149.687450][ T9147] ? nf_ct_ext_add+0xe6/0x1a0 [ 149.692156][ T9147] __should_failslab+0x92/0xa0 [ 149.697012][ T9147] should_failslab+0x9/0x20 [ 149.701538][ T9147] kmalloc_node_track_caller_noprof+0xa6/0x380 [ 149.707723][ T9147] krealloc_noprof+0x48/0xa0 [ 149.712322][ T9147] nf_ct_ext_add+0xe6/0x1a0 [ 149.716898][ T9147] init_conntrack+0x539/0x970 [ 149.721627][ T9147] nf_conntrack_in+0x899/0xf20 [ 149.726484][ T9147] ipv4_conntrack_local+0xc9/0x150 [ 149.731619][ T9147] ? __pfx_ipv4_conntrack_local+0x10/0x10 [ 149.737342][ T9147] nf_hook_slow+0x86/0x1b0 [ 149.741806][ T9147] __ip_local_out+0x2d6/0x300 [ 149.746555][ T9147] ? __pfx_dst_output+0x10/0x10 [ 149.751469][ T9147] ip_local_out+0x26/0xd0 [ 149.755867][ T9147] iptunnel_xmit+0x33f/0x460 [ 149.760468][ T9147] ip_tunnel_xmit+0x1685/0x1740 [ 149.765322][ T9147] ipgre_xmit+0x5f4/0x6d0 [ 149.769722][ T9147] dev_hard_start_xmit+0x119/0x3f0 [ 149.774833][ T9147] __dev_queue_xmit+0xf83/0x1e50 [ 149.779824][ T9147] ? __dev_queue_xmit+0x161/0x1e50 [ 149.784965][ T9147] ? pskb_expand_head+0x843/0x9e0 [ 149.790057][ T9147] __bpf_redirect+0x705/0x950 [ 149.794738][ T9147] bpf_clone_redirect+0x18a/0x200 [ 149.799900][ T9147] ? __pfx_bpf_clone_redirect+0x10/0x10 [ 149.805454][ T9147] ___bpf_prog_run+0x9ab/0x46c0 [ 149.810358][ T9147] __bpf_prog_run512+0x74/0xa0 [ 149.815221][ T9147] bpf_test_run+0x17d/0x430 [ 149.819736][ T9147] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.825855][ T9147] ? should_fail_ex+0xd7/0x230 [ 149.830672][ T9147] ? bpf_test_run+0xf1/0x430 [ 149.835292][ T9147] bpf_prog_test_run_skb+0x73c/0x9b0 [ 149.840578][ T9147] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 149.846477][ T9147] bpf_prog_test_run+0x26d/0x3e0 [ 149.851420][ T9147] __sys_bpf+0x400/0x7a0 [ 149.855692][ T9147] __x64_sys_bpf+0x43/0x50 [ 149.860106][ T9147] x64_sys_call+0x2655/0x2d70 [ 149.864788][ T9147] do_syscall_64+0xc9/0x1c0 [ 149.869367][ T9147] ? clear_bhb_loop+0x55/0xb0 [ 149.874043][ T9147] ? clear_bhb_loop+0x55/0xb0 [ 149.878737][ T9147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.884674][ T9147] RIP: 0033:0x7fe52585ebd9 [ 149.889134][ T9147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.908895][ T9147] RSP: 002b:00007fe524ae0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 149.917403][ T9147] RAX: ffffffffffffffda RBX: 00007fe5259ecf60 RCX: 00007fe52585ebd9 [ 149.925374][ T9147] RDX: 0000000000000048 RSI: 0000000020000080 RDI: 000000000000000a [ 149.933352][ T9147] RBP: 00007fe524ae00a0 R08: 0000000000000000 R09: 0000000000000000 [ 149.941390][ T9147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 149.949446][ T9147] R13: 000000000000000b R14: 00007fe5259ecf60 R15: 00007ffe88de7b08 [ 149.957432][ T9147] [ 149.991084][ T8142] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 150.002055][ T8142] CPU: 1 PID: 8142 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 150.012286][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 150.022326][ T8142] Call Trace: [ 150.025618][ T8142] [ 150.028535][ T8142] dump_stack_lvl+0xf2/0x150 [ 150.033212][ T8142] dump_stack+0x15/0x20 [ 150.037362][ T8142] dump_header+0x83/0x2d0 [ 150.041739][ T8142] oom_kill_process+0x33e/0x4c0 [ 150.046602][ T8142] out_of_memory+0x9af/0xbe0 [ 150.051199][ T8142] mem_cgroup_out_of_memory+0x13e/0x190 [ 150.056758][ T8142] try_charge_memcg+0x745/0xcd0 [ 150.061670][ T8142] ? __alloc_pages_noprof+0x194/0x360 [ 150.067030][ T8142] ? __rcu_read_unlock+0x4e/0x70 [ 150.071962][ T8142] __mem_cgroup_charge+0x63/0x100 [ 150.076972][ T8142] filemap_add_folio+0x53/0x1b0 [ 150.082077][ T8142] __filemap_get_folio+0x2f1/0x5b0 [ 150.087465][ T8142] filemap_fault+0x3a7/0xa60 [ 150.092118][ T8142] __do_fault+0xb6/0x200 [ 150.096359][ T8142] handle_mm_fault+0xdeb/0x2a80 [ 150.101208][ T8142] ? mas_walk+0x204/0x320 [ 150.105541][ T8142] exc_page_fault+0x3b9/0x650 [ 150.110208][ T8142] asm_exc_page_fault+0x26/0x30 [ 150.115047][ T8142] RIP: 0033:0x7f8fce157c5a [ 150.119448][ T8142] Code: db 34 b6 d7 82 de 1b 43 48 f7 a4 24 88 00 00 00 48 8b 05 49 ab de 00 48 69 8c 24 80 00 00 00 e8 03 00 00 48 c1 ea 12 48 01 ca <8b> 48 08 48 89 d0 41 39 cf 4c 0f 45 ea 4c 29 f0 48 3b 05 2f aa de [ 150.139046][ T8142] RSP: 002b:00007ffdf2332ae0 EFLAGS: 00010202 [ 150.145173][ T8142] RAX: 0000001b30920000 RBX: 0000000000000088 RCX: 0000000000024608 [ 150.153154][ T8142] RDX: 00000000000249d9 RSI: 00007ffdf2332b60 RDI: 0000000000000001 [ 150.161189][ T8142] RBP: 00007ffdf2332b3c R08: 000000003a43b443 R09: 7fffffffffffffff [ 150.169146][ T8142] R10: 00007f8fce3e70b8 R11: 00007f8fce3e7080 R12: 0000000000000032 [ 150.177102][ T8142] R13: 0000000000024695 R14: 00000000000245cb R15: 0000000000000018 [ 150.185065][ T8142] [ 150.189154][ T8142] memory: usage 307200kB, limit 307200kB, failcnt 644 [ 150.195922][ T8142] memory+swap: usage 307900kB, limit 9007199254740988kB, failcnt 0 [ 150.204716][ T8142] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 150.212096][ T8142] Memory cgroup stats for /syz2: [ 150.212238][ T8142] cache 8192 [ 150.220744][ T8142] rss 0 [ 150.223741][ T8142] shmem 0 [ 150.226746][ T8142] mapped_file 0 [ 150.230233][ T8142] dirty 0 [ 150.233175][ T8142] writeback 0 [ 150.236512][ T8142] workingset_refault_anon 372 [ 150.237701][ T9153] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1419'. [ 150.241203][ T8142] workingset_refault_file 874 [ 150.241212][ T8142] swap 716800 [ 150.258224][ T8142] swapcached 4096 [ 150.261846][ T8142] pgpgin 140015 [ 150.265289][ T8142] pgpgout 140012 [ 150.268912][ T8142] pgfault 159717 [ 150.272454][ T8142] pgmajfault 213 [ 150.276113][ T8142] inactive_anon 4096 [ 150.280060][ T8142] active_anon 0 [ 150.283511][ T8142] inactive_file 8192 [ 150.287440][ T8142] active_file 0 [ 150.290909][ T8142] unevictable 0 [ 150.294356][ T8142] hierarchical_memory_limit 314572800 [ 150.299873][ T8142] hierarchical_memsw_limit 9223372036854771712 [ 150.306043][ T8142] total_cache 8192 [ 150.309756][ T8142] total_rss 0 [ 150.313092][ T8142] total_shmem 0 [ 150.316587][ T8142] total_mapped_file 0 [ 150.320556][ T8142] total_dirty 0 [ 150.324079][ T8142] total_writeback 0 [ 150.327974][ T8142] total_workingset_refault_anon 372 [ 150.333203][ T8142] total_workingset_refault_file 874 [ 150.338418][ T8142] total_swap 716800 [ 150.342218][ T8142] total_swapcached 4096 [ 150.346393][ T8142] total_pgpgin 140015 [ 150.350363][ T8142] total_pgpgout 140012 [ 150.354424][ T8142] total_pgfault 159717 [ 150.358508][ T8142] total_pgmajfault 213 [ 150.362568][ T8142] total_inactive_anon 4096 [ 150.367006][ T8142] total_active_anon 0 [ 150.370978][ T8142] total_inactive_file 8192 [ 150.375436][ T8142] total_active_file 0 [ 150.379444][ T8142] total_unevictable 0 [ 150.383496][ T8142] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1399,pid=9095,uid=0 [ 150.398450][ T8142] Memory cgroup out of memory: Killed process 9095 (syz.2.1399) total-vm:82800kB, anon-rss:660kB, file-rss:10052kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000 [ 150.584403][ T9158] chnl_net:caif_netlink_parms(): no params data found [ 150.631812][ T9158] bridge0: port 1(bridge_slave_0) entered blocking state [ 150.638954][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.647525][ T9158] bridge_slave_0: entered allmulticast mode [ 150.654211][ T9158] bridge_slave_0: entered promiscuous mode [ 150.661405][ T9158] bridge0: port 2(bridge_slave_1) entered blocking state [ 150.668509][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.675803][ T9158] bridge_slave_1: entered allmulticast mode [ 150.677446][ T9185] FAULT_INJECTION: forcing a failure. [ 150.677446][ T9185] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 150.682412][ T9158] bridge_slave_1: entered promiscuous mode [ 150.695027][ T9185] CPU: 0 PID: 9185 Comm: syz.0.1423 