2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 378.064889] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 378.070792] CR0=0000000080050033 CR3=00000001bb9a9000 CR4=00000000001426f0 [ 378.077825] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 378.084512] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 378.090587] *** Control State *** 2018/05/04 05:58:17 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:17 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:17 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:17 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="0000000000000000fbe0dcb36b433af0a2b38aa03b336b783450ee11666efb0f78fa048be814f576d2b38e2992eeee9108d92b70a376f041b7358e04f6bbfa2eab50fea6e9d7247b91ddd1d336254346b3a29583a5e5e154daaf941e8783b197e328c23a311622c9faeb7c560f1cc787390b98d187f1793827c7869ea7ea51de86341494a459d1bd83555f8d513ec501966d522d4cf39c05911d7839a0715bd0327bef08c49080cc9eefe0"]) 2018/05/04 05:58:17 executing program 7: getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="62747266732e2102"], &(0x7f0000000080), 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f00000000c0)={0x1ff, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, 0x108) 2018/05/04 05:58:17 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x0, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:17 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r0, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 378.094071] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 378.100761] EntryControls=0000d1ff ExitControls=0023efff [ 378.106234] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 378.113185] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 378.119863] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 378.126458] reason=80000021 qualification=0000000000000000 [ 378.132787] IDTVectoring: info=00000000 errcode=00000000 [ 378.138249] TSC Offset = 0xffffff32590239c3 [ 378.142581] EPT pointer = 0x00000001cad7a01e [ 378.239404] *** Guest State *** [ 378.242806] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 378.251734] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 378.260628] CR3 = 0x0000000000000000 [ 378.264410] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 378.270432] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 378.276473] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 378.283233] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 378.291248] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 378.299350] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 378.307500] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 378.315614] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 378.323650] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 378.334401] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 378.342424] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 378.352935] IDTR: limit=0x00000000, base=0x0000000000000000 [ 378.360981] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 378.371293] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 378.377862] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 378.385360] Interruptibility = 00000008 ActivityState = 00000000 [ 378.391628] *** Host State *** [ 378.394867] RIP = 0xffffffff811f7279 RSP = 0xffff8801b05df390 [ 378.400897] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 378.407353] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 378.415212] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 378.421141] CR0=0000000080050033 CR3=00000001871b7000 CR4=00000000001426f0 [ 378.428200] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 2018/05/04 05:58:17 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x0, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:17 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:17 executing program 6: socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001aff8)={0xffffffffffffffff, 0xffffffffffffffff}) write(r0, &(0x7f000001b000)='U', 0x1) r2 = perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$can_raw(0x1d, 0x3, 0x1) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x80000, 0x0) clock_gettime(0x0, &(0x7f0000000700)={0x0, 0x0}) ppoll(&(0x7f0000000240)=[{r1}, {r1, 0x8}, {r1, 0x8000}, {r1, 0x200}, {r3, 0x4020}], 0x5, &(0x7f0000000280)={r5, r6+10000000}, &(0x7f00000002c0)={0x100000007}, 0x8) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000680)='/dev/sequencer\x00', 0x10102, 0x0) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000080)={0x0, @broadcast, @local}, &(0x7f00000000c0)=0xc) sendmsg$can_raw(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x1d, r7}, 0x10, &(0x7f0000000180)={&(0x7f0000000140)=@can={{0x4, 0x3fb, 0x7, 0x2}, 0x0, 0x1, 0x0, 0x0, "36155f3822cff5ab"}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x4) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@mcast2, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000400)=0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000440)={{{@in6=@mcast2={0xff, 0x2, [], 0x1}, @in=@dev={0xac, 0x14, 0x14, 0x18}, 0x4e24, 0x0, 0x4e23, 0x4, 0x2, 0xa0, 0x20, 0x6c, 0x0, r8}, {0x5, 0xfffffffffffffc01, 0x7fffffff, 0x9, 0x8, 0x3e, 0x0, 0xf12e}, {0xd8, 0x1ff, 0x10001, 0x7}, 0xfd, 0x6e6bbb, 0x1, 0x0, 0x2, 0x3}, {{@in6=@dev={0xfe, 0x80, [], 0x18}, 0x4d3, 0xff}, 0xa, @in=@multicast1=0xe0000001, 0x3501, 0x1, 0x3, 0x0, 0xfffffffffffffff9, 0x3}}, 0xe8) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f0000000540)=@ethtool_rxnfc={0x2a, 0x1b, 0x4, {0x5000f65c96d8ff18, @hdata="a2e917afcfc57a2163a57175f67c06a2b1f1ab25ea507394c1269877226896ac27198299edc3671f338b6ab8fb93313521b1626d", {"04c6", @empty, 0xc72, 0xcb4, [0x5, 0x5b0c]}, @udp_ip6_spec={@dev={0xfe, 0x80, [], 0x1f}, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0x4e21, 0x4e24, 0x200}, {"155c", @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x10}, 0x1, 0x9, [0x7, 0x6]}, 0x20dbf306, 0x2}, 0x6, [0x3, 0x8, 0x5, 0x8, 0x0, 0x81]}}) read(r1, &(0x7f0000000000)=""/114, 0x72) r9 = getpgid(0x0) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000006c0)={0x700000, 0x5, 0x3, 0x0, 0x0, 0xfff, 0x0, 0xb, 0x100000000, 0xfffffffffffffffe, 0x7, 0xff, 0x0, 0x2, 0x8000, 0x7, 0x2, 0x2, 0x3}) fcntl$setown(r3, 0x8, r9) socketpair$inet_sctp(0x2, 0x1, 0x84, &(0x7f0000000740)) 2018/05/04 05:58:17 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:17 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") [ 378.434939] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 378.441055] *** Control State *** [ 378.444564] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 378.451266] EntryControls=0000d1ff ExitControls=0023efff [ 378.456772] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 378.463791] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 378.470507] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 378.477130] reason=80000021 qualification=0000000000000000 [ 378.483501] IDTVectoring: info=00000000 errcode=00000000 2018/05/04 05:58:18 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:18 executing program 7: r0 = memfd_create(&(0x7f00000002c0)="bcf6", 0x0) write(r0, &(0x7f0000000240)="d7", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xfec) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r0, 0x0) rt_sigtimedwait(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)={0x0, 0x989680}, 0x8) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000100)={0x80, 0x8, 0x4, 'queue1\x00', 0x3f6de15d}) [ 378.488993] TSC Offset = 0xffffff32037307b0 [ 378.493353] EPT pointer = 0x00000001cc2ee01e 2018/05/04 05:58:18 executing program 6: r0 = accept$inet(0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x0, @multicast1}, &(0x7f0000000080)=0x10) accept4$inet(r0, &(0x7f0000000600)={0x0, 0x0, @remote}, &(0x7f0000000640)=0x10, 0x80000) socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f00000000c0)={0xffffffffffffffff}) sendmsg(r0, &(0x7f0000000300)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x1, 0x1, 0x0, 0x0, {0xa, 0x4e20, 0x9, @mcast2={0xff, 0x2, [], 0x1}, 0x101}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000180)="525d84484eccf460767f005ccf9d3d0d2e476e2c9e41f5af4255cf2d694aca4673ab1d7122b21f62ce316780d905368efadcf5a44f9ef6d76a1dd75a7051eba5646541a51dafa14f3699", 0x4a}, {&(0x7f0000000200)="460b3f10a8e1bff025a71e93597f8d911ba88e63aab084e4a685655640bf4450c7505fb7e154af88ae8ff2888ecc78bc982c5f5680dd869fee5ea674e318f50a1fd16f7ac8dde37a2ed1fac0dd24b54f4d76bd31c1fb0345794501c866818b42363a381d4730149fe319234e6e3c82240dff5de013165b0ae6f6d3b8dd1193fd88f70032608b532f2d4c7690c7a194ec33478728b7323e75147cfbfe77", 0x9d}], 0x2, 0x0, 0x0, 0x4000}, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet(0x10, 0x3, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000340), &(0x7f0000000380)=0x4) syz_mount_image$hfsplus(&(0x7f00000003c0)='hfsplus\x00', &(0x7f0000000400)='./file0\x00', 0x4, 0x1, &(0x7f0000000540)=[{&(0x7f0000000440)="22ea8e511bbfc0dd542f8b4960dd6dbc18ddf8bbdc77d1c677508f4a6943c5683989fa1d8cc9ab4a4fc753452ca4850094188e0f1cda5ac54f81148a6fb72efdfaeb08ff7f8f0f9fa82fd6ceb76cd79c600327510c82acd61e3acc5dee680e9d8ba144173dc485689b4a8e2e11e59028276e05c82b1320994661f7ed29a5d499f6f6b9139a5dc4a06b32eae8938d76416d0a0b38c5d28d0dff30c6b3dff60271c4382c0e116669a9207737e03dfd07ecc4a40a08b0a7e28aba45a2631941a99ba561b668a5cc0febe0be5105666c0bcdc7cb9b6713", 0xd5, 0x5}], 0x0, &(0x7f0000000580)={[{@force='force', 0x2c}, {@part={'part', 0x3d, [0x31, 0x35]}, 0x2c}, {@session={'session', 0x3d, [0x31, 0x34, 0x34, 0x34]}, 0x2c}, {@part={'part', 0x3d, [0x78]}, 0x2c}, {@nls={'nls', 0x3d, 'maccroatian'}, 0x2c}, {@decompose='decompose', 0x2c}, {@session={'session', 0x3d, [0x0, 0x7d, 0x38, 0x32, 0x7d]}, 0x2c}, {@session={'session', 0x3d, [0x7f, 0x39, 0x39, 0x2d, 0x37, 0x35, 0x39, 0x35, 0x35]}, 0x2c}, {@nls={'nls', 0x3d, 'macroman'}, 0x2c}, {@nls={'nls', 0x3d, 'cp869'}, 0x2c}]}) sendmsg(r2, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f000000eff0)=[{&(0x7f0000010000)="240000001900030007ff0907000083be8020000000040005031d85680300a3a2d188737e", 0x24}], 0x1}, 0x0) [ 378.684461] hfsplus: unable to parse mount options [ 378.690409] *** Guest State *** [ 378.693798] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 378.702695] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 378.711624] CR3 = 0x0000000000000000 [ 378.715390] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 378.721472] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 378.727496] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 378.734205] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 378.742254] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 378.750370] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 378.758401] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 378.766431] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 378.774469] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 378.782507] GDTR: limit=0x00000000, base=0x0000000000000000 [ 378.790535] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 378.798547] IDTR: limit=0x00000000, base=0x0000000000000000 [ 378.806580] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 378.814584] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 378.821052] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 378.828523] Interruptibility = 00000008 ActivityState = 00000000 [ 378.834793] *** Host State *** [ 378.838055] RIP = 0xffffffff811f7279 RSP = 0xffff8801c9d1f390 [ 378.844180] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 378.850620] FSBase=00007f2148a60700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 378.858464] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 378.864391] CR0=0000000080050033 CR3=00000001871b7000 CR4=00000000001426f0 [ 378.871454] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 378.878145] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 378.884215] *** Control State *** [ 378.887683] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 378.894365] EntryControls=0000d1ff ExitControls=0023efff [ 378.899832] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 378.906786] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 378.913470] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 378.920075] reason=80000021 qualification=0000000000000000 [ 378.926429] IDTVectoring: info=00000000 errcode=00000000 [ 378.931911] TSC Offset = 0xffffff31d0721a23 [ 378.936246] EPT pointer = 0x0000000188e4501e [ 378.965277] hfsplus: unable to parse mount options 2018/05/04 05:58:18 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:18 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:18 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:18 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:18 executing program 7: 2018/05/04 05:58:18 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x0, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:18 executing program 6: socketpair$inet6_sctp(0xa, 0x55c9e673500f08ca, 0x84, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000040)=""/57, &(0x7f00000000c0)=0x39) r1 = syz_open_dev$usbmon(&(0x7f000004cff3)='/dev/usbmon#\x00', 0x0, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0x9204, 0x0) 2018/05/04 05:58:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) r5 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$describe(0x6, r5, &(0x7f0000002a00)=""/27, 0x2f) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) setsockopt$inet_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4) ioctl$TUNGETSNDBUF(r2, 0x800454d3, &(0x7f0000000140)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_mount_image$cifs(&(0x7f0000000200)='cifs\x00', &(0x7f0000000240)='./file0\x00', 0x1, 0x6, &(0x7f0000002940)=[{&(0x7f0000000740)="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", 0x1000, 0x1}, {&(0x7f0000000480)="61764b6bbe00431f9cddbbc64c7acc9ac77218e4da848c18f4d17ffa22114ac0c0656126581afc07246f27d57fb079daa9c57b3887dd455ed179310ceaf700def3ed64bd4bb8739f8aa92f5a496ada65ad9a6d956cb665ad208ec571e8cc4fc0c3fc439e0e54ba99614f4bef3c82468acfef3a0ae9b54514495560d5c89ab1effff92ff1d1526c68fb", 0x89, 0x1000}, {&(0x7f0000001740)="a8fcb198e7953dbe5bb4749ec1006c9d84ffc7ce04fc9c3f5a13af68ef88a030e12056a268a1088da4a8fd7789a34dc63ccc1544fd1c5aecc6cadd3f5945ed014e623b30dc43e9408694cfc2f55f56ef333bb20d4d83abdf898849e7a5906d5e49bed0de8a803322e1a95ec3e518d996815294e7943d1d54a964e2c5bd0cfea20e95fdda6a9b348574f46f83b71841866c7940633dc6856a66b102de6476f4ea32124b3d", 0xa4, 0x2}, {&(0x7f0000001800)="85ef18b6e6abe2ec9b0cab5498c3d3dda228f0c2f9361a050a1c8fff84c3972f760e6a8a949ada4d7bd299f77726874540a5886087e6582a0acebeef86336311f0cda2566a16c904f906940c822c18712fae47bb3960ea9c506fcba5ad44c3bd0605e6dff59b8a55ea5b50753e1ee724b5da86261c", 0x75, 0x678a}, {&(0x7f0000001880)="5eb68dd941c2e17dd46c540f3738f7c6cf540f53f7086fd0169ce8f88443b0c38f16340e21fa73a15f91cb3872cda7841d85fa1ccd706aaffc828a16a75167e35c39cee4b31eaca16aa39e58adb55425ba7254007e15e8b03e5d38d6295bbf3666f1be877691a4aaae3ca43ae72f84cabc59598d59aa15a7d96c103e8b14738ac1436254b34a5796d9d7599d3b6c8e26", 0x90, 0x7}, {&(0x7f0000001940)="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", 0x1000, 0x10}], 0x8006, &(0x7f0000000280)='tls\x00') syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:18 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cfe") [ 379.107182] *** Guest State *** [ 379.110566] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 379.119470] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 379.128357] CR3 = 0x0000000000000000 [ 379.132135] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 379.138154] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 379.144210] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:18 executing program 6: mkdir(&(0x7f0000000040)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000240)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) getgroups(0x4, &(0x7f0000000000)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0]) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0xc) r4 = getgid() setresgid(r2, r3, r4) unlink(&(0x7f00000002c0)='./control/file0\x00') unlink(&(0x7f0000000140)='./control/file0\x00') llistxattr(&(0x7f0000000080)='./control/file1/file0\x00', &(0x7f0000000300)=""/242, 0xf2) close(r0) 2018/05/04 05:58:18 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:18 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 379.150929] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 379.158968] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.167051] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.175077] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.183103] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.191115] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.199141] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 379.207185] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 379.215208] IDTR: limit=0x00000000, base=0x0000000000000000 [ 379.223248] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 379.231275] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 379.237753] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 379.245251] Interruptibility = 00000008 ActivityState = 00000000 [ 379.251544] *** Host State *** [ 379.254786] RIP = 0xffffffff811f7279 RSP = 0xffff880188eaf390 [ 379.260832] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 379.267299] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 379.275163] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 379.281099] CR0=0000000080050033 CR3=0000000185794000 CR4=00000000001426e0 [ 379.288191] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 379.294911] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 379.301054] *** Control State *** 2018/05/04 05:58:18 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:18 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 379.304553] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 379.311272] EntryControls=0000d1ff ExitControls=0023efff [ 379.316777] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 379.323755] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 379.330464] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 379.337102] reason=80000021 qualification=0000000000000000 [ 379.343465] IDTVectoring: info=00000000 errcode=00000000 [ 379.348974] TSC Offset = 0xffffff319097c9d3 [ 379.353347] EPT pointer = 0x00000001b867c01e [ 379.431997] *** Guest State *** [ 379.435388] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 379.444290] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 379.453220] CR3 = 0x0000000000000000 [ 379.456982] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 379.463010] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 379.469071] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 379.475786] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 379.483813] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.491841] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.499861] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.507879] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.515908] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 379.523987] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 379.532063] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 379.540082] IDTR: limit=0x00000000, base=0x0000000000000000 [ 379.548104] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 379.556136] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 379.562590] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 379.570098] Interruptibility = 00000008 ActivityState = 00000000 [ 379.576372] *** Host State *** [ 379.579620] RIP = 0xffffffff811f7279 RSP = 0xffff88018aa6f390 [ 379.585645] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 379.592102] FSBase=00007f2148a60700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 379.599944] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 379.605881] CR0=0000000080050033 CR3=0000000185794000 CR4=00000000001426e0 [ 379.612946] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 379.619644] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 379.625733] *** Control State *** [ 379.629205] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 379.635893] EntryControls=0000d1ff ExitControls=0023efff [ 379.641365] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 379.648319] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 379.655010] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 379.661653] reason=80000021 qualification=0000000000000000 [ 379.667989] IDTVectoring: info=00000000 errcode=00000000 [ 379.673491] TSC Offset = 0xffffff319097c9d3 [ 379.677852] EPT pointer = 0x00000001b867c01e 2018/05/04 05:58:19 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:19 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x0, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:19 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:19 executing program 7: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) mkdir(&(0x7f0000000100)='./file0//ile0\x00', 0x0) stat(&(0x7f00000001c0)='./file0//ile0/file0\x00', &(0x7f0000000240)) syz_fuse_mount(&(0x7f00000000c0)='./file0//ile0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x0, 0x0) ioctl$TCGETS(r0, 0x5401, &(0x7f0000000140)) 2018/05/04 05:58:19 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:19 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000040)='/dev/vga_arbiter\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c46000000000000000000000003003e00000000000004000000000000400000000000000000000000000000000000000000003800020000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000050000000000000008000000004000000000000000000000"], 0xb0) execveat(r0, &(0x7f0000ff7000)='./file0\x00', &(0x7f0000d0e000), &(0x7f000034bff8)=[&(0x7f0000ff7000)="00000000000000060804002000fffc0c6565643b799365005f1b76"], 0x1000) 2018/05/04 05:58:19 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x3, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x3ff, 0x40) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:19 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 380.295308] *** Guest State *** [ 380.298746] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 380.307659] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 380.316531] CR3 = 0x0000000000000000 [ 380.320313] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 380.326326] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 380.332373] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 380.339081] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 380.347116] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.355142] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.363175] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.371198] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.379239] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.387566] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:19 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:19 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x0, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:19 executing program 6: socketpair$inet6_icmp(0xa, 0x2, 0x3a, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000140), &(0x7f0000000180)=0x4) r2 = socket$inet6(0xa, 0x6, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r2, 0x29, 0x45, &(0x7f0000000080)={'icmp\x00'}, &(0x7f00000000c0)=0x1e) setsockopt$inet6_int(r0, 0x29, 0x800000000000048, &(0x7f0000000040)=0x3, 0xffffffffffffff66) getsockopt$inet6_mtu(r2, 0x29, 0x48, &(0x7f0000000000), &(0x7f00000001c0)=0xfffffffffffffd51) [ 380.395613] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 380.403635] IDTR: limit=0x00000000, base=0x0000000000000000 [ 380.411691] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 380.419714] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 380.426173] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 380.433659] Interruptibility = 00000008 ActivityState = 00000000 [ 380.439944] *** Host State *** 2018/05/04 05:58:19 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c10") 2018/05/04 05:58:19 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c10") [ 380.443192] RIP = 0xffffffff811f7279 RSP = 0xffff8801a61ff390 [ 380.449236] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 380.455687] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 380.463557] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 380.469487] CR0=0000000080050033 CR3=00000001a8cd8000 CR4=00000000001426e0 [ 380.476558] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 380.483272] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 380.489384] *** Control State *** 2018/05/04 05:58:20 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 380.492869] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 380.499578] EntryControls=0000d1ff ExitControls=0023efff [ 380.505079] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 380.512066] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 380.518766] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 380.525386] reason=80000021 qualification=0000000000000000 [ 380.531742] IDTVectoring: info=00000000 errcode=00000000 [ 380.537228] TSC Offset = 0xffffff30edbad078 [ 380.541584] EPT pointer = 0x00000001d6d0901e 2018/05/04 05:58:20 executing program 6: r0 = socket(0x2, 0x3, 0x40000000000000ff) socketpair(0x9, 0x5, 0x2, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x0}, {}, {}]}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r1, 0xc010641d, &(0x7f00000001c0)={r2, &(0x7f0000000100)=""/133}) ioctl$sock_netrom_TIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) keyctl$join(0x1, &(0x7f0000000200)={0x73, 0x79, 0x7a, 0x1}) 2018/05/04 05:58:20 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:20 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 380.689360] *** Guest State *** [ 380.692762] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 380.701678] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 380.710603] CR3 = 0x0000000000000000 [ 380.714380] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 380.720385] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 380.726421] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 380.733126] CS: sel=0x0000, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 380.741181] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.749200] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.757242] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.765267] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.773320] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 380.781332] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 380.789388] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 380.797407] IDTR: limit=0x00000000, base=0x0000000000000000 [ 380.805451] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 380.813460] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 380.819951] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 380.819964] Interruptibility = 00000008 ActivityState = 00000000 [ 380.819968] *** Host State *** [ 380.819981] RIP = 0xffffffff811f7279 RSP = 0xffff8801a61ff390 [ 380.820006] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 380.820043] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 380.820054] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 380.820068] CR0=0000000080050033 CR3=00000001a8cd8000 CR4=00000000001426e0 [ 380.820082] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 380.820093] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 380.820097] *** Control State *** [ 380.820107] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 380.820115] EntryControls=0000d1ff ExitControls=0023efff [ 380.820129] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 2018/05/04 05:58:20 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c8c") 2018/05/04 05:58:20 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:20 executing program 7: perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x80, 0x0) ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f0000000180)=""/78) r1 = syz_open_dev$sg(&(0x7f0000797ff7)='/dev/sg#\x00', 0x0, 0x0) ioctl(r1, 0x20000000002286, &(0x7f0000000000)) ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f0000000080)=0x3) 2018/05/04 05:58:20 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x0, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:20 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:20 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:20 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) dup3(r2, r1, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2018/05/04 05:58:20 executing program 6: mmap(&(0x7f0000000000/0xe77000)=nil, 0xe77000, 0x3, 0x34, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000000140)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x0, 0x0, 0x2, 0x0, {0xa, 0x4e21, 0x3, @mcast1={0xff, 0x1, [], 0x1}, 0x4}}}, 0x32) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000640)='/dev/rfkill\x00', 0xfefffffffffffffb, 0x0) r2 = socket$l2tp(0x18, 0x1, 0x1) fstat(r1, &(0x7f0000000000)) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x8084, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000340)) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000d0fff5)='/dev/audio\x00', 0x802, 0x0) ioctl$KVM_INTERRUPT(r4, 0x4004ae86, &(0x7f00000001c0)=0x6) ustat(0x6, &(0x7f0000000140)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@mcast2={0xff, 0x2, [], 0x1}, 0x7, 0x0, 0x4002, 0x4, 0x5, 0x7, 0x7}, 0x20) ioctl$int_in(r4, 0x800000c0045002, &(0x7f0000000200)) ppoll(&(0x7f0000000000)=[{r4}], 0x152, &(0x7f00000000c0), &(0x7f0000000100), 0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r4, 0x84, 0x79, &(0x7f0000000180), 0x4) read(r4, &(0x7f0000000500)=""/143, 0xfffffffffffffe42) ioctl$sock_inet_SIOCSARP(r3, 0x40096101, &(0x7f00008da000)={{0x2, 0x4e21, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}, [0xfe]}, {}, 0x0, {0x2, 0x0, @loopback=0x7f000001}}) bind$llc(r3, &(0x7f0000000080)={0x1a, 0x20, 0x100000001, 0x4, 0x6, 0x401, @random="d9f08308fda5"}, 0x10) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r4, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40800001}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00082cbd7000fedbdf250f0015000800f70f0000"], 0x28}, 0x1}, 0x4000) userfaultfd(0x80000) fchmod(r3, 0x8) dup2(r2, r1) ioctl$EVIOCGKEY(r3, 0x80404518, &(0x7f0000000280)=""/10) socketpair(0x0, 0x0, 0x1, &(0x7f0000000600)) [ 380.820139] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 380.820146] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 380.820153] reason=80000021 qualification=0000000000000000 [ 380.820160] IDTVectoring: info=00000000 errcode=00000000 [ 380.820172] TSC Offset = 0xffffff30edbad078 [ 380.820182] EPT pointer = 0x00000001d6d0901e [ 381.055888] QAT: Invalid ioctl [ 381.093769] QAT: Stopping all acceleration devices. 