last executing test programs: 13.976755485s ago: executing program 2 (id=3247): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x0, 0x4, 0x12}, 0x48) r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2}, 0x48) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x3, 0x1, 0x0, r2}, @call={0x85, 0x0, 0x0, 0x26}]}, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r3, 0x5}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20) shutdown(r0, 0x1) 13.900214721s ago: executing program 2 (id=3248): bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}}]}, &(0x7f0000000200)='GPL\x00', 0xa}, 0x90) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000200)=[{}, {0x0, 0x1}]}) (async) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='kmem_cache_free\x00', r0}, 0x10) (async) r1 = socket(0x10, 0x800, 0x0) connect$netlink(r1, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc) accept$phonet_pipe(r1, &(0x7f00000003c0), &(0x7f0000000400)=0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) r4 = dup2(r2, r3) (async) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) (async) write$eventfd(r2, &(0x7f0000000340)=0x1, 0x8) r5 = accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000300)=0x10, 0x800) (async) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x12ec, 0x32, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x12d8, 0x1, [@m_connmark={0x15c, 0x2, 0x0, 0x0, {{0xd}, {0x58, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x5, 0x1}, 0x5b}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x7, 0x0, 0x5, 0x8}, 0x1}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x4, 0x5, 0xa}, 0x4}}]}, {0xd5, 0x6, "08d0e7f39331b2c01d7aa8e315902bd0079c75502be8083e6ac7252f7d59f75fa34f6f471b28dc4def1ce967cafa798a380e24f6423e5ac97ff27ff328a822cd16d466499de5089bc8e5dec32e4c75a01001ce6d6676e7170261dca4fe6a3e86695351223f3d9eeee234287ea7d18a9fbe296b54669033f6aa092d35cbbd40f8dc2f4a2b4c2bc2900375f3e4c7ae4063ccb65f3610672255a4ba4d664ecb9ef231994685830c39920192614d584783ffaa107fc84953cef293a44ee276b0fddaf6802356f335224380c5314afbb9a88dc8"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_skbmod={0x106c, 0x5, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x2}, @TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @link_local}, @TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xbb57}]}, {0x1000, 0x6, "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"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_skbmod={0x10c, 0x0, 0x0, 0x0, {{0xb}, {0xb4, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x0, 0xfffffffa, 0x10000000, 0xfffffff9}}}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x0, 0x5, 0x3, 0x8, 0x80}, 0x8}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x1}, @TCA_SKBMOD_SMAC={0xa, 0x4, @multicast}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x0, 0x6, 0x1, 0x3, 0x8}}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_SMAC={0xa, 0x4, @multicast}, @TCA_SKBMOD_SMAC={0xa}]}, {0x2f, 0x6, "4c894c133dc6f262fe1265c17bec4266922c78d4beb0ccec10fc29418a661a7d442c8706fcdf7774f59ef1"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}]}, 0x12ec}}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) (async) r7 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x40, 0x24, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x10, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0xfff}]}}]}, 0x40}}, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r4, 0x89f2, &(0x7f0000000540)={'ip6gre0\x00', &(0x7f00000004c0)={'syztnl0\x00', 0x0, 0x4, 0xf6, 0x13, 0x3, 0x70, @loopback, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7, 0x7, 0xa, 0xffffffff}}) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000580)={'team0\x00', 0x0}) (async, rerun: 32) r11 = socket$packet(0x11, 0x2, 0x300) (rerun: 32) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r11, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) (async, rerun: 32) r13 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 32) sendmsg$nl_route_sched(r13, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r12}}, 0x24}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000005c0)={'batadv0\x00', 0x0}) (async) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f00000006c0)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000dc0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000d80)={&(0x7f0000000700)=ANY=[@ANYBLOB="54060000", @ANYRES16=0x0, @ANYBLOB="00042abd7000ffdbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="44000280400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004002500000008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="bc00028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004008100000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004008709000008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000f000400726f756e64726f62696e000008000100", @ANYRES32=0x0, @ANYBLOB="4400028040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000400000008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="480102803800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=r9, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e74000000000000000000000000000005000300030000000800040009000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000500000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000050003000300000008000400090000005c000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b0000002c000400cbff0906fcffffff02000d00040000000600057f020000000700074800000000810002500300000008000100", @ANYRES32=r10, @ANYBLOB="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", @ANYRES32=r12, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="e01e028040000100240001006c625f686173685f737461747300000004fdff00000000000000000000000000050003000b0000000800040001000000080007000000000038000100240001006e6f746966795f70656572735f636f750000000000000500030003000000080004000400000038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400001000003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=r14, @ANYBLOB="40000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040000000000080007000000000038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400060000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="7c00028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000800000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000100000008000600", @ANYRES32=r15, @ANYBLOB], 0x654}, 0x1, 0x0, 0x0, 0x84810}, 0x4000000) r16 = syz_open_procfs(0x0, &(0x7f0000000040)='environ\x00') readv(r16, &(0x7f0000000180)=[{&(0x7f0000000100)=""/26, 0x1a}], 0x119) 9.424876398s ago: executing program 2 (id=3355): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000a80)=ANY=[@ANYBLOB="680000001300070127bd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="000000003503010008001300", @ANYRES32=0x0, @ANYBLOB="08001e0002000000140035"], 0x68}}, 0x0) (fail_nth: 5) 9.192646646s ago: executing program 2 (id=3356): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{}, {0x1d}, {0x6}]}, 0x10) sendmmsg$inet(r0, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0}, 0x33fe0}], 0x1, 0x0) 9.166938129s ago: executing program 2 (id=3357): r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x0, 0x141341) r1 = socket$inet6(0xa, 0x2fcc4b60fa1d73bb, 0x5) setsockopt$inet6_int(r1, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x41}}, 0x80000008}, 0x1c) r2 = socket(0x2, 0x2, 0x0) sendmsg$nl_route(r2, 0x0, 0x0) bind$unix(r2, &(0x7f0000000000)=@abs, 0x6e) r3 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00') listen(r2, 0x101) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0}) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x161c4) ioperm(0x0, 0x6, 0x8) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) r4 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r4, &(0x7f0000000000)={0x18, 0x0, {0x2, @dev, 'veth1_to_batadv\x00'}}, 0x1e) r5 = socket$pppoe(0x18, 0x1, 0x0) r6 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r6, &(0x7f0000000000)={0x18, 0x0, {0x2, @broadcast, 'team_slave_1\x00'}}, 0x1e) connect$pppoe(r5, &(0x7f0000000000)={0x18, 0x0, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x36}, 'veth1_to_batadv\x00'}}, 0x1e) connect$pppoe(r5, &(0x7f0000000040)={0x18, 0x0, {0x1080, @multicast, 'veth0_to_team\x00'}}, 0x1e) connect$pppoe(0xffffffffffffffff, &(0x7f0000000100)={0x18, 0x0, {0x1, @multicast, 'netpci0\x00'}}, 0x1e) timerfd_settime(r3, 0x1, &(0x7f0000000140)={{0x77359400}, {0x77359400}}, 0x0) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000340)={'pimreg0\x00', {0x2, 0x4e24, @rand_addr=0x64010101}}) sendmsg$TIPC_NL_LINK_RESET_STATS(r2, 0x0, 0x24048804) r7 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$bt_hci(r7, &(0x7f0000000000)={0x27}, 0x74) sendmmsg$unix(r7, &(0x7f0000001d00)=[{{&(0x7f0000000e80)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb9e04af97171671f3329b", 0xb}, {0x0}], 0x2, 0x0, 0x0, 0x1}}], 0x1, 0x4008000) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) memfd_create(&(0x7f0000000080)='\x8f\xdc/+\xb1\x04\xdby\xc0\xc4\x0e\vem1\xc1\xf8\xa6\x8dN\xc0\xa3w\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0xe, 0xfe9, &(0x7f00000004c0)=""/4073, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000400}, 0x90) 9.067996717s ago: executing program 2 (id=3361): ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=0x0) ptrace(0x10, 0x1) (async, rerun: 64) r1 = inotify_init1(0x0) (rerun: 64) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f0000000600)={0x0, 0x0}) ptrace$cont(0x20, r2, 0x0, 0xffffffffffffffff) (async, rerun: 64) prlimit64(r0, 0x5, &(0x7f0000000140)={0xec, 0x2}, &(0x7f0000000180)) (rerun: 64) syz_emit_ethernet(0xc6, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x0, 0xb8, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@cipso={0x86, 0x8, 0x3, [{0x0, 0x2}]}]}}, {{0x80, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}]}}, {"23436680a45a35f960540fc1e50d6631980de4b20f39c37b42f524dbb1a261084d83ba475d234c2fd76638d4cd5778db119ffaa82f0d67c251181c59ad02a6892b26287f6313763b21e9f17323faf5063ccd6949591159045153ab48269e3e35f2455186783736c4a7867cd7e082fa4f278a279563684c1d9b413df76779db4fa79d4069"}}}}}}, 0x0) 2.962974007s ago: executing program 1 (id=3481): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@bridge_newneigh={0x30, 0x1c, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x4d, 0x9}, [@NDA_DST_IPV6={0x14, 0x1, @rand_addr=' \x01\x00'}]}, 0x30}}, 0x0) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r5 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r4, 0x0, 0x25, 0xd, @void}, 0x10) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) close(r6) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x58}, 0x90) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYRESDEC=r7], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r8}, 0x10) bpf$MAP_CREATE_RINGBUF(0x12, 0x0, 0x0) syz_read_part_table(0x1052, &(0x7f0000000000)="$eJzsz72twjAYBdCbl2cl6RiBNajSsQH7MANMQEvBhsgockAsgBDSOYWvr3+KL3zXZVrW/7eT8z1/SYaUpJQk422XOUm/PpinpPZJt5Rtef7bt3j1DH1K17abFsecxozrda05XD86GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8iEcAAAD//7J4CYI=") socketpair$nbd(0x1, 0x1, 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0) r9 = open_tree(0xffffffffffffffff, 0x0, 0x0) ioctl$TUNGETFEATURES(r9, 0x800454cf, &(0x7f0000001080)) r10 = dup(r4) setsockopt$inet_IP_IPSEC_POLICY(r10, 0x0, 0x10, &(0x7f0000000b80)={{{@in=@rand_addr=0xfffffffc, @in6=@loopback}}, {{@in=@multicast2}, 0x0, @in6=@mcast1}}, 0xe8) ioctl$VT_RESIZE(0xffffffffffffffff, 0x4b2f, 0x0) fsopen(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, 0x0) 2.730530406s ago: executing program 1 (id=3488): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1800000070000100000000006d0000000700d52a", @ANYRES32=0x0], 0x18}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_call\x00'}, 0x10) r1 = socket$kcm(0x21, 0x2, 0xa) sendmsg$kcm(r1, &(0x7f0000000300)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e20, 0x6, @remote, 0x6}}, 0x80, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}, 0xc1) r2 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x200000, &(0x7f0000000480)={[{@noblock_validity}, {}, {@data_journal}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x81}}, {@orlov}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@nomblk_io_submit}]}, 0x3, 0x595, &(0x7f0000001680)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001280)=ANY=[], 0x835, 0x0) setxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newtaction={0x64, 0x30, 0x9, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000002c0)=0x0) prctl$PR_SCHED_CORE(0x3e, 0x4, r4, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) shutdown(0xffffffffffffffff, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) r5 = fsopen(&(0x7f0000000200)='rpc_pipefs\x00', 0x1) fsconfig$FSCONFIG_SET_PATH_EMPTY(r5, 0x4, &(0x7f0000000240)='*\x00', &(0x7f0000000280)='./file1\x00', r2) sched_setaffinity(0x0, 0x0, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) listen(r0, 0x0) 2.696834829s ago: executing program 1 (id=3489): open(&(0x7f0000000180)='./bus\x00', 0xa37e, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000100), 0x1c) mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0xf6ffffffffffffff, &(0x7f0000000300)='trans=rdma,') 2.6861851s ago: executing program 1 (id=3490): r0 = socket(0x15, 0x5, 0x0) getsockopt(r0, 0x200000000114, 0x2721, &(0x7f000001eec0)=""/102394, &(0x7f0000000040)=0x18ffa) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$rds(0x15, 0x5, 0x0) r2 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000040)=0x10, 0x800) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x2b, 0xdcfe, 0xfffffffffffffff8, 0x4, 0x9, 0x4]}, &(0x7f0000000100)=0x78) (async) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000006c0)=0x2, 0x4) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) (async) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="3c00000011000100000000000000000007000000", @ANYRES32=r4, @ANYBLOB="00000000000000001c001a8018000580140005800800020000000000080001"], 0x3c}}, 0x0) ioctl$sock_proto_private(r1, 0x89e0, &(0x7f0000001080)) 2.648344772s ago: executing program 1 (id=3491): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000340), 0xffff, r2}, 0x38) 2.592160497s ago: executing program 1 (id=3492): socket$inet6(0xa, 0x0, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='blkio.throttle.io_serviced\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) ftruncate(r1, 0x100030) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="58000000020605003f00000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0) 988.221379ms ago: executing program 3 (id=3510): r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000800)="21ae", 0x2}], 0x1, 0x0, 0x0, 0x900}, 0x60}], 0x1, 0x0) 919.881344ms ago: executing program 3 (id=3511): r0 = socket$netlink(0x10, 0x3, 0x0) unshare(0x22020600) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000440)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x3, 0x431, &(0x7f0000000940)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) r2 = syz_open_procfs$namespace(r1, &(0x7f0000000080)='ns/time\x00') setns(r2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0xc, &(0x7f0000000000)=0x201, 0x4) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@ipv6_getaddrlabel={0x1c, 0x4a, 0x3, 0x0, 0x0, {0xa, 0x0, 0x80}}, 0x1c}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) (async) unshare(0x22020600) (async) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000440)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x3, 0x431, &(0x7f0000000940)="$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") (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) (async) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)) (async) syz_open_procfs$namespace(r1, &(0x7f0000000080)='ns/time\x00') (async) setns(r2, 0x0) (async) socket$nl_route(0x10, 0x3, 0x0) (async) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0xc, &(0x7f0000000000)=0x201, 0x4) (async) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@ipv6_getaddrlabel={0x1c, 0x4a, 0x3, 0x0, 0x0, {0xa, 0x0, 0x80}}, 0x1c}}, 0x0) (async) close_range(r0, 0xffffffffffffffff, 0x0) (async) 911.274265ms ago: executing program 0 (id=3514): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10) syz_emit_ethernet(0x36, &(0x7f0000000840)={@local, @link_local={0x8}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x0, 0xfffe}}}}}}, 0x0) 874.776918ms ago: executing program 0 (id=3515): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000000)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x1c}, {0x6}]}, 