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 150.710970][ T9185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 150.721017][ T9185] Call Trace: [ 150.724422][ T9185] [ 150.727351][ T9185] dump_stack_lvl+0xf2/0x150 [ 150.732042][ T9185] dump_stack+0x15/0x20 [ 150.736201][ T9185] should_fail_ex+0x229/0x230 [ 150.740980][ T9185] __should_fail_alloc_page+0xfd/0x110 [ 150.746520][ T9185] __alloc_pages_noprof+0x109/0x360 [ 150.751709][ T9185] ? ksys_ioperm+0x157/0x2e0 [ 150.756355][ T9185] __kmalloc_large_node+0x7a/0x120 [ 150.761466][ T9185] kmalloc_node_track_caller_noprof+0x248/0x380 [ 150.767706][ T9185] ? fput+0x13b/0x180 [ 150.771750][ T9185] kmemdup_noprof+0x2a/0x60 [ 150.776259][ T9185] ksys_ioperm+0x157/0x2e0 [ 150.780748][ T9185] ? __x64_sys_ioperm+0xd/0x20 [ 150.785501][ T9185] x64_sys_call+0x2849/0x2d70 [ 150.790171][ T9185] do_syscall_64+0xc9/0x1c0 [ 150.794699][ T9185] ? clear_bhb_loop+0x55/0xb0 [ 150.799367][ T9185] ? clear_bhb_loop+0x55/0xb0 [ 150.804031][ T9185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.809944][ T9185] RIP: 0033:0x7f8ae7e04bd9 [ 150.814344][ T9185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.833975][ T9185] RSP: 002b:00007f8ae7044048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ad [ 150.842381][ T9185] RAX: ffffffffffffffda RBX: 00007f8ae7f93110 RCX: 00007f8ae7e04bd9 [ 150.850414][ T9185] RDX: 0000000000000000 RSI: 000000000000009d RDI: 0000000000000000 [ 150.858438][ T9185] RBP: 00007f8ae70440a0 R08: 0000000000000000 R09: 0000000000000000 [ 150.866394][ T9185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 150.874350][ T9185] R13: 000000000000006e R14: 00007f8ae7f93110 R15: 00007ffe5bafbe28 [ 150.882333][ T9185] [ 150.932203][ T9158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 150.958378][ T9194] netlink: 4552 bytes leftover after parsing attributes in process `syz.3.1426'. [ 150.962894][ T9158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 150.967860][ T9194] netlink: 4552 bytes leftover after parsing attributes in process `syz.3.1426'. [ 150.994675][ T9158] team0: Port device team_slave_0 added [ 151.005873][ T9158] team0: Port device team_slave_1 added [ 151.028211][ T9158] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 151.035334][ T9158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.061286][ T9158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 151.158001][ T9158] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 151.164957][ T9158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.190973][ T9158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 151.259330][ T9158] hsr_slave_0: entered promiscuous mode [ 151.276310][ T9158] hsr_slave_1: entered promiscuous mode [ 151.282602][ T9213] netlink: 'syz.3.1432': attribute type 9 has an invalid length. [ 151.290435][ T9213] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1432'. [ 151.358949][ T9217] loop3: detected capacity change from 0 to 128 [ 151.365517][ T9217] FAT-fs (loop3): Unrecognized mount option "01777777777777777777777" or missing value [ 151.387381][ T8920] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.449812][ T9158] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.478233][ T8920] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.520850][ T9158] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.582703][ T8920] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.603805][ T9226] loop1: detected capacity change from 0 to 1024 [ 151.610520][ T9226] EXT4-fs: Ignoring removed oldalloc option [ 151.616942][ T9226] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 151.622906][ T9230] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1437'. [ 151.636177][ T9230] netlink: 4552 bytes leftover after parsing attributes in process `syz.0.1437'. [ 151.667458][ T9158] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.692900][ T8920] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.708815][ T29] audit: type=1400 audit(2000000112.989:1148): avc: denied { getopt } for pid=9235 comm="syz.0.1438" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 151.756597][ T9158] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.829340][ T8920] bridge_slave_1: left allmulticast mode [ 151.835056][ T8920] bridge_slave_1: left promiscuous mode [ 151.840898][ T8920] bridge0: port 2(bridge_slave_1) entered disabled state [ 151.850108][ T8920] bridge_slave_0: left allmulticast mode [ 151.855853][ T8920] bridge_slave_0: left promiscuous mode [ 151.861662][ T8920] bridge0: port 1(bridge_slave_0) entered disabled state [ 151.963650][ T9245] loop3: detected capacity change from 0 to 512 [ 151.972650][ T9245] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz.3.1440: casefold flag without casefold feature [ 151.988436][ T9245] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.1440: couldn't read orphan inode 15 (err -117) [ 152.003578][ T8920] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 152.018572][ T8920] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 152.031007][ T8920] bond0 (unregistering): Released all slaves [ 152.040917][ T9200] chnl_net:caif_netlink_parms(): no params data found [ 152.058309][ T9158] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 152.088529][ T8920] tipc: Disabling bearer [ 152.094430][ T8920] tipc: Left network mode [ 152.103052][ T9158] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 152.114778][ T9158] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 152.133013][ T9158] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 152.160387][ T9200] bridge0: port 1(bridge_slave_0) entered blocking state [ 152.167505][ T9200] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.180937][ T9200] bridge_slave_0: entered allmulticast mode [ 152.189696][ T9200] bridge_slave_0: entered promiscuous mode [ 152.199779][ T8920] hsr_slave_0: left promiscuous mode [ 152.205566][ T8920] hsr_slave_1: left promiscuous mode [ 152.211751][ T8920] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.219274][ T8920] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.228297][ T8920] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.235744][ T8920] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.249600][ T8920] veth1_macvtap: left promiscuous mode [ 152.255104][ T8920] veth0_macvtap: left promiscuous mode [ 152.260789][ T8920] veth1_vlan: left promiscuous mode [ 152.266055][ T8920] veth0_vlan: left promiscuous mode [ 152.373826][ T8920] team0 (unregistering): Port device team_slave_1 removed [ 152.386177][ T8920] team0 (unregistering): Port device team_slave_0 removed [ 152.419217][ T9224] syz.1.1435 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 152.430232][ T9224] CPU: 0 PID: 9224 Comm: syz.1.1435 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 152.440344][ T9224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 152.450468][ T9224] Call Trace: [ 152.453727][ T9224] [ 152.456712][ T9224] dump_stack_lvl+0xf2/0x150 [ 152.461291][ T9224] dump_stack+0x15/0x20 [ 152.465447][ T9224] dump_header+0x83/0x2d0 [ 152.469786][ T9224] oom_kill_process+0x33e/0x4c0 [ 152.474633][ T9224] out_of_memory+0x9af/0xbe0 [ 152.479271][ T9224] mem_cgroup_out_of_memory+0x13e/0x190 [ 152.484808][ T9224] try_charge_memcg+0x745/0xcd0 [ 152.489698][ T9224] ? _raw_spin_unlock+0x26/0x50 [ 152.494536][ T9224] ? radix_tree_lookup+0xf9/0x150 [ 152.499573][ T9224] mem_cgroup_swapin_charge_folio+0x107/0x1a0 [ 152.505649][ T9224] __read_swap_cache_async+0x2b9/0x520 [ 152.511170][ T9224] swap_cluster_readahead+0x276/0x3f0 [ 152.516552][ T9224] swapin_readahead+0xe2/0x7a0 [ 152.521308][ T9224] ? __filemap_get_folio+0x420/0x5b0 [ 152.526581][ T9224] ? swap_cache_get_folio+0x6e/0x210 [ 152.532088][ T9224] do_swap_page+0x3bc/0x1840 [ 152.536809][ T9224] ? cgroup_rstat_updated+0x99/0x550 [ 152.542193][ T9224] ? __rcu_read_lock+0x36/0x50 [ 152.546951][ T9224] handle_mm_fault+0x809/0x2a80 [ 152.551887][ T9224] ? mas_walk+0x204/0x320 [ 152.556263][ T9224] exc_page_fault+0x3b9/0x650 [ 152.561009][ T9224] asm_exc_page_fault+0x26/0x30 [ 152.565900][ T9224] RIP: 0033:0x7fd8b074352d [ 152.570298][ T9224] Code: 48 8b 05 96 b1 de 00 49 39 f4 4c 0f 42 e6 31 d2 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d 45 b5 2b 00 00 0f 8e 79 fe ff ff 3e f1 fe ff 49 39 c4 0f 82 e3 00 00 00 69 3d 53 b1 de 00 e8 03 [ 152.589989][ T9224] RSP: 002b:00007ffe9488cb00 EFLAGS: 00010202 [ 152.596038][ T9224] RAX: 0000000000000000 RBX: 00007fd8b09fea60 RCX: 0000000000000000 [ 152.603999][ T9224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555566c3c808 [ 152.611952][ T9224] RBP: 00007fd8b09fea60 R08: 0000000000000000 R09: 7fffffffffffffff [ 152.620031][ T9224] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000025365 [ 152.628079][ T9224] R13: 0000000000000032 R14: 00007fd8b09fea60 R15: 00007fd8b09fd038 [ 152.636073][ T9224] [ 152.639673][ T9224] memory: usage 307200kB, limit 307200kB, failcnt 633 [ 152.646811][ T9224] memory+swap: usage 308080kB, limit 9007199254740988kB, failcnt 0 [ 152.654705][ T9224] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 152.662009][ T9224] Memory cgroup stats for /syz1: [ 152.662239][ T9224] cache 8192 [ 152.670382][ T9224] rss 0 [ 152.673148][ T9224] shmem 0 [ 152.676091][ T9224] mapped_file 0 [ 152.679561][ T9224] dirty 0 [ 152.682491][ T9224] writeback 0 [ 152.685763][ T9224] workingset_refault_anon 438 [ 152.690536][ T9224] workingset_refault_file 1095 [ 152.695284][ T9224] swap 901120 [ 152.698669][ T9224] swapcached 4096 [ 152.702301][ T9224] pgpgin 152112 [ 152.705755][ T9224] pgpgout 152109 [ 152.709324][ T9224] pgfault 135897 [ 152.712863][ T9224] pgmajfault 286 [ 152.716395][ T9224] inactive_anon 0 [ 152.720000][ T9224] active_anon 0 [ 152.723443][ T9224] inactive_file 0 [ 152.727080][ T9224] active_file 8192 [ 152.730853][ T9224] unevictable 0 [ 152.734284][ T9224] hierarchical_memory_limit 314572800 [ 152.739708][ T9224] hierarchical_memsw_limit 9223372036854771712 [ 152.745864][ T9224] total_cache 8192 [ 152.749578][ T9224] total_rss 0 [ 152.752891][ T9224] total_shmem 0 [ 152.756429][ T9224] total_mapped_file 0 [ 152.760417][ T9224] total_dirty 0 [ 152.763900][ T9224] total_writeback 0 [ 152.767723][ T9224] total_workingset_refault_anon 438 [ 152.772893][ T9224] total_workingset_refault_file 1095 [ 152.778199][ T9224] total_swap 901120 [ 152.782034][ T9224] total_swapcached 4096 [ 152.786233][ T9224] total_pgpgin 152112 [ 152.790253][ T9224] total_pgpgout 152109 [ 152.794313][ T9224] total_pgfault 135897 [ 152.798373][ T9224] total_pgmajfault 286 [ 152.802461][ T9224] total_inactive_anon 0 [ 152.806604][ T9224] total_active_anon 0 [ 152.810571][ T9224] total_inactive_file 0 [ 152.814763][ T9224] total_active_file 8192 [ 152.818999][ T9224] total_unevictable 0 [ 152.822954][ T9224] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.832,pid=7090,uid=0 [ 152.837727][ T9224] Memory cgroup out of memory: Killed process 7091 (syz.1.832) total-vm:80752kB, anon-rss:452kB, file-rss:10124kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000 [ 152.856978][ T9200] bridge0: port 2(bridge_slave_1) entered blocking state [ 152.864145][ T9200] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.871351][ T9200] bridge_slave_1: entered allmulticast mode [ 152.877941][ T9200] bridge_slave_1: entered promiscuous mode [ 152.922548][ T9256] syzkaller0: entered promiscuous mode [ 152.928094][ T9256] syzkaller0: entered allmulticast mode [ 153.039051][ T9200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 153.089600][ T9200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 153.131086][ T9158] 8021q: adding VLAN 0 to HW filter on device bond0 [ 153.178086][ T9158] 8021q: adding VLAN 0 to HW filter on device team0 [ 153.185780][ T9200] team0: Port device team_slave_0 added [ 153.201989][ T9200] team0: Port device team_slave_1 added [ 153.227711][ T4716] bridge0: port 1(bridge_slave_0) entered blocking state [ 153.234780][ T4716] bridge0: port 1(bridge_slave_0) entered forwarding state [ 153.260682][ T4716] bridge0: port 2(bridge_slave_1) entered blocking state [ 153.267776][ T4716] bridge0: port 2(bridge_slave_1) entered forwarding state [ 153.394982][ T9158] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 153.405421][ T9158] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 153.443139][ T9200] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 153.450166][ T9200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 153.476114][ T9200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 153.537366][ T9200] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 153.544322][ T9200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 153.570256][ T9200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 153.659058][ T9200] hsr_slave_0: entered promiscuous mode [ 153.666491][ T9200] hsr_slave_1: entered promiscuous mode [ 153.672434][ T9200] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 153.681452][ T9200] Cannot create hsr debugfs directory [ 153.692958][ T9158] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 153.904178][ T9158] veth0_vlan: entered promiscuous mode [ 153.919478][ T9158] veth1_vlan: entered promiscuous mode [ 154.009931][ T9158] veth0_macvtap: entered promiscuous mode [ 154.050018][ T9158] veth1_macvtap: entered promiscuous mode [ 154.073753][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 154.084229][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.094069][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 154.104498][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.114411][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 154.124900][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.134737][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 154.145342][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.155200][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 154.165709][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.186518][ T9158] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 154.242914][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 154.253452][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.263401][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 154.273884][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.283691][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 154.294195][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.304035][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 154.314510][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.324500][ T9158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 154.334989][ T9158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 154.348938][ T9158] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 154.526552][ T9158] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.535311][ T9158] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.544579][ T9158] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.553680][ T9158] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.606354][ T9200] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 154.624738][ T9200] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 154.643106][ T9200] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 154.846162][ T9200] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 154.867832][ T30] oom_reaper: reaped process 7091 (syz.1.832), now anon-rss:28kB, file-rss:8908kB, shmem-rss:0kB [ 154.890262][ T9224] syz.1.1435 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 154.901340][ T9224] CPU: 1 PID: 9224 Comm: syz.1.1435 