2018/05/04 05:58:20 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 381.117762] QAT: Invalid ioctl 2018/05/04 05:58:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETOWNER(r2, 0x400454cc, r5) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') 2018/05/04 05:58:20 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:20 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cf4") 2018/05/04 05:58:20 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:20 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x0, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 381.171903] QAT: Invalid ioctl [ 381.203239] QAT: Stopping all acceleration devices. [ 381.248408] QAT: Invalid ioctl 2018/05/04 05:58:20 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 381.312062] *** Guest State *** [ 381.315451] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 381.324354] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 381.333233] CR3 = 0x0000000000000000 [ 381.336987] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 381.343004] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 381.349051] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:20 executing program 7: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000006d100000000000009500000000000000"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x7, &(0x7f0000000000)="ffe274fd6243e8140cd2b7731cdf", &(0x7f0000000280)=""/7}, 0x28) 2018/05/04 05:58:20 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000100)) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r1, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 381.355789] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 381.363803] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.371820] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.379829] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.387852] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.395865] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.403894] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:20 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:20 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6ca7") [ 381.411973] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 381.420012] IDTR: limit=0x00000000, base=0x0000000000000000 [ 381.428058] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 381.436074] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 381.442511] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 381.450000] Interruptibility = 00000008 ActivityState = 00000000 [ 381.456278] *** Host State *** [ 381.459511] RIP = 0xffffffff811f7279 RSP = 0xffff880183327390 [ 381.465525] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 381.471971] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 381.479799] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 381.485734] CR0=0000000080050033 CR3=00000001aee26000 CR4=00000000001426e0 [ 381.492791] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 381.499500] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 381.505577] *** Control State *** [ 381.509065] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 381.515750] EntryControls=0000d1ff ExitControls=0023efff [ 381.521236] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 381.528198] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 381.534910] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 381.541516] reason=80000021 qualification=0000000000000000 [ 381.547866] IDTVectoring: info=00000000 errcode=00000000 [ 381.553340] TSC Offset = 0xffffff30609c3cfa [ 381.557692] EPT pointer = 0x00000001cc65e01e [ 381.633685] *** Guest State *** [ 381.637120] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 381.646053] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 381.654924] CR3 = 0x0000000000000000 [ 381.658697] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 381.664725] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 381.670732] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 381.677441] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 381.685441] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.693458] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.701467] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.709500] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.717512] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 381.725539] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 381.733552] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 381.741573] IDTR: limit=0x00000000, base=0x0000000000000000 [ 381.749583] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 381.757603] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 381.764048] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 381.771550] Interruptibility = 00000008 ActivityState = 00000000 [ 381.777808] *** Host State *** [ 381.781069] RIP = 0xffffffff811f7279 RSP = 0xffff880191ed7390 [ 381.787079] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 381.793518] FSBase=00007f2148a60700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 381.801332] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 381.807241] CR0=0000000080050033 CR3=00000001aee26000 CR4=00000000001426e0 [ 381.814293] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 381.820987] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 381.827069] *** Control State *** 2018/05/04 05:58:21 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cfe") [ 381.830537] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 381.837209] EntryControls=0000d1ff ExitControls=0023efff [ 381.842678] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 381.849650] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 381.856348] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 381.862944] reason=80000021 qualification=0000000000000000 [ 381.869276] IDTVectoring: info=00000000 errcode=00000000 [ 381.874736] TSC Offset = 0xffffff3036645fbc [ 381.879073] EPT pointer = 0x00000001d211f01e 2018/05/04 05:58:21 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:21 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setrlimit(0x7, &(0x7f0000000040)={0xfffffffffffffffd, 0x20000000}) epoll_create1(0x0) 2018/05/04 05:58:21 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(0xffffffffffffffff, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:21 executing program 3: openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x440, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:21 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ashmem\x00', 0x20000, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:21 executing program 7: r0 = socket$inet(0x2, 0x3, 0x2) sendmmsg(r0, &(0x7f0000006780)=[{{&(0x7f0000000340)=@in={0x2}, 0x10, &(0x7f00000008c0), 0x0, &(0x7f0000000940)}}, {{&(0x7f0000005140)=@ax25={0x3, {"d162919bab73ac"}}, 0xf, &(0x7f0000006600), 0x0, &(0x7f0000006680)}}], 0x2, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x6000) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000040)=0x9, 0x4) 2018/05/04 05:58:21 executing program 6: openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x2e02, 0x0) r0 = semget$private(0x0, 0x1, 0x0) semtimedop(r0, &(0x7f000001dfd6)=[{0x0, 0xfffffffffffffff7}], 0x1, &(0x7f0000380000)={0x101}) r1 = socket$bt_hidp(0x1f, 0x3, 0x6) writev(r1, &(0x7f0000000080)=[{&(0x7f0000000000)="f501e6cc79b3fd8a444585bbbf52ec882ff620e079d660b1982d2de2", 0x1c}, {&(0x7f0000000040)}], 0x2) semtimedop(r0, &(0x7f0000033816)=[{0x0, 0x3, 0xfffffffffffffffd}, {0x0, 0x808d}], 0x2, &(0x7f0000034000)={0x77359400}) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000fbd000)=[0x7fff]) [ 381.993659] *** Guest State *** [ 381.997071] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 382.005981] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 382.014882] CR3 = 0x0000000000000000 [ 382.018662] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 382.024669] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 382.030700] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:21 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:21 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(0xffffffffffffffff, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 382.037406] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 382.045426] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.053434] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.061474] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.069482] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.077516] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.085531] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:21 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c7f") [ 382.093561] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 382.101582] IDTR: limit=0x00000000, base=0x0000000000000000 [ 382.109619] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 382.117629] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 382.124086] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 382.131572] Interruptibility = 00000008 ActivityState = 00000000 [ 382.137846] *** Host State *** [ 382.141070] RIP = 0xffffffff811f7279 RSP = 0xffff88018aa87390 [ 382.147091] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 382.153532] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 382.161384] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 382.167316] CR0=0000000080050033 CR3=00000001c82e6000 CR4=00000000001426e0 [ 382.174382] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 382.181089] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 382.187192] *** Control State *** 2018/05/04 05:58:21 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:21 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:21 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 382.190691] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 382.197406] EntryControls=0000d1ff ExitControls=0023efff [ 382.202892] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 382.209863] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 382.216552] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 382.223168] reason=80000021 qualification=0000000000000000 [ 382.229510] IDTVectoring: info=00000000 errcode=00000000 [ 382.234998] TSC Offset = 0xffffff30047688fd [ 382.239363] EPT pointer = 0x00000001ca12b01e [ 382.312629] *** Guest State *** [ 382.316069] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 382.324993] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 382.333884] CR3 = 0x0000000000000000 [ 382.337666] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 382.343675] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 382.349703] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 382.356413] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 382.364439] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.372479] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.380515] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.388534] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.396560] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 382.404567] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 382.412598] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 382.420614] IDTR: limit=0x00000000, base=0x0000000000000000 [ 382.428650] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 382.436658] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 382.443127] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 382.450616] Interruptibility = 00000008 ActivityState = 00000000 [ 382.456898] *** Host State *** 2018/05/04 05:58:22 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58) fremovexattr(r0, &(0x7f0000000140)=@random={'btrfs.', 'skcipher\x00'}) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="0b2759ba2977ca1e9e09b8662b96", 0xe) 2018/05/04 05:58:22 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:22 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(0xffffffffffffffff, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:22 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control&') [ 382.460141] RIP = 0xffffffff811f7279 RSP = 0xffff88018aa87390 [ 382.466180] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 382.472623] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 382.480443] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 382.486387] CR0=0000000080050033 CR3=00000001c82e6000 CR4=00000000001426e0 [ 382.493439] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 382.500133] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 382.506207] *** Control State *** 2018/05/04 05:58:22 executing program 3: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:22 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 382.509691] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 382.516383] EntryControls=0000d1ff ExitControls=0023efff [ 382.521860] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 382.528812] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 382.535503] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 382.542123] reason=80000021 qualification=0000000000000000 [ 382.548462] IDTVectoring: info=00000000 errcode=00000000 [ 382.553944] TSC Offset = 0xffffff30047688fd [ 382.558295] EPT pointer = 0x00000001ca12b01e 2018/05/04 05:58:22 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0x0, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/kvm\x00', 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x8000000000010007, 0x0, 0x40ab542d43b998f0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:22 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c93") 2018/05/04 05:58:22 executing program 6: unshare(0x8000000) semget(0xffffffffffffffff, 0x800000000000000a, 0x0) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x408040, 0x0) ioctl$LOOP_SET_CAPACITY(r0, 0x4c07) syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x802) unshare(0x8000000) 2018/05/04 05:58:22 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c93") 2018/05/04 05:58:22 executing program 3: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:22 executing program 7: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={0x0, 0xab, 0x20, 0x4, 0x9}, &(0x7f0000000080)=0x18) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000140)={r1, 0xdc, "e0a963dec7dd6a5f58054eb82a5b9e168c4ad457a4beabf5ed032e1c2e85ded7f4d47b1baf680ebf868e2b9562db01175f41f306cae694aded3ffdfcba6350354fed114b078068477de65c91b0742e48373dfd4141ac7ca0ef9aca7c2aceeeae4c1d26992115a7a4034b465cbc60ebf8278d83282f1d483407af3f2ef6a1a04babd58782cfbc6e6755c01f47e20e204f21c68eff09c869ae088e21e6f0ddc75e5955c1a73aabaf082074501f576e2ef7fd21994556056136e25ab8936367db1d56d320615c78154a6a91a8829335dbdf92f8866eed92b60dd64d87bc"}, &(0x7f00000000c0)=0xe4) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r2, &(0x7f0000000100)=@destroy_id={0x1, 0x10, 0xfa00, {&(0x7f0000000240)}}, 0x18) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f00000002c0)) 2018/05/04 05:58:22 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x800, 0x0) r2 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x3, 0x20000) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000140)=r2) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r7 = dup3(r3, r4, 0x80000) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) getsockopt$netrom_NETROM_T1(r7, 0x103, 0x1, &(0x7f0000000200), &(0x7f0000000240)=0x4) ioctl$KVM_SMI(r6, 0xaeb7) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r5, 0xae80, 0x0) r8 = shmget$private(0x0, 0x1000, 0x1, &(0x7f0000ff6000/0x1000)=nil) shmctl$SHM_INFO(r8, 0xe, &(0x7f0000000040)=""/1) ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 2018/05/04 05:58:22 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:22 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0x0, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 383.029681] *** Guest State *** [ 383.033123] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 383.042060] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 383.050929] CR3 = 0x0000000000000000 [ 383.054703] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 383.060710] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 383.066741] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 383.073449] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 383.081477] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.089497] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.097530] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.105552] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.113592] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.121603] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 383.129633] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 383.137648] IDTR: limit=0x00000000, base=0x0000000000000000 [ 383.145681] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 383.153691] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 383.160150] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 383.167635] Interruptibility = 00000008 ActivityState = 00000000 [ 383.173913] *** Host State *** 2018/05/04 05:58:22 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:22 executing program 3: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:22 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:22 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:22 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0x0, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 383.177150] RIP = 0xffffffff811f7279 RSP = 0xffff8801933bf390 [ 383.183190] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 383.189637] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 383.197491] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 383.203420] CR0=0000000080050033 CR3=00000001d42f5000 CR4=00000000001426e0 [ 383.210515] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 383.217226] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 383.223331] *** Control State *** [ 383.226823] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 383.233536] EntryControls=0000d1ff ExitControls=0023efff [ 383.239056] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 383.246056] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 383.252757] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 383.259398] reason=80000021 qualification=0000000000000000 [ 383.265756] IDTVectoring: info=00000000 errcode=00000000 [ 383.271247] TSC Offset = 0xffffff2f7554e0b7 [ 383.275600] EPT pointer = 0x00000001894e901e 2018/05/04 05:58:22 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control{') 2018/05/04 05:58:22 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8410000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) listen(r0, 0x3) r1 = socket$inet6_sctp(0xa, 0x4000000000000001, 0x84) sendto$inet6(r1, &(0x7f0000000080)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00009b2ff0)={0x1, &(0x7f0000a7dff8)=[{0x6, 0x0, 0x0, 0x400000000000003}]}, 0x10) r2 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffff8) add_key(&(0x7f0000000400)="6b657972696e6700be57ab8dddcd3f462f8c2413092e0714ead18f0543cd48dd0f9ac3d7ca0a89575028e1d6f05e6a0bfa04d734b12e120ec30fe14a06afc53a7a7644ceacb729e9f2c1eed5bdfdca29e359e8065bdab386a5d1d8ac9a62913c619651c452f4d32238365d6cf3206bddde90822e2dd207907470ac", &(0x7f0000000480)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000300)="9140d67bb58016cd91148aaa8924bde65809d55e8a162aaf5e7ea1e41f39d41a4a007c2f30d81a21c3a0b7280813db061ae46b037ea42a72c311fb613036e743ca9cda55d00e8f8cccea6b716b8538b96a8849ef4b68641a9d0eb823cf9631", 0x5f, r2) sendto$inet6(r0, &(0x7f00000000c0)="e1f6e8389f5fdd1420a70e1cf6e99b1fb96528575c674758ecc45de09fadffbbe5fb9b8d6fa233f79c30d4198f8c9047ed65e7c257d9136ac03a9b65d652a1b2a03d281542a8196fdd1b326b7968b107981da486b093fdb78ae7e7947b", 0x5d, 0x10, &(0x7f0000000040)={0xa, 0x4e21, 0x2, @mcast1={0xff, 0x1, [], 0x1}, 0x3}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='bridge_slave_1\x00', 0x10) shutdown(r1, 0x2000000002) 2018/05/04 05:58:22 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:23 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) clone(0x100000, &(0x7f0000000180)="4536005f6d5fb749be64d47ff1170cfc5b89a651c6f29451f35439ed7e728378974e4ea07f97269b20f61d85fcb85597c9c170a0c494594961f6929fe80d45e667a78d6168b92c4c4fa34303f27cf161adc9384a325137e713063fd66a2f865e0f409b1293ab23ebd3c0499b3ca3fa388f8b9a11036cd90a46f632ae6d5ddb1fafe44fe52207b75a732ab717361622e4ad7338311c4524e79e8a1dbdbe90f6f302d40c69e7660b0bcb78ce63a2d0b93a9e1b4371eebf3671370fc81d17c9b17d3d76d42a5b5e318130aa", &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="1d2061bf4463650fd5a593633908704a9658fcc3bc624cc0780d3963663bac932080169a9f0c7f2db23143cf94df77fff9859a3418affb468fd3e32af7dedafe98b00b83b61c21be3e2fe213e190968df07ca27ae68afe5d13ee09423d5f7a49ba8920a71e065f4f9165b3059ed39b48e9f678e172c7") setsockopt$inet6_mreq(r0, 0x29, 0x18, &(0x7f0000000040)={@mcast1={0xff, 0x1, [], 0x1}}, 0x14) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.controllers\x00', 0x0, 0x0) ioctl$sock_bt(r1, 0x5411, &(0x7f0000000080)="917ef94ab0cdde440563d1629449def32e33c7cdb22f7ce48b420fe6b72262985b9d3be1d843584111feb3d1e2fa758070122b0ba3c100c096359701b5714761f147e85c906bfe543612f9d1e645a03ea7a8428da27af0d92e3385e975b3c2879bed82a2a1e6628c0138c3a2b80760d54ca00c23828b8dbd20c7cf9d5103574d11bc305d031a2c") ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000140)) 2018/05/04 05:58:23 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:23 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:23 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x0) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) setsockopt$inet_icmp_ICMP_FILTER(r4, 0x1, 0x1, &(0x7f0000000080)={0x7fffffff}, 0x4) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) ioctl$KVM_S390_INTERRUPT_CPU(r4, 0x4010ae94, &(0x7f0000000040)={0x1, 0x8, 0x101}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:23 executing program 7: mmap(&(0x7f0000600000/0x4000)=nil, 0x4000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000946000/0x3000)=nil, 0x3000}, 0x3}) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x80, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000140)=0x4) time(&(0x7f0000000080)) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x28800, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000ae4000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000600000/0x400000)=nil, 0x400000}, 0x1}) 2018/05/04 05:58:23 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c7f") 2018/05/04 05:58:23 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:23 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 383.655512] *** Guest State *** [ 383.658947] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 383.667868] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 383.676743] CR3 = 0x0000000000000000 [ 383.680528] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 383.686531] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 383.692559] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:23 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x0) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 383.699266] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 383.707306] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.715329] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.723363] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.731383] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.739423] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 383.747445] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:23 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:23 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 383.755485] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 383.763521] IDTR: limit=0x00000000, base=0x0000000000000000 [ 383.771543] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 383.779576] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 383.786055] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 383.793560] Interruptibility = 00000008 ActivityState = 00000000 [ 383.799825] *** Host State *** [ 383.803073] RIP = 0xffffffff811f7279 RSP = 0xffff88018d4f7390 [ 383.809096] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 383.815554] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 383.823391] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 383.829337] CR0=0000000080050033 CR3=00000001ab715000 CR4=00000000001426e0 [ 383.836396] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 383.843117] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 383.849208] *** Control State *** [ 383.852711] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 383.859412] EntryControls=0000d1ff ExitControls=0023efff [ 383.864912] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 383.871868] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 383.878580] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 383.885191] reason=80000021 qualification=0000000000000000 [ 383.891567] IDTVectoring: info=00000000 errcode=00000000 [ 383.897051] TSC Offset = 0xffffff2f1f93b1dd [ 383.901418] EPT pointer = 0x00000001cc1b001e [ 383.995930] *** Guest State *** [ 383.999333] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 384.008599] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 384.017572] CR3 = 0x0000000000000000 [ 384.021350] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 384.027375] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 384.033387] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 384.040107] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 384.048126] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 384.056163] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 384.064154] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 384.072169] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 384.080177] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 384.088307] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 384.096338] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 384.104358] IDTR: limit=0x00000000, base=0x0000000000000000 [ 384.112360] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 384.120353] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 384.126888] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 384.134359] Interruptibility = 00000008 ActivityState = 00000000 [ 384.140608] *** Host State *** [ 384.143828] RIP = 0xffffffff811f7279 RSP = 0xffff8801a5f4f390 [ 384.149853] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 384.156283] FSBase=00007f2148a60700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 384.164135] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 384.170062] CR0=0000000080050033 CR3=00000001ab715000 CR4=00000000001426f0 [ 384.177102] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 384.183789] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 384.189869] *** Control State *** 2018/05/04 05:58:23 executing program 6: r0 = socket(0x18, 0x0, 0x81) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x5, &(0x7f0000000440)="ac3c0000", 0x4) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000040)={0x12, &(0x7f0000000180)=[{}, {}, {}]}) 2018/05/04 05:58:23 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:23 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cf6") 2018/05/04 05:58:23 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cb8") 2018/05/04 05:58:23 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:23 executing program 0: r0 = dup2(0xffffffffffffffff, 0xffffffffffffff9c) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x2, 0x1f000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/172, 0xac}, {&(0x7f0000000080)=""/61, 0x3d}, {&(0x7f00000000c0)=""/56, 0x38}], 0x3) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:23 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x0) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:23 executing program 7: bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000000)=0x5, 0x4) r0 = socket$unix(0x1, 0x3, 0x0) r1 = signalfd4(r0, &(0x7f0000000040)={0x4}, 0x8, 0x80000) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x800, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x9, 0x0, 0xfffffffffffffff7, 0x8, 0xffff, 0x40, 0x100, 0x5, 0x1ff, 0x2, 0x6, 0x36, 0x363, 0xffffffff, 0x9, 0x10001], 0x6001, 0x2}) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000180)=""/14) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e24}}, 0x2, 0x4}, &(0x7f0000000280)=0x90) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f00000002c0)={r3, 0x3}, 0x8) socketpair$ipx(0x4, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl(r2, 0x401, &(0x7f0000000340)="8bfbaa8853c9b6c97b82fca03f1eae993e83d4476bdab6639953afddcbb5b82a13405c146632e30733d41342983fb6bd78df3c51bb") ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000380)={@hyper}) socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f00000003c0)=0x1) r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x200, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r2, 0x800442d2, &(0x7f00000004c0)={0x3, &(0x7f0000000440)=[{0x0, 0x0, 0x0, @remote}, {}, {0x0, 0x0, 0x0, @link_local}]}) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000500)={0xffffffffffffffff}) ioctl$sock_FIOGETOWN(r7, 0x8903, &(0x7f0000000540)=0x0) fcntl$lock(r5, 0x5, &(0x7f0000000580)={0x0, 0x3, 0x1, 0x8, r8}) vmsplice(r5, &(0x7f00000007c0)=[{&(0x7f00000005c0)="7688f4b463096b6d9e7272045a60a5cf103dfd52deb983ecfdbe3ced5744b6e80ac29919fc81f2bbbc680a0bf7509c48faa961e3ab8a1714ed36bcc4990167af7ec3f19d542af697291fbb9da6c2ad08d110012f36bf4d273a2775eee0bdd1a3c1d4989d97efbff8f34f1864b605c67b03a56766fa9c", 0x76}, {&(0x7f0000000640)="5059177b733593a80c042bcd11253e0eae3b3f1b02e1877c87ba0fdd1744a517b2e2f730dad1ba0e6f272892b01fd4d33fa7dcbd85e4a06dd95a415fdaf5ae49c70966bfa6b00974f7684ccc466d93747fcfabf2aaff5f2d748bdc951f5ab15595d46285c90bf14302c8d257ed508aae432c4b351a45c487491e7714fcb50e4f7942fe0176d4039cdb8e71755f4fe4c96bb9aaa6df4fb09988df8319c8ca9a550ac7c64b9c17cd0a94f2605c9343370b428b961dc337510f797bf0f3b356ca2116de283f9fe724f5c08fdcaa88af06b776f5ca5c", 0xd4}, {&(0x7f0000000740)="ea12d5f2e0cc7c9eb45e9c25643070e6cea739da12ab185fe440599f276a7de7f1a3dd70c51f8b7c7776d5ecc9a4f11eb56a2d21167707caba4fd9eb09252134de999cde2f7269c14801ef985c5cf73205fe1b26b46d94edbb7998cda07ccbd155405316", 0x64}], 0x3, 