0x10) connect$inet6(r0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000001b80), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={&(0x7f0000001bc0)={0x38, r3, 0x1, 0x1f4, 0x0, {{}, {}, {0x1c, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'macvlan0\x00'}}}}}, 0x38}}, 0x0) 759.314338ms ago: executing program 3 (id=3516): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140), 0x106}}, 0x20) syz_init_net_socket$nfc_raw(0x27, 0x0, 0x0) syz_open_procfs(0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0xb15, 0x0, 0x0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x111}}, 0x20) close_range(r1, 0xffffffffffffffff, 0xdd000000) 758.838818ms ago: executing program 0 (id=3517): r0 = socket$l2tp6(0xa, 0x2, 0x73) sendmmsg$inet6(r0, &(0x7f0000003e40)=[{{&(0x7f0000002080)={0xa, 0x0, 0x0, @local}, 0x1c, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382) r2 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n0xffffffffffffffff}) connect$unix(r5, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000f80)=[{{&(0x7f0000000a80)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000b00)="e4a6db6cc398fa90f176ee955ee59cb76c459c383e6636bb17552fbc9e29b120bfde32ea83eeacafdfa50076463a63087dc76ae13e4cd37baf67ab001eb62fff26bd13362d61ff98f3408b19e94c231a003f95bc6257866dfe7085cd1d58a21c69b9", 0x62}, {&(0x7f0000000400)}, {&(0x7f00000010c0)="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", 0x11b}, {&(0x7f0000000fc0)="c8b51bac9438224874f7faceaa486e6a429148c80dbd0212082a6b123c1e4992ba7372ba69b3ea801103f07e5e4aadcf342f2f3eaa4f6fd9020958e701358d49e6d0e4bdf8547cdbd7ab30ee6f3ba16bdedb215f9849807d3e1108473da71759330a88fc582e7c2004f8925c3becaa9774a6299e952adffdabc7804f072938df6a578d4232f35d8d7f6ffc91480e87db259e364095e76103d93394e4b0b8b617630f627980e612488263eae8a62ebb85a337f4d775e1e9df7e7d38447bfd09bc20cd82dc288cefea93d8c23bfbae9f4fc461afe2d56ce3bf69a7ee3b5a8270193ce16583143cd2", 0xe7}, {&(0x7f0000000d40)="48cda1c7c5b1fbe6d87571b923ee37afcb82d8739959a56d68d8efb8eecc44b853fd6d47cabe2a4436d722d67dc7f0cfc854577660b79472d78cbf16053d181642e498a027c703b4bf2286bc2f6855aa427e1625816e9c0407fd290876d1bea8e4c5ab9930", 0x65}, {&(0x7f0000000400)}, {&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000000e00)="1ce6a5126077be487401409ece7fed5d1574aa070e21c727321d24dc83483bf46657ab7a1c55fbdef17c69e5a25d0f8e94082a2042fc17ecb6ee6a3308ca137eb5080321d9f70646cb5a5d4a615871206f246d371df010e7501df3008863aa835b866239e52e651f3ecae7ab8cb3e3a47ec62d25b5b33e1abbc6e0be6558fd0dae6c47837c9ade918cbf8521b05ac04ea0a35dee5aae223ceed171c05c7f95a0f57c054df0bff16f4ca0a9b8b749de58f06f736a65103c3f007cc94d2906e3e527a1131917f1932c8ea93c9f59698ccadc01377f1acc", 0xd6}], 0x8, 0x0, 0x0, 0x804}}], 0x1, 0x800) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000180)=0x4c000000) 454.453593ms ago: executing program 3 (id=3523): socket$nl_netfilter(0x10, 0x3, 0xc) (async) r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x0, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x2, 0xdd, &(0x7f0000000380)=""/221, 0x41000, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000002c0)={0x2, 0x3, 0x4, 0xf932}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000300)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, r0, 0xffffffffffffffff], &(0x7f00000006c0)=[{0x1, 0x4, 0xd, 0x9}, {0x5, 0x1, 0x7, 0xb}, {0x0, 0x3, 0x6, 0x6}, {0x4, 0x2, 0x2, 0x1}, {0x2, 0x4, 0xc, 0xd}, {0x4, 0x4, 0xa, 0x5}, {0x2, 0x0, 0xa, 0x4}, {0x5, 0x4, 0x7, 0x5}, {0x3, 0x3, 0x3, 0xb}], 0x10, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1}, 0x10) (async) gettid() (async) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000010000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000116608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0xde, &(0x7f0000000340)=""/222}, 0x90) r2 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r5 = dup(r4) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000006000100000000000000000018110000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x0}, 0x90) (async) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000008c0)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@access_any}], [{@appraise_type}, {@appraise}, {@fsmagic={'fsmagic', 0x3d, 0x8000000000000000}}, {@audit}, {@audit}, {@dont_measure}]}}) write$P9_RLERRORu(r5, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) (async) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000500)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000600)=[{0x3, 0x0, [0x0, 0x34, 0x3, 0x0, 0xff, 0x2, 0x7, 0x5, 0x1, 0x0, 0x7ff, 0x3, 0x0, 0x7, 0x400002, 0x7]}], 0xffffffffffffffff, 0x1, 0x1, 0x48}}, 0x20) write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}}) (async) sendmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0) r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) sendfile(r7, 0xffffffffffffffff, 0x0, 0x2) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x2f, 0x0, 0x0, &(0x7f00000000c0)}, 0x10120) 195.832333ms ago: executing program 4 (id=3526): write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x4058534c, &(0x7f00000000c0)={0x0, 0x0, {0x3}}) tkill(0x0, 0x7) r0 = socket$inet6(0xa, 0x3, 0xff) sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f0000000040)={0xfffd, 0x0, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x44870) 195.256864ms ago: executing program 4 (id=3527): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) inotify_init() inotify_init() openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x185442, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) socket$caif_seqpacket(0x25, 0x5, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x600}, 0x0, &(0x7f0000000040)={0x3ff}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0) 108.454331ms ago: executing program 4 (id=3528): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB="5800000055003def01000000fcdbdf2507000000", @ANYRES32, @ANYBLOB="200002"], 0x58}}, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x500, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x0, 0x0, {0x7, r3}, [@MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x1, 0x0, 0x0, {@ip4=@broadcast, 0x86dd}}}]}, 0x38}}, 0x0) r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(0xffffffffffffffff, &(0x7f0000008080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x160) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x7, 0x5, 0x4, 0x1000, r0, 0x6, '\x00', r3, r4, 0x3, 0x0, 0x5, 0x5}, 0x2d) syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, 0x0, 0x0) r5 = socket$inet6_sctp(0xa, 0x0, 0x84) setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r6}, 0x10) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000000200)=ANY=[], 0x9) sendto$inet6(r5, &(0x7f0000000100)="ea", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) 58.892695ms ago: executing program 4 (id=3529): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x3000000}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0) 219.91µs ago: executing program 4 (id=3530): r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0) setreuid(0x0, 0xee00) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000040)="5883565980040d8c560a067f9e45ff8105005800fd470400945f640094272d7061d328bb4331fd3d5d47d22dc65231982aa7470000000000008000f0fffeffe809000020fff5dd0000086381c2a114000000000000000070c83bc2d9b1ef73834782078e5401040000000000003f9027049fbdd4ee3091609115a7974ca988cf4f11c0808c9bb2df59560b29332c22acfe7c3452be065826a836129009323945f4f9a2511608aeffa9a50fbf853da0441e6b2a4ef3a37c60ce0000000000", 0xbe}], 0x1) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000"]) 0s ago: executing program 4 (id=3531): bpf$PROG_LOAD(0x5, 0x0, 0x0) socket(0x0, 0x0, 0x0) ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{}, {0xa4}, {0x6}]}, 0x10) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x40000000, @dev, 0xd}, 0x1c) kernel console output (not intermixed with test programs): nk_parms(): no params data found [ 162.448696][ T3199] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 162.509888][T12524] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.517005][T12524] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.553112][T12524] bridge_slave_0: entered allmulticast mode [ 162.562939][T12557] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2791'. [ 162.576581][T12524] bridge_slave_0: entered promiscuous mode [ 162.596630][T12524] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.603863][T12524] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.632484][T12524] bridge_slave_1: entered allmulticast mode [ 162.639991][T12524] bridge_slave_1: entered promiscuous mode [ 162.670885][ T3199] bridge_slave_1: left allmulticast mode [ 162.676666][ T3199] bridge_slave_1: left promiscuous mode [ 162.682336][ T3199] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.695470][ T3199] bridge_slave_0: left allmulticast mode [ 162.701153][ T3199] bridge_slave_0: left promiscuous mode [ 162.706912][ T3199] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.818637][ T3199] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 162.832301][ T3199] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 162.843221][ T3199] bond0 (unregistering): Released all slaves [ 162.861422][T12561] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2792'. [ 162.904603][T12524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 162.929270][T12524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 162.940435][T12565] netlink: 'syz.4.2793': attribute type 4 has an invalid length. [ 163.005388][T12524] team0: Port device team_slave_0 added [ 163.016847][ T3199] hsr_slave_0: left promiscuous mode [ 163.029910][ T3199] hsr_slave_1: left promiscuous mode [ 163.038316][ T3199] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 163.045768][ T3199] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 163.063989][ T3199] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 163.071584][ T3199] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 163.081409][ T3199] veth1_macvtap: left promiscuous mode [ 163.086894][ T3199] veth0_macvtap: left promiscuous mode [ 163.092447][ T3199] veth1_vlan: left promiscuous mode [ 163.097986][ T3199] veth0_vlan: left promiscuous mode [ 163.151631][ T3199] infiniband syz2: set down [ 163.205989][ T3199] team0 (unregistering): Port device team_slave_1 removed [ 163.213724][ T5328] smc: removing ib device syz2 [ 163.218854][ T3199] team0 (unregistering): Port device team_slave_0 removed [ 163.256489][T12524] team0: Port device team_slave_1 added [ 163.292230][T12524] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 163.299230][T12524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 163.325173][T12524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 163.347891][T12524] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 163.354983][T12524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 163.380905][T12524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 163.398359][T12592] netlink: 61922 bytes leftover after parsing attributes in process `syz.4.2802'. [ 163.474994][T12524] hsr_slave_0: entered promiscuous mode [ 163.487872][T12524] hsr_slave_1: entered promiscuous mode [ 163.489576][T12608] loop0: detected capacity change from 0 to 1024 [ 163.501229][T12524] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 163.512661][T12524] Cannot create hsr debugfs directory [ 163.513787][T12608] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.687326][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.693261][T12629] loop4: detected capacity change from 0 to 8192 [ 163.750741][T12639] veth1_macvtap: left promiscuous mode [ 163.751414][T12638] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2814'. [ 163.774150][T12641] loop4: detected capacity change from 0 to 512 [ 163.783529][T12639] loop2: detected capacity change from 0 to 512 [ 163.790319][T12639] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 163.803296][T12639] EXT4-fs (loop2): 1 truncate cleaned up [ 163.809287][T12639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.831677][T12639] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.840219][T12643] loop0: detected capacity change from 0 to 8192 [ 163.876489][T12643] loop0: p1 p2 p4 [ 163.880304][T12643] loop0: p1 start 83821824 is beyond EOD, truncated [ 163.886925][T12643] loop0: p2 start 4293394690 is beyond EOD, truncated [ 163.890944][T12646] loop2: detected capacity change from 0 to 164 [ 163.893691][T12643] loop0: p4 size 50331904 extends beyond EOD, truncated [ 163.940921][T12648] loop2: detected capacity change from 0 to 1024 [ 163.996217][T12648] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.000923][T12524] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 164.019528][T12524] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 164.028668][T12524] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 164.038052][T12524] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 164.046740][T12160] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.095530][T12524] 8021q: adding VLAN 0 to HW filter on device bond0 [ 164.115935][T12667] 9pnet_fd: Insufficient options for proto=fd [ 164.118212][T12524] 8021q: adding VLAN 0 to HW filter on device team0 [ 164.136557][ T3448] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.143728][ T3448] bridge0: port 1(bridge_slave_0) entered forwarding state [ 164.155721][ T3448] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.162864][ T3448] bridge0: port 2(bridge_slave_1) entered forwarding state [ 164.187413][T12690] dccp_invalid_packet: P.Data Offset(0) too small [ 164.194886][T12524] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 164.205284][T12524] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 164.254659][T12699] loop4: detected capacity change from 0 to 256 [ 164.302028][T12524] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.318936][T12709] FAULT_INJECTION: forcing a failure. [ 164.318936][T12709] name failslab, interval 1, probability 0, space 0, times 0 [ 164.331596][T12709] CPU: 1 PID: 12709 Comm: syz.0.2839 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 164.341566][T12709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 164.351697][T12709] Call Trace: [ 164.355017][T12709] [ 164.357934][T12709] dump_stack_lvl+0xf2/0x150 [ 164.362606][T12709] dump_stack+0x15/0x20 [ 164.366781][T12709] should_fail_ex+0x229/0x230 [ 164.371473][T12709] ? tcf_idr_create+0x42/0x4c0 [ 164.376232][T12709] __should_failslab+0x92/0xa0 [ 164.381063][T12709] should_failslab+0x9/0x20 [ 164.385620][T12709] __kmalloc_noprof+0xa5/0x370 [ 164.390409][T12709] ? radix_tree_iter_tag_clear+0x109/0x180 [ 164.396206][T12709] tcf_idr_create+0x42/0x4c0 [ 164.400893][T12709] ? idr_alloc_u32+0x127/0x180 [ 164.405644][T12709] tcf_idr_create_from_flags+0x63/0x80 [ 164.411101][T12709] tcf_ctinfo_init+0x498/0x7f0 [ 164.415860][T12709] tcf_action_init_1+0x339/0x490 [ 164.420813][T12709] tcf_action_init+0x1a0/0x530 [ 164.425679][T12709] tc_ctl_action+0x292/0x840 [ 164.430329][T12709] ? __pfx_tc_ctl_action+0x10/0x10 [ 164.435429][T12709] rtnetlink_rcv_msg+0x85e/0x910 [ 164.440357][T12709] ? memcg_list_lru_alloc+0xd2/0x740 [ 164.445707][T12709] ? mod_objcg_state+0x2e2/0x4e0 [ 164.450643][T12709] ? __memcg_slab_free_hook+0xc9/0x1e0 [ 164.456102][T12709] ? xas_load+0x3ae/0x3d0 [ 164.460414][T12709] ? kmem_cache_free+0xd8/0x280 [ 164.465258][T12709] ? nlmon_xmit+0x51/0x60 [ 164.469710][T12709] ? __kfree_skb+0x102/0x150 [ 164.474286][T12709] ? consume_skb+0x57/0x180 [ 164.478855][T12709] ? nlmon_xmit+0x51/0x60 [ 164.483171][T12709] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 164.488494][T12709] ? __dev_queue_xmit+0xb21/0x1e50 [ 164.493680][T12709] ? ref_tracker_free+0x3a5/0x410 [ 164.498781][T12709] netlink_rcv_skb+0x12c/0x230 [ 164.503662][T12709] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 164.509115][T12709] rtnetlink_rcv+0x1c/0x30 [ 164.513617][T12709] netlink_unicast+0x58d/0x660 [ 164.518424][T12709] netlink_sendmsg+0x5ca/0x6e0 [ 164.523171][T12709] ? __pfx_netlink_sendmsg+0x10/0x10 [ 164.528462][T12709] __sock_sendmsg+0x140/0x180 [ 164.533126][T12709] ____sys_sendmsg+0x312/0x410 [ 164.537924][T12709] __sys_sendmsg+0x1e9/0x280 [ 164.542513][T12709] __x64_sys_sendmsg+0x46/0x50 [ 164.547354][T12709] x64_sys_call+0xb25/0x2d70 [ 164.551935][T12709] do_syscall_64+0xc9/0x1c0 [ 164.556576][T12709] ? clear_bhb_loop+0x55/0xb0 [ 164.561445][T12709] ? clear_bhb_loop+0x55/0xb0 [ 164.566175][T12709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.572073][T12709] RIP: 0033:0x7f7bdb278bd9 [ 164.576477][T12709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.596071][T12709] RSP: 