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 154.911499][ T9224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 154.921631][ T9224] Call Trace: [ 154.924905][ T9224] [ 154.927833][ T9224] dump_stack_lvl+0xf2/0x150 [ 154.932535][ T9224] dump_stack+0x15/0x20 [ 154.936708][ T9224] dump_header+0x83/0x2d0 [ 154.941112][ T9224] oom_kill_process+0x33e/0x4c0 [ 154.945980][ T9224] out_of_memory+0x9af/0xbe0 [ 154.950571][ T9224] mem_cgroup_out_of_memory+0x13e/0x190 [ 154.956130][ T9224] try_charge_memcg+0x745/0xcd0 [ 154.961049][ T9224] ? _raw_spin_unlock+0x26/0x50 [ 154.965901][ T9224] ? radix_tree_lookup+0xf9/0x150 [ 154.970930][ T9224] mem_cgroup_swapin_charge_folio+0x107/0x1a0 [ 154.977011][ T9224] __read_swap_cache_async+0x2b9/0x520 [ 154.982529][ T9224] swap_cluster_readahead+0x276/0x3f0 [ 154.987947][ T9224] swapin_readahead+0xe2/0x7a0 [ 154.992767][ T9224] ? __filemap_get_folio+0x420/0x5b0 [ 154.998054][ T9224] ? swap_cache_get_folio+0x6e/0x210 [ 155.003347][ T9224] do_swap_page+0x3bc/0x1840 [ 155.007945][ T9224] ? cgroup_rstat_updated+0x99/0x550 [ 155.013363][ T9224] ? __rcu_read_lock+0x36/0x50 [ 155.018151][ T9224] handle_mm_fault+0x809/0x2a80 [ 155.023069][ T9224] ? mas_walk+0x204/0x320 [ 155.027460][ T9224] exc_page_fault+0x3b9/0x650 [ 155.032120][ T9224] asm_exc_page_fault+0x26/0x30 [ 155.036957][ T9224] RIP: 0033:0x7fd8b074352d [ 155.041365][ T9224] Code: 48 8b 05 96 b1 de 00 49 39 f4 4c 0f 42 e6 31 d2 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d 45 b5 2b 00 00 0f 8e 79 fe ff ff 3e f1 fe ff 49 39 c4 0f 82 e3 00 00 00 69 3d 53 b1 de 00 e8 03 [ 155.061026][ T9224] RSP: 002b:00007ffe9488cb00 EFLAGS: 00010202 [ 155.067113][ T9224] RAX: 0000000000000000 RBX: 00007fd8b09fea60 RCX: 0000000000000000 [ 155.075087][ T9224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555566c3c808 [ 155.083048][ T9224] RBP: 00007fd8b09fea60 R08: 0000000000000000 R09: 7fffffffffffffff [ 155.091056][ T9224] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000025365 [ 155.099011][ T9224] R13: 0000000000000032 R14: 00007fd8b09fea60 R15: 00007fd8b09fd038 [ 155.106965][ T9224] [ 155.110319][ T9224] memory: usage 307200kB, limit 307200kB, failcnt 5463 [ 155.117356][ T9224] memory+swap: usage 308016kB, limit 9007199254740988kB, failcnt 0 [ 155.125287][ T9224] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 155.132652][ T9224] Memory cgroup stats for /syz1: [ 155.132840][ T9224] cache 8192 [ 155.141022][ T9224] rss 4096 [ 155.144046][ T9224] shmem 0 [ 155.146994][ T9224] mapped_file 0 [ 155.150440][ T9224] dirty 0 [ 155.153369][ T9224] writeback 4096 [ 155.156945][ T9224] workingset_refault_anon 439 [ 155.161619][ T9224] workingset_refault_file 1095 [ 155.166407][ T9224] swap 835584 [ 155.169683][ T9224] swapcached 4096 [ 155.173374][ T9224] pgpgin 152113 [ 155.177195][ T9224] pgpgout 152110 [ 155.180733][ T9224] pgfault 135901 [ 155.184268][ T9224] pgmajfault 288 [ 155.188003][ T9224] inactive_anon 0 [ 155.191660][ T9224] active_anon 0 [ 155.195209][ T9224] inactive_file 0 [ 155.198863][ T9224] active_file 8192 [ 155.202576][ T9224] unevictable 0 [ 155.206050][ T9224] hierarchical_memory_limit 314572800 [ 155.211431][ T9224] hierarchical_memsw_limit 9223372036854771712 [ 155.217603][ T9224] total_cache 8192 [ 155.221311][ T9224] total_rss 4096 [ 155.224843][ T9224] total_shmem 0 [ 155.228321][ T9224] total_mapped_file 0 [ 155.232311][ T9224] total_dirty 0 [ 155.235208][ T9200] 8021q: adding VLAN 0 to HW filter on device bond0 [ 155.235923][ T9224] total_writeback 4096 [ 155.235931][ T9224] total_workingset_refault_anon 439 [ 155.235938][ T9224] total_workingset_refault_file 1095 [ 155.235944][ T9224] total_swap 835584 [ 155.235950][ T9224] total_swapcached 4096 [ 155.235956][ T9224] total_pgpgin 152113 [ 155.235994][ T9224] total_pgpgout 152110 [ 155.273132][ T9224] total_pgfault 135901 [ 155.277217][ T9224] total_pgmajfault 288 [ 155.281361][ T9224] total_inactive_anon 0 [ 155.285506][ T9224] total_active_anon 0 [ 155.289503][ T9224] total_inactive_file 0 [ 155.293646][ T9224] total_active_file 8192 [ 155.297940][ T9224] total_unevictable 0 [ 155.301916][ T9224] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1435,pid=9224,uid=0 [ 155.303220][ T9200] 8021q: adding VLAN 0 to HW filter on device team0 [ 155.316740][ T9224] Memory cgroup out of memory: Killed process 9224 (syz.1.1435) total-vm:82800kB, anon-rss:452kB, file-rss:10004kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000 [ 155.395946][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.403082][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 155.432243][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.439343][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 155.824813][ T9200] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 155.914540][ T1569] bridge_slave_1: left allmulticast mode [ 155.920234][ T1569] bridge_slave_1: left promiscuous mode [ 155.925948][ T1569] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.956514][ T1569] bridge_slave_0: left allmulticast mode [ 155.962177][ T1569] bridge_slave_0: left promiscuous mode [ 155.968018][ T1569] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.976319][ T7357] EXT4-fs unmount: 19 callbacks suppressed [ 155.976334][ T7357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.099061][ T1569] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 156.109571][ T1569] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 156.119570][ T1569] bond0 (unregistering): Released all slaves [ 156.197295][ T9200] veth0_vlan: entered promiscuous mode [ 156.210836][ T9200] veth1_vlan: entered promiscuous mode [ 156.229658][ T1569] hsr_slave_0: left promiscuous mode [ 156.235556][ T1569] hsr_slave_1: left promiscuous mode [ 156.241438][ T1569] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 156.248874][ T1569] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 156.256980][ T1569] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 156.264454][ T1569] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 156.275571][ T1569] veth1_macvtap: left promiscuous mode [ 156.281236][ T1569] veth0_macvtap: left promiscuous mode [ 156.287084][ T1569] veth1_vlan: left promiscuous mode [ 156.292612][ T1569] veth0_vlan: left promiscuous mode [ 156.298222][ T9316] syz.1.1450[9316] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.298400][ T9316] syz.1.1450[9316] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.402746][ T1569] team0 (unregistering): Port device team_slave_1 removed [ 156.425495][ T1569] team0 (unregistering): Port device team_slave_0 removed [ 156.554328][ T9200] veth0_macvtap: entered promiscuous mode [ 156.564847][ T9200] veth1_macvtap: entered promiscuous mode [ 156.579468][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.589984][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.599823][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.610356][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.620192][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.630611][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.640424][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.650851][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.660780][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.671355][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.689233][ T9200] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 156.721681][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.732222][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.742068][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.752493][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.762552][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.773044][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.783106][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.793626][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.803462][ T9200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.814022][ T9200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.833836][ T9200] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 156.870101][ T9200] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.879287][ T9200] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.888019][ T9200] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.897075][ T9200] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.372959][ T9337] Cannot find add_set index 0 as target [ 157.395678][ T9340] SELinux: Context "yz: is not valid (left unmapped). [ 157.403044][ T29] audit: type=1400 audit(2000000118.679:1149): avc: denied { relabelto } for pid=9339 comm="syz.3.1457" name="file0" dev="tmpfs" ino=588 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=22797A3A [ 157.427363][ T29] audit: type=1400 audit(2000000118.679:1150): avc: denied { associate } for pid=9339 comm="syz.3.1457" name="file0" dev="tmpfs" ino=588 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=22797A3A [ 157.490845][ T29] audit: type=1326 audit(2000000118.769:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9334 comm="syz.1.1455" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8b086ebd9 code=0x0 [ 157.750278][ T29] audit: type=1400 audit(2000000118.789:1152): avc: denied { unlink } for pid=7645 comm="syz-executor" name="file0" dev="tmpfs" ino=588 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=22797A3A [ 158.173460][ T9357] loop4: detected capacity change from 0 to 512 [ 158.206657][ T9357] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.1463: attempt to clear invalid blocks 2 len 1 [ 158.232328][ T9357] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 158.261351][ T9371] xt_CT: You must specify a L4 protocol and not use inversions on it [ 158.269584][ T9357] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1463: invalid indirect mapped block 1819239214 (level 0) [ 158.302427][ T9357] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1463: invalid indirect mapped block 1819239214 (level 1) [ 158.339905][ T9357] EXT4-fs (loop4): 1 truncate cleaned up [ 158.345927][ T9357] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.359840][ T9357] EXT4-fs warning (device loop4): dx_probe:832: inode #2: comm syz.4.1463: Unrecognised inode hash code 20 [ 158.365070][ T9380] loop2: detected capacity change from 0 to 2048 [ 158.371331][ T9357] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz.4.1463: Corrupt directory, running e2fsck is recommended [ 158.391544][ T9357] EXT4-fs warning (device loop4): dx_probe:832: inode #2: comm syz.4.1463: Unrecognised inode hash code 20 [ 158.403023][ T9357] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz.4.1463: Corrupt directory, running e2fsck is recommended [ 158.735434][ T9380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.748552][ T9158] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.788673][ T9390] loop3: detected capacity change from 0 to 512 [ 158.795235][ T9390] EXT4-fs: Ignoring removed i_version option [ 158.803327][ T9390] EXT4-fs (loop3): orphan cleanup on readonly fs [ 158.814662][ T9390] EXT4-fs warning (device loop3): ext4_enable_quotas:7078: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 158.831730][ T9390] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 158.875201][ T9390] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #13: comm syz.3.1477: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 158.912916][ T9390] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.1477: couldn't read orphan inode 13 (err -117) [ 158.940123][ T9390] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 159.034376][ T7645] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.340390][ T9412] loop0: detected capacity change from 0 to 128 [ 159.381269][ T9412] FAT-fs (loop0): Unrecognized mount option "01777777777777777777777" or missing value [ 159.546995][ T9416] netlink: 'syz.0.1484': attribute type 9 has an invalid length. [ 159.599685][ T9402] syz.3.1479 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 159.610732][ T9402] CPU: 0 PID: 9402 Comm: syz.3.1479 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 159.620796][ T9402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 159.630860][ T9402] Call Trace: [ 159.634139][ T9402] [ 159.637062][ T9402] dump_stack_lvl+0xf2/0x150 [ 159.641670][ T9402] dump_stack+0x15/0x20 [ 159.645912][ T9402] dump_header+0x83/0x2d0 [ 159.650243][ T9402] oom_kill_process+0x33e/0x4c0 [ 159.655133][ T9402] out_of_memory+0x9af/0xbe0 [ 159.659788][ T9402] mem_cgroup_out_of_memory+0x13e/0x190 [ 159.665409][ T9402] try_charge_memcg+0x745/0xcd0 [ 159.670285][ T9402] ? _raw_spin_unlock+0x26/0x50 [ 159.675223][ T9402] ? radix_tree_lookup+0xf9/0x150 [ 159.680358][ T9402] mem_cgroup_swapin_charge_folio+0x107/0x1a0 [ 159.686431][ T9402] __read_swap_cache_async+0x2b9/0x520 [ 159.691980][ T9402] swap_cluster_readahead+0x276/0x3f0 [ 159.697371][ T9402] swapin_readahead+0xe2/0x7a0 [ 159.702136][ T9402] ? __filemap_get_folio+0x420/0x5b0 [ 159.707422][ T9402] ? swap_cache_get_folio+0x6e/0x210 [ 159.712729][ T9402] do_swap_page+0x3bc/0x1840 [ 159.717320][ T9402] ? cgroup_rstat_updated+0x99/0x550 [ 159.722697][ T9402] ? __rcu_read_lock+0x36/0x50 [ 159.727475][ T9402] handle_mm_fault+0x809/0x2a80 [ 159.732330][ T9402] ? mas_walk+0x204/0x320 [ 159.736732][ T9402] exc_page_fault+0x3b9/0x650 [ 159.741395][ T9402] asm_exc_page_fault+0x26/0x30 [ 159.746340][ T9402] RIP: 0033:0x7fe0452d2564 [ 159.750814][ T9402] Code: 00 69 3d 53 b1 de 00 e8 03 00 00 48 8d 1d 14 9a 2b 00 e8 df b5 12 00 eb 11 0f 1f 44 00 00 48 81 c3 d8 00 00 00 48 39 dd 74 bc <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 87 ee ff ff eb [ 159.770408][ T9402] RSP: 002b:00007fff895dce90 EFLAGS: 00010202 [ 159.776542][ T9402] RAX: 0000000000000000 RBX: 00007fe04558d040 RCX: 0000000000000000 [ 159.784497][ T9402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555791a0808 [ 159.792602][ T9402] RBP: 00007fe04558da60 R08: 0000000000000000 R09: 7fffffffffffffff [ 159.800558][ T9402] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000270fe [ 159.808593][ T9402] R13: 0000000000000032 R14: 00007fe04558da60 R15: 00007fe04558c038 [ 159.816618][ T9402] [ 159.820122][ T9402] memory: usage 307148kB, limit 307200kB, failcnt 723 [ 159.827233][ T9402] memory+swap: usage 307344kB, limit 9007199254740988kB, failcnt 0 [ 159.835130][ T9402] kmem: usage 295448kB, limit 9007199254740988kB, failcnt 0 [ 159.842451][ T9402] Memory cgroup stats for /syz3: [ 159.856245][ T9402] cache 11968512 [ 159.864772][ T9402] rss 8192 [ 159.867801][ T9402] shmem 0 [ 159.870723][ T9402] mapped_file 11968512 [ 159.874771][ T9402] dirty 0 [ 159.877720][ T9402] writeback 0 [ 159.880987][ T9402] workingset_refault_anon 141 [ 159.885724][ T9402] workingset_refault_file 915 [ 159.890422][ T9402] swap 200704 [ 159.893700][ T9402] swapcached 8192 [ 159.897388][ T9402] pgpgin 135569 [ 159.900843][ T9402] pgpgout 132645 [ 159.904503][ T9402] pgfault 117128 [ 159.908073][ T9402] pgmajfault 101 [ 159.911610][ T9402] inactive_anon 4096 [ 159.915485][ T9402] active_anon 4096 [ 159.919231][ T9402] inactive_file 12288 [ 159.923192][ T9402] active_file 0 [ 159.926715][ T9402] unevictable 11956224 [ 159.930777][ T9402] hierarchical_memory_limit 314572800 [ 159.936250][ T9402] hierarchical_memsw_limit 9223372036854771712 [ 159.942420][ T9402] total_cache 11968512 [ 159.946485][ T9402] total_rss 8192 [ 159.950017][ T9402] total_shmem 0 [ 159.953457][ T9402] total_mapped_file 11968512 [ 159.958049][ T9402] total_dirty 0 [ 159.961494][ T9402] total_writeback 0 [ 