0x1) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r6, 0x84, 0x20, &(0x7f0000000800), &(0x7f0000000840)=0x4) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000880)={0x29a1, 0x4, 0x10001, 0x6, r3}, 0x10) ioctl$TIOCEXCL(r6, 0x540c) setsockopt$ipx_IPX_TYPE(r6, 0x100, 0x1, &(0x7f00000008c0)=0xb5e, 0x4) setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000900)={0x2c2308ec, 0x8, 0x5, 0x2, 0xfff, 0x2, 0x9398}, 0xc) setsockopt$ipx_IPX_TYPE(r4, 0x100, 0x1, &(0x7f0000000940)=0xbb1, 0x4) r9 = syz_open_dev$mouse(&(0x7f0000000980)='/dev/input/mouse#\x00', 0x0, 0x8000) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r9, 0x84, 0x12, &(0x7f00000009c0), &(0x7f0000000a00)=0x4) timer_create(0x7, &(0x7f0000001b40)={0x0, 0x20, 0x2, @thr={&(0x7f0000000a40)="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", &(0x7f0000001a40)="5a3cb554e852b838f2e2cd05e1eb37358078e69613f6e77becc6022d6b8138ab698ed2a25dfe590d87c34f9be12f42c684adc4ed4a11c18c1889abdbec4445cb208c7ec5465df018612a6bd6aa97551e25a535636e4e3333eec07d07a27a8ce27747f332bcc3b8f54df7068eb5b706aadbedd50e94fd9543ed9f7c68325d9466bf7682534d44b8aa5ee5e306fcc6c5bad9e5339bbcf0ab8f077a746a168832de3d64347ea67ef8a884112e0440205c133ac2ba5b0284b6f60d87e1cad3919a37ee9f3fd24dfada277d73d7eb12edb1496d7692c4f208abf5b453b8482f0f2e34951844fe52efb7f23eed5a5f542950fa90"}}, &(0x7f0000001b80)=0x0) timer_getoverrun(r10) r11 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001c00)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r2, &(0x7f0000001dc0)={&(0x7f0000001bc0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001c40)={0x10c, r11, 0x1, 0x70bd2b, 0x25dfdbfe, {0xf}, [@IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x101}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2=0xe0000002}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x1a}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1369}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x100}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x26}}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3f}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x28, 0x2}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xe54}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local={0xfe, 0x80, [], 0xaa}}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x50}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}]}, 0x10c}, 0x1}, 0x8000) [ 384.193346] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 384.200066] EntryControls=0000d1ff ExitControls=0023efff [ 384.205544] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 384.212487] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 384.219173] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 384.225812] reason=80000021 qualification=0000000000000000 [ 384.232157] IDTVectoring: info=00000000 errcode=00000000 [ 384.237625] TSC Offset = 0xffffff2f1f93b1dd [ 384.241964] EPT pointer = 0x00000001cc1b001e 2018/05/04 05:58:23 executing program 6: r0 = socket$inet(0x2, 0x2000000080002, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x13, 0x200000) ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000080)={0x11d000, 0x2000, 0x8, 0x401, 0x8}) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000640)=@filter={'filter\x00', 0xe, 0x2, 0x218, [0x0, 0x20000400, 0x200004d8, 0x20000508], 0x0, &(0x7f0000000000), &(0x7f0000000400)=ANY=[@ANYBLOB="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"]}, 0x290) 2018/05/04 05:58:23 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 384.423627] kernel msg: ebtables bug: please report to author: entry offsets not in right order [ 385.179463] *** Guest State *** [ 385.182844] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 385.191752] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 385.200607] CR3 = 0x0000000000000000 [ 385.204346] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 385.210355] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 385.216366] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 385.223060] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 385.231069] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.239085] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.247090] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.255102] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.263232] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.271227] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 385.279236] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 385.287258] IDTR: limit=0x00000000, base=0x0000000000000000 [ 385.295260] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.303345] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 385.309801] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 385.317290] Interruptibility = 00000008 ActivityState = 00000000 [ 385.323563] *** Host State *** [ 385.327048] RIP = 0xffffffff811f7279 RSP = 0xffff88018c687390 [ 385.334592] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 385.341048] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 385.349617] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 385.355535] CR0=0000000080050033 CR3=00000001b9aa4000 CR4=00000000001426f0 [ 385.362584] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 385.369271] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 385.375355] *** Control State *** [ 385.378834] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 385.385528] EntryControls=0000d1ff ExitControls=0023efff [ 385.391000] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 385.397988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 385.404682] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 385.411274] reason=80000021 qualification=0000000000000000 [ 385.417612] IDTVectoring: info=00000000 errcode=00000000 [ 385.423076] TSC Offset = 0xffffff2eb513d64d 2018/05/04 05:58:24 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./controlm') 2018/05/04 05:58:24 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:24 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:24 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) read$eventfd(r4, &(0x7f0000000080), 0x8) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) write$cgroup_int(r4, &(0x7f0000000040)={[0x37, 0x3d, 0x36, 0x37]}, 0x4) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:24 executing program 6: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100)='/dev/urandom\x00', 0x101080, 0x0) getsockname$ipx(r1, &(0x7f00000001c0), &(0x7f0000000200)=0x10) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0x4040) setsockopt$inet_sctp_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000040)=0xffff, 0x4) openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x42, 0x0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000080)={'veth1_to_bond\x00', 0x7}) getsockopt$nfc_llcp(r0, 0x118, 0x0, &(0x7f0000000140)=""/124, 0x67) 2018/05/04 05:58:24 executing program 7: mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = syz_fuseblk_mount(&(0x7f0000000000)='./control\x00', &(0x7f0000000080)='./control/file0\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0) rename(&(0x7f0000000240)='./control/file0\x00', &(0x7f00000001c0)='./file0\x00') close(r0) r1 = open(&(0x7f0000000080)='./file0\x00', 0x4001, 0x0) fallocate(r1, 0x20, 0x0, 0xfffffeff000) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x300000e, 0x80830, r0, 0x11) ioctl$VHOST_GET_VRING_ENDIAN(r1, 0x4008af14, &(0x7f0000000040)={0x0, 0x2}) pipe2(&(0x7f00000000c0), 0x80000) 2018/05/04 05:58:24 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 385.427432] EPT pointer = 0x00000001c4cf001e 2018/05/04 05:58:25 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:25 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:25 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:25 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 385.587672] *** Guest State *** [ 385.591081] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 385.599989] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 385.608879] CR3 = 0x0000000000000000 [ 385.612649] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 385.618662] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 385.624676] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 385.631380] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 385.639405] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.647413] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.655426] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.663464] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.671478] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.679489] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:25 executing program 6: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_ifreq(r0, 0x89f2, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_data=&(0x7f0000000040)="d548574b2f8c033d46cd9b6ce2881e434132833d293748da73a5f74b2e23caae"}) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000080)={0x0, 0xad7, 0x8, 0x9, 0xfff, 0x38, 0x7, 0x81, {0x0, @in={{0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}}, 0xd1b3, 0x6, 0x4, 0xb519, 0x1}}, &(0x7f0000000140)=0xb0) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000180)=r1, 0x4) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vcs\x00', 0x40, 0x0) connect$vsock_dgram(r2, &(0x7f0000000340)={0x28, 0x0, 0x10000000, @hyper}, 0x10) r3 = accept(r0, &(0x7f00000001c0)=@ax25, &(0x7f0000000240)=0x80) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000280)='/dev/rfkill\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000002c0)={r0, r4}) 2018/05/04 05:58:25 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cfe") [ 385.687532] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 385.695643] IDTR: limit=0x00000000, base=0x0000000000000000 [ 385.703834] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.703846] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 385.703858] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 385.703866] Interruptibility = 00000008 ActivityState = 00000000 [ 385.703870] *** Host State *** [ 385.703882] RIP = 0xffffffff811f7279 RSP = 0xffff880187ad7390 [ 385.703902] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 385.703913] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 385.703924] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 385.703936] CR0=0000000080050033 CR3=00000001b8780000 CR4=00000000001426f0 [ 385.703950] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 385.703960] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 385.703964] *** Control State *** [ 385.703972] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 385.703979] EntryControls=0000d1ff ExitControls=0023efff [ 385.703991] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 385.703999] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 385.704053] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 385.704060] reason=80000021 qualification=0000000000000000 [ 385.704068] IDTVectoring: info=00000000 errcode=00000000 [ 385.704073] TSC Offset = 0xffffff2e1715952d [ 385.704081] EPT pointer = 0x00000001b2cf801e [ 385.830300] *** Guest State *** [ 385.830315] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 385.830326] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 385.830332] CR3 = 0x0000000000000000 [ 385.830341] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 385.830350] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 385.830364] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 385.830378] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 385.830395] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.830412] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.830427] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.830443] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.830459] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.830470] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 385.830486] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 385.830498] IDTR: limit=0x00000000, base=0x0000000000000000 [ 385.830514] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.830522] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 385.830532] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 385.830541] Interruptibility = 00000008 ActivityState = 00000000 [ 385.830545] *** Host State *** [ 385.830556] RIP = 0xffffffff811f7279 RSP = 0xffff8801a5d0f390 [ 385.830576] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 385.830587] FSBase=00007f2148a3f700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 385.830597] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 385.830611] CR0=0000000080050033 CR3=00000001b8780000 CR4=00000000001426f0 [ 385.830624] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 385.830635] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 385.830639] *** Control State *** [ 385.830648] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 385.830656] EntryControls=0000d1ff ExitControls=0023efff [ 385.830667] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 385.830676] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 385.830684] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 385.830692] reason=80000021 qualification=0000000000000000 [ 385.830699] IDTVectoring: info=00000000 errcode=00000000 [ 385.830705] TSC Offset = 0xffffff2e1715952d [ 385.830713] EPT pointer = 0x00000001b2cf801e [ 385.845440] *** Guest State *** [ 385.845456] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 385.845468] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 385.845475] CR3 = 0x0000000000000000 [ 385.845483] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 385.845493] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 385.845506] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 385.845520] CS: sel=0x0000, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 385.845538] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.845555] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.845570] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.845588] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.845604] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 385.845615] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 385.845631] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 385.845642] IDTR: limit=0x00000000, base=0x0000000000000000 [ 385.845657] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.845665] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 385.845675] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 385.845684] Interruptibility = 00000008 ActivityState = 00000000 [ 385.845687] *** Host State *** [ 385.845698] RIP = 0xffffffff811f7279 RSP = 0xffff880187ad7390 [ 385.845753] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 385.845765] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 385.845776] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 385.845789] CR0=0000000080050033 CR3=00000001b8780000 CR4=00000000001426f0 [ 385.845802] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 385.845813] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 385.845817] *** Control State *** [ 385.845825] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 385.845831] EntryControls=0000d1ff ExitControls=0023efff [ 385.845843] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 385.845851] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 385.845859] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 385.845867] reason=80000021 qualification=0000000000000000 [ 385.845873] IDTVectoring: info=00000000 errcode=00000000 [ 385.845879] TSC Offset = 0xffffff2e1715952d [ 385.845887] EPT pointer = 0x00000001b2cf801e [ 385.848736] *** Guest State *** [ 385.848750] CR0: actual=0x0000000080000020, shadow=0x0000000080000000, gh_mask=fffffffffffffff7 [ 385.848762] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 385.848767] CR3 = 0x0000000000000000 [ 385.848774] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 385.848783] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 385.848795] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 385.848808] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848824] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848840] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848855] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848872] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848888] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848899] GDTR: limit=0x00000000, base=0x0000000000000000 [ 385.848914] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848924] IDTR: limit=0x00000000, base=0x0000000000000000 [ 385.848940] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 385.848949] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 385.848959] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 385.848967] Interruptibility = 00000008 ActivityState = 00000000 [ 385.848972] *** Host State *** [ 385.848982] RIP = 0xffffffff811f7279 RSP = 0xffff880187ad7390 [ 385.849006] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 385.849062] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 385.849073] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 385.849086] CR0=0000000080050033 CR3=00000001b8780000 CR4=00000000001426f0 [ 385.849100] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 385.849110] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 385.849115] *** Control State *** [ 385.849124] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 385.849131] EntryControls=0000d1ff ExitControls=0023efff 2018/05/04 05:58:26 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:26 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000480)={{{@in6=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@local}}, &(0x7f00000000c0)=0xe8) r7 = request_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000200)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000240)="177472757374656400", 0xfffffffffffffffc) keyctl$get_persistent(0x16, r6, r7) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(r5, 0xc0206434, &(0x7f0000000040)={0x100, 0x0, 0x10001, 0x1}) ioctl$DRM_IOCTL_AGP_FREE(r2, 0x40206435, &(0x7f0000000080)={0x5, r8, 0x10002}) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:26 executing program 6: r0 = request_key(&(0x7f0000000100)='logon\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000180)='keyring\x00', 0xfffffffffffffffb) r1 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, r0) r2 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x101, 0x10000) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r2, 0x40485404, &(0x7f0000000040)={{0x1, 0x3, 0x200, 0x3, 0x471}, 0x7, 0xfffffffeffffffff}) keyctl$revoke(0x3, r1) keyctl$read(0xb, r0, &(0x7f00000000c0), 0x0) socketpair$ipx(0x4, 0x2, 0x0, &(0x7f0000000500)) clone(0x80000, &(0x7f0000000380)="100ab5f927fe7e2a8f93967879520c4256f4be4e08bbcbadb0d99fd39d304b2df925335affce47b0b93a625a6993e8e346ccf9e2a77299125925329197fe8b2e83ab76753da61f3023e9fb69196a22b3d5a83f3de1d2c0137bbee0b4d56912c38769b64d10cd745be3e4c12ab3193a6a87f803c30d25483310528c32e0e89b533349d7059fb06dd914bec0e7f31ddc44f0881ebc5ca2bdd7dbe8b75f3287e0b166e2602c330929dc2b4ae9b57963200d2c7cdbefca546581f35d2f69f231dbd3f96b0246a0e579e5b9fcf832b7942e6af0ce34e7714f59693d397224e2", &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000480)="756f8a8081d2f8bb7fd289d3df1c5b2ef3331a03f990a6b68c25c72d89e9bf6959f34e12c3a9c0cbfac12e03e0eb91ffabafeabdc199763bcb67df724b927237417ddb1ad7de9084800199c9eb5e9c49633818a66f244b5e2e556c4f4462c501d2e1ecb73091") ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, &(0x7f0000000280)={{0x3, 0x3, 0x20, 0x800003, 0x5c1}, 0x743, 0x100, 'id1\x00', 'timer1\x00', 0x0, 0x0, 0x5, 0x7fff, 0x1}) lstat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = getuid() getresuid(&(0x7f0000000780), &(0x7f00000007c0), &(0x7f0000000800)=0x0) setresuid(r3, r4, r5) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000540)={{{@in6=@mcast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6}}, &(0x7f0000000640)=0xe8) r7 = msgget(0x1, 0x19) msgctl$IPC_RMID(r7, 0x0) bind$bt_hci(r2, &(0x7f0000000680)={0x1f, r6, 0x3}, 0xc) 2018/05/04 05:58:26 executing program 7: r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r0, 0x7fff) r1 = open(&(0x7f00002bd93e)='./bus\x00', 0x141042, 0x0) socket$vsock_dgram(0x28, 0x2, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x11, r1, 0x0) socket$vsock_dgram(0x28, 0x2, 0x0) readv(r1, &(0x7f0000c33000)=[{&(0x7f0000007000)=""/171, 0x39c9}], 0x1) ioctl$fiemap(r1, 0xc020660b, &(0x7f0000000180)={0x0, 0x9, 0x1}) [ 385.849143] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 385.849151] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 385.849160] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 385.849168] reason=80000021 qualification=0000000000000000 [ 385.849175] IDTVectoring: info=00000000 errcode=00000000 [ 385.849180] TSC Offset = 0xffffff2e1715952d [ 385.849187] EPT pointer = 0x00000001b2cf801e [ 386.809879] *** Guest State *** [ 386.813360] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 386.822259] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 386.831138] CR3 = 0x0000000000000000 [ 386.834921] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 386.840933] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 386.846945] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 386.853655] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 386.861730] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 386.869772] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 386.877789] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 386.885826] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 386.893849] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 386.901886] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:26 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 386.909911] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 386.917955] IDTR: limit=0x00000000, base=0x0000000000000000 [ 386.926078] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 386.934109] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 386.940569] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 386.948068] Interruptibility = 00000008 ActivityState = 00000000 [ 386.954331] *** Host State *** [ 386.957567] RIP = 0xffffffff811f7279 RSP = 0xffff88018e907390 [ 386.963588] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 386.970066] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 386.977899] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 386.983837] CR0=0000000080050033 CR3=00000001d8d56000 CR4=00000000001426e0 [ 386.990906] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 386.997618] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 387.003720] *** Control State *** 2018/05/04 05:58:26 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:26 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 387.007225] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 387.013920] EntryControls=0000d1ff ExitControls=0023efff [ 387.019421] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 387.026380] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 387.033085] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 387.039695] reason=80000021 qualification=0000000000000000 [ 387.046054] IDTVectoring: info=00000000 errcode=00000000 [ 387.051530] TSC Offset = 0xffffff2d6e157c42 [ 387.055898] EPT pointer = 0x00000001c260d01e [ 387.120952] *** Guest State *** [ 387.124388] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 387.133293] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 387.142170] CR3 = 0x0000000000000000 [ 387.145926] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 387.151940] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 387.157962] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 387.164682] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 387.172710] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 387.180741] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 387.188763] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 387.196784] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 387.204811] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 387.212833] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 387.220853] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 387.228876] IDTR: limit=0x00000000, base=0x0000000000000000 [ 387.236899] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 387.244921] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 387.251382] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 387.258903] Interruptibility = 00000008 ActivityState = 00000000 [ 387.265184] *** Host State *** [ 387.268420] RIP = 0xffffffff811f7279 RSP = 0xffff88018e907390 [ 387.274451] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 387.280896] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 387.288748] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 387.294698] CR0=0000000080050033 CR3=00000001d8d56000 CR4=00000000001426e0 [ 387.301772] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 387.308494] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 387.314596] *** Control State *** 2018/05/04 05:58:26 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x101002, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000480)=""/246) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000380)=""/185, 0xb9}], 0x1) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x400, 0x0) ioctl$DRM_IOCTL_CONTROL(r0, 0x40086414, &(0x7f0000000040)={0x3}) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @broadcast=0xffffffff}}, 0xffffffffffff8000, 0x1f, 0x7f4, 0xffffffffffffffff, 0x7}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000140)={r1, 0x8}, &(0x7f0000000280)=0x8) syz_emit_ethernet(0x0, &(0x7f0000000480)=ANY=[], &(0x7f0000000580)={0x0, 0x3, [0xe30, 0x87c]}) 2018/05/04 05:58:26 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c8c") 2018/05/04 05:58:26 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:26 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 387.318101] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 387.324834] EntryControls=0000d1ff ExitControls=0023efff [ 387.330452] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 387.337430] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 387.344130] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 387.350771] reason=80000021 qualification=0000000000000000 [ 387.357132] IDTVectoring: info=00000000 errcode=00000000 [ 387.362637] TSC Offset = 0xffffff2d6e157c42 [ 387.367040] EPT pointer = 0x00000001c260d01e 2018/05/04 05:58:27 executing program 6: r0 = syz_open_dev$random(&(0x7f0000000000)='/dev/random\x00', 0x0, 0x100) pwrite64(r0, &(0x7f0000000040)="1ee79f4d5addc8db0700527454ca4366c8de3e8e7b3d6b7b168f8ffdb76f066dfb84c5d40c8f4419d8d9d45d4b3bafabf35fc1ade0db4ff8f0b9d30e4b23d7dac450583548008ae1fdbd136f", 0xffffffffffffffc9, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000440)='/dev/loop#\x00', 0x400000000, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x800, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffff9c, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x2, 0x2000000000000030}, &(0x7f0000000280)=0xc) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000300)={r3, @in={{0x2, 0x4e24, @loopback=0x7f000001}}, 0x0, 0x6, 0xfff, 0x9, 0x7f}, &(0x7f00000003c0)=0x98) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f00000002c0)={r3, 0x3ff}, 0x8) ioctl$TIOCSCTTY(r2, 0x540e, 0x710539e) r4 = memfd_create(&(0x7f0000000140)="000000008c00000000000000000000", 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r4) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, "595a5282a7af7fae8c34378bc11a94e7316e31212ff9dd5efe34132d000918a3dc0a52fcdfdfb3320700000000000000807dbbeb5f24a6264cf6e4c9bfa311d8", "4030a34ad77995e206ad860aa1c9c1cb2b2a7b09974c2a5207bf90ee3cbd0c200b0c7437a0ceb96c5e4a243b6626b5718877a4b9a2575d8cf9f502921d914588", "fbce6979fe716f65c6f045c10068b9d9951a426d0e3c7d2a4f5a488722b37c66"}) 2018/05/04 05:58:27 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000140)='/dev/usbmon#\x00', 0x0, 0x0) ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000000)={0x81, 0x7, 0x9, 0x3d}) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0x9208, 0x400008) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x3) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000280)={0x0, 0x80000, r0}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000002c0)={0x0, 0x80000, r0}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000240)={r1, 0x0}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f00000001c0)={0x0, 0x80000, r0}) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000200)={r2, r3, 0xfffffffffffffff7}) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000040)={@in={{0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x7, 0x2, 0x7fff, "b722e62e1f651c957ca09952d191474cec4df4b8bb9fc57bebaeffe95234dff8388a0865dde25c428d533f1adbf74983a27ecb82d96d2421f66621e7ece44c4131f534db4f020e02cc99178b7c0fa939"}, 0xd8) 2018/05/04 05:58:27 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c02") 2018/05/04 05:58:27 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:27 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:27 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r5 = dup3(r4, r3, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000bc0)={0x0, 0x200000}, &(0x7f0000000c00)=0xc) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f0000000c40)={0x0, 0xe1, "cbe3cf92c0166dc06e97379262b1c33ad60db05b7fdaacce70951fb0ec70edcd84193abd0083034f3d58ea7ed6011b2eed4b90ec6d215be6e806e6359371ab79b575dc778f7ebdb5588eccbb2ac7fa6b16442f6a5068f98c6188b0ff75c64f7f3b1601d1edbe234038356f9e59dd540457725ae15aed7a14a192dd2a818c7648a8be85ecea89ad8d83eb9c326199404bc6fb16ce15d6f3c7419f5754e3903cb4ce2e83b3212593e4ee10e96f5b2e78ce49c2ef4b3d0a73120ae425dfa30a5176945c587c93c4481f3feeb76f1b35ce939b2f1656e87c5ecd9f27cc6117b09d3135"}, &(0x7f0000000d40)=0xe9) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000d80)={0x0, 0x8209, 0x7, 0x6, 0x0}, &(0x7f0000000dc0)=0x10) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000e00)={0x0, 0x10001}, &(0x7f0000000e40)=0x8) sendmsg$inet_sctp(r3, &(0x7f0000000fc0)={&(0x7f0000000080)=@in={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10, &(0x7f0000000b00)=[{&(0x7f00000000c0)="eb659051899ec0f7991aa239450f2ac5212ca4b52dd4d3d647da2dcd3f8b7ba36659d509f3c0bc78e5d9628c09b84e08f4a891ed", 0x34}, {&(0x7f0000000200)="9b880e8d91cf234189556ac708b3e2e8ba7f36abbb40bc3b3a57efac205a2d09872b6fab844b773f1614989c8ca99ee258b277ed13f767369ecf4b8ee58ad02103cd6be85849b0fa0fcca81b51ede03c44318a6d2b4db3d37bff", 