002b:00007f7bda4fa048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 164.604467][T12709] RAX: ffffffffffffffda RBX: 00007f7bdb406f60 RCX: 00007f7bdb278bd9 [ 164.612472][T12709] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 164.620441][T12709] RBP: 00007f7bda4fa0a0 R08: 0000000000000000 R09: 0000000000000000 [ 164.628513][T12709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 164.636481][T12709] R13: 000000000000000b R14: 00007f7bdb406f60 R15: 00007fffa69e0ed8 [ 164.644441][T12709] [ 164.663101][T12713] loop4: detected capacity change from 0 to 256 [ 164.701086][T12524] veth0_vlan: entered promiscuous mode [ 164.709460][T12524] veth1_vlan: entered promiscuous mode [ 164.732093][T12524] veth0_macvtap: entered promiscuous mode [ 164.742225][T12524] veth1_macvtap: entered promiscuous mode [ 164.762555][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.773202][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.783027][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.793800][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.803677][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.813366][T12713] loop4: detected capacity change from 0 to 256 [ 164.814166][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.830225][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.835447][T12726] loop1: detected capacity change from 0 to 512 [ 164.840629][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.840648][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.847626][ T29] kauditd_printk_skb: 7 callbacks suppressed [ 164.847637][ T29] audit: type=1400 audit(1721105277.695:2667): avc: denied { watch_reads } for pid=12725 comm="syz.1.2844" path="/66" dev="tmpfs" ino=353 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 164.856648][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.856692][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.856705][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.856717][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.856728][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.856741][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.856752][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.859959][T12524] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 164.875617][T12726] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 164.898756][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 164.905285][T12726] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 164.915688][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.925478][T12726] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz.1.2844: Failed to acquire dquot type 1 [ 165.024403][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.034852][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.044650][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.055208][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.057672][T12726] EXT4-fs (loop1): 1 truncate cleaned up [ 165.065003][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.065018][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.065075][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.065086][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.111304][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.121720][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.131556][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.141980][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.146627][T12726] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.151773][T12524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.174610][T12524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.185856][T12726] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.192087][T12524] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 165.218269][T12524] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.227120][T12524] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.235993][T12524] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.244852][T12524] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.261801][T12726] EXT4-fs error (device loop1): ext4_lookup:1858: inode #2: comm syz.1.2844: deleted inode referenced: 12 [ 165.292944][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.336383][T12748] loop3: detected capacity change from 0 to 512 [ 165.343846][T12748] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 165.347181][T12750] dccp_invalid_packet: P.Data Offset(0) too small [ 165.360858][T12748] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 165.368987][T12748] System zones: 1-12 [ 165.373345][T12748] EXT4-fs (loop3): 1 truncate cleaned up [ 165.379435][T12748] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.396001][T12748] FAULT_INJECTION: forcing a failure. [ 165.396001][T12748] name failslab, interval 1, probability 0, space 0, times 0 [ 165.408756][T12748] CPU: 1 PID: 12748 Comm: syz.3.2850 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 165.418591][T12748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 165.428649][T12748] Call Trace: [ 165.431950][T12748] [ 165.434876][T12748] dump_stack_lvl+0xf2/0x150 [ 165.439553][T12748] dump_stack+0x15/0x20 [ 165.440016][T12764] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2855'. [ 165.443704][T12748] should_fail_ex+0x229/0x230 [ 165.443731][T12748] ? __pfx_cgroup_show_path+0x10/0x10 [ 165.462645][T12748] ? cgroup_show_path+0x6a/0x240 [ 165.467617][T12748] __should_failslab+0x92/0xa0 [ 165.472370][T12748] should_failslab+0x9/0x20 [ 165.476902][T12748] kmalloc_trace_noprof+0x4b/0x2a0 [ 165.482086][T12748] cgroup_show_path+0x6a/0x240 [ 165.486859][T12748] ? kernfs_sop_show_path+0x99/0xe0 [ 165.492051][T12748] ? __pfx_cgroup_show_path+0x10/0x10 [ 165.497416][T12748] kernfs_sop_show_path+0xa8/0xe0 [ 165.502468][T12748] ? __pfx_kernfs_sop_show_path+0x10/0x10 [ 165.508182][T12748] show_path+0x57/0x80 [ 165.512365][T12748] show_mountinfo+0xd9/0x6a0 [ 165.516946][T12748] m_show+0x3b/0x50 [ 165.520766][T12748] seq_read_iter+0x65b/0x940 [ 165.525383][T12748] copy_splice_read+0x3a4/0x5d0 [ 165.530221][T12748] ? __pfx_copy_splice_read+0x10/0x10 [ 165.535579][T12748] splice_direct_to_actor+0x26c/0x670 [ 165.540940][T12748] ? __pfx_direct_splice_actor+0x10/0x10 [ 165.546561][T12748] do_splice_direct+0xd7/0x150 [ 165.551307][T12748] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 165.557186][T12748] do_sendfile+0x3ab/0x950 [ 165.561589][T12748] __x64_sys_sendfile64+0x110/0x150 [ 165.566784][T12748] x64_sys_call+0x2c9f/0x2d70 [ 165.571682][T12748] do_syscall_64+0xc9/0x1c0 [ 165.576180][T12748] ? clear_bhb_loop+0x55/0xb0 [ 165.580855][T12748] ? clear_bhb_loop+0x55/0xb0 [ 165.585571][T12748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.591459][T12748] RIP: 0033:0x7feec0bc6bd9 [ 165.595931][T12748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.615525][T12748] RSP: 002b:00007feebfe48048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 165.624002][T12748] RAX: ffffffffffffffda RBX: 00007feec0d54f60 RCX: 00007feec0bc6bd9 [ 165.631959][T12748] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005 [ 165.639910][T12748] RBP: 00007feebfe480a0 R08: 0000000000000000 R09: 0000000000000000 [ 165.647931][T12748] R10: 0000000100800001 R11: 0000000000000246 R12: 0000000000000001 [ 165.655918][T12748] R13: 000000000000000b R14: 00007feec0d54f60 R15: 00007ffe32957fd8 [ 165.663899][T12748] [ 165.676549][T12765] netlink: 44306 bytes leftover after parsing attributes in process `syz.2.2852'. [ 165.715346][T12765] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2852'. [ 165.725245][T12770] loop0: detected capacity change from 0 to 512 [ 165.735418][T12524] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.772727][T12770] Quota error (device loop0): do_check_range: Getting dqdh_entries 1536 out of range 0-14 [ 165.782864][T12770] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 165.792809][T12770] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz.0.2858: Failed to acquire dquot type 1 [ 165.807467][T12770] EXT4-fs (loop0): 1 truncate cleaned up [ 165.813638][T12770] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.826374][T12770] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.898103][T12797] loop3: detected capacity change from 0 to 256 [ 165.926427][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 165.963136][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.986471][T12811] loop4: detected capacity change from 0 to 512 [ 165.993107][T12811] EXT4-fs: Ignoring removed mblk_io_submit option [ 166.050811][T12820] FAULT_INJECTION: forcing a failure. [ 166.050811][T12820] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 166.064402][T12820] CPU: 0 PID: 12820 Comm: syz.4.2874 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 166.074292][T12820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 166.084404][T12820] Call Trace: [ 166.087681][T12820] [ 166.090608][T12820] dump_stack_lvl+0xf2/0x150 [ 166.095210][T12820] dump_stack+0x15/0x20 [ 166.099424][T12820] should_fail_ex+0x229/0x230 [ 166.104137][T12820] should_fail+0xb/0x10 [ 166.108299][T12820] should_fail_usercopy+0x1a/0x20 [ 166.113373][T12820] _copy_from_user+0x1e/0xd0 [ 166.118041][T12820] ____sys_sendmsg+0x1a4/0x410 [ 166.122924][T12820] __sys_sendmsg+0x1e9/0x280 [ 166.127528][T12820] __x64_sys_sendmsg+0x46/0x50 [ 166.132321][T12820] x64_sys_call+0xb25/0x2d70 [ 166.136942][T12820] do_syscall_64+0xc9/0x1c0 [ 166.141456][T12820] ? clear_bhb_loop+0x55/0xb0 [ 166.146172][T12820] ? clear_bhb_loop+0x55/0xb0 [ 166.150972][T12820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.156868][T12820] RIP: 0033:0x7fa8473e8bd9 [ 166.161339][T12820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.180947][T12820] RSP: 002b:00007fa84666a048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 166.189362][T12820] RAX: ffffffffffffffda RBX: 00007fa847576f60 RCX: 00007fa8473e8bd9 [ 166.197333][T12820] RDX: 0000000000000000 RSI: 0000000020001600 RDI: 0000000000000004 [ 166.205380][T12820] RBP: 00007fa84666a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 166.213346][T12820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 166.221357][T12820] R13: 000000000000000b R14: 00007fa847576f60 R15: 00007ffc4b2d52a8 [ 166.229384][T12820] [ 166.245836][T12836] netlink: 236 bytes leftover after parsing attributes in process `syz.0.2876'. [ 166.301590][T12845] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2880'. [ 166.430190][T12856] ebtables: ebtables: counters copy to user failed while replacing table [ 166.473740][T12863] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2887'. [ 166.492259][T12860] loop2: detected capacity change from 0 to 1024 [ 166.499392][T12860] EXT4-fs: Ignoring removed orlov option [ 166.505107][T12860] EXT4-fs: Ignoring removed nomblk_io_submit option [ 166.526949][T12860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.542054][ T29] audit: type=1400 audit(1721105279.405:2668): avc: denied { ioctl } for pid=12872 comm="syz.3.2891" path="/dev/loop8" dev="devtmpfs" ino=494 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 166.620727][T12160] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.651167][T12880] dccp_invalid_packet: P.Data Offset(0) too small [ 166.658371][ T29] audit: type=1400 audit(1721105279.465:2669): avc: denied { ioctl } for pid=12859 comm="syz.2.2885" path="/40/file1/file1" dev="loop2" ino=15 ioctlcmd=0x5839 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 166.706588][T12885] loop0: detected capacity change from 0 to 1024 [ 166.715724][T12885] EXT4-fs: Ignoring removed nomblk_io_submit option [ 166.723527][T12885] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 166.737037][T12885] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.821932][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.831614][ T29] audit: type=1400 audit(1721105279.685:2670): avc: denied { read } for pid=12913 comm="syz.1.2905" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 166.850139][T12907] loop2: detected capacity change from 0 to 128 [ 166.855752][ T29] audit: type=1400 audit(1721105279.685:2671): avc: denied { open } for pid=12913 comm="syz.1.2905" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 166.935407][T12926] loop3: detected capacity change from 0 to 512 [ 166.944601][T12926] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 166.956771][T12926] EXT4-fs (loop3): failed to initialize system zone (-117) [ 166.964041][T12926] EXT4-fs (loop3): mount failed [ 167.026842][T12939] loop1: detected capacity change from 0 to 512 [ 167.034995][T12935] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2908'. [ 167.058206][ T29] audit: type=1326 audit(1721105279.923:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12940 comm="syz.2.2913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eba410bd9 code=0x7ffc0000 [ 167.084578][T12939] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 167.092645][T12939] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 167.109458][T12942] loop2: detected capacity change from 0 to 512 [ 167.121281][T12939] System zones: 0-1, 15-15, 18-18, 34-34 [ 167.244131][T12939] EXT4-fs (loop1): orphan cleanup on readonly fs [ 167.250595][T12939] EXT4-fs warning (device loop1): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 167.265261][T12939] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 167.274060][T12939] EXT4-fs error (device loop1): ext4_orphan_get:1420: comm syz.1.2912: bad orphan inode 16 [ 167.283970][T12942] EXT4-fs (loop2): 1 truncate cleaned up [ 167.284361][T12942] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.292067][T12939] ext4_test_bit(bit=15, block=18) = 1 [ 167.307178][T12939] is_bad_inode(inode)=0 [ 167.311315][T12939] NEXT_ORPHAN(inode)=0 [ 167.315458][T12939] max_ino=32 [ 167.318639][T12939] i_nlink=2 [ 167.325501][T12939] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 167.365753][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.478511][T12160] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.532719][T12969] loop0: detected capacity change from 0 to 2048 [ 167.568152][T12969] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.596779][T12969] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 167.606055][T12995] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 167.616751][T12969] EXT4-fs (loop0): Remounting filesystem read-only [ 167.629610][T12994] FAULT_INJECTION: forcing a failure. [ 167.629610][T12994] name failslab, interval 1, probability 0, space 0, times 0 [ 167.642264][T12994] CPU: 1 PID: 12994 Comm: syz.2.2931 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 167.652150][T12994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 167.662205][T12994] Call Trace: [ 167.665475][T12994] [ 167.666999][T12991] loop1: detected capacity change from 0 to 128 [ 167.668412][T12994] dump_stack_lvl+0xf2/0x150 [ 167.679273][T12994] dump_stack+0x15/0x20 [ 167.683434][T12994] should_fail_ex+0x229/0x230 [ 167.688090][T12994] ? cond_bools_copy+0x30/0x80 [ 167.692933][T12994] __should_failslab+0x92/0xa0 [ 167.697679][T12994] should_failslab+0x9/0x20 [ 167.702161][T12994] kmalloc_node_track_caller_noprof+0xa6/0x380 [ 167.708311][T12994] kmemdup_noprof+0x2a/0x60 [ 167.712856][T12994] cond_bools_copy+0x30/0x80 [ 167.717493][T12994] hashtab_duplicate+0x12c/0x370 [ 167.722482][T12994] ? __pfx_cond_bools_copy+0x10/0x10 [ 167.727749][T12994] ? __pfx_cond_bools_destroy+0x10/0x10 [ 167.733352][T12994] cond_policydb_dup+0xdb/0x710 [ 167.738184][T12994] ? kmalloc_node_track_caller_noprof+0x2f8/0x380 [ 167.744640][T12994] security_set_bools+0xa8/0x350 [ 167.749576][T12994] ? sel_commit_bools_write+0x16a/0x260 [ 167.755160][T12994] sel_commit_bools_write+0x1e4/0x260 [ 167.760514][T12994] vfs_writev+0x402/0x880 [ 167.764838][T12994] ? __pfx_sel_commit_bools_write+0x10/0x10 [ 167.770810][T12994] ? mutex_lock+0xd/0x40 [ 167.775029][T12994] do_writev+0xf8/0x220 [ 167.779235][T12994] __x64_sys_writev+0x45/0x50 [ 167.783894][T12994] x64_sys_call+0x1ee2/0x2d70 [ 167.788554][T12994] do_syscall_64+0xc9/0x1c0 [ 167.793040][T12994] ? clear_bhb_loop+0x55/0xb0 [ 167.797699][T12994] ? clear_bhb_loop+0x55/0xb0 [ 167.802355][T12994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.808232][T12994] RIP: 0033:0x7f1eba410bd9 [ 167.812624][T12994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.832286][T12994] RSP: 002b:00007f1eb9692048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 167.840677][T12994] RAX: ffffffffffffffda RBX: 00007f1eba59ef60 RCX: 00007f1eba410bd9 [ 167.848691][T12994] RDX: 