159.965282][ T9402] total_workingset_refault_anon 141 [ 159.970488][ T9402] total_workingset_refault_file 915 [ 159.975757][ T9402] total_swap 200704 [ 159.979594][ T9402] total_swapcached 8192 [ 159.983790][ T9402] total_pgpgin 135569 [ 159.987802][ T9402] total_pgpgout 132645 [ 159.991857][ T9402] total_pgfault 117128 [ 159.995910][ T9402] total_pgmajfault 101 [ 160.000053][ T9402] total_inactive_anon 4096 [ 160.004461][ T9402] total_active_anon 4096 [ 160.008720][ T9402] total_inactive_file 12288 [ 160.013212][ T9402] total_active_file 0 [ 160.017198][ T9402] total_unevictable 11956224 [ 160.021776][ T9402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1479,pid=9402,uid=0 [ 160.036834][ T9402] Memory cgroup out of memory: Killed process 9402 (syz.3.1479) total-vm:80752kB, anon-rss:452kB, file-rss:9884kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000 [ 160.111767][ T9423] loop0: detected capacity change from 0 to 512 [ 160.125340][ T9423] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz.0.1485: casefold flag without casefold feature [ 160.138332][ T9423] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz.0.1485: couldn't read orphan inode 15 (err -117) [ 160.201640][ T9423] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.316347][ T8230] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.400511][ T9434] loop0: detected capacity change from 0 to 512 [ 160.401834][ T9433] FAULT_INJECTION: forcing a failure. [ 160.401834][ T9433] name failslab, interval 1, probability 0, space 0, times 0 [ 160.416324][ T9434] EXT4-fs: Ignoring removed mblk_io_submit option [ 160.419401][ T9433] CPU: 0 PID: 9433 Comm: syz.1.1490 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 160.435825][ T9433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 160.445879][ T9433] Call Trace: [ 160.449164][ T9433] [ 160.452114][ T9433] dump_stack_lvl+0xf2/0x150 [ 160.456716][ T9433] dump_stack+0x15/0x20 [ 160.460995][ T9433] should_fail_ex+0x229/0x230 [ 160.465685][ T9433] ? __get_vm_area_node+0xf7/0x1b0 [ 160.470806][ T9433] __should_failslab+0x92/0xa0 [ 160.475580][ T9433] should_failslab+0x9/0x20 [ 160.480084][ T9433] kmalloc_node_trace_noprof+0x50/0x2b0 [ 160.485635][ T9433] __get_vm_area_node+0xf7/0x1b0 [ 160.490631][ T9433] __vmalloc_node_range_noprof+0x2eb/0xef0 [ 160.496518][ T9433] ? copy_process+0x3a9/0x1f90 [ 160.501354][ T9433] ? mod_objcg_state+0x39b/0x4e0 [ 160.506289][ T9433] dup_task_struct+0x4a1/0x710 [ 160.511108][ T9433] ? copy_process+0x3a9/0x1f90 [ 160.515927][ T9433] copy_process+0x3a9/0x1f90 [ 160.520515][ T9433] ? __rcu_read_unlock+0x4e/0x70 [ 160.525526][ T9433] kernel_clone+0x16a/0x570 [ 160.530017][ T9433] __x64_sys_clone+0xe8/0x120 [ 160.534686][ T9433] x64_sys_call+0x23e7/0x2d70 [ 160.539699][ T9433] do_syscall_64+0xc9/0x1c0 [ 160.544192][ T9433] ? clear_bhb_loop+0x55/0xb0 [ 160.548857][ T9433] ? clear_bhb_loop+0x55/0xb0 [ 160.553585][ T9433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.559541][ T9433] RIP: 0033:0x7fd8b086ebd9 [ 160.563943][ T9433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.583538][ T9433] RSP: 002b:00007fd8afaefff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 160.591942][ T9433] RAX: ffffffffffffffda RBX: 00007fd8b09fcf60 RCX: 00007fd8b086ebd9 [ 160.599978][ T9433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 160.608001][ T9433] RBP: 00007fd8afaf00a0 R08: 0000000000000000 R09: 0000000000000000 [ 160.616033][ T9433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 160.624028][ T9433] R13: 000000000000000b R14: 00007fd8b09fcf60 R15: 00007ffe9488ca18 [ 160.632030][ T9433] [ 160.635272][ T9433] syz.1.1490: vmalloc error: size 16384, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0 [ 160.650475][ T9433] CPU: 0 PID: 9433 Comm: syz.1.1490 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 160.660635][ T9433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 160.670689][ T9433] Call Trace: [ 160.673954][ T9433] [ 160.676867][ T9433] dump_stack_lvl+0xf2/0x150 [ 160.681571][ T9433] dump_stack+0x15/0x20 [ 160.685716][ T9433] warn_alloc+0x145/0x1b0 [ 160.690071][ T9433] ? kmalloc_node_trace_noprof+0x50/0x2b0 [ 160.695784][ T9433] __vmalloc_node_range_noprof+0x310/0xef0 [ 160.701658][ T9433] ? mod_objcg_state+0x39b/0x4e0 [ 160.706607][ T9433] dup_task_struct+0x4a1/0x710 [ 160.711444][ T9433] ? copy_process+0x3a9/0x1f90 [ 160.716286][ T9433] copy_process+0x3a9/0x1f90 [ 160.720871][ T9433] ? __rcu_read_unlock+0x4e/0x70 [ 160.725829][ T9433] kernel_clone+0x16a/0x570 [ 160.730358][ T9433] __x64_sys_clone+0xe8/0x120 [ 160.735034][ T9433] x64_sys_call+0x23e7/0x2d70 [ 160.739774][ T9433] do_syscall_64+0xc9/0x1c0 [ 160.744268][ T9433] ? clear_bhb_loop+0x55/0xb0 [ 160.748932][ T9433] ? clear_bhb_loop+0x55/0xb0 [ 160.753602][ T9433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.759560][ T9433] RIP: 0033:0x7fd8b086ebd9 [ 160.763959][ T9433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.783678][ T9433] RSP: 002b:00007fd8afaefff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 160.792204][ T9433] RAX: ffffffffffffffda RBX: 00007fd8b09fcf60 RCX: 00007fd8b086ebd9 [ 160.800289][ T9433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 160.808283][ T9433] RBP: 00007fd8afaf00a0 R08: 0000000000000000 R09: 0000000000000000 [ 160.816296][ T9433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 160.824250][ T9433] R13: 000000000000000b R14: 00007fd8b09fcf60 R15: 00007ffe9488ca18 [ 160.832283][ T9433] [ 160.835348][ T9433] Mem-Info: [ 160.838556][ T9434] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 160.846899][ T9433] active_anon:130 inactive_anon:9704 isolated_anon:0 [ 160.846899][ T9433] active_file:3690 inactive_file:9630 isolated_file:0 [ 160.846899][ T9433] unevictable:26 dirty:48 writeback:0 [ 160.846899][ T9433] slab_reclaimable:2673 slab_unreclaimable:17110 [ 160.846899][ T9433] mapped:17793 shmem:3434 pagetables:613 [ 160.846899][ T9433] sec_pagetables:0 bounce:0 [ 160.846899][ T9433] kernel_misc_reclaimable:0 [ 160.846899][ T9433] free:1894228 free_pcp:20561 free_cma:0 [ 160.892016][ T9433] Node 0 active_anon:520kB inactive_anon:38816kB active_file:14760kB inactive_file:38520kB unevictable:104kB isolated(anon):0kB isolated(file):0kB mapped:71172kB dirty:192kB writeback:0kB shmem:13736kB writeback_tmp:0kB kernel_stack:3344kB pagetables:2452kB sec_pagetables:0kB all_unreclaimable? no [ 160.920288][ T9433] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 160.947439][ T9433] lowmem_reserve[]: 0 2874 7852 0 [ 160.952546][ T9433] Node 0 DMA32 free:2957152kB boost:0kB min:4144kB low:7084kB high:10024kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2960692kB mlocked:0kB bounce:0kB free_pcp:3540kB local_pcp:3540kB free_cma:0kB [ 160.981240][ T9433] lowmem_reserve[]: 0 0 4978 0 [ 160.986101][ T9433] Node 0 Normal free:4652764kB boost:0kB min:7180kB low:12276kB high:17372kB reserved_highatomic:0KB active_anon:11888kB inactive_anon:27332kB active_file:14760kB inactive_file:38520kB unevictable:104kB writepending:192kB present:5242880kB managed:5098208kB mlocked:104kB bounce:0kB free_pcp:30808kB local_pcp:1028kB free_cma:0kB [ 160.987547][ T9434] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=9042c118, mo2=0002] [ 161.017050][ T9433] lowmem_reserve[]: 0 0 0 0 [ 161.029626][ T9433] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 161.036504][ T9434] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz.0.1489: corrupted in-inode xattr: e_value size too large [ 161.042255][ T9433] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 4*16kB (M) 6*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 1*2048kB (M) 720*4096kB (M) = 2957152kB [ 161.072398][ T9433] Node 0 Normal: 2477*4kB (UME) 1717*8kB (UME) 1670*16kB (UME) 1221*32kB (UME) 855*64kB (UME) 348*128kB (UME) 385*256kB (UME) 236*512kB (UME) 294*1024kB (UME) 99*2048kB (UE) 915*4096kB (UM) = 4659740kB [ 161.075938][ T9200] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, [ 161.092328][ T9433] Node 0 hugepages_total=7 hugepages_free=0 hugepages_surp=3 hugepages_size=2048kB [ 161.092349][ T9433] 13882 total pagecache pages [ 161.092355][ T9433] 0 pages in swap cache [ 161.092360][ T9433] Free swap = 124220kB [ 161.092366][ T9433] Total swap = 124996kB [ 161.100772][ T9200] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 161.109871][ T9433] 2097051 pages RAM [ 161.116575][ T9434] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz.0.1489: couldn't read orphan inode 15 (err -117) [ 161.118654][ T9433] 0 pages HighMem/MovableOnly [ 161.123251][ T9434] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.126912][ T9433] 78486 pages reserved [ 161.174703][ T9200] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.198885][ T9434] EXT4-fs error (device loop0): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz.0.1489: bad entry in directory: inode out of bounds - offset=24, inode=262155, rec_len=20, size=1024 fake=0 [ 161.230674][ T8230] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.247790][ T29] audit: type=1326 audit(2000000122.519:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz.4.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa136b7bd9 code=0x7ffc0000 [ 161.248836][ T9442] netlink: 'syz.1.1495': attribute type 10 has an invalid length. [ 161.271363][ T29] audit: type=1326 audit(2000000122.519:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz.4.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa136b7bd9 code=0x7ffc0000 [ 161.271389][ T29] audit: type=1326 audit(2000000122.519:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz.4.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa136b7bd9 code=0x7ffc0000 [ 161.271411][ T29] audit: type=1326 audit(2000000122.519:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz.4.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa136b7bd9 code=0x7ffc0000 [ 161.271463][ T29] audit: type=1326 audit(2000000122.529:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz.4.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa136b7bd9 code=0x7ffc0000 [ 161.271485][ T29] audit: type=1326 audit(2000000122.529:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz.4.1494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa136b7bd9 code=0x7ffc0000 [ 161.413982][ T9442] team0: Port device netdevsim1 added [ 161.422259][ T9447] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1497'. [ 161.428043][ T9461] loop4: detected capacity change from 0 to 1024 [ 161.441853][ T9447] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 161.452452][ T9447] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 161.461135][ T9467] loop0: detected capacity change from 0 to 128 [ 161.467563][ T9447] gretap1: entered promiscuous mode [ 161.469416][ T9467] FAT-fs (loop0): Unrecognized mount option "01777777777777777777777" or missing value [ 161.472769][ T9447] gretap1: entered allmulticast mode [ 161.489639][ T9461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.501783][ T9451] netlink: 'syz.1.1495': attribute type 10 has an invalid length. [ 161.520649][ T9158] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.530816][ T9451] team0: Port device netdevsim1 removed [ 161.540143][ T9451] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 161.544892][ T9467] loop0: detected capacity change from 0 to 128 [ 161.676493][ T9483] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 161.687964][ T9488] loop0: detected capacity change from 0 to 256 [ 161.750493][ T9495] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 161.793550][ T9503] loop0: detected capacity change from 0 to 1024 [ 161.817183][ T9503] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.875641][ T8230] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.944763][ T9509] loop3: detected capacity change from 0 to 1024 [ 161.952469][ T9509] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 161.963167][ T9509] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 161.973299][ T9509] EXT4-fs (loop3): can't mount with commit=4, fs mounted w/o journal [ 161.991917][ T9511] loop0: detected capacity change from 0 to 128 [ 162.001073][ T9511] FAT-fs (loop0): Unrecognized mount option "01777777777777777777777" or missing value [ 162.033161][ T9509] loop3: detected capacity change from 0 to 512 [ 162.041979][ T9511] loop0: detected capacity change from 0 to 128 [ 162.048633][ T9509] EXT4-fs: Ignoring removed orlov option [ 162.054892][ T9509] EXT4-fs: Mount option(s) incompatible with ext2 [ 162.212815][ T9516] loop3: detected capacity change from 0 to 128 [ 162.271903][ T9518] loop1: detected capacity change from 0 to 2048 [ 162.336269][ T9518] loop1: p1 < > p4 [ 162.340778][ T9518] loop1: p4 size 8388608 extends beyond EOD, truncated [ 162.346226][ T9520] netlink: 'syz.0.1521': attribute type 9 has an invalid length. [ 162.355441][ T9520] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1521'. [ 162.592281][ T9529] loop1: detected capacity change from 0 to 1024 [ 162.728967][ T9535] loop1: detected capacity change from 0 to 256 [ 162.900298][ T9538] loop3: detected capacity change from 0 to 128 [ 162.920845][ T9540] netlink: 'syz.1.1529': attribute type 9 has an invalid length. [ 162.931379][ T9538] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 162.963196][ T9538] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.975591][ T9546] netlink: 'syz.1.1532': attribute type 9 has an invalid length. [ 162.985878][ T9548] netlink: 4552 bytes leftover after parsing attributes in process `syz.4.1533'. [ 163.002460][ T9548] netlink: 4552 bytes leftover after parsing attributes in process `syz.4.1533'. [ 163.064906][ T7645] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 163.079201][ T9549] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1531'. [ 163.089318][ T29] kauditd_printk_skb: 57 callbacks suppressed [ 163.089331][ T29] audit: type=1326 audit(2000000124.369:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9560 comm="syz.1.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8b086ebd9 code=0x7ffc0000 [ 163.143216][ T29] audit: type=1326 audit(2000000124.399:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9560 comm="syz.1.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7fd8b086ebd9 code=0x7ffc0000 [ 163.166714][ T29] audit: type=1326 audit(2000000124.399:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9560 comm="syz.1.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8b086ebd9 code=0x7ffc0000 [ 163.211075][ T9572] loop1: detected capacity change from 0 to 2048 [ 163.247314][ T9574] sg_write: process 298 (syz.3.1536) changed security contexts after opening file descriptor, this is not allowed. [ 163.280372][ T9570] loop4: detected capacity change from 0 to 8192 [ 163.317702][ T9580] loop3: detected capacity change from 0 to 128 [ 163.327358][ T9580] tipc: Started in network mode [ 163.332325][ T9580] tipc: Node identity 4070d9636f05f51f, cluster identity 4711 [ 163.339869][ T9580] tipc: Enabling of bearer rejected, failed to enable media [ 163.356575][ T9570] loop4: p1 p2 p4 < > [ 163.360655][ T9570] loop4: partition table partially beyond EOD, truncated [ 163.379354][ T9570] loop4: p1 size 108986237 extends beyond EOD, truncated [ 163.389269][ T9582] netlink: 'syz.1.1543': attribute type 9 has an invalid length. [ 163.398888][ T9570] loop4: p2 start 65535 is beyond EOD, truncated [ 163.405268][ T9570] loop4: p4 start 50331648 is beyond EOD, truncated [ 163.437942][ T9570] netlink: 320 bytes leftover after parsing attributes in process `syz.4.1539'. [ 163.451940][ T9584] loop0: detected