0x5a}, {&(0x7f0000000380)="47cca4a4deccd7207e79b91c7869b88545ed7b0b05f7335487489b16fccdd0a5dbb67c8239a990fb30deef6531fa7349c37b95cef6dc574f62e054ad1e2366017425bc368cdfe369cf1318a4333218e15d8ed99d869d1ba0aab2cc4b836afd4d54f7297b2f60aa558f020045c8f31490a77ff6201724d2ecbf897848843d21b688b45e3ed9353c6b2875e6be4dd7fe35e20b69cc26071569799bf06f96f6e04028335b95cdb4b4d10dde73c7ff63321fc1cacdcced0e282212cd295b46b68b511bfdebaefc0871663240e33ba97e50bfa0ff3c3312b36c2c3beae209bdb7a81cbc104b64b74b0724d6846717adf9da325d20e0d97e7b", 0xf6}, {&(0x7f0000000480)="2adbd537bac1d61f766f3d929858ffeeef83a0d2a8c5c4b4533cc0183c6964af103513d99c1c0a8bbfc554fc86424f58c2b8d779c26d51a569f54a23df3583a3e24c597efa0fe95050088007c123c96eb3bfbbff82c785eed386", 0x5a}, {&(0x7f0000000840)="4c42275286f29ce747e6b214391b98445f467699d62c24e1885653150f5f4b62b1a628450faa4c65fa3d5ce3e23510f5946f19140f2beb8bc798065bcc00ef3d66d5c4f70bfa6a9949114e8b30da22b30dfb7ea26e37dba1a79bdd969a437a95603319239eaa2f3eb1f295cf9aa49b8337b45b37edf632638f321c1ba2a49baba5962214a0784f0e00cbabf575cdd410095a8d99f97a765dad2310", 0x9b}, {&(0x7f0000000140)="b0d007dc9d2569b1df3db61fa1a26c202c7b7c628c0885294e1c5e8c2589dfd35958f712cf04", 0x26}, {&(0x7f0000000280)="abbfdb299772e40e81454844ac15e9fb88752aed35b996355da8acaefe2f635029ef75490efc372f3a164ef04b1e", 0x2e}, {&(0x7f0000000900)="9346684ba32b3a3e3144c5384b91f5bc669337ff67becdba782b1a672462a5cc400e1550ff6cf801b5269d3c939bfde2714320ae58fc2ecc8be2850c41a25924fe0f7d606e871f5e780406d2ebbe7bf563d80aae2d997b8189367b1c493f930a249e9dcb61f2ab1a0a77a851289b29543a825e0ba5e9318dc4bea9f50a89a9259ff0f832c6823c4f91c4b2a70aa01ac1663eb7a1b0e8a4cf01e374e1e2014a8986369de5fe008e00de99fb181fc40734eaea0d538d6438b282459ebc916e324825a63c1a51c16436edf8688a8aaf1b5353a963151776a5dcbe085400833537fa12e769597a5712e44bb458fb", 0xec}, {&(0x7f0000000a00)="50d4dd9132e1965276a780c25ff8b62205e8b7409c6f234159570f1494c9e4a548b8c1cb012a21c2a2aa7bc4dd1d373a80795d393bfcc31c12097a906784cbd473dbe019ab315b8a2bbe56b1addf8bec5db6b9ea058e00fd652316aec2ba90e585a57d7c0a8d49bfd827df7fc52a9b5a723bb0635ad2331c6d01bc2483bd449cc585a70be5837e762cc7b24ed7eec7c27156781c0ab55ebaf891d92670501d5098537105eb358eaa647260865822c11eb045adf1064fa80cb5a5be3e4a4aa5d90d44f32080af338a31692292a7f697c1323e108b92a93023", 0xd8}, {&(0x7f0000000500)="2c17a5d2d5b40cdd7863582eaf215b08d171301ce6c29c1186b739953132194a786aadeb2297d5af4a20e7340570ccdfb95cbdb3884ad2cb4a3b3e56f114782678879efc1d20d4e5256d5f3d118f6186d28c7621d26acf96d5205727b40096fc0272d6ac22f2682c383862d36fa72a934fc2d4149ab5cffb500a06", 0x7b}], 0xa, &(0x7f0000000e80)=[@sndinfo={0x20, 0x84, 0x2, {0x7fffffff, 0x8000, 0x0, 0xc30, r6}}, @authinfo={0x18, 0x84, 0x6, {0x8}}, @sndrcv={0x30, 0x84, 0x1, {0x9333, 0x1000, 0x820b, 0x41, 0x7, 0xc70, 0x2, 0x1, r7}}, @sndrcv={0x30, 0x84, 0x1, {0x0, 0x1, 0x8201, 0x20, 0x4, 0xa43b, 0x100, 0x400000000000, r8}}, @authinfo={0x18, 0x84, 0x6, {0x3f}}, @sndinfo={0x20, 0x84, 0x2, {0xffffffffffffff7f, 0x5, 0x3, 0xfffffffffffffffc, r9}}, @dstaddrv4={0x18, 0x84, 0x7}, @prinfo={0x18, 0x84, 0x5, {0x0, 0x400}}, @dstaddrv6={0x20, 0x84, 0x8, @remote={0xfe, 0x80, [], 0xbb}}], 0x120, 0x20004000}, 0x8010) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0xfffffffffffffffe, &(0x7f0000000480), 0x0) ioctl$KVM_SET_CLOCK(r2, 0x4030ae7b, &(0x7f0000000040)={0x2, 0x5}) sysfs$2(0x2, 0xffffffffffffffff, &(0x7f0000000740)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f0000001000)={0x4, 0x155c}) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup2(r4, r0) 2018/05/04 05:58:27 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:27 executing program 6: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000140)='/dev/snd/pcmC#D#p\x00', 0x8000, 0x200400) socketpair$inet6_sctp(0xa, 0x0, 0x84, &(0x7f0000000880)) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000180), &(0x7f00000001c0)=0x4) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0x0, 0x20000802, &(0x7f0000000000)={0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000280)='tunl0\x00', 0x10) sendto$inet(r0, &(0x7f00000000c0)='C', 0x1, 0x0, 0x0, 0x0) getsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000200), &(0x7f0000000240)=0x8) sendto$inet(r0, &(0x7f00000002c0)="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", 0x5b1, 0x0, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 0x10) getsockopt$inet_sctp_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8) memfd_create(&(0x7f00000008c0)='\x00', 0x2) 2018/05/04 05:58:27 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:27 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:27 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:27 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./controld') 2018/05/04 05:58:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0xfffffffdfffffffc, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x40, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:27 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:27 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000), 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:28 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:28 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000040)) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:28 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 7: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 6: r0 = socket(0x3, 0x2, 0x0) accept$packet(0xffffffffffffff9c, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000001640)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'lo\x00', r1}) r3 = creat(&(0x7f0000000280)='./file0\x00', 0x94) getsockopt$inet_buf(r3, 0x0, 0x0, &(0x7f0000000140)=""/236, &(0x7f00000000c0)=0xec) fcntl$getflags(r0, 0x401) ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f0000000040)=r2) sendmsg$nl_route(r0, &(0x7f00008f4000)={&(0x7f000076fff4)={0x10}, 0xc, &(0x7f000009b000)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000001300000412bdf9f97000fedbdf250000", @ANYRES32=r2, @ANYBLOB="20000000800000000c002200602645ec7b00000008002e0007000000"], 0x34}, 0x1}, 0x0) [ 388.831541] *** Guest State *** [ 388.834948] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 388.843904] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 388.852883] CR3 = 0x0000000000000000 [ 388.856724] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 388.862793] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 388.868810] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 388.875530] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 388.883583] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 388.891610] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 388.899626] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 388.907658] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 388.915689] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 388.923712] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:28 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x5dc9, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}], 0x0, &(0x7f0000000080)=ANY=[]) r0 = open(&(0x7f0000000780)='./file0/file0\x00', 0x3fbfa, 0x0) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000000)={'broute\x00'}, &(0x7f0000000080)=0x78) fstatfs(r0, &(0x7f0000000180)=""/43) socket$key(0xf, 0x3, 0x2) 2018/05/04 05:58:28 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 388.931763] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 388.939782] IDTR: limit=0x00000000, base=0x0000000000000000 [ 388.947805] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 388.955927] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 388.962384] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 388.969879] Interruptibility = 00000008 ActivityState = 00000000 [ 388.976155] *** Host State *** 2018/05/04 05:58:28 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 388.979392] RIP = 0xffffffff811f7279 RSP = 0xffff8801af57f390 [ 388.985421] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 388.991891] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 388.999979] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 389.005966] CR0=0000000080050033 CR3=0000000185ab2000 CR4=00000000001426f0 [ 389.013116] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 389.019851] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 389.025942] *** Control State *** [ 389.029448] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 389.036155] EntryControls=0000d1ff ExitControls=0023efff [ 389.041665] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 389.048628] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 389.055436] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 389.062389] reason=80000021 qualification=0000000000000000 [ 389.068822] IDTVectoring: info=00000000 errcode=00000000 [ 389.072819] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 2018/05/04 05:58:28 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000), 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:28 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 389.074317] TSC Offset = 0xffffff2c5a82d29e [ 389.074327] EPT pointer = 0x00000001c6eb501e [ 389.125958] *** Guest State *** [ 389.129452] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 389.138354] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 389.147241] CR3 = 0x0000000000000000 [ 389.151035] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 389.157051] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 389.163086] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 389.169803] CS: sel=0x0000, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 389.177825] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.185849] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.193865] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.201891] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.209907] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.217926] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 389.225937] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 389.233960] IDTR: limit=0x00000000, base=0x0000000000000000 [ 389.241974] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 389.250006] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 389.256469] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 389.263973] Interruptibility = 00000008 ActivityState = 00000000 [ 389.270232] *** Host State *** [ 389.273473] RIP = 0xffffffff811f7279 RSP = 0xffff8801af57f390 [ 389.279500] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 389.285952] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 389.293783] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 389.299720] CR0=0000000080050033 CR3=0000000185ab2000 CR4=00000000001426e0 [ 389.306773] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 389.313492] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 389.319578] *** Control State *** 2018/05/04 05:58:28 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:28 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 389.323076] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 389.329780] EntryControls=0000d1ff ExitControls=0023efff [ 389.335274] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 389.342233] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 389.348958] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 389.355572] reason=80000021 qualification=0000000000000000 [ 389.361933] IDTVectoring: info=00000000 errcode=00000000 [ 389.367419] TSC Offset = 0xffffff2c5a82d29e [ 389.371783] EPT pointer = 0x00000001c6eb501e [ 389.437259] *** Guest State *** [ 389.440665] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 389.449659] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 389.458547] CR3 = 0x0000000000000000 [ 389.462319] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 389.468328] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 389.474346] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 389.481065] CS: sel=0x0000, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 389.489101] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.497110] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.505127] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.513147] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.521160] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 389.529172] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 389.537187] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 389.545214] IDTR: limit=0x00000000, base=0x0000000000000000 [ 389.553213] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 389.561210] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 389.567644] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 389.575219] Interruptibility = 00000008 ActivityState = 00000000 [ 389.581473] *** Host State *** [ 389.584708] RIP = 0xffffffff811f7279 RSP = 0xffff8801cb877390 [ 389.590699] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 389.597134] FSBase=00007f2148a60700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 389.604953] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 389.610863] CR0=0000000080050033 CR3=0000000185ab2000 CR4=00000000001426e0 [ 389.617916] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 389.624607] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 389.630684] *** Control State *** [ 389.634158] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 389.640840] EntryControls=0000d1ff ExitControls=0023efff [ 389.646316] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 389.653268] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 389.659967] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 389.666564] reason=80000021 qualification=0000000000000000 [ 389.672920] IDTVectoring: info=00000000 errcode=00000000 [ 389.678385] TSC Offset = 0xffffff2c5a82d29e [ 389.682728] EPT pointer = 0x00000001c6eb501e 2018/05/04 05:58:29 executing program 6: clone(0x0, &(0x7f0000659ffe), &(0x7f00003c6ffc), &(0x7f0000a2effc), &(0x7f0000000000)) r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xa3, 0x8000) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000040)=0x6, &(0x7f0000000080)=0x2) getpriority(0x1, 0x0) 2018/05/04 05:58:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="1004000000100000cc000000490b0000ec0300ed00000000000000000000000000200000002000000004000000000000e95dbe5a0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000300)={[{@prjquota='prjquota', 0x2c}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, [0x30]}, 0x2c}]}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) setsockopt$RDS_CONG_MONITOR(r2, 0x114, 0x6, &(0x7f0000000040)=0x1, 0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:29 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:29 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000), 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:29 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:29 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:29 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:29 executing program 7: openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x28000, 0x52) r0 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x2040) ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f0000000100)=0x3) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x80000, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000080)={0x20}, 0x1) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000c7df60)={0x7ff, @in6={{0xa}}}, &(0x7f000064b000)=0x98) [ 389.701766] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 2018/05/04 05:58:29 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c10") 2018/05/04 05:58:29 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cf4") 2018/05/04 05:58:29 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:29 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c7f") [ 389.866679] EXT4-fs (loop0): Project quota feature not enabled. Cannot enable project quota enforcement. 2018/05/04 05:58:29 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:29 executing program 6: r0 = semget$private(0x0, 0x7, 0x0) semop(r0, &(0x7f000002efe2)=[{0x0, 0x4}], 0x1) semop(r0, &(0x7f0000000040), 0x193) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x8, 0x5, &(0x7f0000000380)=[{&(0x7f0000000080)="e058c9d7da2ace16804f35a0dbdc", 0xe, 0xd7d}, {&(0x7f00000000c0)="6da171db11270e3d53d89694dbf13ca9b903b4df427773a51b1bb3a357ae5da0a91b5aab5ed618c99d1ebe8a5083bbd2d842442917303413cc0ccaaebd95f20bb76c9486944f71a46213cdffbb2f807a1d14181d1296bc1e33ec77fd06de2d092c", 0x61, 0x100}, {&(0x7f0000000240)="577796113321c76653bdaa930876f4045349c6686d84a7067ceb8dadcccacf2c6ea4551d39429fb68e9be0e4415294b8592e64b0d0a3ca2048a4189057fb545f08978c71a20d02b87e8276477d3a158a9222d04e4147b6d5320954ccf3dfba17bfc2e04ef91951d6eb2e3701bf4ce7142ab82ea0f31ee6d96c4f5e8c9efff60934ff0a38cccdf444e1f8", 0x8a, 0x9}, {&(0x7f0000000300)="df64962afd1f16490d734e2fba4b4562b08fed62630df173989d95f49521900ad5e6c21de2ebe8056850c1fc6270882fdc4eeff375da83d8291b1ea9", 0x3c, 0x5}, {&(0x7f0000000340)="516c2367ca33985776c58959f7ee99caec4e754e540cbfb0db64fc895ccac492", 0x20, 0xfff}], 0x200000, &(0x7f0000000400)=ANY=[@ANYBLOB="64617461636f772c6465766963653d2e2f66696c65302c6e6f626172726965722c7373645f7370726561642c737562766fda14643d2d2c72657363616e5f757569645f7472cf652c6e6f666c7573686f6e636f6d6d69742c00"]) semctl$GETZCNT(r0, 0x0, 0xf, &(0x7f0000000140)=""/246) [ 389.995564] *** Guest State *** [ 389.998983] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 390.007891] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 390.016919] CR3 = 0x0000000000000000 [ 390.020709] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 390.026731] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 390.032754] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 390.039469] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 390.047543] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.055666] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.063779] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.071901] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.080042] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.088070] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 390.096094] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 390.104115] IDTR: limit=0x00000000, base=0x0000000000000000 [ 390.112456] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 390.120477] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 390.126943] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 390.134443] Interruptibility = 00000008 ActivityState = 00000000 [ 390.140720] *** Host State *** 2018/05/04 05:58:29 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:29 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b6"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:29 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 390.143971] RIP = 0xffffffff811f7279 RSP = 0xffff8801a9b2f390 [ 390.150054] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 390.156511] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 390.164358] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 390.170311] CR0=0000000080050033 CR3=0000000186b4b000 CR4=00000000001426f0 [ 390.177416] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 390.184134] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 390.190248] *** Control State *** 2018/05/04 05:58:29 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c03") [ 390.193754] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 390.200474] EntryControls=0000d1ff ExitControls=0023efff [ 390.205980] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 390.212978] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 390.219702] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 390.226355] reason=80000021 qualification=0000000000000000 [ 390.232738] IDTVectoring: info=00000000 errcode=00000000 [ 390.238241] TSC Offset = 0xffffff2bcf524de2 2018/05/04 05:58:29 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:29 executing program 7: rt_sigaction(0x400000000000007, &(0x7f00000000c0)={0x4224ae, {0xffffffbfffbff270}}, &(0x7f0000000000), 0x8, &(0x7f0000000100)) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x4, 0x44031, 0xffffffffffffffff, 0x0) r0 = signalfd(0xffffffffffffffff, &(0x7f0000000200), 0x8) pause() signalfd(r0, &(0x7f0000000040)={0x8000}, 0x8) socket$nl_xfrm(0xa, 0x3, 0x87) syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [], 0xaa}, @local={0xfe, 0x80, [], 0xaa}, {[], @tcp={{0x4e20, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, &(0x7f00000002c0)) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/04 05:58:29 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control&') [ 390.242655] EPT pointer = 0x00000001a8e6701e 2018/05/04 05:58:29 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:29 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000), 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 390.462856] EXT4-fs (loop0): Project quota feature not enabled. Cannot enable project quota enforcement. [ 390.529107] *** Guest State *** [ 390.532485] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 390.541380] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 390.542069] *** Guest State *** [ 390.550269] CR3 = 0x0000000000000000 [ 390.553569] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 390.557292] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 390.566155] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 390.572138] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 390.572154] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 390.572172] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 390.581041] CR3 = 0x0000000000000000 [ 390.581048] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 390.581056] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 390.581071] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 390.587050] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.593713] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 390.601682] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.605397] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.611368] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.617340] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.624008] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.631977] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.639945] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.647932] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.655905] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 390.655921] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 390.663892] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 390.671867] IDTR: limit=0x00000000, base=0x0000000000000000 [ 390.679837] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 390.688068] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 390.696036] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 390.703991] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 390.704006] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 390.711974] IDTR: limit=0x00000000, base=0x0000000000000000 [ 390.719935] Interruptibility = 00000008 ActivityState = 00000000 [ 390.719943] *** Host State *** [ 390.727918] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 390.735891] RIP = 0xffffffff811f7279 RSP = 0xffff88018e90f390 [ 390.735910] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 390.743873] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 390.751829] FSBase=00007f2148a60700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 390.751841] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 390.759806] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 390.766209] CR0=0000000080050033 CR3=0000000186b4b000 CR4=00000000001426e0 [ 390.766222] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 390.773664] Interruptibility = 00000008 ActivityState = 00000000 [ 390.781634] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 390.787873] *** Host State *** [ 390.791056] *** Control State *** [ 390.791069] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 390.799149] RIP = 0xffffffff811f7279 RSP = 0xffff880190e17390 [ 390.805111] EntryControls=0000d1ff ExitControls=0023efff [ 390.805123] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 390.811534] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 390.817953] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 390.817965] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 390.825766] FSBase=00007f2148a3f700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 390.831637] reason=80000021 qualification=0000000000000000 [ 390.831647] IDTVectoring: info=00000000 errcode=00000000 [ 390.839091] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 390.846092] TSC Offset = 0xffffff2bcf524de2 [ 390.846102] EPT pointer = 0x00000001a8e6701e [ 390.852782] CR0=0000000080050033 CR3=0000000186b4b000 CR4=00000000001426f0 [ 390.906631] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 390.906631] The task syz-executor6 (26037) triggered the difference, watch for misbehavior. [ 390.910072] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 390.910085] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 390.910089] *** Control State *** [ 390.910100] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 390.910106] EntryControls=0000d1ff ExitControls=0023efff [ 390.910116] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 390.910123] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 390.910130] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 390.910136] reason=80000021 qualification=0000000000000000 [ 390.910141] IDTVectoring: info=00000000 errcode=00000000 [ 390.910145] TSC Offset = 0xffffff2b78a0f2b8 [ 390.910151] EPT pointer = 0x00000001841dd01e 2018/05/04 05:58:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0xffffffffffffffff, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) write$rdma_cm(0xffffffffffffffff, &(0x7f0000001b00)=@create_id={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000001ac0)={0xffffffff}, 0x13f, 0xb}}, 0x20) write$rdma_cm(r2, &(0x7f0000001b40)=@bind={0x14, 0x88, 0xfa00, {r7, 0x3c, 0x0, @ib={0x1b, 0x8, 0x1ff, {"e063fbc8cd6819ae5a337433f59bfe2f"}, 0x1, 0x6, 0xfffffffffffffff7}}}, 0x90) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x7, 0x8000}, 0x4) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r6, 0x84, 0x1a, &(0x7f0000000200)={0x0, 0x96, "a66848391915a2dd5f20f03fcdb4188ffde07e9322a17ee0cb1fc14499be24fc52f204402442474b1bdaea15fd47714d8232644c3da3d3d2430b422f031413ef20a1e20b2bbfa2dafb48e2d3d64e7c6b2c7798950778a6f2280d192e689f9b865de9d87e27ad05e99edf2cc1edada6f833eaaab41ec85a5b885e00d73fcf2e7ee33f5207d55a807f03d2cf95e096f91b983ec3533a43"}, &(0x7f00000000c0)=0x9e) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r5, 0x84, 0x10, &(0x7f0000000140)=@assoc_value={r8, 0x80000000}, &(0x7f0000000480)=0x8) 2018/05/04 05:58:30 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:30 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x80400000005, 0x2000000b2, 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text32={0x20, &(0x7f00000005c0)="2e360f350f22d2c4e17d28ffc4c12dc6010e8fe900959c8816e014ab0f30b8010000000f01c1ea150000007100ea0f0000005463c4e3f55f90b4000000cb", 0x3e}], 0x1, 0x0, &(0x7f0000000640), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x1, 0x0, 0x1000}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f00000000c0)="660f38829ce00000000081660080cc00000f01d13edce00f07660f3881521ec4c1f56b821aea000066baf80cb8e2dd6488ef66bafc0c66b8680066ef8fc96801d12e660f388246e4", 0x48}], 0xaaaaaaaaaaaabe9, 0x0, &(0x7f0000000900), 0x0) 2018/05/04 05:58:30 executing program 6: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x4, 0x10000) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000080)={0x0, 0xffffffffffffffe4}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000100)=r1, 0x4) r2 = socket$inet(0x10, 0x2, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000140)={0xffffffff, 0x80, 0x1, 0x401, 0x1, 0x100000000, 0x0, 0x10000, r1}, 0x20) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000040)="2f0000001c0003fd6d0000360000000002dd0700060000001f5f32c908000100000073730beeffff005867855e7fa5", 0x2f}], 0x1}, 0x0) 2018/05/04 05:58:30 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:30 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b6"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:30 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:30 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control<') [ 391.314605] netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'. [ 391.354989] *** Guest State *** [ 391.358465] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 391.367379] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 391.376284] CR3 = 0x0000000000000000 [ 391.380093] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 391.386112] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 391.392185] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:30 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:30 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:30 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6ca6") [ 391.398929] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 391.406972] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.415012] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.423081] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.431168] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.439213] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.447263] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 391.455287] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 391.463341] IDTR: limit=0x00000000, base=0x0000000000000000 [ 391.471366] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 391.479388] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 391.485845] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 391.493363] Interruptibility = 00000008 ActivityState = 00000000 [ 391.499636] *** Host State *** [ 391.502894] RIP = 0xffffffff811f7279 RSP = 0xffff880184157390 [ 391.508920] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 391.515390] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 391.523232] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 391.529261] CR0=0000000080050033 CR3=00000001d6f07000 CR4=00000000001426e0 [ 391.536347] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 391.543065] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 391.549158] *** Control State *** 2018/05/04 