0000000000000002 RSI: 00000000200025c0 RDI: 0000000000000007 [ 167.856638][T12994] RBP: 00007f1eb96920a0 R08: 0000000000000000 R09: 0000000000000000 [ 167.864588][T12994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 167.872536][T12994] R13: 000000000000000b R14: 00007f1eba59ef60 R15: 00007ffda473cce8 [ 167.880496][T12994] [ 167.893129][T12994] loop2: detected capacity change from 0 to 512 [ 167.911640][T12994] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 167.922941][T12994] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 167.931001][T12994] System zones: 1-12 [ 167.935739][T12994] EXT4-fs (loop2): 1 truncate cleaned up [ 167.941735][T12994] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.954800][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.025077][T13013] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2934'. [ 168.047321][T12160] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.055919][T13024] loop0: detected capacity change from 0 to 128 [ 168.067684][T13026] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2939'. [ 168.120903][T13041] loop1: detected capacity change from 0 to 256 [ 168.129536][T13041] FAT-fs (loop1): Unrecognized mount option "" or missing value [ 168.261411][T13041] loop1: detected capacity change from 0 to 2048 [ 168.268497][T13041] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 168.279974][T13049] nfs: Bad value for 'source' [ 168.300456][T13049] netlink: 'syz.0.2948': attribute type 10 has an invalid length. [ 168.310774][T13049] bridge0: port 3(team0) entered blocking state [ 168.317172][T13049] bridge0: port 3(team0) entered disabled state [ 168.323806][T13049] team0: entered allmulticast mode [ 168.329026][T13049] team_slave_0: entered allmulticast mode [ 168.334949][T13049] team_slave_1: entered allmulticast mode [ 168.342249][T13049] team0: entered promiscuous mode [ 168.347764][T13049] team_slave_0: entered promiscuous mode [ 168.353484][T13049] team_slave_1: entered promiscuous mode [ 168.360623][T13049] bridge0: port 3(team0) entered blocking state [ 168.366921][T13049] bridge0: port 3(team0) entered forwarding state [ 168.372117][T13063] loop2: detected capacity change from 0 to 256 [ 168.402058][T13068] dccp_v6_rcv: dropped packet with invalid checksum [ 168.402396][T13070] loop3: detected capacity change from 0 to 256 [ 168.421589][T13068] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 168.426330][T13074] netlink: 'syz.0.2956': attribute type 17 has an invalid length. [ 168.564377][T13093] infiniband syz2: set active [ 168.569116][T13093] infiniband syz2: added team_slave_1 [ 168.581712][T13093] RDS/IB: syz2: added [ 168.582382][T13102] loop1: detected capacity change from 0 to 512 [ 168.585791][T13093] smc: adding ib device syz2 with port count 1 [ 168.598419][T13093] smc: ib device syz2 port 1 has pnetid [ 168.600781][T13102] EXT4-fs: Ignoring removed oldalloc option [ 168.619035][T13102] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 168.790837][T13120] netlink: 'syz.3.2973': attribute type 10 has an invalid length. [ 168.811241][T13120] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 168.820800][T13120] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 168.888805][T13133] __nla_validate_parse: 6 callbacks suppressed [ 168.888820][T13133] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2977'. [ 168.954786][T13133] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 168.962110][T13133] vhci_hcd: invalid port number 23 [ 168.970290][T13133] hub 6-0:1.0: USB hub found [ 168.975561][T13133] hub 6-0:1.0: 8 ports detected [ 168.977984][T13143] loop4: detected capacity change from 0 to 512 [ 168.987965][T13143] EXT4-fs: Ignoring removed bh option [ 168.993487][T13143] ext4: Unknown parameter 'fsmagic' [ 169.058812][T13147] loop1: detected capacity change from 0 to 8192 [ 169.066825][T13147] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 169.078372][T13147] FAT-fs (loop1): error, clusters badly computed (1 != 30720) [ 169.085918][T13147] FAT-fs (loop1): Filesystem has been set read-only [ 169.094842][T13147] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 1042) [ 169.372520][T13180] loop1: detected capacity change from 0 to 1024 [ 169.381197][T13180] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.410921][T13180] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2997'. [ 169.435046][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.507798][T13201] loop1: detected capacity change from 0 to 512 [ 169.514945][T13200] syzkaller1: entered promiscuous mode [ 169.520496][T13200] syzkaller1: entered allmulticast mode [ 169.530412][T13201] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.543149][T13201] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 169.587918][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.748353][T13218] loop1: detected capacity change from 0 to 2048 [ 169.766253][T13218] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.785345][T13218] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3011'. [ 169.803187][T13218] EXT4-fs error (device loop1): ext4_search_dir:1548: inode #2: block 16: comm syz.1.3011: bad entry in directory: inode out of bounds - offset=44, inode=185, rec_len=16, size=2048 fake=0 [ 169.823338][T13224] loop4: detected capacity change from 0 to 128 [ 169.826492][T13218] EXT4-fs error (device loop1): ext4_find_dest_de:2111: inode #2: block 16: comm syz.1.3011: bad entry in directory: inode out of bounds - offset=44, inode=185, rec_len=16, size=2048 fake=0 [ 169.858632][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.902155][T13230] loop4: detected capacity change from 0 to 512 [ 169.944880][ T29] kauditd_printk_skb: 86 callbacks suppressed [ 169.944892][ T29] audit: type=1400 audit(1721105282.815:2758): avc: denied { ioctl } for pid=13235 comm="syz.1.3018" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=44346 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 169.994780][T13248] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3021'. [ 170.010234][T13250] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3022'. [ 170.030879][T13250] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3022'. [ 170.043340][T13256] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3023'. [ 170.065609][T13256] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=236 sclass=netlink_route_socket pid=13256 comm=syz.1.3023 [ 170.138571][ T29] audit: type=1400 audit(1721105283.005:2759): avc: denied { ioctl } for pid=13252 comm="syz.4.3024" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 170.163930][T13266] loop0: detected capacity change from 0 to 1764 [ 170.184177][T13274] FAULT_INJECTION: forcing a failure. [ 170.184177][T13274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.197347][T13274] CPU: 1 PID: 13274 Comm: syz.1.3032 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 170.207204][T13274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 170.217251][T13274] Call Trace: [ 170.220531][T13274] [ 170.223453][T13274] dump_stack_lvl+0xf2/0x150 [ 170.228056][T13274] dump_stack+0x15/0x20 [ 170.232308][T13274] should_fail_ex+0x229/0x230 [ 170.237021][T13274] should_fail+0xb/0x10 [ 170.241193][T13274] should_fail_usercopy+0x1a/0x20 [ 170.246219][T13274] _copy_from_iter+0xd3/0xb00 [ 170.250888][T13274] ? kmalloc_reserve+0x16e/0x190 [ 170.255920][T13274] ? __build_skb_around+0x196/0x1f0 [ 170.261113][T13274] ? __alloc_skb+0x217/0x300 [ 170.265731][T13274] ? __virt_addr_valid+0x1ed/0x250 [ 170.270911][T13274] ? __check_object_size+0x35b/0x510 [ 170.276202][T13274] netlink_sendmsg+0x460/0x6e0 [ 170.281033][T13274] ? __pfx_netlink_sendmsg+0x10/0x10 [ 170.286318][T13274] __sock_sendmsg+0x140/0x180 [ 170.290995][T13274] ____sys_sendmsg+0x312/0x410 [ 170.295771][T13274] __sys_sendmsg+0x1e9/0x280 [ 170.300485][T13274] __x64_sys_sendmsg+0x46/0x50 [ 170.305251][T13274] x64_sys_call+0xb25/0x2d70 [ 170.309896][T13274] do_syscall_64+0xc9/0x1c0 [ 170.314443][T13274] ? clear_bhb_loop+0x55/0xb0 [ 170.319237][T13274] ? clear_bhb_loop+0x55/0xb0 [ 170.323914][T13274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.329828][T13274] RIP: 0033:0x7f92b9f3abd9 [ 170.334234][T13274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.353841][T13274] RSP: 002b:00007f92b91bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 170.362253][T13274] RAX: ffffffffffffffda RBX: 00007f92ba0c8f60 RCX: 00007f92b9f3abd9 [ 170.370224][T13274] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 170.378212][T13274] RBP: 00007f92b91bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 170.386180][T13274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.394195][T13274] R13: 000000000000000b R14: 00007f92ba0c8f60 R15: 00007fff55fad028 [ 170.402168][T13274] [ 170.466288][T13282] loop4: detected capacity change from 0 to 2048 [ 170.494189][ T29] audit: type=1326 audit(1721105283.355:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.517868][ T29] audit: type=1326 audit(1721105283.355:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.544595][ T29] audit: type=1326 audit(1721105283.415:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.568111][ T29] audit: type=1326 audit(1721105283.415:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.591747][ T29] audit: type=1326 audit(1721105283.415:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.623123][ T29] audit: type=1326 audit(1721105283.485:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.646672][ T29] audit: type=1326 audit(1721105283.485:2766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.670344][ T29] audit: type=1326 audit(1721105283.485:2767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13288 comm="syz.0.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bdb278bd9 code=0x7ffc0000 [ 170.705618][T13282] loop4: detected capacity change from 0 to 512 [ 170.728098][T13282] EXT4-fs: Ignoring removed i_version option [ 170.742158][T13302] loop0: detected capacity change from 0 to 512 [ 170.753535][T13282] ext4: Unknown parameter 'noacl' [ 170.764372][T13302] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 170.774630][T13302] EXT4-fs (loop0): 1 truncate cleaned up [ 170.780593][T13302] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.819820][T13309] loop2: detected capacity change from 0 to 512 [ 170.918800][T13309] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.936281][T13315] sctp: [Deprecated]: syz.4.3047 (pid 13315) Use of int in maxseg socket option. [ 170.936281][T13315] Use struct sctp_assoc_value instead [ 170.951895][T13309] ext4 filesystem being mounted at /60/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 171.045217][T13319] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 171.163849][T12160] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.416763][T13351] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3058'. [ 171.602959][T13369] loop4: detected capacity change from 0 to 128 [ 171.602993][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.632222][T13374] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3067'. [ 171.672081][T13354] loop3: detected capacity change from 0 to 128 [ 171.684629][T13381] loop2: detected capacity change from 0 to 2048 [ 171.708623][T13381] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.763870][T13398] FAULT_INJECTION: forcing a failure. [ 171.763870][T13398] name failslab, interval 1, probability 0, space 0, times 0 [ 171.776554][T13398] CPU: 0 PID: 13398 Comm: syz.1.3076 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 171.786355][T13398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 171.796524][T13398] Call Trace: [ 171.799801][T13398] [ 171.802721][T13398] dump_stack_lvl+0xf2/0x150 [ 171.807316][T13398] dump_stack+0x15/0x20 [ 171.811507][T13398] should_fail_ex+0x229/0x230 [ 171.816182][T13398] ? security_file_alloc+0x32/0xe0 [ 171.821406][T13398] __should_failslab+0x92/0xa0 [ 171.826232][T13398] should_failslab+0x9/0x20 [ 171.830748][T13398] kmem_cache_alloc_noprof+0x4c/0x290 [ 171.836140][T13398] security_file_alloc+0x32/0xe0 [ 171.841082][T13398] alloc_empty_file+0x121/0x310 [ 171.845988][T13398] path_openat+0x6a/0x1fa0 [ 171.850415][T13398] ? path_openat+0x1a6f/0x1fa0 [ 171.855224][T13398] ? _parse_integer+0x27/0x30 [ 171.859939][T13398] ? kstrtoull+0x110/0x140 [ 171.864394][T13398] do_filp_open+0xf7/0x200 [ 171.868822][T13398] do_sys_openat2+0xab/0x120 [ 171.873433][T13398] __se_sys_openat2+0x17e/0x1d0 [ 171.878383][T13398] __x64_sys_openat2+0x55/0x70 [ 171.883181][T13398] x64_sys_call+0x2669/0x2d70 [ 171.887854][T13398] do_syscall_64+0xc9/0x1c0 [ 171.892355][T13398] ? clear_bhb_loop+0x55/0xb0 [ 171.897107][T13398] ? clear_bhb_loop+0x55/0xb0 [ 171.901856][T13398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.907742][T13398] RIP: 0033:0x7f92b9f3abd9 [ 171.912143][T13398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.931777][T13398] RSP: 002b:00007f92b91bc048 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 171.940254][T13398] RAX: ffffffffffffffda RBX: 00007f92ba0c8f60 RCX: 00007f92b9f3abd9 [ 171.948212][T13398] RDX: 0000000020000380 RSI: 00000000200003c0 RDI: 0000000000000004 [ 171.956202][T13398] RBP: 00007f92b91bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 171.964209][T13398] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 171.972230][T13398] R13: 000000000000000b R14: 00007f92ba0c8f60 R15: 00007fff55fad028 [ 171.980263][T13398] [ 172.058161][T13415] netlink: 'syz.2.3069': attribute type 5 has an invalid length. [ 172.107140][T13424] loop3: detected capacity change from 0 to 1024 [ 172.130666][T13424] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 172.152738][T13424] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 172.161924][T13424] EXT4-fs (loop3): orphan cleanup on readonly fs [ 172.169376][T13424] EXT4-fs error (device loop3): __ext4_get_inode_loc:4357: comm syz.3.3083: Invalid inode table block 0 in block_group 0 [ 172.182281][T13424] EXT4-fs (loop3): Remounting filesystem read-only [ 172.189308][T13424] EXT4-fs (loop3): 1 truncate cleaned up [ 172.196162][T13424] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 172.214591][T13424] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 172.221418][T13424] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.282822][T13424] loop3: detected capacity change from 0 to 164 [ 172.303316][T13424] syz.3.3083: attempt to access beyond end of device [ 172.303316][T13424] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 172.328891][T13424] syz.3.3083: attempt to access beyond end of device [ 172.328891][T13424] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.342581][T13424] syz.3.3083: attempt to access beyond end of device [ 172.342581][T13424] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.359095][T13448] syz.3.3083: attempt to access beyond end of device [ 172.359095][T13448] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.372696][T13424] syz.3.3083: attempt to access beyond end of device [ 172.372696][T13424] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.388737][T13448] syz.3.3083: attempt to access beyond end of device [ 172.388737][T13448] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.402374][T13424] syz.3.3083: attempt to access beyond end of device [ 172.402374][T13424] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.418451][T13424] syz.3.3083: attempt to access beyond end of device [ 172.418451][T13424] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.427490][T13449] loop0: detected capacity change from 0 to 512 [ 172.432113][T13448] syz.3.3083: attempt to access beyond end of device [ 172.432113][T13448] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.451951][T13448] syz.3.3083: attempt to access beyond end of device [ 172.451951][T13448] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 172.453060][T13449] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 172.485783][T13449] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 172.507620][T13449] ext4 filesystem being mounted at /219/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 172.577557][T13454] loop4: detected capacity change from 0 to 164 [ 172.589377][T12160] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.602192][T13454] iso9660: Corrupted directory entry in block 0 of inode 1792 [ 172.618131][T13454] iso9660: Corrupted directory entry in block 0 of inode 1792 [ 172.745530][T13461] FAULT_INJECTION: forcing a failure. [ 172.745530][T13461] name failslab, interval 1, probability 0, space 0, times 0 [ 172.758183][T13461] CPU: 0 PID: 13461 Comm: syz.2.3095 