netlink_sendmsg+0x6c3/0xc50 net/netlink/af_netlink.c:1917 ------------[ cut here ]------------ sock_sendmsg_nosec net/socket.c:651 [inline] sock_sendmsg+0xc3/0x120 net/socket.c:661 kernel BUG at fs/ext4/indirect.c:1236! ___sys_sendmsg+0x7bb/0x8e0 net/socket.c:2227 invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 0 PID: 3332 Comm: syz-executor.0 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022 RIP: 0010:ext4_ind_remove_space+0xfab/0x13a0 fs/ext4/indirect.c:1236 Code: 00 0f 85 9d 03 00 00 48 8b 0b 4c 89 fe 44 8b 4c 24 20 48 8b 7c 24 10 48 83 c1 04 e8 ef b6 ff ff e9 16 f6 ff ff e8 f5 e5 84 ff <0f> 0b 4c 8b 7c 24 50 e9 8e f9 ff ff e8 e4 e5 84 ff 48 8b 7c 24 10 RSP: 0018:ffff88808bea7b10 EFLAGS: 00010216 RAX: 0000000000040000 RBX: 0000000000000004 RCX: ffffc90005ce6000 RDX: 0000000000038872 RSI: ffffffff81dd9f7b RDI: 0000000000000004 RBP: 0000000000000000 R08: 000000000000005c R09: 0000000000000004 R10: 0000000000000004 R11: 0000000000000000 R12: 0000000000001000 R13: ffff88808bea7bc0 R14: ffff88808bea7be0 R15: ffff88808e3c4770 FS: 00007fd86ea4e700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 __sys_sendmsg net/socket.c:2265 [inline] __do_sys_sendmsg net/socket.c:2274 [inline] __se_sys_sendmsg net/socket.c:2272 [inline] __x64_sys_sendmsg+0x132/0x220 net/socket.c:2272 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fd86ea2d718 CR3: 0000000051437000 CR4: 00000000003406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f6c52dd3209 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f6c51748168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f6c52ee5f60 RCX: 00007f6c52dd3209 RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 RBP: 00007f6c517481d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc0fa0b35f R14: 00007f6c51748300 R15: 0000000000022000 ext4_punch_hole+0xfd3/0x11f0 fs/ext4/inode.c:4412 ext4_fallocate+0x3f8/0x2150 fs/ext4/extents.c:4960 vfs_fallocate+0x487/0x9a0 fs/open.c:308 ksys_fallocate fs/open.c:331 [inline] __do_sys_fallocate fs/open.c:339 [inline] __se_sys_fallocate fs/open.c:337 [inline] __x64_sys_fallocate+0xcf/0x140 fs/open.c:337 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fd8700d9209 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. RSP: 002b:00007fd86ea4e168 EFLAGS: 00000246 ORIG_RAX: 000000000000011d RAX: ffffffffffffffda RBX: 00007fd8701ebf60 RCX: 00007fd8700d9209 RDX: 0000000fffffffff RSI: 0000000000000003 RDI: 0000000000000006 RBP: 00007fd870133161 R08: 0000000000000000 R09: 0000000000000000 R10: 000004010000bffe R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc150d45cf R14: 00007fd86ea4e300 R15: 0000000000022000 Modules linked in: net_ratelimit: 15 callbacks suppressed openvswitch: netlink: Flow key attr not present in new flow. ---[ end trace 99f4d9f2c7633ab6 ]--- RIP: 0010:ext4_ind_remove_space+0xfab/0x13a0 fs/ext4/indirect.c:1236 Code: 00 0f 85 9d 03 00 00 48 8b 0b 4c 89 fe 44 8b 4c 24 20 48 8b 7c 24 10 48 83 c1 04 e8 ef b6 ff ff e9 16 f6 ff ff e8 f5 e5 84 ff <0f> 0b 4c 8b 7c 24 50 e9 8e f9 ff ff e8 e4 e5 84 ff 48 8b 7c 24 10 RSP: 0018:ffff88808bea7b10 EFLAGS: 00010216 RAX: 0000000000040000 RBX: 0000000000000004 RCX: ffffc90005ce6000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 RDX: 0000000000038872 RSI: ffffffff81dd9f7b RDI: 0000000000000004 RBP: 0000000000000000 R08: 000000000000005c R09: 0000000000000004 R10: 0000000000000004 R11: 0000000000000000 R12: 0000000000001000 R13: ffff88808bea7bc0 R14: ffff88808bea7be0 R15: ffff88808e3c4770 FS: 00007fd86ea4e700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 CPU: 1 PID: 3412 Comm: syz-executor.4 Tainted: G D 4.19.211-syzkaller #0 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0xf lib/fault-inject.c:149 __should_failslab+0x115/0x180 mm/failslab.c:32 should_failslab+0x5/0x10 mm/slab_common.c:1590 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] __do_kmalloc mm/slab.c:3725 [inline] __kmalloc+0x2ab/0x3c0 mm/slab.c:3736 kmalloc_array include/linux/slab.h:637 [inline] genl_family_rcv_msg+0x78b/0xc40 net/netlink/genetlink.c:571 CR2: 0000000020000040 CR3: 0000000051437000 CR4: 00000000003406f0 genl_rcv_msg+0xbf/0x160 net/netlink/genetlink.c:627 netlink_rcv_skb+0x160/0x440 net/netlink/af_netlink.c:2463 genl_rcv+0x24/0x40 net/netlink/genetlink.c:638 netlink_unicast_kernel net/netlink/af_netlink.c:1325 [inline] netlink_unicast+0x4d5/0x690 net/netlink/af_netlink.c:1351 netlink_sendmsg+0x6c3/0xc50 net/netlink/af_netlink.c:1917 sock_sendmsg_nosec net/socket.c:651 [inline] sock_sendmsg+0xc3/0x120 net/socket.c:661 ___sys_sendmsg+0x7bb/0x8e0 net/socket.c:2227 __sys_sendmsg net/socket.c:2265 [inline] __do_sys_sendmsg net/socket.c:2274 [inline] __se_sys_sendmsg net/socket.c:2272 [inline] __x64_sys_sendmsg+0x132/0x220 net/socket.c:2272 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f6c52dd3209 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f6c51748168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f6c52ee5f60 RCX: 00007f6c52dd3209 RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 RBP: 00007f6c517481d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffc0fa0b35f R14: 00007f6c51748300 R15: 0000000000022000 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400