05:58:31 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:31 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:31 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:31 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 391.552664] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 391.559368] EntryControls=0000d1ff ExitControls=0023efff [ 391.564880] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 391.571847] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 391.578557] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 391.585173] reason=80000021 qualification=0000000000000000 [ 391.591541] IDTVectoring: info=00000000 errcode=00000000 [ 391.597040] TSC Offset = 0xffffff2afe22472d [ 391.601401] EPT pointer = 0x000000018d76801e 2018/05/04 05:58:31 executing program 6: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x141102, 0x0) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000080)) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'bridge0\x00'}) ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f00000000c0)=[0x401, 0x3ff]) sendmsg$nl_route(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="280000001c00070f000000000000000007000000", @ANYBLOB="060002000a0002000000"], 0x2}, 0x1}, 0x0) [ 391.825558] *** Guest State *** [ 391.828937] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 391.837828] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 391.846697] CR3 = 0x0000000000000000 [ 391.847905] *** Guest State *** [ 391.850449] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 391.853792] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 391.859745] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 391.868602] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 391.874585] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 391.874600] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 391.874616] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.883459] CR3 = 0x0000000000000000 [ 391.890140] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.898114] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 391.906124] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.909804] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 391.917778] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.923751] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 391.931724] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.931735] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 391.931753] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 391.937729] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 391.945692] IDTR: limit=0x00000000, base=0x0000000000000000 [ 391.945707] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 391.952385] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.952398] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.952412] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.952427] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.952443] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 391.960408] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 391.960419] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 391.968442] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 391.976355] Interruptibility = 00000008 ActivityState = 00000000 [ 391.976358] *** Host State *** [ 391.976368] RIP = 0xffffffff811f7279 RSP = 0xffff880184157390 [ 391.976387] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 391.976396] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 391.976408] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 391.984384] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 391.992354] CR0=0000000080050033 CR3=00000001d6f07000 CR4=00000000001426e0 [ 392.000322] IDTR: limit=0x00000000, base=0x0000000000000000 [ 392.008303] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 392.016277] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 392.016288] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 392.024261] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 392.032260] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 392.040211] *** Control State *** [ 392.040219] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 392.040225] EntryControls=0000d1ff ExitControls=0023efff [ 392.040237] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 392.046644] Interruptibility = 00000008 ActivityState = 00000000 [ 392.054099] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 392.054110] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 392.062078] *** Host State *** [ 392.068311] reason=80000021 qualification=0000000000000000 [ 392.068321] IDTVectoring: info=00000000 errcode=00000000 [ 392.071517] RIP = 0xffffffff811f7279 RSP = 0xffff88018701f390 [ 392.077482] TSC Offset = 0xffffff2afe22472d [ 392.077491] EPT pointer = 0x000000018d76801e [ 392.083908] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 392.233389] FSBase=00007f2148a60700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 392.241207] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 392.247121] CR0=0000000080050033 CR3=00000001d6f07000 CR4=00000000001426f0 [ 392.254176] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 392.260875] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 392.266959] *** Control State *** [ 392.270440] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 2018/05/04 05:58:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x80000000010005, 0x0, 0x2, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$VT_DISALLOCATE(r4, 0x5608) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:31 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:31 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b6"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:31 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:31 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:31 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:31 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="40000000fca92e075a0000000000ffffffbfffff000000000000000800f2ffffff0000dcad54f7010000000079e4000000000000002e0ac03f00000006000000000000000000"], 0x40}, 0x1}, 0x0) pipe2(&(0x7f0000000280)={0xffffffffffffffff}, 0x80000) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000380)={0x6, [0x1, 0xfffffffffffffffd, 0x101, 0x5, 0x6, 0x5]}, &(0x7f00000003c0)=0x10) r2 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x6, 0x4000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e23, 0xdb, @empty, 0x800}}, [0x6, 0x9, 0x1000, 0xa800, 0x40, 0x8c00000000000000, 0x8b7, 0xfffffffffffffff7, 0xbc, 0x4, 0x8001, 0xffffffffffffffd9, 0x9, 0xfffffffffffffffb, 0x6]}, &(0x7f0000000200)=0x100) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000340)={r3, 0x7fff, 0x2bb, [0x800]}, &(0x7f0000000300)=0xa) 2018/05/04 05:58:31 executing program 6: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x1d, 0x80040) ioctl$KDGETMODE(r1, 0x4b3b, &(0x7f0000000140)) r2 = openat$cgroup_subtree(r1, &(0x7f0000000380)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f00000000c0)={[{0x28, 'pids', 0x20}]}, 0xffffffffffffff07) ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000180)={0x48, 0x6}) [ 392.277128] EntryControls=0000d1ff ExitControls=0023efff [ 392.282601] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 392.289569] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 392.296385] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 392.303049] reason=80000021 qualification=0000000000000000 [ 392.309379] IDTVectoring: info=00000000 errcode=00000000 [ 392.314843] TSC Offset = 0xffffff2abbe8eae9 [ 392.319193] EPT pointer = 0x00000001a8d4b01e 2018/05/04 05:58:31 executing program 6: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/connector\x00') ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000080)={{0x9, 0x3}, 'port0\x00', 0xd0, 0x100000, 0xfff, 0x2, 0x1, 0xfff, 0xfff, 0x0, 0x4, 0x4}) unshare(0xa00) ioctl$sock_bt_hci(r0, 0x1000000400448c9, &(0x7f0000000080)) 2018/05/04 05:58:31 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c04") 2018/05/04 05:58:32 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:32 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c03") 2018/05/04 05:58:32 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:32 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:32 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:32 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\b') 2018/05/04 05:58:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r4, 0x10e, 0x2, &(0x7f0000000040)=0x12, 0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000080)=[@cr0], 0x1) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:32 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:32 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c04") 2018/05/04 05:58:32 executing program 6: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = dup(0xffffffffffffff9c) r1 = gettid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000c60000)={{{@in, @in6=@local}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in6=@local}}, &(0x7f0000000000)=0xe8) getgid() getpgid(r1) getresgid(&(0x7f0000c06000), &(0x7f0000498000), &(0x7f0000843ffc)) gettid() getresuid(&(0x7f0000e8e000), &(0x7f0000657ffc), &(0x7f00008cbffc)) lstat(&(0x7f00000b4000)='./file0\x00', &(0x7f0000ea5fbc)) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000326f18)={{{@in=@broadcast, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000c12000)=0xe8) lstat(&(0x7f0000c6aff8)='./file0\x00', &(0x7f000041b000)) gettid() lstat(&(0x7f0000589ff8)='./file0\x00', &(0x7f0000000100)) getegid() getpid() getresuid(&(0x7f0000c2a000), &(0x7f0000cb0000), &(0x7f0000a41000)) fstat(r0, &(0x7f0000352fbc)) getpid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f000001b000)={{{@in6=@loopback, @in6=@mcast1}}, {{}, 0x0, @in6=@local}}, &(0x7f0000e9c000)=0xe8) getgroups(0x1, &(0x7f000039bffc)=[0x0]) fcntl$getown(r0, 0x9) lstat(&(0x7f0000a9eff8)='./file0\x00', &(0x7f0000000040)) getgroups(0x1, &(0x7f0000cc0000)=[0xffffffffffffffff]) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000a2ffe)) geteuid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000106ff4), &(0x7f0000322000)=0xc) getpgrp(r1) getpgid(r2) getresuid(&(0x7f00001e2000), &(0x7f0000c07000), &(0x7f0000d26ffc)) 2018/05/04 05:58:32 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:32 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa}}, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x4a}, 0x98) 2018/05/04 05:58:32 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:32 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 392.878640] *** Guest State *** [ 392.882091] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 392.890997] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 392.899891] CR3 = 0x0000000000000000 [ 392.903678] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 392.909697] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 392.915732] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:32 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control&') 2018/05/04 05:58:32 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 392.922486] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 392.930525] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 392.938547] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 392.946583] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 392.954598] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 392.962640] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 392.970666] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 392.978703] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 392.986854] IDTR: limit=0x00000000, base=0x0000000000000000 [ 392.994888] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 393.002902] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 393.009362] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 393.016856] Interruptibility = 00000008 ActivityState = 00000000 [ 393.023138] *** Host State *** 2018/05/04 05:58:32 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cf4") 2018/05/04 05:58:32 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 393.026367] RIP = 0xffffffff811f7279 RSP = 0xffff8801a9b2f390 [ 393.032402] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 393.038847] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 393.046698] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 393.052623] CR0=0000000080050033 CR3=0000000186c95000 CR4=00000000001426f0 [ 393.059699] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 393.066407] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 393.072507] *** Control State *** 2018/05/04 05:58:32 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:32 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:32 executing program 7: epoll_create(0xffffffff) r0 = socket(0x2, 0x3, 0x40000000000000ff) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000140)={'ip6gretap0\x00', {0x2, 0x0, @rand_addr}}) [ 393.075996] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 393.082713] EntryControls=0000d1ff ExitControls=0023efff [ 393.088199] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 393.095173] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 393.101874] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 393.108501] reason=80000021 qualification=0000000000000000 [ 393.114914] IDTVectoring: info=00000000 errcode=00000000 [ 393.120418] TSC Offset = 0xffffff2a3261da70 [ 393.124769] EPT pointer = 0x00000001c80c401e 2018/05/04 05:58:32 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008780)=[{{&(0x7f0000000100)=@ipx, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)=""/245, 0xf5}, {&(0x7f0000000280)=""/248, 0xf8}, {&(0x7f0000000380)=""/195, 0xc3}], 0x3, &(0x7f0000000480)=""/110, 0x6e, 0x7}, 0x10001}, {{&(0x7f0000000500)=@pppoe={0x0, 0x0, {0x0, @random}}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000580)=""/201, 0xc9}, {&(0x7f0000000680)=""/234, 0xea}], 0x2, &(0x7f00000007c0)=""/151, 0x97, 0xcd1}, 0x4f5a}, {{&(0x7f0000000880)=@alg, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000900)=""/60, 0x3c}, {&(0x7f0000000940)=""/56, 0x38}, {&(0x7f0000000980)=""/237, 0xed}], 0x3, &(0x7f0000000ac0)=""/4096, 0x1000, 0x9}, 0x10001}, {{0x0, 0x0, &(0x7f0000003c00)=[{&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000002ac0)=""/20, 0x14}, {&(0x7f0000002b00)=""/202, 0xca}, {&(0x7f0000002c00)=""/4096, 0x1000}], 0x4, 0x0, 0x0, 0x8}, 0xfff}, {{&(0x7f0000003c40)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, 0x80, &(0x7f0000004040)=[{&(0x7f0000003cc0)=""/205, 0xcd}, {&(0x7f0000003dc0)=""/243, 0xf3}, {&(0x7f0000003ec0)=""/30, 0x1e}, {&(0x7f0000003f00)=""/106, 0x6a}, {&(0x7f0000003f80)=""/134, 0x86}], 0x5, 0x0, 0x0, 0xf0a2}, 0x2}, {{&(0x7f00000040c0)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000004240)=[{&(0x7f0000004140)=""/141, 0x8d}, {&(0x7f0000004200)=""/56, 0x38}], 0x2, &(0x7f0000004280)=""/110, 0x6e, 0x7}, 0x11}, {{0x0, 0x0, &(0x7f00000048c0)=[{&(0x7f0000004300)=""/109, 0x6d}, {&(0x7f0000004380)=""/46, 0x2e}, {&(0x7f00000043c0)=""/75, 0x4b}, {&(0x7f0000004440)=""/241, 0xf1}, {&(0x7f0000004540)=""/107, 0x6b}, {&(0x7f00000045c0)=""/221, 0xdd}, {&(0x7f00000046c0)=""/188, 0xbc}, {&(0x7f0000004780)=""/14, 0xe}, {&(0x7f00000047c0)=""/205, 0xcd}], 0x9, &(0x7f0000004980)=""/190, 0xbe, 0xffffffff}, 0xe6}, {{&(0x7f0000004a40)=@nfc, 0x80, &(0x7f0000004d40)=[{&(0x7f0000004ac0)=""/207, 0xcf}, {&(0x7f0000004bc0)=""/154, 0x9a}, {&(0x7f0000004c80)=""/152, 0x98}], 0x3, &(0x7f0000004d80)=""/43, 0x2b, 0x3e8}, 0x6}, {{&(0x7f0000004dc0)=@vsock={0x0, 0x0, 0x0, @host}, 0x80, &(0x7f0000006180)=[{&(0x7f0000004e40)=""/55, 0x37}, {&(0x7f0000004e80)=""/35, 0x23}, {&(0x7f0000004ec0)=""/231, 0xe7}, {&(0x7f0000004fc0)=""/35, 0x23}, {&(0x7f0000005000)=""/255, 0xff}, {&(0x7f0000005100)=""/4096, 0x1000}, {&(0x7f0000006100)=""/115, 0x73}], 0x7, &(0x7f0000006200)=""/171, 0xab, 0x8}, 0x10000}, {{&(0x7f00000062c0)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @remote}}}, 0x80, &(0x7f0000008600)=[{&(0x7f0000006340)=""/4096, 0x1000}, {&(0x7f0000007340)=""/30, 0x1e}, {&(0x7f0000007380)=""/4096, 0x1000}, {&(0x7f0000008380)=""/201, 0xc9}, {&(0x7f0000008480)=""/115, 0x73}, {&(0x7f0000008500)=""/170, 0xaa}, {&(0x7f00000085c0)=""/55, 0x37}], 0x7, &(0x7f0000008680)=""/245, 0xf5, 0xfffffffffffff001}, 0x40}], 0xa, 0x2021, &(0x7f0000008a00)) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000008ac0)={0x0, 0x9, 0x4}, &(0x7f0000008b00)=0x8) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000008b40)={r1, @in6={{0xa, 0x4e20, 0x100000000, @remote={0xfe, 0x80, [], 0xbb}, 0xffffffffffff8001}}}, 0x84) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x800448f0, &(0x7f0000000000)={"06000000e60c9b2f85651ad4ffb13500"}) getsockname$inet6(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, @loopback}, &(0x7f00000000c0)=0x1c) [ 393.349355] *** Guest State *** [ 393.352756] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 393.361663] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 393.370547] CR3 = 0x0000000000000000 [ 393.374392] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 393.380411] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 393.386408] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 393.393108] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 393.401133] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.409147] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.417169] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.425180] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.433191] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.441190] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 393.449234] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 393.457268] IDTR: limit=0x00000000, base=0x0000000000000000 [ 393.465264] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 393.473273] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 393.479713] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 393.487217] Interruptibility = 00000008 ActivityState = 00000000 [ 393.493469] *** Host State *** [ 393.496693] RIP = 0xffffffff811f7279 RSP = 0xffff8801a9b2f390 [ 393.502696] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 393.509183] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 393.517009] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 393.522962] CR0=0000000080050033 CR3=0000000186c95000 CR4=00000000001426e0 [ 393.530009] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 393.536725] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 393.542802] *** Control State *** 2018/05/04 05:58:33 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:33 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cb8") 2018/05/04 05:58:33 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:33 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) set_robust_list(&(0x7f0000000140)={&(0x7f0000000100)={&(0x7f00000000c0)}, 0xf194}, 0x18) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00001f0ff8)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x84) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000080)=0xba, 0x4) r2 = dup(r0) r3 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$revoke(0x3, r3) ioctl$sock_ipx_SIOCAIPXITFCRT(r2, 0x89e0, &(0x7f00000002c0)) 2018/05/04 05:58:33 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:33 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0x0) 2018/05/04 05:58:33 executing program 7: pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000000c0)={0x4, 0x401, 0x3, 'queue1\x00', 0x933}) bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=ANY=[@ANYBLOB="74a5a17a8d5863252f8c538f180053a0a2ca00003e5a01f00100001000"], &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x36, &(0x7f00001a7f05)=""/251}, 0x18) 2018/05/04 05:58:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 393.546273] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 393.552980] EntryControls=0000d1ff ExitControls=0023efff [ 393.558459] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 393.565428] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 393.572111] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 393.578715] reason=80000021 qualification=0000000000000000 [ 393.585063] IDTVectoring: info=00000000 errcode=00000000 [ 393.590531] TSC Offset = 0xffffff2a3261da70 [ 393.594866] EPT pointer = 0x00000001c80c401e 2018/05/04 05:58:33 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") [ 393.746764] *** Guest State *** [ 393.750170] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 393.759167] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 393.768055] CR3 = 0x0000000000000000 [ 393.771845] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 393.777864] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 393.783914] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 393.790636] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 393.798709] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.806752] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.814794] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.822824] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.830879] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 393.838904] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 393.846951] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 393.854977] IDTR: limit=0x00000000, base=0x0000000000000000 [ 393.863060] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 393.871078] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 393.877556] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 393.885050] Interruptibility = 00000008 ActivityState = 00000000 [ 393.891349] *** Host State *** [ 393.894590] RIP = 0xffffffff811f7279 RSP = 0xffff88019327f390 [ 393.900629] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 393.907076] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 393.914929] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 393.920861] CR0=0000000080050033 CR3=00000001bca5e000 CR4=00000000001426e0 [ 393.927945] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 393.934655] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 393.940748] *** Control State *** [ 393.944221] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 393.950904] EntryControls=0000d1ff ExitControls=0023efff [ 393.956381] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 393.963339] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 393.970048] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 393.976657] reason=80000021 qualification=0000000000000000 [ 393.983008] IDTVectoring: info=00000000 errcode=00000000 [ 393.988510] TSC Offset = 0xffffff29b86ac2ff [ 393.992871] EPT pointer = 0x00000001d63e501e [ 394.018146] *** Guest State *** [ 394.021487] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 394.030377] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 394.039337] CR3 = 0x0000000000000000 [ 394.043109] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 394.049111] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 394.055145] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 394.061842] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 394.069859] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.077857] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.085891] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.093886] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.101892] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.109892] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 394.117914] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 394.125924] IDTR: limit=0x00000000, base=0x0000000000000000 [ 394.133925] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 394.141923] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 394.148401] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 394.155872] Interruptibility = 00000008 ActivityState = 00000000 [ 394.162134] *** Host State *** [ 394.165356] RIP = 0xffffffff811f7279 RSP = 0xffff8801a9b2f390 [ 394.171383] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 394.177813] FSBase=00007f2148a60700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 394.185636] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 394.191551] CR0=0000000080050033 CR3=00000001bca5e000 CR4=00000000001426e0 [ 394.198604] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 394.205304] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 394.211681] *** Control State *** 2018/05/04 05:58:33 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:33 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:33 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:33 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0x0) 2018/05/04 05:58:33 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha384\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0", 0x4) r1 = accept$alg(r0, 0x0, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'ccm_base(cbc(blowfish),sha512-avx)\x00'}, 0x58) truncate(&(0x7f0000000140)='./file0\x00', 0x2) io_setup(0x1, &(0x7f0000f7e000)=0x0) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$KVM_SET_NR_MMU_PAGES(r3, 0xae44, 0x9db6) io_submit(r2, 0x1, &(0x7f0000738000)=[&(0x7f0000f73fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000180)="16", 0x1}]) 2018/05/04 05:58:33 executing program 6: r0 = socket(0x1e, 0x805, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x6, 0xfffffffffffffffc, 0xa8, 0x10001, 0x8000, 0x3, 0xff}, 0x18a) sendmsg(r0, &(0x7f00000000c0)={&(0x7f00004f5000)=@generic={0x10000000001e, "0100000900000000000000000226cc573c080000003724c71e14dd6a739effea1b48006be61ffe0000e103000000f8000004003f010039d8f986ff01000300000004af50d50700000000000000e3ad316a1983000000001d00e0dfcb24281e27800000100076c3979ac40000bd15020078a1dfd300881a8365b1b16d7436"}, 0x80, &(0x7f0000000480), 0x0, &(0x7f00006e9c68)}, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x12040, 0x0) 2018/05/04 05:58:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(r2, 0x891c, &(0x7f0000000280)={'bridge0\x00', {0x2, 0x4e23, @multicast1=0xe0000001}}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) sysfs$2(0x2, 0xb72, &(0x7f0000000740)=""/4096) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) timer_create(0x7, &(0x7f0000000040)={0x0, 0xb, 0x5}, &(0x7f0000000080)=0x0) syz_open_dev$vcsa(&(0x7f0000000240)='/dev/vcsa#\x00', 0x3b83, 0x100) timer_settime(r6, 0x1, &(0x7f00000000c0)={{0x0, 0x989680}}, 0x0) getpeername$packet(r5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000200)=0x14) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:33 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 394.215177] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 394.221858] EntryControls=0000d1ff ExitControls=0023efff [ 394.227328] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 394.234269] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 394.240949] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 394.247557] reason=80000021 qualification=0000000000000000 [ 394.253897] IDTVectoring: info=00000000 errcode=00000000 [ 394.259362] TSC Offset = 0xffffff29b86ac2ff [ 394.263701] EPT pointer = 0x00000001d63e501e 2018/05/04 05:58:33 executing program 6: socket$inet6_sctp(0xa, 0x5, 0x84) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000000)='%^.