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 172.767997][T13461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 172.778049][T13461] Call Trace: [ 172.781413][T13461] [ 172.784517][T13461] dump_stack_lvl+0xf2/0x150 [ 172.789128][T13461] dump_stack+0x15/0x20 [ 172.793295][T13461] should_fail_ex+0x229/0x230 [ 172.797968][T13461] ? iter_file_splice_write+0x108/0x970 [ 172.803515][T13461] __should_failslab+0x92/0xa0 [ 172.808317][T13461] should_failslab+0x9/0x20 [ 172.812945][T13461] __kmalloc_noprof+0xa5/0x370 [ 172.817765][T13461] iter_file_splice_write+0x108/0x970 [ 172.823277][T13461] ? current_time+0xfa/0x1a0 [ 172.827868][T13461] ? atime_needs_update+0x290/0x3f0 [ 172.833129][T13461] ? touch_atime+0x110/0x350 [ 172.837737][T13461] ? shmem_file_splice_read+0x57b/0x5c0 [ 172.843285][T13461] ? __pfx_iter_file_splice_write+0x10/0x10 [ 172.849173][T13461] direct_splice_actor+0x16c/0x2c0 [ 172.854322][T13461] splice_direct_to_actor+0x305/0x670 [ 172.859760][T13461] ? __pfx_direct_splice_actor+0x10/0x10 [ 172.865446][T13461] do_splice_direct+0xd7/0x150 [ 172.870197][T13461] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 172.876076][T13461] do_sendfile+0x3ab/0x950 [ 172.880482][T13461] __x64_sys_sendfile64+0x110/0x150 [ 172.885733][T13461] x64_sys_call+0x2c9f/0x2d70 [ 172.890398][T13461] do_syscall_64+0xc9/0x1c0 [ 172.894899][T13461] ? clear_bhb_loop+0x55/0xb0 [ 172.899568][T13461] ? clear_bhb_loop+0x55/0xb0 [ 172.904236][T13461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.910191][T13461] RIP: 0033:0x7f1eba410bd9 [ 172.914588][T13461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.934224][T13461] RSP: 002b:00007f1eb9671048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 172.942620][T13461] RAX: ffffffffffffffda RBX: 00007f1eba59f038 RCX: 00007f1eba410bd9 [ 172.950572][T13461] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007 [ 172.958528][T13461] RBP: 00007f1eb96710a0 R08: 0000000000000000 R09: 0000000000000000 [ 172.966481][T13461] R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000002 [ 172.974464][T13461] R13: 000000000000006e R14: 00007f1eba59f038 R15: 00007ffda473cce8 [ 172.982425][T13461] [ 173.153446][T13485] loop1: detected capacity change from 0 to 2048 [ 173.169713][T13485] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 173.214571][T13481] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 173.253064][T13481] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 173.265370][T13481] EXT4-fs (loop1): This should not happen!! Data will be lost [ 173.265370][T13481] [ 173.275034][T13481] EXT4-fs (loop1): Total free blocks count 0 [ 173.281073][T13481] EXT4-fs (loop1): Free/Dirty block details [ 173.287021][T13481] EXT4-fs (loop1): free_blocks=2415919104 [ 173.292734][T13481] EXT4-fs (loop1): dirty_blocks=16 [ 173.297885][T13481] EXT4-fs (loop1): Block reservation details [ 173.303852][T13481] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 173.330549][T13497] loop4: detected capacity change from 0 to 512 [ 173.351822][T13491] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3108'. [ 173.392605][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.451204][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.479309][T13494] loop4: detected capacity change from 0 to 1024 [ 173.541999][T13503] loop1: detected capacity change from 0 to 128 [ 173.822699][T13560] loop7: detected capacity change from 0 to 16384 [ 173.919043][T13540] chnl_net:caif_netlink_parms(): no params data found [ 173.956906][T13571] loop1: detected capacity change from 0 to 256 [ 173.963489][T13571] FAT-fs (loop1): Unrecognized mount option "ÿÿÿÿ0xffffffffffffffff" or missing value [ 173.976193][T13540] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.983322][T13540] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.991247][T13540] bridge_slave_0: entered allmulticast mode [ 173.999124][T13540] bridge_slave_0: entered promiscuous mode [ 174.001753][T13560] I/O error, dev loop7, sector 2688 op 0x0:(READ) flags 0x80700 phys_seg 2 prio class 0 [ 174.006559][T13540] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.021865][T13540] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.029390][T13540] bridge_slave_1: entered allmulticast mode [ 174.035897][T13540] bridge_slave_1: entered promiscuous mode [ 174.066274][T13540] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.090238][T13579] loop3: detected capacity change from 0 to 256 [ 174.099584][T13540] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.114198][T13579] FAT-fs (loop3): Unrecognized mount option "ÿÿÿÿÿÿÿÿ0x000000000000ee00ÿÿÿÿÿtb÷ùMÔ" or missing value [ 174.152397][T13540] team0: Port device team_slave_0 added [ 174.160835][T13579] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3140'. [ 174.173296][T13540] team0: Port device team_slave_1 added [ 174.215824][T13594] SELinux: Context :yz1bß±½U×Loç¬kÎ-õ@»;èöÿQªi’k;ÝM¢á-ØÞ is not valid (left unmapped). [ 174.215832][T13540] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.215842][T13540] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 174.259174][T13540] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.278265][T13540] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 174.285258][T13540] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 174.311312][T13540] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.352606][T13540] hsr_slave_0: entered promiscuous mode [ 174.433694][T13540] hsr_slave_1: entered promiscuous mode [ 174.447072][T13540] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 174.454733][T13540] Cannot create hsr debugfs directory [ 174.474061][T13610] loop4: detected capacity change from 0 to 512 [ 174.534162][T13610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3153'. [ 174.626331][T13540] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.650620][T13615] loop4: detected capacity change from 0 to 1024 [ 174.717353][T13540] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.791400][T13540] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.876636][T13540] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.899928][T13621] SELinux: Context system_u:object_r: is not valid (left unmapped). [ 174.975417][T13540] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 174.992446][ T29] kauditd_printk_skb: 38 callbacks suppressed [ 174.992457][ T29] audit: type=1400 audit(1721105287.855:2804): avc: denied { mounton } for pid=13628 comm="syz.3.3161" path="/58/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1 [ 175.000124][T13627] futex_wake_op: syz.4.3160 tries to shift op by 36; fix this program [ 175.021114][T13540] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 175.061582][T13540] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 175.071655][T13633] random: crng reseeded on system resumption [ 175.074815][ T29] audit: type=1400 audit(1721105287.935:2805): avc: denied { write } for pid=13632 comm="syz.4.3163" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 175.085007][T13633] FAULT_INJECTION: forcing a failure. [ 175.085007][T13633] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 175.114009][T13633] CPU: 0 PID: 13633 Comm: syz.4.3163 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 175.123807][T13633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 175.133860][T13633] Call Trace: [ 175.137129][T13633] [ 175.140049][T13633] dump_stack_lvl+0xf2/0x150 [ 175.144649][T13633] dump_stack+0x15/0x20 [ 175.148812][T13633] should_fail_ex+0x229/0x230 [ 175.153492][T13633] __should_fail_alloc_page+0xfd/0x110 [ 175.158954][T13633] __alloc_pages_noprof+0x109/0x360 [ 175.164157][T13633] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 175.169538][T13633] alloc_pages_noprof+0xe1/0x100 [ 175.174582][T13633] get_zeroed_page_noprof+0x17/0x40 [ 175.179788][T13633] get_image_page+0x2e/0x450 [ 175.184377][T13633] ? should_failslab+0x9/0x20 [ 175.189156][T13633] ? kmalloc_trace_noprof+0x10b/0x2a0 [ 175.194536][T13633] memory_bm_create+0x963/0x1240 [ 175.199567][T13633] create_basic_memory_bitmaps+0xa7/0x600 [ 175.205292][T13633] snapshot_open+0x1b6/0x260 [ 175.209883][T13633] ? __pfx_snapshot_open+0x10/0x10 [ 175.214999][T13633] misc_open+0x207/0x240 [ 175.219245][T13633] chrdev_open+0x323/0x3a0 [ 175.223659][T13633] ? __pfx_chrdev_open+0x10/0x10 [ 175.228583][T13633] do_dentry_open+0x647/0xa60 [ 175.233254][T13633] vfs_open+0x3b/0x1f0 [ 175.237315][T13633] path_openat+0x1ad9/0x1fa0 [ 175.241916][T13633] ? _parse_integer+0x27/0x30 [ 175.246603][T13633] do_filp_open+0xf7/0x200 [ 175.251021][T13633] do_sys_openat2+0xab/0x120 [ 175.255605][T13633] __x64_sys_openat+0xf3/0x120 [ 175.260361][T13633] x64_sys_call+0x1057/0x2d70 [ 175.265036][T13633] do_syscall_64+0xc9/0x1c0 [ 175.269548][T13633] ? clear_bhb_loop+0x55/0xb0 [ 175.274225][T13633] ? clear_bhb_loop+0x55/0xb0 [ 175.278897][T13633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.284792][T13633] RIP: 0033:0x7fa8473e8bd9 [ 175.289204][T13633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.308804][T13633] RSP: 002b:00007fa84666a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 175.317211][T13633] RAX: ffffffffffffffda RBX: 00007fa847576f60 RCX: 00007fa8473e8bd9 [ 175.325176][T13633] RDX: 00000000000c0041 RSI: 0000000020000340 RDI: ffffffffffffff9c [ 175.333143][T13633] RBP: 00007fa84666a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 175.341105][T13633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 175.349055][T13633] R13: 000000000000000b R14: 00007fa847576f60 R15: 00007ffc4b2d52a8 [ 175.357007][T13633] [ 175.362311][T13540] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 175.371631][T13641] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 175.398233][T13645] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3168'. [ 175.427553][T13540] 8021q: adding VLAN 0 to HW filter on device bond0 [ 175.442115][T13540] 8021q: adding VLAN 0 to HW filter on device team0 [ 175.452365][ T3455] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.459453][ T3455] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.482282][ T3455] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.489371][ T3455] bridge0: port 2(bridge_slave_1) entered forwarding state [ 175.557686][T13540] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 175.632654][T13540] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 175.701662][T13540] veth0_vlan: entered promiscuous mode [ 175.711096][T13540] veth1_vlan: entered promiscuous mode [ 175.729512][T13540] veth0_macvtap: entered promiscuous mode [ 175.737883][T13540] veth1_macvtap: entered promiscuous mode [ 175.750529][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.761048][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.770983][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.781416][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.791308][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.801820][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.811655][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.822076][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.831892][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.842360][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.852185][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.862590][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.872422][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.882911][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.892760][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.903175][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.913026][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.923463][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.934784][T13540] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 175.943233][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 175.953744][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.963626][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 175.974060][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.983884][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 175.994303][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.004157][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 176.014616][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.024542][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 176.034988][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.044821][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 176.055244][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.065078][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 176.075560][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.085435][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 176.095870][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.105791][T13540] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 176.116229][T13540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.128430][T13540] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 176.148594][T13540] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.157376][T13540] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.166137][T13540] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.175099][T13540] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.266641][T13685] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3176'. [ 176.284330][ T29] audit: type=1400 audit(1721105289.145:2806): avc: denied { setopt } for pid=13686 comm="syz.2.3131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 176.304192][ T29] audit: type=1400 audit(1721105289.145:2807): avc: denied { bind } for pid=13686 comm="syz.2.3131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 176.339857][T13697] loop2: detected capacity change from 0 to 512 [ 176.353024][T13697] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 176.363117][T13697] EXT4-fs (loop2): 1 truncate cleaned up [ 176.370736][T13697] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.505474][T13706] vlan0: entered promiscuous mode [ 176.510537][T13706] syz_tun: entered promiscuous mode [ 176.521113][T13706] syz_tun: left promiscuous mode [ 176.906744][T13710] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 177.211739][T13540] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.225741][ T29] audit: type=1400 audit(1721105290.095:2808): avc: denied { create } for pid=13715 comm="syz.0.3183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1 [ 177.276406][T13726] xt_CT: You must specify a L4 protocol and not use inversions on it [ 177.363045][T13747] sctp: [Deprecated]: syz.1.3193 (pid 13747) Use of struct sctp_assoc_value in delayed_ack socket option. [ 177.363045][T13747] Use struct sctp_sack_info instead [ 177.383048][T13744] loop3: detected capacity change from 0 to 512 [ 177.390183][ T29] audit: type=1400 audit(1721105290.255:2809): avc: denied { map } for pid=13745 comm="syz.1.3193" path="/dev/vcsu4" dev="devtmpfs" ino=517 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 177.450823][T13744] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz.3.3192: casefold flag without casefold feature [ 177.463657][T13744] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.3192: couldn't read orphan inode 15 (err -117) [ 177.477740][T13744] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 177.520704][ T29] audit: type=1400 audit(1721105290.355:2810): avc: denied { mounton } for pid=13743 comm="syz.3.3192" path="/61/file0/file0" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 177.696703][T13777] netlink: 308 bytes leftover after parsing attributes in process `syz.0.3206'. [ 177.748023][T12524] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.770670][ T3199] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.859471][ T3199] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.877635][ T29] audit: type=1400 audit(1721105290.745:2811): avc: denied { mounton } for pid=13795 comm="syz.0.3215" path="/proc/605/task" dev="proc" ino=46793 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 177.911790][T13793] loop1: detected capacity change from 0 to 512 [ 177.932235][T13793] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 177.944104][ T3199] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.997983][ T3199] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.054092][T13816] qrtr: Invalid version 4 [ 178.089388][ T3199] bridge_slave_1: left allmulticast mode [ 178.095116][ T3199] bridge_slave_1: left promiscuous mode [ 178.100851][ T3199] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.125610][ T3199] bridge_slave_0: left