capacity change from 0 to 512 [ 163.460571][ T9570] rdma_rxe: rxe_newlink: failed to add veth1 [ 163.508295][ T9584] EXT4-fs (loop0): orphan cleanup on readonly fs [ 163.514684][ T9584] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13 [ 163.584895][ T9584] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 163.601978][ T9584] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.1527: attempt to clear invalid blocks 2 len 1 [ 163.624145][ T9584] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1527: invalid indirect mapped block 1819239214 (level 0) [ 163.650730][ T9584] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1527: invalid indirect mapped block 1819239214 (level 1) [ 163.714195][ T9584] EXT4-fs (loop0): 1 truncate cleaned up [ 163.721059][ T9584] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 163.855404][ T9614] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0 [ 163.881625][ T9616] netlink: 'syz.2.1554': attribute type 4 has an invalid length. [ 163.897170][ T29] audit: type=1400 audit(2000000125.169:1219): avc: denied { shutdown } for pid=9605 comm="syz.1.1550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 163.959492][ T9618] netlink: 'syz.4.1555': attribute type 9 has an invalid length. [ 164.047048][ T9625] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1558'. [ 164.135296][ T9629] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1560'. [ 164.157563][ T9629] veth1_macvtap: left promiscuous mode [ 164.184646][ T9629] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1560'. [ 164.247300][ T9633] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 164.257339][ T9633] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 164.514263][ T9584] EXT4-fs error (device loop0): ext4_lookup:1851: inode #2: comm syz.0.1527: 'file1' linked to parent dir [ 164.532030][ T9646] FAULT_INJECTION: forcing a failure. [ 164.532030][ T9646] name failslab, interval 1, probability 0, space 0, times 0 [ 164.544737][ T9646] CPU: 0 PID: 9646 Comm: syz.3.1567 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 164.554803][ T9646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 164.564891][ T9646] Call Trace: [ 164.568169][ T9646] [ 164.571094][ T9646] dump_stack_lvl+0xf2/0x150 [ 164.575737][ T9646] dump_stack+0x15/0x20 [ 164.579944][ T9646] should_fail_ex+0x229/0x230 [ 164.584641][ T9646] ? mqueue_init_fs_context+0x38/0x230 [ 164.590169][ T9646] __should_failslab+0x92/0xa0 [ 164.594932][ T9646] should_failslab+0x9/0x20 [ 164.599440][ T9646] kmalloc_trace_noprof+0x4b/0x2a0 [ 164.604558][ T9646] mqueue_init_fs_context+0x38/0x230 [ 164.609918][ T9646] alloc_fs_context+0x3f8/0x4e0 [ 164.614842][ T9646] fs_context_for_mount+0x21/0x30 [ 164.619984][ T9646] mq_init_ns+0xab/0x2f0 [ 164.624234][ T9646] copy_ipcs+0x218/0x3a0 [ 164.628482][ T9646] create_new_namespaces+0x135/0x430 [ 164.633011][ T9650] loop1: detected capacity change from 0 to 1024 [ 164.633803][ T9646] unshare_nsproxy_namespaces+0xe6/0x120 [ 164.644508][ T9650] EXT4-fs: Ignoring removed oldalloc option [ 164.645805][ T9646] ksys_unshare+0x3da/0x720 [ 164.645834][ T9646] ? ksys_write+0x178/0x1b0 [ 164.645856][ T9646] __x64_sys_unshare+0x1f/0x30 [ 164.658617][ T9650] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 164.660670][ T9646] x64_sys_call+0x2ca9/0x2d70 [ 164.679907][ T9646] do_syscall_64+0xc9/0x1c0 [ 164.684442][ T9646] ? clear_bhb_loop+0x55/0xb0 [ 164.689121][ T9646] ? clear_bhb_loop+0x55/0xb0 [ 164.693854][ T9646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.699808][ T9646] RIP: 0033:0x7fe0453fdbd9 [ 164.704216][ T9646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.723909][ T9646] RSP: 002b:00007fe04467f048 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 164.732398][ T9646] RAX: ffffffffffffffda RBX: 00007fe04558bf60 RCX: 00007fe0453fdbd9 [ 164.740426][ T9646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200 [ 164.748490][ T9646] RBP: 00007fe04467f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 164.756531][ T9646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 164.764542][ T9646] R13: 000000000000000b R14: 00007fe04558bf60 R15: 00007fff895dcda8 [ 164.772520][ T9646] [ 164.780968][ T9650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.801942][ T9654] loop3: detected capacity change from 0 to 256 [ 164.936070][ T9650] ================================================================== [ 164.944175][ T9650] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64 [ 164.953986][ T9650] [ 164.956294][ T9650] read-write to 0xffffffff860079c0 of 8 bytes by interrupt on cpu 0: [ 164.964339][ T9650] tick_do_update_jiffies64+0x112/0x1b0 [ 164.969878][ T9650] tick_nohz_handler+0x7c/0x2d0 [ 164.974718][ T9650] __hrtimer_run_queues+0x20d/0x5e0 [ 164.979904][ T9650] hrtimer_interrupt+0x210/0x7b0 [ 164.984832][ T9650] __sysvec_apic_timer_interrupt+0x5c/0x1a0 [ 164.990719][ T9650] sysvec_apic_timer_interrupt+0x6e/0x80 [ 164.996340][ T9650] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 165.002309][ T9650] kmem_cache_alloc_noprof+0x78/0x290 [ 165.007671][ T9650] getname_flags+0x86/0x360 [ 165.012167][ T9650] getname+0x19/0x20 [ 165.016051][ T9650] do_sys_openat2+0x67/0x120 [ 165.020627][ T9650] __x64_sys_openat+0xf3/0x120 [ 165.025374][ T9650] x64_sys_call+0x1057/0x2d70 [ 165.030041][ T9650] do_syscall_64+0xc9/0x1c0 [ 165.034535][ T9650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.040415][ T9650] [ 165.042721][ T9650] read to 0xffffffff860079c0 of 8 bytes by task 9650 on cpu 1: [ 165.050261][ T9650] mem_cgroup_flush_stats_ratelimited+0x29/0x100 [ 165.056592][ T9650] count_shadow_nodes+0x6b/0x230 [ 165.061517][ T9650] do_shrink_slab+0x5a/0x690 [ 165.066105][ T9650] shrink_slab+0x4ed/0x860 [ 165.070511][ T9650] shrink_node+0xa0d/0x13c0 [ 165.075013][ T9650] do_try_to_free_pages+0x3c6/0xc50 [ 165.080196][ T9650] try_to_free_mem_cgroup_pages+0x1eb/0x4e0 [ 165.086075][ T9650] try_charge_memcg+0x27a/0xcd0 [ 165.090916][ T9650] obj_cgroup_charge_pages+0xbd/0x1d0 [ 165.096278][ T9650] __memcg_kmem_charge_page+0x9d/0x170 [ 165.101729][ T9650] __alloc_pages_noprof+0x1bc/0x360 [ 165.106913][ T9650] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 165.112272][ T9650] alloc_pages_noprof+0xe1/0x100 [ 165.117198][ T9650] __vmalloc_node_range_noprof+0x719/0xef0 [ 165.123016][ T9650] kvmalloc_node_noprof+0x121/0x170 [ 165.128232][ T9650] ip_set_alloc+0x1f/0x30 [ 165.132559][ T9650] hash_netiface_create+0x273/0x730 [ 165.137757][ T9650] ip_set_create+0x359/0x8a0 [ 165.142340][ T9650] nfnetlink_rcv_msg+0x4a9/0x570 [ 165.147268][ T9650] netlink_rcv_skb+0x12c/0x230 [ 165.152027][ T9650] nfnetlink_rcv+0x16c/0x15b0 [ 165.156695][ T9650] netlink_unicast+0x58d/0x660 [ 165.161448][ T9650] netlink_sendmsg+0x5ca/0x6e0 [ 165.166210][ T9650] __sock_sendmsg+0x140/0x180 [ 165.170887][ T9650] ____sys_sendmsg+0x312/0x410 [ 165.175639][ T9650] __sys_sendmsg+0x1e9/0x280 [ 165.180219][ T9650] __x64_sys_sendmsg+0x46/0x50 [ 165.184982][ T9650] x64_sys_call+0xb25/0x2d70 [ 165.189562][ T9650] do_syscall_64+0xc9/0x1c0 [ 165.194058][ T9650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.199942][ T9650] [ 165.202249][ T9650] value changed: 0x00000000ffffcb0f -> 0x00000000ffffcb10 [ 165.209364][ T9650] [ 165.211672][ T9650] Reported by Kernel Concurrency Sanitizer on: [ 165.217820][ T9650] CPU: 1 PID: 9650 Comm: syz.1.1569 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0 [ 165.227872][ T9650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 165.237912][ T9650] ================================================================== [ 165.323248][ T9666] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1573'. [ 165.745548][ T7357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.389909][ T8230] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.