\x00', 0x1) ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000000040)) clock_adjtime(0x0, &(0x7f0000000180)={0x93b, 0xdf2, 0x7, 0xffffffffffffffe0, 0xfffffffffffffab0, 0x78, 0x8, 0xe5, 0x90, 0x40, 0x8, 0x6, 0x2, 0xffff, 0x800, 0x3f, 0x4, 0x6, 0x5e6, 0x1f, 0x9, 0x3, 0x8, 0x4, 0x1, 0x9}) 2018/05/04 05:58:33 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 394.421834] *** Guest State *** [ 394.425227] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 394.434129] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 394.443047] CR3 = 0x0000000000000000 [ 394.446815] RSP = 0x0000000000000f80 RIP = 0x0000000000000297 [ 394.452818] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 394.458849] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 394.465549] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 394.473556] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.481558] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.489614] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.497623] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.505652] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.513660] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 394.513679] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 394.529895] IDTR: limit=0x00000000, base=0x0000000000000000 [ 394.537913] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 394.545909] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 394.552344] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 394.559817] Interruptibility = 00000008 ActivityState = 00000000 [ 394.566086] *** Host State *** 2018/05/04 05:58:34 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) uname(&(0x7f0000000140)=""/174) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000040)=0xc, 0x4) 2018/05/04 05:58:34 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control&') [ 394.569311] RIP = 0xffffffff811f7279 RSP = 0xffff88019337f390 [ 394.575332] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 394.581776] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 394.589605] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 394.595532] CR0=0000000080050033 CR3=00000001c839d000 CR4=00000000001426e0 [ 394.602581] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 394.609281] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 394.615363] *** Control State *** [ 394.618844] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 394.625537] EntryControls=0000d1ff ExitControls=0023efff [ 394.631045] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 394.638004] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 394.644720] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 394.652185] reason=80000021 qualification=0000000000000000 [ 394.658534] IDTVectoring: info=00000000 errcode=00000000 [ 394.664063] TSC Offset = 0xffffff295ff60d83 [ 394.668418] EPT pointer = 0x00000001cf9a401e [ 394.706065] *** Guest State *** [ 394.709450] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 394.718331] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 394.727266] CR3 = 0x0000000000000000 [ 394.731056] RSP = 0x0000000000000f80 RIP = 0x0000000000000297 [ 394.737094] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 394.743120] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 394.749810] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 394.757812] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.765819] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.773824] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.781817] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.789878] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 394.797878] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 394.805890] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 394.813878] IDTR: limit=0x00000000, base=0x0000000000000000 [ 394.821888] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 394.829882] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 394.836500] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 394.843963] Interruptibility = 00000008 ActivityState = 00000000 [ 394.850214] *** Host State *** [ 394.853434] RIP = 0xffffffff811f7279 RSP = 0xffff88019333f390 [ 394.859444] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 394.865882] FSBase=00007f2148a3f700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 394.873698] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 394.879605] CR0=0000000080050033 CR3=00000001c839d000 CR4=00000000001426e0 [ 394.886658] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 394.893337] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 394.899405] *** Control State *** [ 394.902877] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 394.909572] EntryControls=0000d1ff ExitControls=0023efff [ 394.915060] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 394.922013] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 394.928714] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 394.935308] reason=80000021 qualification=0000000000000000 [ 394.941642] IDTVectoring: info=00000000 errcode=00000000 [ 394.947106] TSC Offset = 0xffffff295ff60d83 [ 394.951456] EPT pointer = 0x00000001cf9a401e 2018/05/04 05:58:34 executing program 7: perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(0xffffffffffffffff, &(0x7f0000000700)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000006c0)={0xffffffff}, 0x117}}, 0x20) write$rdma_cm(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000100000fa", @ANYRES32=0xffffffff, @ANYBLOB="00000000af5ffdccd8386f81030354ca408e2776ec457597811938f1907c4a0d11b16dae6692ac3f1ceeb5b58234ac25aeb0e0bb199e7dc6e73d661e77ae33da52c020d7aae3b5b26131d15a773fcb74f313743ff48eeb46a7aef0f65191dbdc851c15ed2d"], 0x71) write$rdma_cm(r1, &(0x7f0000000100)=@resolve_addr={0x15, 0x110, 0xfa00, {r2, 0x2, 0x0, 0x0, 0x0, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @ib={0x1b, 0x81, 0x4, {"2dba0b534604863dcf3fe04d66ccdc50"}, 0x100, 0x1, 0x4}}}, 0x118) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x1, 0x0) ioctl$EVIOCSMASK(r3, 0x40104593, &(0x7f00000003c0)={0x4, 0xeb, &(0x7f00000002c0)="9a8437d6ec0a84f0b47a10149f30b1270fac503899f8f2028ef4ce43815d68856a093d48400d30136abe40550602e185b69c33b2da45c31445426f190eea5b224cd4eaa1b7fe8c7e9dc6c6e11733f64412c785f4acaa1c7a38ca02972d1bd84a36c28ed1855e8479bf4e280ef4458daab2c8d9d94be7f45bb96b9cd7a783b835eb18879a97541aa0b25acce6145c82de686f208f7cc64b34194e90048504fa57f547c63178e3a44aee62941cfc84190adf796b30afa322ae48abc1d0dc82bdb5e04fe1020d811c5e6e996941605efbf7d3d21cab7bdec6470b7450bfb8f1ecf3d123e618191a44b319c69b"}) ioctl$KVM_SMI(r1, 0xaeb7) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) getsockopt(r0, 0x410000000000003a, 0x20000000000001, &(0x7f0000000f44)=""/188, &(0x7f0000000000)=0xbc) 2018/05/04 05:58:34 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:34 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:34 executing program 2: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0x0) 2018/05/04 05:58:34 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:34 executing program 6: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000040)={0x0, 0x96, "b294b424e0377e2d4e34c35b18ef0f2f2204b558ddb3236994c861b0ba7c7b4d0a5856255320340e40af13eaf12e1ac30ca269a1ff2783d73f8916326b1e23d91a3297a479116f605c80d4a860992a7301efb222866341151f9a7129dac6c695e5b137c6b56865cf44346cc16803e3396c6c189ec74bb1ce9d8a421666353110234d4a431fff448eb8a66f48c9153f43e0c538e774cc"}, &(0x7f0000000100)=0x9e) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000001c0)={[0x1, 0x5, 0xff, 0x4, 0x10001, 0xffffffffffffffff, 0xc6ca, 0x1, 0x7ff, 0x8001, 0x7, 0x6b, 0x83, 0x3, 0x1, 0x7f], 0x5000}) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000140)={r1, 0x3}, &(0x7f0000000180)=0x7) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x45}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0xb, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x0, 0x1, 0x4c}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f00001a7f05)=""/251}, 0x48) 2018/05/04 05:58:34 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) fsetxattr(r2, &(0x7f0000000040)=@known='security.evm\x00', &(0x7f0000000080)='/dev/kvm\x00', 0x9, 0x3) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 395.085908] *** Guest State *** [ 395.089294] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 395.098207] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 395.107089] CR3 = 0x0000000000000000 [ 395.110873] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 395.116888] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 395.122923] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:34 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 395.129630] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 395.137660] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.145702] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.153728] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.161748] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.169778] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.177792] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:34 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 395.185831] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 395.193839] IDTR: limit=0x00000000, base=0x0000000000000000 [ 395.201880] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 395.209894] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 395.216365] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 395.223851] Interruptibility = 00000008 ActivityState = 00000000 [ 395.230150] *** Host State *** 2018/05/04 05:58:34 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip_vs_stats_percpu\x00') ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)) sendfile(r0, r0, &(0x7f00006c7000)=0x4000000, 0x2a) 2018/05/04 05:58:34 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c02") [ 395.233388] RIP = 0xffffffff811f7279 RSP = 0xffff8801a75f7390 [ 395.239417] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 395.245859] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 395.253714] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 395.259640] CR0=0000000080050033 CR3=00000001a8bca000 CR4=00000000001426e0 [ 395.266706] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 395.273408] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 395.279514] *** Control State *** 2018/05/04 05:58:34 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:34 executing program 2 (fault-call:8 fault-nth:0): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:34 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 395.283008] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 395.289749] EntryControls=0000d1ff ExitControls=0023efff [ 395.295252] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 395.302215] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 395.308930] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 395.315542] reason=80000021 qualification=0000000000000000 [ 395.321905] IDTVectoring: info=00000000 errcode=00000000 [ 395.327395] TSC Offset = 0xffffff29004f8815 [ 395.331781] EPT pointer = 0x00000001d023d01e [ 395.378159] FAULT_INJECTION: forcing a failure. [ 395.378159] name failslab, interval 1, probability 0, space 0, times 0 [ 395.389573] CPU: 1 PID: 26356 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 395.396853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.406208] Call Trace: [ 395.408810] dump_stack+0x1b9/0x294 [ 395.412453] ? dump_stack_print_info.cold.2+0x52/0x52 [ 395.417651] ? graph_lock+0x170/0x170 [ 395.421464] should_fail.cold.4+0xa/0x1a [ 395.425528] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 395.430626] ? find_held_lock+0x36/0x1c0 [ 395.434694] ? graph_lock+0x170/0x170 [ 395.438497] ? find_held_lock+0x36/0x1c0 [ 395.442575] ? check_same_owner+0x320/0x320 [ 395.446888] ? lock_release+0xa10/0xa10 [ 395.450858] ? rcu_note_context_switch+0x710/0x710 [ 395.455782] __should_failslab+0x124/0x180 [ 395.460009] should_failslab+0x9/0x14 [ 395.463806] __kmalloc+0x2c8/0x760 [ 395.467342] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 395.472874] ? do_handle_open+0x133/0x950 [ 395.477018] ? _copy_from_user+0xdf/0x150 [ 395.481162] do_handle_open+0x133/0x950 [ 395.485130] ? vfs_dentry_acceptable+0x10/0x10 [ 395.489700] ? ksys_write+0x1a6/0x250 [ 395.493495] ? __ia32_sys_read+0xb0/0xb0 [ 395.497549] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 395.502387] __x64_sys_open_by_handle_at+0x76/0xb0 [ 395.507314] do_syscall_64+0x1b1/0x800 [ 395.511192] ? finish_task_switch+0x1ca/0x810 [ 395.515677] ? syscall_return_slowpath+0x5c0/0x5c0 [ 395.520597] ? syscall_return_slowpath+0x30f/0x5c0 [ 395.525522] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 395.530890] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 395.535727] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 395.540903] RIP: 0033:0x455979 [ 395.544078] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 395.551778] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 395.559039] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 395.566294] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 2018/05/04 05:58:35 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 395.573549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 395.580816] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000000 [ 395.675642] *** Guest State *** [ 395.679118] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 395.688055] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 395.696939] CR3 = 0x0000000000000000 [ 395.700695] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 395.706737] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 395.712758] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 395.719492] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 395.727644] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.735665] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.743955] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.751984] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.760048] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 395.768074] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 395.776105] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 395.784147] IDTR: limit=0x00000000, base=0x0000000000000000 [ 395.792174] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 395.800215] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 395.806668] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 395.814989] Interruptibility = 00000008 ActivityState = 00000000 [ 395.821265] *** Host State *** [ 395.824524] RIP = 0xffffffff811f7279 RSP = 0xffff8801a75f7390 [ 395.830549] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 395.837070] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 395.844885] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 395.850793] CR0=0000000080050033 CR3=00000001a8bca000 CR4=00000000001426f0 [ 395.857833] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 395.864537] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 395.870611] *** Control State *** [ 395.874083] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 395.880769] EntryControls=0000d1ff ExitControls=0023efff [ 395.886240] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 395.893182] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 395.899993] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 395.906593] reason=80000021 qualification=0000000000000000 [ 395.912945] IDTVectoring: info=00000000 errcode=00000000 [ 395.918413] TSC Offset = 0xffffff29004f8815 [ 395.922757] EPT pointer = 0x00000001d023d01e 2018/05/04 05:58:35 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x0, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:35 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./controld') 2018/05/04 05:58:35 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:35 executing program 7: r0 = open(&(0x7f00000000c0)='./bus\x00', 0x141042, 0x0) ftruncate(r0, 0x8000) r1 = open(&(0x7f000000fffa)='./bus\x00', 0x0, 0x0) ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000100)={0xc27f, {0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}, {0x2, 0x4e23, @broadcast=0xffffffff}, {0x2, 0x4e24, @rand_addr=0x1}, 0x44, 0x1, 0x1, 0x852e, 0x80, &(0x7f0000000000)='bpq0\x00', 0x59fe, 0x0, 0x1}) setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x1, 'nr0\x00', 0x1}, 0x18) fcntl$notify(r1, 0x402, 0x0) sendfile(r0, r1, &(0x7f0000000080), 0x9cfd) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000180)={0x2, &(0x7f0000000040)=[{0x80, 0x1, 0x100000001, 0x1000}, {0x1ff, 0x800, 0x1000, 0x1}]}, 0x10) 2018/05/04 05:58:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = dup3(r4, r3, 0x400000) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r5, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x1000000000, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x3, &(0x7f0000000480)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r2, 0xae44, 0x1ff) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {0x0, 0x6000}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000040)={0x53}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2018/05/04 05:58:35 executing program 6: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x8, 0x1) futimesat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={{0x0, 0x7530}}) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, &(0x7f00000000c0)={'filter\x00', 0x4}, 0x68) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@mcast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@remote}}, &(0x7f0000000240)=0xe8) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000280)={{{@in=@dev={0xac, 0x14, 0x14, 0xf}, @in, 0x4e23, 0x0, 0x4e20, 0x1, 0xa, 0xa0, 0x20, 0x3c, r1, r2}, {0x5944, 0x101, 0x5, 0x0, 0xff, 0x10001, 0x4, 0x2}, {0xfffffffffffffff7, 0x5, 0x3ff, 0x8}, 0xffffffff, 0x6e6bbf, 0x2, 0x1, 0x2, 0x3}, {{@in=@loopback=0x7f000001, 0x4d4}, 0xa, @in=@multicast1=0xe0000001, 0x3500, 0x4, 0x1, 0x653, 0x1000, 0x101, 0x7}}, 0xe8) quotactl(0x7, &(0x7f0000000380)='./file0\x00', r2, &(0x7f00000003c0)="68bbbe97696049c64062e037cd88de327f28b4cd510c6ba16190d49e16454ec7f1b8a99d100f8159de7d2edcacafa2e69f138fbd97c2de53b2449f9dc1c197db96fa4c1a0113aeb48f0350a26f28f940c2d4e419c9169c0bd6e57c98d3478220d49ed78b0bdf20d3877df78f30fd25e86f5871216a81f9b74b7e9273cc6e7ac3ea8fafd81c6b370fcdb2da5b803f956b3167e7640606000e875d33b6d4f08bd062ac7a98616b464f2829e6ee6da100922f019ffe6d66063ef964ca5d210eb4d7a6f7e61b462448b26a402d25342db153e59c8a52347a173324aa7442c1f3bc5dfd462e7b67fed2861296268371e07618d56bc0adee") ioctl$sock_ipx_SIOCIPXCFGDATA(r0, 0x89e2, &(0x7f00000004c0)) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000540)='/dev/autofs\x00', 0x800, 0x0) utime(&(0x7f0000000580)='./file1\x00', &(0x7f00000005c0)={0x3f}) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000600)=0x800, 0x4) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000640)={0x0, @in6={{0xa, 0x4e21, 0x663, @empty, 0xffffffffffffff01}}, 0x6, 0x6, 0x1000, 0x0, 0x643}, &(0x7f0000000700)=0x98) getsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000740)={r5, 0x4, 0xa2, 0x7d71}, &(0x7f0000000780)=0x10) r7 = socket$inet6_sctp(0xa, 0x1, 0x84) r8 = accept$inet(r0, &(0x7f00000007c0)={0x0, 0x0, @local}, &(0x7f0000000800)=0x10) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001840)={r4, &(0x7f0000000840)="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"}, 0x10) futimesat(r0, &(0x7f0000001880)='./file0\x00', &(0x7f00000018c0)={{}, {0x0, 0x2710}}) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000001900), &(0x7f0000001940)=0x4) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000019c0)={'vcan0\x00', &(0x7f0000001980)=@ethtool_ringparam={0x10, 0x8f8a, 0x1000, 0x401, 0x5, 0x101, 0x1, 0x7c, 0x9}}) ioctl$DRM_IOCTL_GET_MAP(r3, 0xc0286404, &(0x7f0000001a00)={&(0x7f0000ffd000/0x3000)=nil, 0x251, 0x0, 0x1c, &(0x7f0000ffe000/0x2000)=nil, 0x8}) ioctl$EVIOCGBITSND(r0, 0x80404532, &(0x7f0000001a40)=""/218) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001b40)={{{@in6=@mcast1, @in6=@mcast2}}, {{@in=@local}, 0x0, @in=@loopback}}, &(0x7f0000001c40)=0xe8) setsockopt$inet_dccp_int(r0, 0x21, 0x10, &(0x7f0000001c80)=0x2, 0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000001cc0)={0x80000000, 0x3, 0x1f, 0x5, r6}, &(0x7f0000001d00)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r8, 0x84, 0x72, &(0x7f0000001d40)={r9, 0x0, 0x30}, 0xc) syz_mount_image$ocfs2(&(0x7f0000001d80)='ocfs2\x00', &(0x7f0000001dc0)='./file0\x00', 0x0, 0x8, &(0x7f0000002180)=[{&(0x7f0000001e00)="360df793cd2aa0a72cd825c6c19f88a1d2805f4ffebd657147770237aac8285bca4cf77cf95f230c53de9cbf6b84da4fa8", 0x31}, {&(0x7f0000001e40)="cf1f6bc514d6e94e94c32426ba2f1fc9dfc8e3f60d0c466d75809d9773c0f4b3e8", 0x21, 0x3}, {&(0x7f0000001e80)="e9973e357f96a88969ecaaef5eb4f4b3002fd0cb8bbdaf26a3380fd4189c9d0b5a33b9f1d05240a726df949a5cd2baa1a28197ea03621cb2c018db43b5b77fff6f0f77305ebc1d3ddfdcfdddc733233c3462e520d4b84f4e93653ca86158d5df565c5cde4602803cfa1b58562f60535c67bb4327fee4aec5fadc3cefaf57a9256a779f", 0x83}, {&(0x7f0000001f40)="284515a42805a600459841b801dff85cdee65dc7a70fa76587b3e14080be5e0bcad67af4474c4ef224a7c236906123dd31723900b635991614d2388794c30b22a14229169869d37817a8f53d783176f879b1be7d440c69425c731bb860fb7a4ffba39c7276276d731bc72c9044b00c45a80094bb66f49e2d1a1f18", 0x7b, 0x5d1}, {&(0x7f0000001fc0)="68eefb5c88d8343887c08f0985", 0xd, 0xe6}, {&(0x7f0000002000)="4e3c323b691802bbd00fc7d3e478523cf1e6e1de6c71919631a0fce6cf4d3ec891e4c39b573d901787ea850b3c1dceb9c8fc786c451d2fee57aab985", 0x3c, 0x101}, {&(0x7f0000002040)="bf38030a351ba14a4d152a696e84ce35b0c0b84f28610e94e5a8c9df9b1bb23fa8adc3f99e2c825582be48233b0a4f4d16a44bdafdefd6ccfe15986301e96ec837a40c5b0f89615c07bdcbee7dad1e3d02e355ec1170b2245a48fd2f4d89eadc64ac16cfc8e8d5b9dbd98d84969230d8da0817afb1dabde9a82a080f924071aa3c3ff53d1f25bfbd63aface757d23154f5c6715f837424f52e9ea929bfc05e6e50b47181255a7c057d40009b7f689d4e00f4b6dc28fa2cd5904ac5a880542e98aacde3e821b201358bd83c2e138e39365d39376d81e5e6b021793b7663ab1600a74c3a748d3ead42", 0xe8, 0x7}, {&(0x7f0000002140)="a4b84f3f63", 0x5, 0x7fff}], 0x6000, &(0x7f0000002240)='&\x00') ioctl$DRM_IOCTL_GEM_FLINK(r7, 0xc008640a, &(0x7f0000002280)={0x0, 0x0}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f00000022c0)={0x0, 0x80000, r0}) ioctl$DRM_IOCTL_GEM_OPEN(r3, 0xc010640b, &(0x7f0000002300)={r10, r11}) ioctl$sock_inet_SIOCGIFBRDADDR(r8, 0x8919, &(0x7f0000002340)={'nr0\x00', {0x2, 0x4e24}}) 2018/05/04 05:58:35 executing program 2 (fault-call:8 fault-nth:1): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:35 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") [ 396.066368] FAULT_INJECTION: forcing a failure. [ 396.066368] name failslab, interval 1, probability 0, space 0, times 0 [ 396.077713] CPU: 1 PID: 26407 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 396.084992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.094352] Call Trace: [ 396.096954] dump_stack+0x1b9/0x294 [ 396.100573] ? dump_stack_print_info.cold.2+0x52/0x52 [ 396.105753] ? update_load_avg+0x2d9/0x2570 [ 396.110062] ? __update_load_avg_se.isra.34+0x61e/0x980 [ 396.115421] should_fail.cold.4+0xa/0x1a [ 396.119469] ? attach_entity_load_avg+0x850/0x850 [ 396.124300] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 396.129392] ? __lock_acquire+0x7f5/0x5140 [ 396.133618] ? update_load_avg+0x2d9/0x2570 [ 396.137932] ? alloc_set_pte+0x1013/0x1600 [ 396.142169] ? debug_check_no_locks_freed+0x310/0x310 [ 396.147348] ? print_usage_bug+0xc0/0xc0 [ 396.151395] ? graph_lock+0x170/0x170 [ 396.155182] ? reacquire_held_locks+0xbc/0x3e0 [ 396.159752] ? zap_class+0x720/0x720 [ 396.163477] ? check_same_owner+0x320/0x320 [ 396.167789] ? perf_trace_lock+0xd6/0x900 [ 396.171932] ? rcu_note_context_switch+0x710/0x710 [ 396.176846] ? print_usage_bug+0xc0/0xc0 [ 396.180899] __should_failslab+0x124/0x180 [ 396.185129] should_failslab+0x9/0x14 [ 396.188935] kmem_cache_alloc+0x2af/0x760 [ 396.193086] ? graph_lock+0x170/0x170 [ 396.196876] ? debug_check_no_locks_freed+0x310/0x310 [ 396.202055] ? print_usage_bug+0xc0/0xc0 [ 396.206111] ext4_alloc_inode+0xc1/0x860 [ 396.210163] ? ratelimit_state_init+0xb0/0xb0 [ 396.214651] ? find_held_lock+0x36/0x1c0 [ 396.218709] ? lock_downgrade+0x8e0/0x8e0 [ 396.222851] ? kasan_check_read+0x11/0x20 [ 396.226985] ? do_raw_spin_unlock+0x9e/0x2e0 [ 396.231386] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 396.235960] ? kasan_check_write+0x14/0x20 [ 396.240184] ? ratelimit_state_init+0xb0/0xb0 [ 396.244668] alloc_inode+0x63/0x190 [ 396.248283] iget_locked+0x1f0/0x560 [ 396.251984] ? perf_trace_lock+0xd6/0x900 [ 396.256122] ? iget5_locked+0x570/0x570 [ 396.260085] ? zap_class+0x720/0x720 [ 396.263795] ext4_iget+0x13f/0x3dd0 [ 396.267409] ? lock_downgrade+0x8e0/0x8e0 [ 396.271543] ? graph_lock+0x170/0x170 [ 396.275381] ? ext4_get_projid+0x190/0x190 [ 396.279605] ? debug_check_no_locks_freed+0x310/0x310 [ 396.284788] ? find_held_lock+0x36/0x1c0 [ 396.288883] ? lock_downgrade+0x8e0/0x8e0 [ 396.293029] ? __save_stack_trace+0x7e/0xd0 [ 396.297386] ? rcu_is_watching+0x85/0x140 [ 396.301524] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 396.306711] ext4_iget_normal+0xa2/0xe0 [ 396.310673] ext4_nfs_get_inode+0x126/0x1f0 [ 396.314983] ? ext4_journal_commit_callback+0x5c0/0x5c0 [ 396.320339] generic_fh_to_dentry+0xe5/0x110 [ 396.324750] ext4_fh_to_dentry+0x34/0x40 [ 396.328812] ? ext4_fh_to_parent+0x40/0x40 [ 396.333056] exportfs_decode_fh+0x12a/0x6d0 [ 396.337376] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 396.342994] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 396.348353] ? __fget_light+0x2ef/0x430 [ 396.352320] ? fget_raw+0x20/0x20 [ 396.355765] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 396.360771] ? __check_object_size+0x95/0x5d9 [ 396.365262] ? __might_sleep+0x95/0x190 [ 396.369236] do_handle_open+0x3f8/0x950 [ 396.373211] ? vfs_dentry_acceptable+0x10/0x10 [ 396.377781] ? ksys_write+0x1a6/0x250 [ 396.381570] ? __ia32_sys_read+0xb0/0xb0 [ 396.385628] __x64_sys_open_by_handle_at+0x76/0xb0 [ 396.390557] do_syscall_64+0x1b1/0x800 [ 396.394431] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 396.399261] ? syscall_return_slowpath+0x5c0/0x5c0 [ 396.404181] ? syscall_return_slowpath+0x30f/0x5c0 [ 396.409102] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 396.414466] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.419302] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 396.424479] RIP: 0033:0x455979 [ 396.427655] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 396.435354] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 396.442609] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 396.449865] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 396.457131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 2018/05/04 05:58:36 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 396.464386] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000001 2018/05/04 05:58:36 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 6: open(&(0x7f0000000040)='./file0\x00', 0x3ff, 0x0) syz_mount_image$vfat(&(0x7f0000000600)='vfat\x00', &(0x7f0000000740)='./file0\x00', 0x0, 0x0, &(0x7f0000000640), 0x1800, &(0x7f00000003c0)=ANY=[]) r0 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x2, 0x0) syz_mount_image$jfs(&(0x7f0000000000)='jfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000780), 0x0, 0x1000000000000007}], 0x0, &(0x7f0000000280)=ANY=[]) fallocate(r0, 0x0, 0x8, 0x8000) syz_mount_image$jfs(&(0x7f0000000100)='jfs\x00', &(0x7f0000000140)='./file0\x00', 0x7, 0x5, &(0x7f00000004c0)=[{&(0x7f0000000780)="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", 0x1000, 0x4}, {&(0x7f00000001c0)="ab0de01fa39ecdc5fc954ed898ea47cb7c67388e663d2996385118b48af994091826a0577384c604f7ddcba4e2bdd5c45b958987262abf402ffb0fe485d1740d965835a58b20b86770a42a92a0d1636ae8356e2b573dee47bcffbe283b59494f79f95e5419e585c14c739dee9641622c3f1faa73b8a502a91ce60e9f0b37a42308c26a6c59611bb4bd43a83942add3a17c1bebd295b9d0339f1f4ea9777d67d4e926e679e94880691a63ebdac923f81da7bdfcd5081f465a4374dfbc9bd92637197ff3970d30d65eab35fc51948ff5a6790bb0e084d5ed066451c80fa886bee440028ee46de8d1a11ba8af0a", 0xec, 0x2}, {&(0x7f00000002c0)="f79fc75a57e44cbb26ca7ad8a637d09dc25ac7f5d3ebf270f5ce4491cf10daf316a40fb6a42a99d0fc98e7743948939c39119cbfdf8f3235104e97d867790b509abf37d7e7012b729b93145b504fb8b95cbb6298f5b103d773aba78c5d392eaed70140c73f76a3f73919fb", 0x6b, 0x9}, {&(0x7f0000000340)="e87579efe6c363bb98f1481097408b5b4ead454309f105176220ba74d4c2417a36527063655eee0a588411836f5e2c47a823dd2eb5987079781435c43c6742be98b2db3b8b44866a22f20468cf585546dd49617594768f7737475c49aaf0df748f3db7a50d54b4f2104f45733d172b0283e9d69ed9cddddbb86ad2bdee6ce576b0e01c9f27a39209ba9ff44b7feb79a184a39719933420797e1305dad047095efe49c7b18cd64407796eb08d26bb2a5bdeaeb499bc23bbe2053f6402dcf0c96b442a01daa773251b043fa3f28e9b7e45bc4b010b47d80332e845c9fc4b954fa4ee4ed70dd83e", 0xe6}, {&(0x7f0000000440)="3a094d81f9ab223419439cf9ce2c387809470ece7b9f0d8d3c0cf1cfd1044208c0994e5f4c269e102838dc184592855128bde0e3ced2734a3be7bca9f91ff57ed0694bc8a16111b092606ed28f2af81e", 0x50, 0x80000001}], 0x2000000, &(0x7f0000000540)={[{@umask={'umask', 0x3d, [0x0, 0x7f, 0x2d, 0x0, 0x0, 0x0]}, 0x2c}, {@errors_continue='errors=continue', 0x2c}, {@umask={'umask', 0x3d}, 0x2c}, {@uid={'uid', 0x3d, [0x36, 0x37, 0x0, 0x2d, 0x33]}, 0x2c}, {@discard='discard', 0x2c}]}) 2018/05/04 05:58:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0x23, 0xb, &(0x7f0000000200)="7b611a50fde1c50fa6ca94727277061c064af1a125393178134cef7cb1577ac08cd4e9", &(0x7f0000000240)=""/11, 0x12000}, 0x28) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="c4c3cd6958446366ba610066b80d0066eff6fd660f6439b9800000c00f3235010000000f300f01df66ba400066b83e9666efc4c14d6a4da0b8ca0900000f23d00f21f835100000080f23f866ba4000ed", 0x50}], 0x1, 0x6, &(0x7f0000000140)=[@flags={0x3, 0x20410}, @cr4={0x1}], 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f0000000480)={'NETMAP\x00'}, &(0x7f00000004c0)=0x1e) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000740)={{{@in=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@loopback}}, &(0x7f0000000500)=0xe8) connect$packet(r2, &(0x7f0000000540)={0x11, 0xf7, r5, 0x1, 0x0, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) 2018/05/04 05:58:36 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c93") [ 396.712556] *** Guest State *** [ 396.716068] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 396.724981] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 396.733862] CR3 = 0x0000000000000000 [ 396.737649] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 396.743658] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 396.749678] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 396.756403] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 396.764455] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 396.772487] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 396.780520] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 396.788540] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 396.796633] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 396.804650] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 396.812682] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 396.820692] IDTR: limit=0x00000000, base=0x0000000000000000 [ 396.828714] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 396.836709] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 396.843139] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 396.850608] Interruptibility = 00000008 ActivityState = 00000000 [ 396.856861] *** Host State *** [ 396.860088] RIP = 0xffffffff811f7279 RSP = 0xffff8801814b7390 [ 396.866101] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 396.872529] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 396.880348] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 396.886258] CR0=0000000080050033 CR3=00000001cc2ee000 CR4=00000000001426f0 [ 396.893296] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 396.899984] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 396.906076] *** Control State *** [ 396.909544] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 396.916229] EntryControls=0000d1ff ExitControls=0023efff [ 396.921698] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 396.928639] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 396.935314] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 396.941909] reason=80000021 qualification=0000000000000000 [ 396.948243] IDTVectoring: info=00000000 errcode=00000000 [ 396.953712] TSC Offset = 0xffffff282093fd9d [ 396.958052] EPT pointer = 0x00000001b16f701e [ 397.004276] *** Guest State *** [ 397.007685] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 397.016676] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 397.025563] CR3 = 0x0000000000000000 [ 397.029353] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 397.035381] RFLAGS=0x00000402 DR7 = 0x0000000000000400 [ 397.041433] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 397.048159] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 397.056237] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 397.064323] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 397.072349] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 397.080355] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 397.088361] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 397.096379] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 397.104397] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 397.112407] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 397.120412] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 397.128407] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 397.134878] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 397.142349] Interruptibility = 00000008 ActivityState = 00000000 [ 397.148618] *** Host State *** [ 397.151833] RIP = 0xffffffff811f7279 RSP = 0xffff8801a97d7390 [ 397.157841] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 397.164272] FSBase=00007f2148a60700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 397.172118] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 397.178059] CR0=0000000080050033 CR3=00000001cc2ee000 CR4=00000000001426e0 [ 397.185128] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 397.191854] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 397.197952] *** Control State *** 2018/05/04 05:58:36 executing program 6: r0 = syz_open_dev$evdev(&(0x7f0000057fee)='/dev/input/event#\x00', 0xafd, 0x8000040000002) r1 = accept$inet(0xffffffffffffff9c, &(0x7f0000000000)={0x0, 0x0, @local}, &(0x7f0000000040)=0x10) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @broadcast=0xffffffff}, {0x2, 0x4e22, @loopback=0x7f000001}, {0x2, 0x4e23, @multicast2=0xe0000002}, 0x8fbdf14493fc338a, 0x7, 0x7, 0x7, 0x2, &(0x7f0000000080)='rose0\x00', 0x9, 0x800, 0x8}) write$evdev(r0, &(0x7f000023cfd0)=[{{}, 0x200002, 0x8, 0x403}, {}], 0x30) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000180)={0x0, 0x401}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r2, 0x84, 0x78, &(0x7f0000000200)=r3, 0x4) 2018/05/04 05:58:36 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x0, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:36 executing program 2 (fault-call:8 fault-nth:2): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x1a000) memfd_create(&(0x7f0000000080)='/dev/kvm\x00', 0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:36 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:36 executing program 7: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x100, 0x0) fchmodat(r0, &(0x7f0000000040)='./file0\x00', 0x8) r1 = socket(0xa, 0x100000001, 0x0) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000001c0)={@empty, @mcast2={0xff, 0x2, [], 0x1}, @remote={0xfe, 0x80, [], 0xbb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803ffdfb}) [ 397.201419] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 397.208104] EntryControls=0000d1ff ExitControls=0023efff [ 397.213574] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 397.220524] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 397.227205] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 397.233801] reason=80000021 qualification=0000000000000000 [ 397.240141] IDTVectoring: info=00000000 errcode=00000000 [ 397.245609] TSC Offset = 0xffffff282093fd9d [ 397.249948] EPT pointer = 0x00000001b16f701e [ 397.362910] FAULT_INJECTION: forcing a failure. [ 397.362910] name failslab, interval 1, probability 0, space 0, times 0 [ 397.374193] CPU: 1 PID: 26479 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 397.381470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 397.390829] Call Trace: [ 397.393433] dump_stack+0x1b9/0x294 [ 397.397076] ? dump_stack_print_info.cold.2+0x52/0x52 [ 397.402282] should_fail.cold.4+0xa/0x1a [ 397.406375] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 397.411474] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 397.416486] ? find_held_lock+0x36/0x1c0 [ 397.420561] ? check_same_owner+0x320/0x320 [ 397.424875] ? unlock_new_inode+0xf7/0x130 [ 397.429100] ? rcu_note_context_switch+0x710/0x710 [ 397.434026] __should_failslab+0x124/0x180 [ 397.438254] should_failslab+0x9/0x14 [ 397.442044] kmem_cache_alloc+0x2af/0x760 [ 397.446182] __d_alloc+0xc0/0xd30 [ 397.449621] ? find_held_lock+0x36/0x1c0 [ 397.453668] ? shrink_dcache_for_umount+0x290/0x290 [ 397.458670] ? kasan_check_read+0x11/0x20 [ 397.462806] ? do_raw_spin_unlock+0x9e/0x2e0 [ 397.467200] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 397.471771] ? kasan_check_write+0x14/0x20 [ 397.476014] ? do_raw_spin_lock+0xc1/0x200 [ 397.480246] ? _raw_spin_unlock+0x22/0x30 [ 397.484382] ? d_find_any_alias+0x137/0x1b0 [ 397.488688] ? path_check_mount+0x220/0x220 [ 397.493004] __d_obtain_alias.part.40+0x6b/0xb0 [ 397.497667] ? ext4_journal_commit_callback+0x5c0/0x5c0 [ 397.503019] d_obtain_alias+0x5a/0x70 [ 397.506831] generic_fh_to_dentry+0x64/0x110 [ 397.511229] ext4_fh_to_dentry+0x34/0x40 [ 397.515277] ? ext4_fh_to_parent+0x40/0x40 [ 397.519503] exportfs_decode_fh+0x12a/0x6d0 [ 397.523815] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 397.529428] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 397.534779] ? __fget_light+0x2ef/0x430 [ 397.538748] ? fget_raw+0x20/0x20 [ 397.542191] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 397.547192] ? __check_object_size+0x95/0x5d9 [ 397.551677] ? __might_sleep+0x95/0x190 [ 397.555647] do_handle_open+0x3f8/0x950 [ 397.559610] ? vfs_dentry_acceptable+0x10/0x10 [ 397.564172] ? ksys_write+0x1a6/0x250 [ 397.567961] ? __ia32_sys_read+0xb0/0xb0 [ 397.572020] __x64_sys_open_by_handle_at+0x76/0xb0 [ 397.576941] do_syscall_64+0x1b1/0x800 [ 397.580815] ? syscall_return_slowpath+0x5c0/0x5c0 [ 397.585735] ? syscall_return_slowpath+0x30f/0x5c0 [ 397.590653] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 397.596012] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 397.600848] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 397.606024] RIP: 0033:0x455979 2018/05/04 05:58:37 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:37 executing program 6: r0 = syz_open_dev$sg(&(0x7f00003e5ff7)='/dev/sg#\x00', 0x0, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x1, 0x0) ioctl(r0, 0x2270, &(0x7f0000039ffe)) syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x3, 0x101000) 2018/05/04 05:58:37 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c03") 2018/05/04 05:58:37 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 397.609197] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 397.616890] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 397.624154] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 397.631406] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 397.638660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 397.645913] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000002 2018/05/04 05:58:37 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x0, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:37 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:37 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:37 executing program 6: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000440)={@host=0x2}) unshare(0x8000000) shmget(0xffffffffffffffff, 0x3000, 0x1025, &(0x7f000029a000/0x3000)=nil) shmget$private(0x0, 0x3000, 0x0, &(0x7f0000969000/0x3000)=nil) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000380)={0x200, 0x2, 0x0, 0x100000000}, 0x10) ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000040)=ANY=[@ANYBLOB="0000000000400000000000000000000003000000ffffffff0500000000000000070000000000000000000000000040000000008000000000000000000000000000000000000000000008000000000000000000000000000000040000000000000000000000000000000000000000000000020000000000000000000000000000090000000000000043c7000000000000090000000000000000000000000000000000000000000000011000000000000000000000000000008468ab4800000000020000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000070000000000000001010000000000008100000000000000000000000000000000000000000000008009000000000000000000000000000000000000000000000000000000000000"]) unshare(0xc000000) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x1ff) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x0, 0x4) ioctl$KVM_SET_FPU(r0, 0x41a0ae8d, &(0x7f00000001c0)={[], 0x480, 0x5, 0x37, 0x0, 0x4, 0x11f001, 0xd000, [], 0x4}) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000000), &(0x7f00000004c0)=0x4) pipe(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_GET_MAP(r3, 0xc0286404, &(0x7f00000003c0)={&(0x7f000029b000/0x2000)=nil, 0x2, 0x7, 0x28, &(0x7f0000298000/0x4000)=nil}) [ 397.920829] *** Guest State *** [ 397.924194] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 397.933091] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 397.941966] CR3 = 0x0000000000000000 [ 397.945726] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 397.951762] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 397.957799] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 397.964499] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 397.972602] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 397.980650] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 397.988657] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 397.996680] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.004679] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.012681] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 398.020717] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 398.028725] IDTR: limit=0x00000000, base=0x0000000000000000 [ 398.036733] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.044740] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 398.051193] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 398.058674] Interruptibility = 00000008 ActivityState = 00000000 [ 398.064935] *** Host State *** [ 398.068154] RIP = 0xffffffff811f7279 RSP = 0xffff88019181f390 [ 398.074149] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 398.080578] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 398.088394] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 398.094313] CR0=0000000080050033 CR3=00000001c27af000 CR4=00000000001426e0 [ 398.101351] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 398.108079] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 398.114147] *** Control State *** [ 398.117619] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 398.124295] EntryControls=0000d1ff ExitControls=0023efff [ 398.129781] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 398.136782] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 398.143497] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 398.150097] reason=80000021 qualification=0000000000000000 [ 398.156438] IDTVectoring: info=00000000 errcode=00000000 [ 398.161904] TSC Offset = 0xffffff2792fcec1c [ 398.166247] EPT pointer = 0x00000001c5a3501e [ 398.174749] *** Guest State *** [ 398.178101] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 398.187116] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 398.194706] *** Guest State *** [ 398.195981] CR3 = 0x0000000000000000 [ 398.195992] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 398.196011] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 398.199310] CR0: actual=0x0000000080000020, shadow=0x0000000080000000, gh_mask=fffffffffffffff7 [ 398.203048] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 398.209050] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 398.215056] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 398.223917] CR3 = 0x0000000000000000 [ 398.230589] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.239427] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 398.247402] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.251139] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 398.259091] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.259106] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.265079] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 398.273050] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.279035] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.279053] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.287038] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 398.287053] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 398.295064] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.301696] IDTR: limit=0x00000000, base=0x0000000000000000 [ 398.301711] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.311278] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.317657] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 398.325632] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.333607] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 398.341601] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.349551] Interruptibility = 00000008 ActivityState = 00000000 [ 398.349559] *** Host State *** [ 398.357525] GDTR: limit=0x00000000, base=0x0000000000000000 [ 398.365501] RIP = 0xffffffff811f7279 RSP = 0xffff8801b2cdf390 [ 398.365520] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 398.373483] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.379882] FSBase=00007f2148a3f700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 398.379893] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 398.387858] IDTR: limit=0x00000000, base=0x0000000000000000 [ 398.395297] CR0=0000000080050033 CR3=00000001c27af000 CR4=00000000001426e0 [ 398.395309] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 398.395319] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 398.395322] *** Control State *** [ 398.395330] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 398.395336] EntryControls=0000d1ff ExitControls=0023efff [ 398.395346] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 398.395355] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 398.395364] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 398.395372] reason=80000021 qualification=0000000000000000 [ 398.395379] IDTVectoring: info=00000000 errcode=00000000 [ 398.395384] TSC Offset = 0xffffff2792fcec1c [ 398.395391] EPT pointer = 0x00000001c5a3501e [ 398.538915] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.546923] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 398.553347] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 398.560830] Interruptibility = 00000008 ActivityState = 00000000 [ 398.567080] *** Host State *** [ 398.570306] RIP = 0xffffffff811f7279 RSP = 0xffff88018e1f7390 [ 398.576301] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 398.582725] FSBase=00007f2148a60700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 398.590539] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 398.596456] CR0=0000000080050033 CR3=00000001c27af000 CR4=00000000001426f0 [ 398.603514] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 398.610470] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 398.616552] *** Control State *** [ 398.620044] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 2018/05/04 05:58:38 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cff") 2018/05/04 05:58:38 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:38 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:38 executing program 7: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000021ff0)={0x2, &(0x7f0000016000)=[{0x28, 0x0, 0x0, 0xfffffffffffff010}, {0x6}]}, 0x10) sendto$inet6(r1, &(0x7f0000000000), 0x0, 0x10000, &(0x7f0000000140)={0xa, 0x0, 0x3c}, 0xff) 2018/05/04 05:58:38 executing program 2 (fault-call:8 fault-nth:3): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:38 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6c8c") 2018/05/04 05:58:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:38 executing program 6: seccomp(0x1, 0x0, &(0x7f0000028ff0)={0x1, &(0x7f00000b3000)=[{0x6, 0x0, 0x0, 0x407ffffffd}]}) clone(0x4, &(0x7f0000000200)="197a1c88324dc79f9512990853e89593ddfe568eaab67e57bde390c586e65b479ba0ed8bd2946d240558a506d814c71f779ec8ee7d4bca44d1a59d97a5bfafffbbd80fcb63c7a8472bbb3912bb23cb97ee2a532a79da7bc8f06ae7a53d94c4b1142e85a0d6218bebaf3c", &(0x7f0000000180), &(0x7f0000000080), &(0x7f00000001c0)) [ 398.626733] EntryControls=0000d1ff ExitControls=0023efff [ 398.632200] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 398.639144] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 398.645836] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 398.652451] reason=80000021 qualification=0000000000000000 [ 398.658785] IDTVectoring: info=00000000 errcode=00000000 [ 398.664250] TSC Offset = 0xffffff2758650a3f [ 398.668589] EPT pointer = 0x00000001bfc7b01e [ 398.792589] FAULT_INJECTION: forcing a failure. [ 398.792589] name failslab, interval 1, probability 0, space 0, times 0 [ 398.797453] *** Guest State *** [ 398.804428] CPU: 0 PID: 26541 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 398.807638] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 398.814870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.814876] Call Trace: [ 398.814901] dump_stack+0x1b9/0x294 [ 398.814929] ? dump_stack_print_info.cold.2+0x52/0x52 [ 398.823793] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 398.833097] ? rcu_is_watching+0x85/0x140 [ 398.833114] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 398.833137] should_fail.cold.4+0xa/0x1a [ 398.835712] CR3 = 0x0000000000000000 [ 398.839311] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 398.839334] ? mark_page_accessed+0x66a/0xd10 [ 398.844506] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 398.853314] ? activate_page+0x980/0x980 [ 398.853335] ? graph_lock+0x170/0x170 [ 398.857474] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 398.862629] ? filemap_map_pages+0x1870/0x1870 [ 398.862652] ? __lock_acquire+0x7f5/0x5140 [ 398.866706] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 398.870384] ? __lock_acquire+0x7f5/0x5140 [ 398.870403] ? __lock_is_held+0xb5/0x140 [ 398.875497] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 398.879966] ? check_same_owner+0x320/0x320 [ 398.879986] ? rcu_note_context_switch+0x710/0x710 [ 398.885950] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.889975] __should_failslab+0x124/0x180 [ 398.889995] should_failslab+0x9/0x14 [ 398.893791] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.899721] __kmalloc+0x2c8/0x760 [ 398.899747] ? ext4_find_extent+0x6f3/0x960 [ 398.904322] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.908521] ext4_find_extent+0x6f3/0x960 [ 398.908559] ext4_ext_map_blocks+0x28a/0x6270 [ 398.915205] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.919401] ? check_noncircular+0x20/0x20 [ 398.919413] ? debug_check_no_locks_freed+0x310/0x310 [ 398.919431] ? graph_lock+0x170/0x170 [ 398.923486] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 398.931419] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 398.931436] ? find_held_lock+0x36/0x1c0 [ 398.935752] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 398.940651] ? find_held_lock+0x36/0x1c0 [ 398.940666] ? graph_lock+0x170/0x170 [ 398.948630] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 398.952821] ? graph_lock+0x170/0x170 [ 398.952837] ? lock_downgrade+0x8e0/0x8e0 [ 398.952862] ? lock_acquire+0x1dc/0x520 [ 398.956645] IDTR: limit=0x00000000, base=0x0000000000000000 [ 398.964693] ? ext4_map_blocks+0x466/0x1b40 [ 398.964710] ? lock_release+0xa10/0xa10 [ 398.964729] ? check_same_owner+0x320/0x320 [ 398.968262] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 398.972561] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 398.972574] ? ext4_es_lookup_extent+0x45d/0xdd0 [ 398.972593] ? rcu_note_context_switch+0x710/0x710 [ 398.980546] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 398.984663] ? __might_sleep+0x95/0x190 [ 398.984685] ? down_read+0xaf/0x1b0 [ 398.989166] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 398.997097] ? ext4_map_blocks+0x466/0x1b40 [ 398.997113] ? __down_interruptible+0x6e0/0x6e0 [ 398.997131] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 399.001352] Interruptibility = 00000000 ActivityState = 00000000 [ 399.006511] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 399.006521] ? find_held_lock+0x36/0x1c0 [ 399.006539] ? print_usage_bug+0xc0/0xc0 [ 399.010322] *** Host State *** [ 399.018266] ext4_map_blocks+0xe17/0x1b40 [ 399.018278] ? debug_check_no_locks_freed+0x310/0x310 [ 399.018293] ? print_usage_bug+0xc0/0xc0 [ 399.023305] RIP = 0xffffffff811f7279 RSP = 0xffff880183c3f390 [ 399.027336] ? ext4_issue_zeroout+0x190/0x190 [ 399.027354] ? __lock_acquire+0x7f5/0x5140 [ 399.035325] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 399.039347] ext4_getblk+0x4d5/0x600 [ 399.039366] ? ext4_iomap_begin+0x1330/0x1330 [ 399.043155] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 399.051092] ? memset+0x31/0x40 [ 399.051111] ext4_bread_batch+0x7f/0x450 [ 399.054900] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 399.059020] ext4_find_entry+0xd2a/0x1b50 [ 399.059049] ? ext4_search_dir+0x6b0/0x6b0 [ 399.063007] CR0=0000000080050033 CR3=00000001afbf8000 CR4=00000000001426e0 [ 399.070934] ? zap_class+0x720/0x720 [ 399.070956] ? kasan_check_read+0x11/0x20 [ 399.075269] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 399.079224] ? do_raw_spin_unlock+0x9e/0x2e0 [ 399.079245] ? kasan_check_write+0x14/0x20 [ 399.083557] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 399.091486] ? do_raw_spin_lock+0xc1/0x200 [ 399.091504] ? _raw_spin_unlock+0x22/0x30 [ 399.091530] ? lock_release+0xa10/0xa10 [ 399.097042] *** Control State *** [ 399.101768] ? check_same_owner+0x320/0x320 [ 399.101781] ? lock_downgrade+0x8e0/0x8e0 [ 399.101799] ? rcu_note_context_switch+0x710/0x710 [ 399.106722] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 399.113103] ext4_get_parent+0x9a/0x3e0 [ 399.113122] ? ext4_lookup+0x730/0x730 [ 399.117086] EntryControls=0000d1ff ExitControls=0023efff [ 399.120681] ? down_read+0x1b0/0x1b0 [ 399.120707] reconnect_path+0x1c4/0x6f0 [ 399.128157] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 399.132448] ? ext4_lookup+0x730/0x730 [ 399.132470] exportfs_decode_fh+0x3cd/0x6d0 [ 399.137124] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 399.142280] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 399.142295] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 399.142314] ? __fget_light+0x2ef/0x430 [ 399.148535] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 399.153693] ? fget_raw+0x20/0x20 [ 399.153706] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 399.153723] ? __check_object_size+0x95/0x5d9 [ 399.157772] reason=80000021 qualification=0000000000000000 [ 399.161806] ? __might_sleep+0x95/0x190 [ 399.161832] do_handle_open+0x3f8/0x950 [ 399.165007] IDTVectoring: info=00000000 errcode=00000000 [ 399.169139] ? vfs_dentry_acceptable+0x10/0x10 [ 399.169162] ? ksys_write+0x1a6/0x250 [ 399.169178] ? __ia32_sys_read+0xb0/0xb0 [ 399.174357] TSC Offset = 0xffffff270338aefb [ 399.178389] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 399.178410] __x64_sys_open_by_handle_at+0x76/0xb0 [ 399.184367] EPT pointer = 0x00000001d329e01e [ 399.188831] do_syscall_64+0x1b1/0x800 [ 399.188843] ? finish_task_switch+0x1ca/0x810 [ 399.188861] ? syscall_return_slowpath+0x5c0/0x5c0 [ 399.453230] ? syscall_return_slowpath+0x30f/0x5c0 [ 399.458257] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 399.463622] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 399.468468] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 399.473645] RIP: 0033:0x455979 [ 399.476818] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 399.484513] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:38 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:38 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control&') 2018/05/04 05:58:38 executing program 6: r0 = socket$key(0xf, 0x3, 0x2) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x0, 0x0) ioctl$RNDADDTOENTCNT(r1, 0x40045201, &(0x7f0000000040)=0x7) sendmsg$key(r0, &(0x7f0000b6dfc8)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000100)=ANY=[@ANYBLOB="0203000011000000000000000000000005000600000000000a0000000000000000000000000000000000ffff0000000000000000000000000300070000000000020000000000000000000000000000000200010000000400000000000000000005000500000000000a00d31c00000000000900000000000000000000000000000001000000000000aaf3c750e8c7d2ffd1a733ab3fad5ee022ccd87749532378625e508b0cb940abd101f5d4b8d67d73ad32ae064bbeb0d747690621b50b7e42a7158b3733fb32939d9bde3a31e26c3eaaa262d8391c68a2dedf0cebab4c280dc95a38cd271ba20000000000000000000000"], 0x88}, 0x1}, 0x0) 2018/05/04 05:58:39 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./controld') [ 399.491769] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 399.499029] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 399.506283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 399.513536] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000003 2018/05/04 05:58:39 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control<') 2018/05/04 05:58:39 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:39 executing program 6: setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x88, 0x1, &(0x7f0000000000)=0x2, 0x4) [ 399.690972] *** Guest State *** [ 399.694463] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 399.703350] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 399.712303] CR3 = 0x0000000000000000 [ 399.716048] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 399.722055] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 399.728064] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 399.734768] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 399.742778] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 399.750787] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 399.758806] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 399.766826] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 399.774853] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 399.782929] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 399.790966] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 399.798979] IDTR: limit=0x00000000, base=0x0000000000000000 [ 399.807069] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 399.815075] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 399.821541] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 399.829039] Interruptibility = 00000000 ActivityState = 00000000 [ 399.835299] *** Host State *** [ 399.838504] RIP = 0xffffffff811f7279 RSP = 0xffff880185d57390 [ 399.844511] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 399.850937] FSBase=00007f21489fd700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 399.858752] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 399.864673] CR0=0000000080050033 CR3=00000001afbf8000 CR4=00000000001426e0 [ 399.871711] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 399.878392] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 399.884458] *** Control State *** 2018/05/04 05:58:39 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:39 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:39 executing program 6: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='attr/sockcreate\x00') exit(0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e24}, 0x10) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f00000000c0)={{0x3, 0x3, 0x100000000, 0x3, 0xff}, 0xffffffffffff0000, 0xfffffffffffff9d3, 'id0\x00', 'timer1\x00', 0x0, 0x1, 0x4, 0x1, 0x9}) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$netrom(r0, &(0x7f00000001c0)=@full={{0x3, {"810c2345a0be7b"}, 0x1}, [{"2dd88d0c86867c"}, {"f033499e3e31e3"}, {"dd0d9cbadb10cd"}, {"e3d3dfaedfc0d9"}, {"f6e74be4e681ec"}, {"6c5d507e5634c9"}, {"8e5440611e72b8"}, {"899093ae0d2618"}]}, 0x48) pread64(r0, &(0x7f0000000040)=""/1, 0x1, 0x0) 2018/05/04 05:58:39 executing program 2 (fault-call:8 fault-nth:4): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:39 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4200000000000000) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000000c0)={0x3, 0x0, [{0xa, 0x0, 0x0, 0x1}, {0x1}, {0x7}]}) 2018/05/04 05:58:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000040)={0xc199, 0x6, 0x6, 0x6}, 0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) ioctl$TIOCLINUX4(r2, 0x541c, &(0x7f0000000080)=0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_GET_LAPIC(r2, 0x8400ae8e, &(0x7f0000000740)={"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"}) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 399.887919] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 399.894599] EntryControls=0000d1ff ExitControls=0023efff [ 399.900071] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 399.907032] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 399.913705] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 399.920295] reason=80000021 qualification=0000000000000000 [ 399.926624] IDTVectoring: info=00000000 errcode=00000000 [ 399.932087] TSC Offset = 0xffffff270338aefb [ 399.936430] EPT pointer = 0x00000001d329e01e 2018/05/04 05:58:39 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 399.984266] *** Guest State *** [ 399.987636] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 399.996545] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 400.005420] CR3 = 0x0000000000000000 [ 400.009221] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 400.015246] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 400.021270] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 400.027979] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 400.036012] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.044073] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.050596] FAULT_INJECTION: forcing a failure. [ 400.050596] name failslab, interval 1, probability 0, space 0, times 0 [ 400.052097] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.052116] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.052132] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.052143] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 400.052160] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 400.052172] IDTR: limit=0x00000000, base=0x0000000000000000 [ 400.052190] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 400.052206] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 400.052217] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 400.052227] Interruptibility = 00000008 ActivityState = 00000000 [ 400.052231] *** Host State *** [ 400.052242] RIP = 0xffffffff811f7279 RSP = 0xffff8801af68f390 [ 400.052263] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 400.052274] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 400.063798] CPU: 0 PID: 26597 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 400.071780] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 400.079710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.079716] Call Trace: [ 400.079740] dump_stack+0x1b9/0x294 [ 400.079761] ? dump_stack_print_info.cold.2+0x52/0x52 [ 400.087728] CR0=0000000080050033 CR3=00000001c4cf0000 CR4=00000000001426e0 [ 400.095671] ? __lock_acquire+0x7f5/0x5140 [ 400.095690] ? do_raw_spin_unlock+0x9e/0x2e0 [ 400.103648] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 400.111666] should_fail.cold.4+0xa/0x1a [ 400.111685] ? do_raw_spin_lock+0xc1/0x200 [ 400.119639] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 2018/05/04 05:58:39 