allmulticast mode [ 178.131286][ T3199] bridge_slave_0: left promiscuous mode [ 178.136981][ T3199] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.276888][ T3199] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 178.297705][ T3199] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 178.308008][ T29] audit: type=1400 audit(1721105291.175:2812): avc: denied { setattr } for pid=13845 comm="syz.1.3227" name="PPPOE" dev="sockfs" ino=45820 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 178.334726][ T3199] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 178.358563][ T3199] bond0 (unregistering): Released all slaves [ 178.403279][T13858] ieee802154 phy0 wpan0: encryption failed: -22 [ 178.502491][ T3199] hsr_slave_0: left promiscuous mode [ 178.504421][T13878] loop0: detected capacity change from 0 to 4096 [ 178.514799][ T3199] hsr_slave_1: left promiscuous mode [ 178.522203][ T3199] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 178.522674][T13878] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 178.529657][ T3199] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 178.552258][ T29] audit: type=1400 audit(1721105291.415:2813): avc: denied { bind } for pid=13866 comm="syz.1.3238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 178.572980][ T3199] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 178.580506][ T3199] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 178.582096][T13883] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3240'. [ 178.591278][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.600210][T13883] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3240'. [ 178.616893][ T3199] veth1_macvtap: left promiscuous mode [ 178.622439][ T3199] veth0_macvtap: left promiscuous mode [ 178.628031][ T3199] veth1_vlan: left promiscuous mode [ 178.633254][ T3199] veth0_vlan: left promiscuous mode [ 178.714335][ T3199] team0 (unregistering): Port device team_slave_1 removed [ 178.725078][ T3199] team0 (unregistering): Port device team_slave_0 removed [ 178.799448][T13797] chnl_net:caif_netlink_parms(): no params data found [ 178.840913][T13797] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.848146][T13797] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.856313][T13797] bridge_slave_0: entered allmulticast mode [ 178.862883][T13797] bridge_slave_0: entered promiscuous mode [ 178.869767][T13797] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.876826][T13797] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.883966][T13797] bridge_slave_1: entered allmulticast mode [ 178.890330][T13797] bridge_slave_1: entered promiscuous mode [ 178.917690][T13797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.932160][T13797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 178.963567][T13797] team0: Port device team_slave_0 added [ 178.972467][T13797] team0: Port device team_slave_1 added [ 179.013842][T13797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 179.020907][T13797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 179.046840][T13797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 179.073026][T13797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 179.080034][T13797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 179.106078][T13797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 179.139769][T13797] hsr_slave_0: entered promiscuous mode [ 179.148946][T13797] hsr_slave_1: entered promiscuous mode [ 179.157462][T13797] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 179.165675][T13797] Cannot create hsr debugfs directory [ 179.188060][T13908] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3248'. [ 179.197056][T13908] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 179.204480][T13908] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 179.228305][T13908] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 179.235824][T13908] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 179.409347][T13923] loop4: detected capacity change from 0 to 1764 [ 179.552801][T13797] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 179.566892][T13797] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 179.581592][T13797] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 179.593238][T13797] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 179.593833][T13954] netlink: 332 bytes leftover after parsing attributes in process `syz.0.3256'. [ 179.609035][T13954] netlink: 1276 bytes leftover after parsing attributes in process `syz.0.3256'. [ 179.618223][T13954] netlink: 1360 bytes leftover after parsing attributes in process `syz.0.3256'. [ 179.701642][T13797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 179.712907][T13797] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.732746][ T3467] bridge0: port 1(bridge_slave_0) entered blocking state [ 179.739850][ T3467] bridge0: port 1(bridge_slave_0) entered forwarding state [ 179.748914][ T3467] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.756054][ T3467] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.788489][T13797] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 179.808741][T13988] netlink: 5 bytes leftover after parsing attributes in process `syz.0.3262'. [ 179.988312][T13797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 180.047394][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 180.047408][ T29] audit: type=1400 audit(1721105292.915:2817): avc: denied { ioctl } for pid=14020 comm="syz.1.3267" path="socket:[47219]" dev="sockfs" ino=47219 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 180.124388][T14039] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3271'. [ 180.178532][T13797] veth0_vlan: entered promiscuous mode [ 180.191560][T13797] veth1_vlan: entered promiscuous mode [ 180.227795][T13797] veth0_macvtap: entered promiscuous mode [ 180.234278][T14055] netlink: 68 bytes leftover after parsing attributes in process `syz.0.3275'. [ 180.297384][T13797] veth1_macvtap: entered promiscuous mode [ 180.324856][T14055] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3275'. [ 180.357691][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.368226][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.378215][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.388817][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.398658][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.409155][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.419063][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.429544][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.439372][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.449883][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.462318][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.473739][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.483550][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.494068][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.503971][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 180.514474][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.525753][T13797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 180.548055][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.558645][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.568457][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.578884][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.588722][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.599129][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.608985][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.619572][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.629409][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.639836][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.649725][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.660145][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.670116][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.680584][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.690394][T13797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 180.700831][T13797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 180.713627][T13797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 180.737002][T13797] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.745767][T13797] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.754495][T13797] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.763249][T13797] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.885910][T14118] workqueue: Failed to create a rescuer kthread for wq "nfc13_nci_cmd_wq": -EINTR [ 180.888081][T14168] can0: slcan on ptm0. [ 181.019546][T14192] FAULT_INJECTION: forcing a failure. [ 181.019546][T14192] name failslab, interval 1, probability 0, space 0, times 0 [ 181.032218][T14192] CPU: 0 PID: 14192 Comm: syz.3.3290 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 181.042093][T14192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 181.052182][T14192] Call Trace: [ 181.055455][T14192] [ 181.058383][T14192] dump_stack_lvl+0xf2/0x150 [ 181.063083][T14192] dump_stack+0x15/0x20 [ 181.067310][T14192] should_fail_ex+0x229/0x230 [ 181.072069][T14192] ? sctp_stream_init_ext+0x38/0x130 [ 181.077370][T14192] __should_failslab+0x92/0xa0 [ 181.082133][T14192] should_failslab+0x9/0x20 [ 181.086713][T14192] kmalloc_trace_noprof+0x4b/0x2a0 [ 181.091897][T14192] sctp_stream_init_ext+0x38/0x130 [ 181.097008][T14192] sctp_sendmsg_to_asoc+0xb36/0xbe0 [ 181.102236][T14192] ? sctp_assoc_add_peer+0xaed/0xba0 [ 181.107564][T14192] sctp_sendmsg+0x136f/0x1920 [ 181.112243][T14192] ? __pfx_sctp_sendmsg+0x10/0x10 [ 181.117254][T14192] inet_sendmsg+0xc5/0xd0 [ 181.121582][T14192] __sock_sendmsg+0x102/0x180 [ 181.126270][T14192] __sys_sendto+0x1e5/0x260 [ 181.130768][T14192] __x64_sys_sendto+0x78/0x90 [ 181.135437][T14192] x64_sys_call+0x16d7/0x2d70 [ 181.140105][T14192] do_syscall_64+0xc9/0x1c0 [ 181.144649][T14192] ? clear_bhb_loop+0x55/0xb0 [ 181.149315][T14192] ? clear_bhb_loop+0x55/0xb0 [ 181.154065][T14192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.159949][T14192] RIP: 0033:0x7fa622b84bd9 [ 181.164346][T14192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.184004][T14192] RSP: 002b:00007fa621de5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 181.192432][T14192] RAX: ffffffffffffffda RBX: 00007fa622d13038 RCX: 00007fa622b84bd9 [ 181.200416][T14192] RDX: 0000000000000001 RSI: 0000000020847fff RDI: 0000000000000003 [ 181.208373][T14192] RBP: 00007fa621de50a0 R08: 000000002005ffe4 R09: 000000000000001c [ 181.216378][T14192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.224413][T14192] R13: 000000000000006e R14: 00007fa622d13038 R15: 00007ffc1e472048 [ 181.232436][T14192] [ 181.245962][T14167] can0 (unregistered): slcan off ptm0. [ 181.407312][T14216] loop0: detected capacity change from 0 to 512 [ 181.412404][T14211] loop4: detected capacity change from 0 to 8192 [ 181.449172][T14216] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.473813][T14216] ext4 filesystem being mounted at /292/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 181.488911][T14211] loop4: p1 p2 p3 p4 [ 181.492930][T14211] loop4: p1 size 108922248 extends beyond EOD, truncated [ 181.493641][T14223] loop3: detected capacity change from 0 to 1024 [ 181.513077][T14211] loop4: p2 start 861536256 is beyond EOD, truncated [ 181.519884][T14211] loop4: p3 start 851968 is beyond EOD, truncated [ 181.526344][T14211] loop4: p4 size 65536 extends beyond EOD, truncated [ 181.535518][T11168] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.600030][T14225] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3304'. [ 181.625591][T14225] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3304'. [ 181.646250][T14225] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 181.653716][T14225] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 181.669630][T14225] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 181.677251][T14225] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 181.698836][T14232] loop0: detected capacity change from 0 to 256 [ 181.744161][T14235] sock: sock_timestamping_bind_phc: sock not bind to device [ 181.875126][ T29] audit: type=1400 audit(1721105294.745:2818): avc: denied { setopt } for pid=14250 comm="syz.1.3314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 181.898601][ T29] audit: type=1400 audit(1721105294.765:2819): avc: denied { connect } for pid=14250 comm="syz.1.3314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 181.970158][ T29] audit: type=1400 audit(1721105294.835:2820): avc: denied { append } for pid=14255 comm="syz.1.3315" name="virtual_nci" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 182.033615][T14261] 9p: Unknown Cache mode or invalid value fsc€ùhe [ 182.347924][ T29] audit: type=1400 audit(1721105295.215:2821): avc: denied { shutdown } for pid=14285 comm="syz.1.3325" laddr=172.20.20.170 lport=255 faddr=224.0.0.1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 182.438717][ T29] audit: type=1400 audit(1721105295.305:2822): avc: denied { ioctl } for pid=14292 comm="syz.1.3327" path="socket:[48469]" dev="sockfs" ino=48469 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 182.583709][T14303] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14303 comm=syz.1.3333 [ 182.646199][ T29] audit: type=1400 audit(1721105295.515:2823): avc: denied { unmount } for pid=11294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1 [ 182.676109][T14320] FAULT_INJECTION: forcing a failure. [ 182.676109][T14320] name failslab, interval 1, probability 0, space 0, times 0 [ 182.688822][T14320] CPU: 1 PID: 14320 Comm: syz.1.3341 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 182.692834][T14322] loop3: detected capacity change from 0 to 1024 [ 182.698692][T14320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 182.698706][T14320] Call Trace: [ 182.698712][T14320] [ 182.698719][T14320] dump_stack_lvl+0xf2/0x150 [ 182.708199][T14322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 182.716022][T14320] dump_stack+0x15/0x20 [ 182.716052][T14320] should_fail_ex+0x229/0x230 [ 182.716072][T14320] ? tcf_block_get_ext+0x19f/0xb90 [ 182.753170][T14320] __should_failslab+0x92/0xa0 [ 182.757948][T14320] should_failslab+0x9/0x20 [ 182.762465][T14320] kmalloc_trace_noprof+0x4b/0x2a0 [ 182.767614][T14320] tcf_block_get_ext+0x19f/0xb90 [ 182.772646][T14320] ? find_stack+0xcf/0x170 [ 182.777162][T14320] tcf_block_get+0x66/0xa0 [ 182.781640][T14320] ? __pfx_tcf_chain_head_change_dflt+0x10/0x10 [ 182.787885][T14320] htb_init+0x109/0x6e0 [ 182.792117][T14320] ? qdisc_create+0xe5/0xae0 [ 182.796695][T14320] ? tc_modify_qdisc+0x65f/0x1050 [ 182.801756][T14320] ? rtnetlink_rcv_msg+0x85e/0x910 [ 182.806879][T14320] ? netlink_rcv_skb+0x12c/0x230 [ 182.811799][T14320] ? rtnetlink_rcv+0x1c/0x30 [ 182.816426][T14320] ? netlink_unicast+0x58d/0x660 [ 182.821465][T14320] ? netlink_sendmsg+0x5ca/0x6e0 [ 182.826388][T14320] ? __sock_sendmsg+0x140/0x180 [ 182.831278][T14320] ? ____sys_sendmsg+0x312/0x410 [ 182.836198][T14320] ? qdisc_lookup+0x1fd/0x2d0 [ 182.840918][T14320] ? __pfx_htb_init+0x10/0x10 [ 182.845612][T14320] qdisc_create+0x6c1/0xae0 [ 182.850143][T14320] ? __nla_parse+0x40/0x60 [ 182.854553][T14320] tc_modify_qdisc+0x65f/0x1050 [ 182.859445][T14320] ? ns_capable+0x7d/0xb0 [ 182.863825][T14320] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 182.869102][T14320] rtnetlink_rcv_msg+0x85e/0x910 [ 182.874026][T14320] ? __kfree_skb+0x102/0x150 [ 182.878603][T14320] ? packet_rcv+0xc9/0x940 [ 182.883015][T14320] ? kfree_skb_reason+0xb0/0x2b0 [ 182.887943][T14320] ? packet_rcv+0xc9/0x940 [ 182.892386][T14320] ? skb_release_data+0x583/0x5a0 [ 182.897422][T14320] ? kmem_cache_free+0xd8/0x280 [ 182.902335][T14320] ? nlmon_xmit+0x51/0x60 [ 182.906658][T14320] ? __kfree_skb+0x102/0x150 [ 182.911280][T14320] ? consume_skb+0x57/0x180 [ 182.915812][T14320] ? nlmon_xmit+0x51/0x60 [ 182.920118][T14320] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 182.925399][T14320] ? __dev_queue_xmit+0xb21/0x1e50 [ 182.930509][T14320] ? ref_tracker_free+0x3a5/0x410 [ 182.935543][T14320] netlink_rcv_skb+0x12c/0x230 [ 182.940404][T14320] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 182.945934][T14320] rtnetlink_rcv+0x1c/0x30 [ 182.950356][T14320] netlink_unicast+0x58d/0x660 [ 182.955194][T14320] netlink_sendmsg+0x5ca/0x6e0 [ 182.960037][T14320] ? __pfx_netlink_sendmsg+0x10/0x10 [ 182.965311][T14320] __sock_sendmsg+0x140/0x180 [ 182.969964][T14320] ____sys_sendmsg+0x312/0x410 [ 182.974769][T14320] __sys_sendmsg+0x1e9/0x280 [ 182.979373][T14320] __x64_sys_sendmsg+0x46/0x50 [ 182.984142][T14320] x64_sys_call+0xb25/0x2d70 [ 182.988827][T14320] do_syscall_64+0xc9/0x1c0 [ 182.993311][T14320] ? clear_bhb_loop+0x55/0xb0 [ 182.997971][T14320] ? clear_bhb_loop+0x55/0xb0 [ 183.002769][T14320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.008645][T14320] RIP: 0033:0x7f92b9f3abd9 [ 183.013124][T14320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.032794][T14320] RSP: 002b:00007f92b91bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 183.041274][T14320] RAX: ffffffffffffffda RBX: 00007f92ba0c8f60 RCX: 00007f92b9f3abd9 [ 183.049248][T14320] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 183.057220][T14320] RBP: 00007f92b91bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 183.065168][T14320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 183.073170][T14320] R13: 000000000000000b R14: 00007f92ba0c8f60 R15: 00007fff55fad028 [ 183.081190][T14320] [ 183.143219][T13797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.383346][T14359] loop1: detected capacity change from 0 to 1764 [ 183.629027][T14365] FAULT_INJECTION: forcing a failure. [ 183.629027][T14365] name failslab, interval 1, probability 0, space 0, times 0 [ 183.641743][T14365] CPU: 1 PID: 14365 Comm: syz.2.3355 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 183.651539][T14365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 183.661620][T14365] Call Trace: [ 183.664882][T14365] [ 183.667885][T14365] dump_stack_lvl+0xf2/0x150 [ 183.672585][T14365] dump_stack+0x15/0x20 [ 183.676732][T14365] should_fail_ex+0x229/0x230 [ 183.681555][T14365] ? skb_clone+0x154/0x1f0 [ 183.685969][T14365] __should_failslab+0x92/0xa0 [ 183.690746][T14365] should_failslab+0x9/0x20 [ 183.695303][T14365] kmem_cache_alloc_noprof+0x4c/0x290 [ 183.700679][T14365] skb_clone+0x154/0x1f0 [ 183.705077][T14365] __netlink_deliver_tap+0x2bd/0x4c0 [ 183.710356][T14365] netlink_unicast+0x63b/0x660 [ 183.715150][T14365] netlink_sendmsg+0x5ca/0x6e0 [ 183.719902][T14365] ? __pfx_netlink_sendmsg+0x10/0x10 [ 183.725173][T14365] __sock_sendmsg+0x140/0x180 [ 183.729883][T14365] ____sys_sendmsg+0x312/0x410 [ 183.734640][T14365] __sys_sendmsg+0x1e9/0x280 [ 183.739228][T14365] __x64_sys_sendmsg+0x46/0x50 [ 183.743984][T14365] x64_sys_call+0xb25/0x2d70 [ 183.748582][T14365] do_syscall_64+0xc9/0x1c0 [ 183.753105][T14365] ? clear_bhb_loop+0x55/0xb0 [ 183.757810][T14365] ? clear_bhb_loop+0x55/0xb0 [ 183.762518][T14365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.768473][T14365] RIP: 0033:0x7f8c5dcdabd9 [ 183.772957][T14365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.792554][T14365] RSP: 002b:00007f8c5cf5c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 183.800953][T14365] RAX: ffffffffffffffda RBX: 00007f8c5de68f60 RCX: 00007f8c5dcdabd9 [ 183.808909][T14365] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 183.816896][T14365] RBP: 00007f8c5cf5c0a0 R08: 0000000000000000 R09: 0000000000000000 [ 183.824929][T14365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 183.832917][T14365] R13: 000000000000000b R14: 00007f8c5de68f60 R15: 00007ffd29778ba8 [ 183.840902][T14365] [ 183.891823][ T29] audit: type=1400 audit(1721105296.755:2824): avc: denied { name_bind } for pid=14368 comm="syz.2.3357" src=35 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=udp_socket permissive=1 [ 183.959597][T14344] chnl_net:caif_netlink_parms(): no params data found [ 184.013673][T14344] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.020858][T14344] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.030549][T14344] bridge_slave_0: entered allmulticast mode [ 184.037506][T14344] bridge_slave_0: entered promiscuous mode [ 184.044351][T14344] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.051568][T14344] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.059082][T14344] bridge_slave_1: entered allmulticast mode [ 184.068543][T14344] bridge_slave_1: entered promiscuous mode [ 184.087610][T14344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 184.099662][T14344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 184.125251][T14344] team0: Port device team_slave_0 added [ 184.131941][T14344] team0: Port device team_slave_1 added [ 184.156548][T14344] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 184.163567][T14344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.189635][T14344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 184.203514][T14344] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 184.210553][T14344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.236590][T14344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 184.280830][T14344] hsr_slave_0: entered promiscuous mode [ 184.280959][T14401] loop1: detected capacity change from 0 to 256 [ 184.293044][T14344] hsr_slave_1: entered promiscuous mode [ 184.307872][T14401] __nla_validate_parse: 5 callbacks suppressed [ 184.307886][T14401] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3370'. [ 184.323472][T14344] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 184.332644][T14344] Cannot create hsr debugfs directory [ 184.411532][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 184.437203][T14344] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.484498][ T29] audit: type=1326 audit(1721105297.345:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14408 comm="syz.1.3373" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f92b9f3abd9 code=0x0 [ 184.532213][T14344] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.617033][T14344] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.755689][T14344] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.838986][T14421] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 184.839179][T14344] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 184.887184][T14344] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 184.901522][T14344] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 184.910542][T14450] loop3: detected capacity change from 0 to 512 [ 184.919074][T14344] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 184.936899][T14450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 184.949879][T14450] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 184.967269][T14344] 8021q: adding VLAN 0 to HW filter on device bond0 [ 184.975381][T13797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.981121][T14344] 8021q: adding VLAN 0 to HW filter on device team0 [ 184.994616][ T3455] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.001733][ T3455] bridge0: port 1(bridge_slave_0) entered forwarding state [ 185.012882][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.019948][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 185.043503][T14344] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 185.053954][T14344] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 185.118118][T14344] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 185.128828][T14467] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3384'. [ 185.249844][T14344] veth0_vlan: entered promiscuous mode [ 185.262728][T14344] veth1_vlan: entered promiscuous mode [ 185.280891][T14344] veth0_macvtap: entered promiscuous mode [ 185.291330][T14344] veth1_macvtap: entered promiscuous mode [ 185.308752][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.319213][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.329073][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.339556][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.349452][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.359965][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.369825][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.377352][T14492] FAULT_INJECTION: forcing a failure. [ 185.377352][T14492] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 185.380254][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.393268][T14492] CPU: 0 PID: 14492 Comm: syz.1.3389 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 185.403286][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.412986][T14492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 185.413001][T14492] Call Trace: [ 185.413009][T14492] [ 185.413016][T14492] dump_stack_lvl+0xf2/0x150 [ 185.413047][T14492] dump_stack+0x15/0x20 [ 185.423491][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.433459][T14492] should_fail_ex+0x229/0x230 [ 185.433486][T14492] should_fail+0xb/0x10 [ 185.436783][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.436797][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.436809][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.436820][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.436839][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.439729][T14492] should_fail_usercopy+0x1a/0x20 [ 185.444285][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.448412][T14492] copy_page_from_iter_atomic+0x22a/0xda0 [ 185.448445][T14492] ? shmem_write_begin+0xa0/0x1c0 [ 185.460397][T14344] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.462865][T14492] ? shmem_write_begin+0x10c/0x1c0 [ 185.468195][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.477367][T14492] generic_perform_write+0x21a/0x410 [ 185.477399][T14492] shmem_file_write_iter+0xc8/0xf0 [ 185.487217][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.497554][T14492] vfs_write+0x78f/0x900 [ 185.497642][T14492] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 185.497666][T14492] ksys_write+0xeb/0x1b0 [ 185.507509][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.517811][T14492] __x64_sys_write+0x42/0x50 [ 185.517844][T14492] x64_sys_call+0x27ef/0x2d70 [ 185.522834][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.522851][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.532612][T14492] do_syscall_64+0xc9/0x1c0 [ 185.532646][T14492] ? clear_bhb_loop+0x55/0xb0 [ 185.532673][T14492] ? clear_bhb_loop+0x55/0xb0 [ 185.538383][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.543365][T14492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.543393][T14492] RIP: 0033:0x7f92b9f3975f [ 185.550578][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.555640][T14492] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48 [ 185.555680][T14492] RSP: 002b:00007f92b919ae00 EFLAGS: 00000293 [ 185.566104][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.571328][T14492] ORIG_RAX: 0000000000000001 [ 185.576532][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.586167][T14492] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f92b9f3975f [ 185.586181][T14492] RDX: 0000000000040000 RSI: 00007f92b0d7b000 RDI: 0000000000000005 [ 185.586193][T14492] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000004df [ 185.586203][T14492] R10: 00000000000007c2 R11: 0000000000000293 R12: 0000000000000005 [ 185.586214][T14492] R13: 00007f92b919af00 R14: 00007f92b919aec0 R15: 00007f92b0d7b000 [ 185.590495][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.596269][T14492] [ 185.651840][T14492] loop1: detected capacity change from 0 to 512 [ 185.654714][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.654729][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.654743][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.814783][T14492] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 185.815736][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.828427][T14492] EXT4-fs (loop1): orphan cleanup on readonly fs [ 185.834021][T14344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.834034][T14344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.836270][T14344] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 185.844318][T14492] Quota error (device loop1): dq_insert_tree: Quota tree root isn't allocated! [ 185.868094][T14344] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.870481][T14492] Quota error (device loop1): qtree_write_dquot: Error -5 occurred while creating quota [ 185.877654][T14344] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.886582][T14492] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz.1.3389: Failed to acquire dquot type 1 [ 185.895403][T14344] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.895454][T14344] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.905194][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 185.914704][T14492] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3389: bg 0: block 40: padding at end of block bitmap is not set [ 185.931877][T14495] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 185.953072][T14492] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 185.994676][T14492] EXT4-fs (loop1): 1 truncate cleaned up [ 186.002370][T14492] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 186.074984][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.085427][T14515] FAULT_INJECTION: forcing a failure. [ 186.085427][T14515] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 186.098502][T14515] CPU: 0 PID: 14515 Comm: syz.4.3396 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 186.108378][T14515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 186.118469][T14515] Call Trace: [ 186.121744][T14515] [ 186.124672][T14515] dump_stack_lvl+0xf2/0x150 [ 186.129295][T14515] dump_stack+0x15/0x20 [ 186.133473][T14515] should_fail_ex+0x229/0x230 [ 186.138248][T14515] should_fail+0xb/0x10 [ 186.142390][T14515] should_fail_usercopy+0x1a/0x20 [ 186.147457][T14515] _copy_from_iter+0xd3/0xb00 [ 186.152120][T14515] ? kmalloc_reserve+0x16e/0x190 [ 186.157197][T14515] ? __build_skb_around+0x196/0x1f0 [ 186.162383][T14515] ? __alloc_skb+0x217/0x300 [ 186.167007][T14515] ? __virt_addr_valid+0x1ed/0x250 [ 186.172124][T14515] ? __check_object_size+0x35b/0x510 [ 186.177403][T14515] netlink_sendmsg+0x460/0x6e0 [ 186.182155][T14515] ? __pfx_netlink_sendmsg+0x10/0x10 [ 186.187427][T14515] __sock_sendmsg+0x140/0x180 [ 186.192104][T14515] ____sys_sendmsg+0x312/0x410 [ 186.196869][T14515] __sys_sendmsg+0x1e9/0x280 [ 186.201459][T14515] __x64_sys_sendmsg+0x46/0x50 [ 186.206213][T14515] x64_sys_call+0xb25/0x2d70 [ 186.210790][T14515] do_syscall_64+0xc9/0x1c0 [ 186.215292][T14515] ? clear_bhb_loop+0x55/0xb0 [ 186.219975][T14515] ? clear_bhb_loop+0x55/0xb0 [ 186.224649][T14515] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.230540][T14515] RIP: 0033:0x7fcd24ee4bd9 [ 186.234937][T14515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.254591][T14515] RSP: 002b:00007fcd24166048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 186.263024][T14515] RAX: ffffffffffffffda RBX: 00007fcd25072f60 RCX: 00007fcd24ee4bd9 [ 186.270978][T14515] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003 [ 186.278937][T14515] RBP: 00007fcd241660a0 R08: 0000000000000000 R09: 0000000000000000 [ 186.286893][T14515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 186.294849][T14515] R13: 000000000000000b R14: 00007fcd25072f60 R15: 00007ffd95cbc568 [ 186.302806][T14515] [ 186.345931][ T29] audit: type=1400 audit(1721105555.210:2826): avc: denied { create } for pid=14519 comm="syz.1.3397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 186.947396][T14550] loop0: detected capacity change from 0 to 764 [ 186.954364][T14550] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 186.963507][T14550] Symlink component flag not implemented [ 186.969328][T14550] Symlink component flag not implemented [ 186.976229][T14550] Symlink component flag not implemented (128) [ 186.982395][T14550] Symlink component flag not implemented (122) [ 186.989685][T14550] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3407'. [ 187.099985][T14552] loop0: detected capacity change from 0 to 256 [ 187.274412][T14559] loop4: detected capacity change from 0 to 1024 [ 187.516072][T14575] loop3: detected capacity change from 0 to 512 [ 187.528548][T14575] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.015046][T14597] netlink: 'syz.0.3424': attribute type 1 has an invalid length. [ 188.026300][T14597] serio: Serial port pts0 [ 188.335821][ T29] audit: type=1400 audit(1721105557.200:2827): avc: denied { create } for pid=14632 comm="syz.4.3431" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=tcp_socket permissive=1 [ 188.366118][ T29] audit: type=1400 audit(1721105557.230:2828): avc: denied { create } for pid=14632 comm="syz.4.3431" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=udp_socket permissive=1 [ 188.403160][T14633] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 188.516126][T14642] netlink: 104 bytes leftover after parsing attributes in process `syz.4.3434'. [ 189.199426][T14659] loop1: detected capacity change from 0 to 256 [ 189.207974][T14659] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 189.438206][T14679] netlink: 277 bytes leftover after parsing attributes in process `syz.3.3450'. [ 189.490338][T14684] netlink: 9 bytes leftover after parsing attributes in process `syz.1.3452'. [ 189.537230][T14692] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=10 sclass=netlink_route_socket pid=14692 comm=syz.1.3456 [ 189.564995][T14695] netem: change failed [ 189.614903][T14704] netlink: 'syz.3.3462': attribute type 1 has an invalid length. [ 189.721423][T14723] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3466'. [ 189.772865][T14729] loop1: detected capacity change from 0 to 128 [ 189.807485][T14729] netlink: 'syz.1.3471': attribute type 30 has an invalid length. [ 189.827004][T14735] loop1: detected capacity change from 0 to 512 [ 189.835376][T14735] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3474: bg 0: block 393: padding at end of block bitmap is not set [ 189.851278][T14735] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 189.866624][T14735] EXT4-fs (loop1): 2 truncates cleaned up [ 189.873206][T14735] EXT4-fs mount: 2 callbacks suppressed [ 189.873218][T14735] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.903677][T14733] loop4: detected capacity change from 0 to 8192 [ 189.960242][T11294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.972624][T14733] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3473'. [ 189.983448][ T29] audit: type=1400 audit(1721105558.840:2829): avc: denied { append } for pid=14732 comm="syz.4.3473" name="sg0" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 190.026607][T14744] team0: Port device syz_tun added [ 190.093141][ T29] audit: type=1326 audit(1721105558.950:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14751 comm="syz.1.3481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92b9f3abd9 code=0x7ffc0000 [ 190.116826][ T29] audit: type=1326 audit(1721105558.950:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14751 comm="syz.1.3481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92b9f3abd9 code=0x7ffc0000 [ 190.139978][T14752] loop1: detected capacity change from 0 to 8192 [ 190.140444][ T29] audit: type=1326 audit(1721105558.950:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14751 comm="syz.1.3481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92b9f3abd9 code=0x7ffc0000 [ 190.170237][ T29] audit: type=1326 audit(1721105558.950:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14751 comm="syz.1.3481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92b9f3abd9 code=0x7ffc0000 [ 190.215333][T14752] loop1: p1 < > p2 < p5 > p4 [ 190.221132][T14752] loop1: p4 size 16776960 extends beyond EOD, truncated [ 190.230021][T14752] loop1: p5 size 16776960 extends beyond EOD, truncated [ 190.304058][T14767] loop1: detected capacity change from 0 to 1024 [ 190.311120][T14767] EXT4-fs: Invalid want_extra_isize 129 [ 190.532340][T14781] loop3: detected capacity change from 0 to 2048 [ 190.546450][T14781] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 190.568367][T14781] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3493: bg 0: block 136: padding at end of block bitmap is not set [ 190.611891][T13797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.709118][T14791] vlan2: entered promiscuous mode [ 191.051129][T14777] syz.1.3492 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000 [ 191.065401][T14777] CPU: 0 PID: 14777 Comm: syz.1.3492 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 191.075214][T14777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 191.085354][T14777] Call Trace: [ 191.088671][T14777] [ 191.091582][T14777] dump_stack_lvl+0xf2/0x150 [ 191.096220][T14777] dump_stack+0x15/0x20 [ 191.100459][T14777] dump_header+0x83/0x2d0 [ 191.104845][T14777] oom_kill_process+0x33e/0x4c0 [ 191.109696][T14777] out_of_memory+0x9af/0xbe0 [ 191.114278][T14777] ? try_to_free_mem_cgroup_pages+0x22a/0x4e0 [ 191.120328][T14777] mem_cgroup_out_of_memory+0x13e/0x190 [ 191.125892][T14777] try_charge_memcg+0x745/0xcd0 [ 191.130816][T14777] ? get_page_from_freelist+0x1a30/0x1a70 [ 191.136539][T14777] obj_cgroup_charge_pages+0xbd/0x1d0 [ 191.141891][T14777] __memcg_kmem_charge_page+0x9d/0x170 [ 191.147335][T14777] __alloc_pages_noprof+0x1bc/0x360 [ 191.152605][T14777] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 191.158077][T14777] alloc_pages_noprof+0xe1/0x100 [ 191.163152][T14777] __vmalloc_node_range_noprof+0x719/0xef0 [ 191.168973][T14777] kvmalloc_node_noprof+0x121/0x170 [ 191.174180][T14777] ? ip_set_alloc+0x1f/0x30 [ 191.178721][T14777] ip_set_alloc+0x1f/0x30 [ 191.183063][T14777] hash_netiface_create+0x273/0x730 [ 191.188269][T14777] ? __nla_parse+0x40/0x60 [ 191.192683][T14777] ? __pfx_hash_netiface_create+0x10/0x10 [ 191.198422][T14777] ip_set_create+0x359/0x8a0 [ 191.203052][T14777] ? memchr+0x1/0x50 [ 191.206983][T14777] ? __nla_parse+0x40/0x60 [ 191.211406][T14777] nfnetlink_rcv_msg+0x4a9/0x570 [ 191.216464][T14777] netlink_rcv_skb+0x12c/0x230 [ 191.221314][T14777] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 191.226783][T14777] nfnetlink_rcv+0x16c/0x15b0 [ 191.231470][T14777] ? kmem_cache_free+0xd8/0x280 [ 191.236438][T14777] ? nlmon_xmit+0x51/0x60 [ 191.240766][T14777] ? __kfree_skb+0x102/0x150 [ 191.245442][T14777] ? consume_skb+0x57/0x180 [ 191.249938][T14777] ? nlmon_xmit+0x51/0x60 [ 191.254258][T14777] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 191.259532][T14777] ? __dev_queue_xmit+0xb21/0x1e50 [ 191.264627][T14777] ? ref_tracker_free+0x3a5/0x410 [ 191.269813][T14777] ? __netlink_deliver_tap+0x495/0x4c0 [ 191.275274][T14777] netlink_unicast+0x58d/0x660 [ 191.280045][T14777] netlink_sendmsg+0x5ca/0x6e0 [ 191.284793][T14777] ? __pfx_netlink_sendmsg+0x10/0x10 [ 191.290135][T14777] __sock_sendmsg+0x140/0x180 [ 191.294849][T14777] ____sys_sendmsg+0x312/0x410 [ 191.299700][T14777] __sys_sendmsg+0x1e9/0x280 [ 191.304304][T14777] __x64_sys_sendmsg+0x46/0x50 [ 191.309125][T14777] x64_sys_call+0xb25/0x2d70 [ 191.313866][T14777] do_syscall_64+0xc9/0x1c0 [ 191.318484][T14777] ? clear_bhb_loop+0x55/0xb0 [ 191.323244][T14777] ? clear_bhb_loop+0x55/0xb0 [ 191.327928][T14777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.333944][T14777] RIP: 0033:0x7f92b9f3abd9 [ 191.338350][T14777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.357963][T14777] RSP: 002b:00007f92b91bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 191.366392][T14777] RAX: ffffffffffffffda RBX: 00007f92ba0c8f60 RCX: 00007f92b9f3abd9 [ 191.374387][T14777] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 191.382412][T14777] RBP: 00007f92b9fa9e60 R08: 0000000000000000 R09: 0000000000000000 [ 191.390379][T14777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.398349][T14777] R13: 000000000000000b R14: 00007f92ba0c8f60 R15: 00007fff55fad028 [ 191.406321][T14777] [ 191.409911][T14777] memory: usage 307200kB, limit 307200kB, failcnt 157 [ 191.416929][T14777] memory+swap: usage 307544kB, limit 9007199254740988kB, failcnt 0 [ 191.424903][T14777] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0 [ 191.427594][ T29] kauditd_printk_skb: 59 callbacks suppressed [ 191.427655][ T29] audit: type=1400 audit(1721105560.290:2893): avc: denied { ioctl } for pid=14812 comm="syz.0.3503" path="socket:[50532]" dev="sockfs" ino=50532 ioctlcmd=0x0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 191.432161][T14777] Memory cgroup stats for /syz1: [ 191.433220][T14777] cache 16384 [ 191.470834][T14777] rss 0 [ 191.473570][T14777] shmem 0 [ 191.476487][T14777] mapped_file 16384 [ 191.480336][T14777] dirty 12288 [ 191.483602][T14777] writeback 0 [ 191.486917][T14777] workingset_refault_anon 6 [ 191.491399][T14777] workingset_refault_file 0 [ 191.495925][T14777] swap 352256 [ 191.499196][T14777] swapcached 12288 [ 191.502886][T14777] pgpgin 226155 [ 191.506385][T14777] pgpgout 226147 [ 191.509903][T14777] pgfault 235272 [ 191.513489][T14777] pgmajfault 10 [ 191.517006][T14777] inactive_anon 0 [ 191.520611][T14777] active_anon 12288 [ 191.524493][T14777] inactive_file 0 [ 191.528108][T14777] active_file 16384 [ 191.531914][T14777] unevictable 4096 [ 191.535632][T14777] hierarchical_memory_limit 314572800 [ 191.541050][T14777] hierarchical_memsw_limit 9223372036854771712 [ 191.547188][T14777] total_cache 16384 [ 191.550972][T14777] total_rss 0 [ 191.554230][T14777] total_shmem 0 [ 191.557693][T14777] total_mapped_file 16384 [ 191.562011][T14777] total_dirty 12288 [ 191.565825][T14777] total_writeback 0 [ 191.569616][T14777] total_workingset_refault_anon 6 [ 191.574744][T14777] total_workingset_refault_file 0 [ 191.579757][T14777] total_swap 352256 [ 191.583549][T14777] total_swapcached 12288 [ 191.587867][T14777] total_pgpgin 226155 [ 191.591820][T14777] total_pgpgout 226147 [ 191.595882][T14777] total_pgfault 235272 [ 191.599954][T14777] total_pgmajfault 10 [ 191.603905][T14777] total_inactive_anon 0 [ 191.608049][T14777] total_active_anon 12288 [ 191.612359][T14777] total_inactive_file 0 [ 191.616495][T14777] total_active_file 16384 [ 191.620798][T14777] total_unevictable 4096 [ 191.625099][T14777] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2269,pid=10838,uid=0 [ 191.639988][T14777] Memory cgroup out of memory: Killed process 10839 (syz.1.2269) total-vm:80752kB, anon-rss:484kB, file-rss:9996kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000 [ 191.726557][T14819] team0: Device vlan0 is already an upper device of the team interface [ 191.800118][ T29] audit: type=1326 audit(1721105560.660:2894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.823798][ T29] audit: type=1326 audit(1721105560.660:2895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.870916][ T29] audit: type=1326 audit(1721105560.720:2896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.894598][ T29] audit: type=1326 audit(1721105560.720:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.918121][ T29] audit: type=1326 audit(1721105560.720:2898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.941737][ T29] audit: type=1326 audit(1721105560.720:2899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.965562][ T29] audit: type=1326 audit(1721105560.730:2900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa622b84bd9 code=0x7ffc0000 [ 191.989325][ T29] audit: type=1326 audit(1721105560.730:2901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa622b7bc27 code=0x7ffc0000 [ 192.012806][ T29] audit: type=1326 audit(1721105560.730:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14820 comm="syz.3.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa622b205d9 code=0x7ffc0000 [ 192.097234][T14831] loop3: detected capacity change from 0 to 512 [ 192.116224][T14831] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 192.139581][T14831] EXT4-fs (loop3): 1 truncate cleaned up [ 192.158948][T14831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 192.189108][T14841] tipc: Started in network mode [ 192.194131][T14841] tipc: Node identity ea4fc9c76163, cluster identity 4711 [ 192.201380][T14841] tipc: Enabled bearer , priority 0 [ 192.219862][T14831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.263828][T14849] loop0: detected capacity change from 0 to 128 [ 192.276526][T14849] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 192.296823][T14849] ext4 filesystem being mounted at /349/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 192.353771][T14854] loop3: detected capacity change from 0 to 512 [ 192.364317][T14854] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 192.395458][T14854] EXT4-fs (loop3): 1 truncate cleaned up [ 192.401493][T14854] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 192.427968][T11168] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 192.448414][T14854] RDS: rds_bind could not find a transport for 0:0:80::ffff:ffff, load rds_tcp or rds_rdma? [ 192.466652][T14854] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 192.488591][T13797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.554840][T14862] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3522'. [ 192.583804][T14862] netlink: 104 bytes leftover after parsing attributes in process `syz.0.3522'. [ 193.012354][T14887] program syz.4.3530 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 193.214550][T14777] ================================================================== [ 193.222661][T14777] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64 [ 193.232478][T14777] [ 193.234794][T14777] read-write to 0xffffffff860079c0 of 8 bytes by interrupt on cpu 1: [ 193.242854][T14777] tick_do_update_jiffies64+0x112/0x1b0 [ 193.248395][T14777] tick_nohz_handler+0x7c/0x2d0 [ 193.253246][T14777] __hrtimer_run_queues+0x20d/0x5e0 [ 193.258446][T14777] hrtimer_interrupt+0x210/0x7b0 [ 193.263422][T14777] __sysvec_apic_timer_interrupt+0x5c/0x1a0 [ 193.269324][T14777] sysvec_apic_timer_interrupt+0x6e/0x80 [ 193.275043][T14777] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 193.281024][T14777] mem_cgroup_flush_stats_ratelimited+0x1d/0x100 [ 193.287360][T14777] count_shadow_nodes+0x6b/0x230 [ 193.292292][T14777] do_shrink_slab+0x5a/0x690 [ 193.296894][T14777] shrink_slab+0x4ed/0x860 [ 193.301318][T14777] shrink_node+0x59a/0x1da0 [ 193.305825][T14777] do_try_to_free_pages+0x3cf/0xc20 [ 193.311028][T14777] try_to_free_mem_cgroup_pages+0x1ea/0x4e0 [ 193.316927][T14777] try_charge_memcg+0x27a/0xcd0 [ 193.321776][T14777] mem_cgroup_swapin_charge_folio+0x107/0x1a0 [ 193.327837][T14777] __read_swap_cache_async+0x2b9/0x520 [ 193.333297][T14777] swap_cluster_readahead+0x276/0x3f0 [ 193.338664][T14777] swapin_readahead+0xe2/0x7a0 [ 193.343419][T14777] do_swap_page+0x3bc/0x1840 [ 193.348005][T14777] handle_mm_fault+0x8b9/0x2ac0 [ 193.352857][T14777] exc_page_fault+0x296/0x650 [ 193.357542][T14777] asm_exc_page_fault+0x26/0x30 [ 193.362389][T14777] rep_stos_alternative+0x40/0x80 [ 193.367413][T14777] copy_fpstate_to_sigframe+0x2b8/0x720 [ 193.372966][T14777] get_sigframe+0x295/0x350 [ 193.377457][T14777] x64_setup_rt_frame+0xa7/0x570 [ 193.382390][T14777] arch_do_signal_or_restart+0x287/0x4b0 [ 193.388012][T14777] irqentry_exit_to_user_mode+0x94/0x130 [ 193.393647][T14777] irqentry_exit+0x12/0x50 [ 193.398057][T14777] asm_exc_page_fault+0x26/0x30 [ 193.402912][T14777] [ 193.405233][T14777] read to 0xffffffff860079c0 of 8 bytes by task 14777 on cpu 0: [ 193.412854][T14777] mem_cgroup_flush_stats_ratelimited+0x29/0x100 [ 193.419204][T14777] count_shadow_nodes+0x6b/0x230 [ 193.424148][T14777] do_shrink_slab+0x5a/0x690 [ 193.428752][T14777] shrink_slab+0x4ed/0x860 [ 193.433172][T14777] shrink_node+0x59a/0x1da0 [ 193.437685][T14777] do_try_to_free_pages+0x3cf/0xc20 [ 193.442879][T14777] try_to_free_mem_cgroup_pages+0x1ea/0x4e0 [ 193.448780][T14777] try_charge_memcg+0x27a/0xcd0 [ 193.453629][T14777] obj_cgroup_charge_pages+0xbd/0x1d0 [ 193.458997][T14777] __memcg_kmem_charge_page+0x9d/0x170 [ 193.464447][T14777] __alloc_pages_noprof+0x1bc/0x360 [ 193.469652][T14777] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 193.475035][T14777] alloc_pages_noprof+0xe1/0x100 [ 193.479988][T14777] __vmalloc_node_range_noprof+0x719/0xef0 [ 193.485806][T14777] kvmalloc_node_noprof+0x121/0x170 [ 193.491008][T14777] ip_set_alloc+0x1f/0x30 [ 193.495346][T14777] hash_netiface_create+0x273/0x730 [ 193.500549][T14777] ip_set_create+0x359/0x8a0 [ 193.505134][T14777] nfnetlink_rcv_msg+0x4a9/0x570 [ 193.510084][T14777] netlink_rcv_skb+0x12c/0x230 [ 193.514846][T14777] nfnetlink_rcv+0x16c/0x15b0 [ 193.519521][T14777] netlink_unicast+0x58d/0x660 [ 193.524293][T14777] netlink_sendmsg+0x5ca/0x6e0 [ 193.529047][T14777] __sock_sendmsg+0x140/0x180 [ 193.533726][T14777] ____sys_sendmsg+0x312/0x410 [ 193.538498][T14777] __sys_sendmsg+0x1e9/0x280 [ 193.543094][T14777] __x64_sys_sendmsg+0x46/0x50 [ 193.547858][T14777] x64_sys_call+0xb25/0x2d70 [ 193.552447][T14777] do_syscall_64+0xc9/0x1c0 [ 193.556952][T14777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.562844][T14777] [ 193.565165][T14777] value changed: 0x00000000ffffd61b -> 0x00000000ffffd61c [ 193.572261][T14777] [ 193.574572][T14777] Reported by Kernel Concurrency Sanitizer on: [ 193.580716][T14777] CPU: 0 PID: 14777 Comm: syz.1.3492 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 193.590509][T14777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 193.600557][T14777] ================================================================== [ 193.609924][ T9] tipc: Node number set to 2334968263 [ 193.747089][ T30] oom_reaper: reaped process 10839 (syz.1.2269), now anon-rss:72kB, file-rss:8908kB, shmem-rss:0kB