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 400.126194] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 400.126222] ? debug_check_no_locks_freed+0x310/0x310 [ 400.126240] ? debug_check_no_obj_freed+0x2ff/0x584 [ 400.133671] *** Control State *** [ 400.139883] ? __lock_is_held+0xb5/0x140 [ 400.139909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 400.143081] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 400.149028] ? ext4_ext_map_blocks+0xf9d/0x6270 [ 400.149057] __should_failslab+0x124/0x180 [ 400.155441] EntryControls=0000d1ff ExitControls=0023efff [ 400.163208] should_failslab+0x9/0x14 [ 400.163225] kmem_cache_alloc+0x47/0x760 [ 400.170521] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 400.176455] ? find_held_lock+0x36/0x1c0 [ 400.176469] ? __es_tree_search.isra.12+0x1ba/0x220 [ 400.176488] __es_insert_extent+0x2fd/0x1130 [ 400.185831] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 400.188383] ? ext4_es_insert_extent+0x20b/0x7c0 [ 400.188403] ? ext4_es_free_extent+0x800/0x800 [ 400.192029] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 400.197173] ? lock_release+0xa10/0xa10 [ 400.197193] ? __lock_is_held+0xb5/0x140 [ 400.204189] reason=80000021 qualification=0000000000000000 [ 400.208396] ? kasan_check_write+0x14/0x20 [ 400.208415] ? do_raw_write_lock+0xbd/0x1b0 [ 400.212809] IDTVectoring: info=00000000 errcode=00000000 [ 400.219446] ext4_es_insert_extent+0x2d9/0x7c0 [ 400.219467] ? ext4_es_find_delayed_extent_range+0xd70/0xd70 [ 400.223508] TSC Offset = 0xffffff265d29e322 [ 400.227716] ? down_read+0xaf/0x1b0 [ 400.227733] ? ext4_map_blocks+0x466/0x1b40 [ 400.233776] EPT pointer = 0x00000001cc47701e [ 400.238845] ? __down_interruptible+0x6e0/0x6e0 [ 400.238866] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 400.400616] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 400.405800] ? print_usage_bug+0xc0/0xc0 [ 400.409854] ext4_map_blocks+0x630/0x1b40 [ 400.414002] ? debug_check_no_locks_freed+0x310/0x310 [ 400.419184] ? print_usage_bug+0xc0/0xc0 [ 400.423240] ? ext4_issue_zeroout+0x190/0x190 [ 400.427733] ? __lock_acquire+0x7f5/0x5140 [ 400.431960] ext4_getblk+0x4d5/0x600 [ 400.435662] ? ext4_iomap_begin+0x1330/0x1330 [ 400.440148] ? memset+0x31/0x40 [ 400.443429] ext4_bread_batch+0x7f/0x450 [ 400.447483] ext4_find_entry+0xd2a/0x1b50 [ 400.451631] ? ext4_search_dir+0x6b0/0x6b0 [ 400.455858] ? lock_downgrade+0x8e0/0x8e0 [ 400.460111] ? kasan_check_read+0x11/0x20 [ 400.464262] ? do_raw_spin_unlock+0x9e/0x2e0 [ 400.468659] ? kasan_check_write+0x14/0x20 [ 400.472879] ? do_raw_spin_lock+0xc1/0x200 [ 400.477117] ? _raw_spin_unlock+0x22/0x30 [ 400.481263] ? lock_release+0xa10/0xa10 [ 400.485226] ? check_same_owner+0x320/0x320 [ 400.489533] ? lock_downgrade+0x8e0/0x8e0 [ 400.493667] ? rcu_note_context_switch+0x710/0x710 [ 400.498591] ext4_get_parent+0x9a/0x3e0 [ 400.502557] ? ext4_lookup+0x730/0x730 [ 400.506429] ? down_read+0x1b0/0x1b0 [ 400.510140] reconnect_path+0x1c4/0x6f0 [ 400.514101] ? ext4_lookup+0x730/0x730 [ 400.517981] exportfs_decode_fh+0x3cd/0x6d0 [ 400.522290] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 400.527913] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 400.533278] ? __fget_light+0x2ef/0x430 [ 400.537240] ? fget_raw+0x20/0x20 [ 400.540679] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 400.545681] ? __check_object_size+0x95/0x5d9 [ 400.550168] ? __might_sleep+0x95/0x190 [ 400.554163] do_handle_open+0x3f8/0x950 [ 400.558127] ? vfs_dentry_acceptable+0x10/0x10 [ 400.562691] ? ksys_write+0x1a6/0x250 [ 400.566479] ? __ia32_sys_read+0xb0/0xb0 [ 400.570532] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 400.575374] __x64_sys_open_by_handle_at+0x76/0xb0 [ 400.580293] do_syscall_64+0x1b1/0x800 [ 400.584174] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 400.589012] ? syscall_return_slowpath+0x5c0/0x5c0 [ 400.593939] ? syscall_return_slowpath+0x30f/0x5c0 [ 400.598858] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 400.604219] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 400.609058] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 400.614231] RIP: 0033:0x455979 [ 400.617407] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 400.625110] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:40 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 400.632372] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 400.639628] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 400.647055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 400.654312] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000004 [ 400.707555] *** Guest State *** [ 400.710977] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 400.719893] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 400.728789] CR3 = 0x0000000000000000 [ 400.732583] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 400.738648] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 400.744675] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 400.751382] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 400.759415] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.767438] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.775478] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.783507] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.791556] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 400.799576] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 400.807631] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 400.815667] IDTR: limit=0x00000000, base=0x0000000000000000 [ 400.823704] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 400.829473] FAULT_INJECTION: forcing a failure. [ 400.829473] name failslab, interval 1, probability 0, space 0, times 0 [ 400.831728] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 400.831742] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 400.831753] Interruptibility = 00000008 ActivityState = 00000000 [ 400.831758] *** Host State *** [ 400.831771] RIP = 0xffffffff811f7279 RSP = 0xffff8801af68f390 [ 400.831790] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 400.831803] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 400.831821] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 400.831835] CR0=0000000080050033 CR3=00000001c4cf0000 CR4=00000000001426e0 [ 400.843383] CPU: 0 PID: 26615 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 400.843398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.849819] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 400.857214] Call Trace: [ 400.857238] dump_stack+0x1b9/0x294 [ 400.857260] ? dump_stack_print_info.cold.2+0x52/0x52 [ 400.863486] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 400.866644] ? lock_downgrade+0x8e0/0x8e0 [ 400.866670] should_fail.cold.4+0xa/0x1a [ 400.872621] *** Control State *** [ 400.878995] ? kasan_check_write+0x14/0x20 2018/05/04 05:58:40 executing program 2 (fault-call:8 fault-nth:5): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 400.879020] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 400.886802] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 400.892650] ? __lock_acquire+0x7f5/0x5140 [ 400.892671] ? graph_lock+0x170/0x170 [ 400.899669] EntryControls=0000d1ff ExitControls=0023efff [ 400.906908] ? __find_get_block+0x365/0xe50 [ 400.906932] ? debug_check_no_locks_freed+0x310/0x310 [ 400.916280] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 400.922908] ? __lock_is_held+0xb5/0x140 [ 400.922937] ? check_same_owner+0x320/0x320 2018/05/04 05:58:40 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\b') 2018/05/04 05:58:40 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:40 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 400.925516] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 400.929101] ? perf_trace_lock+0xd6/0x900 [ 400.929117] ? __might_sleep+0x95/0x190 [ 400.929135] ? rcu_note_context_switch+0x710/0x710 [ 400.934309] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 400.940349] __should_failslab+0x124/0x180 [ 400.940369] should_failslab+0x9/0x14 [ 400.944506] reason=80000021 qualification=0000000000000000 [ 400.948531] kmem_cache_alloc+0x2af/0x760 [ 400.948544] ? graph_lock+0x170/0x170 [ 400.948561] ? __find_get_block+0xe50/0xe50 [ 400.952008] IDTVectoring: info=00000000 errcode=00000000 [ 400.956214] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 400.956228] ? __check_block_validity.constprop.78+0xd9/0x200 [ 400.956245] ext4_alloc_inode+0xc1/0x860 [ 400.961332] TSC Offset = 0xffffff265d29e322 [ 400.967965] ? ext4_map_blocks+0x421/0x1b40 [ 400.967979] ? ratelimit_state_init+0xb0/0xb0 [ 400.968000] ? find_held_lock+0x36/0x1c0 [ 400.972221] EPT pointer = 0x00000001cc47701e [ 400.976004] ? lock_downgrade+0x8e0/0x8e0 [ 400.976026] ? kasan_check_read+0x11/0x20 [ 401.070924] *** Guest State *** [ 401.075891] ? do_raw_spin_unlock+0x9e/0x2e0 [ 401.075907] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 401.075929] ? kasan_check_write+0x14/0x20 [ 401.075947] ? ratelimit_state_init+0xb0/0xb0 [ 401.075965] alloc_inode+0x63/0x190 [ 401.075982] iget_locked+0x1f0/0x560 [ 401.076014] ? kfree+0x1e9/0x260 [ 401.076033] ? iget5_locked+0x570/0x570 [ 401.080101] CR0: actual=0x0000000080000020, shadow=0x0000000080000000, gh_mask=fffffffffffffff7 [ 401.084391] ? ext4_find_entry+0x558/0x1b50 [ 401.084413] ext4_iget+0x13f/0x3dd0 [ 401.084433] ? ext4_search_dir+0x6b0/0x6b0 [ 401.088749] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 401.093213] ? zap_class+0x720/0x720 [ 401.093225] ? ext4_get_projid+0x190/0x190 [ 401.093247] ? kasan_check_read+0x11/0x20 [ 401.097292] CR3 = 0x0000000000000000 [ 401.101673] ? do_raw_spin_unlock+0x9e/0x2e0 [ 401.101696] ? kasan_check_write+0x14/0x20 [ 401.105829] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 401.109942] ? do_raw_spin_lock+0xc1/0x200 [ 401.109961] ? _raw_spin_unlock+0x22/0x30 [ 401.109992] ? kasan_check_write+0x14/0x20 [ 401.113250] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 401.117620] ? __brelse+0xfe/0x170 [ 401.117634] ? block_commit_write+0x30/0x30 [ 401.117652] ? rcu_note_context_switch+0x710/0x710 [ 401.122236] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 401.126437] ext4_iget_normal+0xa2/0xe0 [ 401.126456] ext4_get_parent+0x34e/0x3e0 [ 401.130940] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.134531] ? ext4_lookup+0x730/0x730 [ 401.134543] ? down_read+0x1b0/0x1b0 [ 401.134566] reconnect_path+0x1c4/0x6f0 [ 401.134582] ? ext4_lookup+0x730/0x730 [ 401.134601] exportfs_decode_fh+0x3cd/0x6d0 [ 401.138311] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.141641] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 401.141663] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 401.145633] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.154436] ? __fget_light+0x2ef/0x430 [ 401.154455] ? fget_raw+0x20/0x20 [ 401.158767] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.162357] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 401.162372] ? __check_object_size+0x95/0x5d9 [ 401.162395] ? __might_sleep+0x95/0x190 [ 401.166623] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.175521] do_handle_open+0x3f8/0x950 [ 401.175539] ? vfs_dentry_acceptable+0x10/0x10 [ 401.179248] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.183437] ? ksys_write+0x1a6/0x250 [ 401.183453] ? __ia32_sys_read+0xb0/0xb0 [ 401.183472] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 401.187612] GDTR: limit=0x00000000, base=0x0000000000000000 [ 401.191309] __x64_sys_open_by_handle_at+0x76/0xb0 [ 401.191328] do_syscall_64+0x1b1/0x800 [ 401.195729] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.199924] ? finish_task_switch+0x1ca/0x810 [ 401.199940] ? syscall_return_slowpath+0x5c0/0x5c0 2018/05/04 05:58:40 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:40 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:40 executing program 2 (fault-call:8 fault-nth:6): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 401.199958] ? syscall_return_slowpath+0x30f/0x5c0 [ 401.205916] IDTR: limit=0x00000000, base=0x0000000000000000 [ 401.210119] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 401.210139] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 401.214278] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 401.218486] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 401.218496] RIP: 0033:0x455979 [ 401.218507] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 [ 401.224470] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 401.227966] ORIG_RAX: 0000000000000130 [ 401.227984] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 401.227996] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 401.232317] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 401.237204] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 401.237213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 401.237221] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000005 [ 401.507108] Interruptibility = 00000008 ActivityState = 00000000 [ 401.513395] *** Host State *** [ 401.516617] RIP = 0xffffffff811f7279 RSP = 0xffff8801af68f390 [ 401.522641] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 401.529081] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 401.536919] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 401.538095] FAULT_INJECTION: forcing a failure. [ 401.538095] name failslab, interval 1, probability 0, space 0, times 0 [ 401.542838] CR0=0000000080050033 CR3=00000001c4cf0000 CR4=00000000001426e0 [ 401.542853] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 401.542864] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 401.542868] *** Control State *** [ 401.542878] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 401.542895] EntryControls=0000d1ff ExitControls=0023efff [ 401.554114] CPU: 0 PID: 26641 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 401.561127] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 401.567748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.567753] Call Trace: [ 401.567775] dump_stack+0x1b9/0x294 [ 401.567798] ? dump_stack_print_info.cold.2+0x52/0x52 [ 401.573843] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 401.577267] ? print_usage_bug+0xc0/0xc0 [ 401.577290] should_fail.cold.4+0xa/0x1a [ 401.583943] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 401.589364] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 401.589387] ? __lock_acquire+0x7f5/0x5140 [ 401.596661] reason=80000021 qualification=0000000000000000 [ 401.603552] ? print_usage_bug+0xc0/0xc0 [ 401.603569] ? mark_page_accessed+0x66a/0xd10 [ 401.603590] ? debug_check_no_locks_freed+0x310/0x310 [ 401.612937] IDTVectoring: info=00000000 errcode=00000000 [ 401.615495] ? __lock_acquire+0x7f5/0x5140 [ 401.615511] ? graph_lock+0x170/0x170 [ 401.619121] TSC Offset = 0xffffff265d29e322 [ 401.624287] __should_failslab+0x124/0x180 [ 401.624304] should_failslab+0x9/0x14 [ 401.630962] EPT pointer = 0x00000001cc47701e [ 401.634998] kmem_cache_alloc_node+0x56/0x780 [ 401.635024] create_task_io_context+0xb5/0x5e0 [ 401.635041] ? ioc_clear_queue+0x5e0/0x5e0 [ 401.718550] ? lock_downgrade+0x8e0/0x8e0 [ 401.722690] ? kasan_check_read+0x11/0x20 [ 401.726842] ? rcu_is_watching+0x85/0x140 [ 401.730973] ? __lock_is_held+0xb5/0x140 [ 401.735024] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 401.740204] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 401.745379] generic_make_request_checks+0x163d/0x2400 [ 401.750641] ? blk_init_queue+0x30/0x30 [ 401.754602] ? blk_queue_enter+0xbf5/0xdf0 [ 401.758821] ? kmem_cache_alloc+0x12e/0x760 [ 401.763129] ? mempool_alloc_slab+0x44/0x60 [ 401.767445] ? submit_bh_wbc+0x155/0x7c0 [ 401.771492] ? blk_exit_rl+0x80/0x80 [ 401.775191] ? debug_check_no_locks_freed+0x310/0x310 [ 401.780363] ? block_commit_write+0x30/0x30 [ 401.784669] ? print_usage_bug+0xc0/0xc0 [ 401.788722] ? graph_lock+0x170/0x170 [ 401.792505] ? graph_lock+0x170/0x170 [ 401.796303] ? __find_get_block+0x365/0xe50 [ 401.800623] ? __lock_is_held+0xb5/0x140 [ 401.804668] ? gfx_v8_ring_emit_cntxcntl+0x1000/0x19c0 [ 401.809936] generic_make_request+0x166/0x1510 [ 401.815035] ? graph_lock+0x170/0x170 [ 401.818823] ? blk_get_request+0x40/0x40 [ 401.822872] ? mempool_alloc_slab+0x44/0x60 [ 401.827179] ? mempool_free+0x370/0x370 [ 401.831135] ? mempool_alloc_slab+0x44/0x60 [ 401.835443] ? find_held_lock+0x36/0x1c0 [ 401.839505] ? lock_downgrade+0x8e0/0x8e0 [ 401.843641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 401.849162] ? __disk_get_part+0x202/0x310 [ 401.853382] submit_bio+0xba/0x460 [ 401.856905] ? submit_bio+0xba/0x460 [ 401.860606] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 401.865798] ? generic_make_request+0x1510/0x1510 [ 401.870636] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 401.875634] ? guard_bio_eod+0x2b4/0x600 [ 401.879687] submit_bh_wbc+0x5e8/0x7c0 [ 401.883564] ll_rw_block+0x1e5/0x220 [ 401.887266] ext4_bread_batch+0x211/0x450 [ 401.891401] ext4_find_entry+0xd2a/0x1b50 [ 401.895542] ? ext4_search_dir+0x6b0/0x6b0 [ 401.899766] ? lock_downgrade+0x8e0/0x8e0 [ 401.903905] ? kasan_check_read+0x11/0x20 [ 401.908053] ? do_raw_spin_unlock+0x9e/0x2e0 [ 401.912460] ? kasan_check_write+0x14/0x20 [ 401.916686] ? do_raw_spin_lock+0xc1/0x200 [ 401.920909] ? _raw_spin_unlock+0x22/0x30 [ 401.925050] ? lock_release+0xa10/0xa10 [ 401.929010] ? check_same_owner+0x320/0x320 [ 401.933319] ? lock_downgrade+0x8e0/0x8e0 [ 401.937452] ? rcu_note_context_switch+0x710/0x710 [ 401.942369] ext4_get_parent+0x9a/0x3e0 [ 401.946328] ? ext4_lookup+0x730/0x730 [ 401.950199] ? down_read+0x1b0/0x1b0 [ 401.953904] reconnect_path+0x1c4/0x6f0 [ 401.957866] ? ext4_lookup+0x730/0x730 [ 401.961740] exportfs_decode_fh+0x3cd/0x6d0 [ 401.966048] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 401.971654] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 401.977005] ? __fget_light+0x2ef/0x430 [ 401.980982] ? fget_raw+0x20/0x20 [ 401.984422] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 401.989426] ? __check_object_size+0x95/0x5d9 [ 401.993907] ? __might_sleep+0x95/0x190 [ 401.997874] do_handle_open+0x3f8/0x950 [ 402.001833] ? vfs_dentry_acceptable+0x10/0x10 [ 402.006399] ? ksys_write+0x1a6/0x250 [ 402.010185] ? __ia32_sys_read+0xb0/0xb0 [ 402.014236] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 402.019080] __x64_sys_open_by_handle_at+0x76/0xb0 [ 402.024041] do_syscall_64+0x1b1/0x800 [ 402.027914] ? finish_task_switch+0x1ca/0x810 [ 402.032392] ? syscall_return_slowpath+0x5c0/0x5c0 [ 402.037306] ? syscall_return_slowpath+0x30f/0x5c0 [ 402.042230] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 402.047579] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 402.052407] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 402.057581] RIP: 0033:0x455979 [ 402.060750] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 402.068441] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 402.075702] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 402.082952] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 402.090214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 402.097474] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000006 2018/05/04 05:58:41 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cf6") 2018/05/04 05:58:41 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) memfd_create(&(0x7f0000000040)='vmnet0:md5sumnodev@\x00', 0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:41 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:41 executing program 2 (fault-call:8 fault-nth:7): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:41 executing program 6: r0 = perf_event_open(&(0x7f0000cccf88)={0x2, 0x78, 0xe12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/rfcomm\x00') getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f00000000c0)={0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x28) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={r2, 0xa1ac}, 0x8) close(r1) r3 = dup3(r0, r0, 0x80000) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000040)={0x5000, 0xf000, 0xeb, 0xd5e4, 0x8}) 2018/05/04 05:58:41 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000400000084) bind$inet6(r0, &(0x7f00001c1000)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, &(0x7f00009f1000)='G', 0x1, 0x0, &(0x7f0000108fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f000098effc), 0x4) writev(r0, &(0x7f00007f2000)=[{&(0x7f0000001f40)="b6", 0x1}], 0x1) recvfrom$unix(0xffffffffffffffff, &(0x7f0000000080)=""/61, 0x3d, 0x0, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000340)='R', 0x1, 0x0, 0x0, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000000b00)}, 0x0) shutdown(r0, 0x1) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000000)={'eql\x00', {0x2, 0x4e20, @loopback=0x7f000001}}) 2018/05/04 05:58:41 executing program 5: r0 = memfd_create(&(0x7f0000000000)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 402.272429] *** Guest State *** [ 402.275823] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 402.284741] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 402.293731] CR3 = 0x0000000000000000 [ 402.297509] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 402.303547] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 402.309579] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 402.316293] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 402.324519] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.334686] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.342698] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.352556] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.360590] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 2018/05/04 05:58:41 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\b') 2018/05/04 05:58:41 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:41 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x10, 0xffffffffffffffff) lookup_dcookie(0x2, &(0x7f0000000040)=""/196, 0xc4) signalfd(r0, &(0x7f0000000000)={0x100}, 0x8) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') r1 = getpgid(0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f00000001c0)=r1) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000140)={{0x0, 0x80000001}, {0x2, 0x400}, 0xc616, 0x5, 0x2}) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 402.368625] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 402.376648] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 402.384667] IDTR: limit=0x00000000, base=0x0000000000000000 [ 402.392807] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 402.400836] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 402.407307] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 402.414815] Interruptibility = 00000008 ActivityState = 00000000 [ 402.421087] *** Host State *** [ 402.424330] RIP = 0xffffffff811f7279 RSP = 0xffff880191f2f390 [ 402.430368] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 402.436841] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 402.444710] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 402.450647] CR0=0000000080050033 CR3=00000001c65d9000 CR4=00000000001426f0 [ 402.457736] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 402.464455] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 402.470569] *** Control State *** [ 402.471199] FAULT_INJECTION: forcing a failure. [ 402.471199] name failslab, interval 1, probability 0, space 0, times 0 [ 402.474062] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 402.474071] EntryControls=0000d1ff ExitControls=0023efff [ 402.474086] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 402.474095] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 402.474112] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 402.485315] CPU: 1 PID: 26678 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 402.485326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.485335] Call Trace: [ 402.492035] reason=80000021 qualification=0000000000000000 [ 402.497433] dump_stack+0x1b9/0x294 [ 402.497453] ? dump_stack_print_info.cold.2+0x52/0x52 [ 402.497471] ? print_usage_bug+0xc0/0xc0 [ 402.504403] IDTVectoring: info=00000000 errcode=00000000 [ 402.511037] should_fail.cold.4+0xa/0x1a [ 402.511056] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 402.511077] ? __lock_acquire+0x7f5/0x5140 [ 402.517650] TSC Offset = 0xffffff2526ca1687 [ 402.524886] ? print_usage_bug+0xc0/0xc0 [ 402.524905] ? mark_page_accessed+0x66a/0xd10 [ 402.524928] ? debug_check_no_locks_freed+0x310/0x310 [ 402.534446] EPT pointer = 0x000000018d4e101e [ 402.536951] ? perf_trace_lock+0xd6/0x900 [ 402.536971] ? zap_class+0x720/0x720 [ 402.536984] ? graph_lock+0x170/0x170 [ 402.537009] __should_failslab+0x124/0x180 [ 402.613173] should_failslab+0x9/0x14 [ 402.616993] kmem_cache_alloc_node+0x56/0x780 [ 402.621512] create_task_io_context+0xb5/0x5e0 [ 402.626101] ? ioc_clear_queue+0x5e0/0x5e0 [ 402.630350] ? lock_downgrade+0x8e0/0x8e0 [ 402.634515] ? rcu_is_watching+0x85/0x140 [ 402.638666] ? __lock_is_held+0xb5/0x140 [ 402.642739] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 402.648891] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 402.654095] generic_make_request_checks+0x163d/0x2400 [ 402.659393] ? blk_init_queue+0x30/0x30 [ 402.663387] ? blk_queue_enter+0xbf5/0xdf0 [ 402.667636] ? kmem_cache_alloc+0x12e/0x760 [ 402.671968] ? mempool_alloc_slab+0x44/0x60 [ 402.676295] ? submit_bh_wbc+0x155/0x7c0 [ 402.680365] ? blk_exit_rl+0x80/0x80 [ 402.684096] ? debug_check_no_locks_freed+0x310/0x310 [ 402.689296] ? block_commit_write+0x30/0x30 [ 402.693626] ? print_usage_bug+0xc0/0xc0 [ 402.697698] ? graph_lock+0x170/0x170 [ 402.701500] ? graph_lock+0x170/0x170 [ 402.705308] ? __find_get_block+0x365/0xe50 [ 402.709641] ? perf_trace_lock+0xd6/0x900 [ 402.713801] ? zap_class+0x720/0x720 [ 402.717528] generic_make_request+0x166/0x1510 [ 402.722117] ? graph_lock+0x170/0x170 [ 402.725924] ? blk_get_request+0x40/0x40 [ 402.729999] ? mempool_alloc_slab+0x44/0x60 [ 402.734331] ? mempool_free+0x370/0x370 [ 402.738320] ? mempool_alloc_slab+0x44/0x60 [ 402.742674] ? find_held_lock+0x36/0x1c0 [ 402.746754] ? lock_downgrade+0x8e0/0x8e0 [ 402.750916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 402.756459] ? __disk_get_part+0x202/0x310 [ 402.760706] submit_bio+0xba/0x460 [ 402.764254] ? submit_bio+0xba/0x460 [ 402.767976] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 402.773175] ? generic_make_request+0x1510/0x1510 [ 402.778020] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 402.783041] ? guard_bio_eod+0x2b4/0x600 [ 402.787099] submit_bh_wbc+0x5e8/0x7c0 [ 402.790982] ll_rw_block+0x1e5/0x220 [ 402.794691] ext4_bread_batch+0x211/0x450 [ 402.798830] ext4_find_entry+0xd2a/0x1b50 [ 402.802977] ? ext4_search_dir+0x6b0/0x6b0 [ 402.807204] ? zap_class+0x720/0x720 [ 402.810910] ? kasan_check_read+0x11/0x20 [ 402.815044] ? do_raw_spin_unlock+0x9e/0x2e0 [ 402.819441] ? kasan_check_write+0x14/0x20 [ 402.823662] ? do_raw_spin_lock+0xc1/0x200 [ 402.827889] ? _raw_spin_unlock+0x22/0x30 [ 402.832038] ? lock_release+0xa10/0xa10 [ 402.836001] ? check_same_owner+0x320/0x320 [ 402.840315] ? lock_downgrade+0x8e0/0x8e0 [ 402.844454] ? rcu_note_context_switch+0x710/0x710 [ 402.849376] ext4_get_parent+0x9a/0x3e0 [ 402.853339] ? ext4_lookup+0x730/0x730 [ 402.857213] ? down_read+0x1b0/0x1b0 [ 402.860923] reconnect_path+0x1c4/0x6f0 [ 402.864902] ? ext4_lookup+0x730/0x730 [ 402.868780] exportfs_decode_fh+0x3cd/0x6d0 [ 402.873087] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 402.878701] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 402.884055] ? __fget_light+0x2ef/0x430 [ 402.888027] ? fget_raw+0x20/0x20 [ 402.891493] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 402.896534] ? __check_object_size+0x95/0x5d9 [ 402.901049] ? __might_sleep+0x95/0x190 [ 402.905047] do_handle_open+0x3f8/0x950 [ 402.909011] ? vfs_dentry_acceptable+0x10/0x10 [ 402.913583] ? ksys_write+0x1a6/0x250 [ 402.917380] ? __ia32_sys_read+0xb0/0xb0 [ 402.921431] __x64_sys_open_by_handle_at+0x76/0xb0 [ 402.926357] do_syscall_64+0x1b1/0x800 [ 402.930234] ? finish_task_switch+0x1ca/0x810 [ 402.934713] ? syscall_return_slowpath+0x5c0/0x5c0 [ 402.939638] ? syscall_return_slowpath+0x30f/0x5c0 [ 402.944556] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 402.949911] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 402.954741] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 402.959915] RIP: 0033:0x455979 [ 402.963088] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 2018/05/04 05:58:42 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x5, 0x4011, r0, 0xfffffffffffffffe) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:42 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:42 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./file1\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 402.970781] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 402.978038] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 402.985292] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 402.992551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 402.999803] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000007 2018/05/04 05:58:42 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:42 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'team_slave_0\x00'}}, 0x1e) 2018/05/04 05:58:42 executing program 6: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000ade000)={0x4}) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6, @in=@local}}, {{@in=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000000080)=0xe8) 2018/05/04 05:58:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SMI(r4, 0xaeb7) setsockopt$inet_sctp6_SCTP_NODELAY(r5, 0x84, 0x3, &(0x7f0000000040)=0x8, 0x4) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:42 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) getpriority(0x2, r1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r0, 0xc010641d, &(0x7f0000000040)={r2, &(0x7f0000000340)=""/4096}) 2018/05/04 05:58:42 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:42 executing program 2 (fault-call:8 fault-nth:8): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:42 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r1, 0x0) fcntl$setflags(r1, 0x2, 0x0) sendto$inet6(r0, &(0x7f0000000040), 0xff40, 0x20000003, &(0x7f000031e000)={0xa, 0x4e22, 0x0, @ipv4={[], [0xff, 0xff]}}, 0x1c) syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file0\x00', 0x3, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="96304a13759b6bd16fd073995c858cbfe019ce51e67ee62d56164092c30440f3de6b9f4d155e6bf25d97289a471a1dd9d23b22564bbe46065886aa48b3a245f09282881c6471eaecf32d3d5aec728f371928c4a1dc6b4d07df96efff19731c6ee3db50de7ea452fc1ebc6befb26ef59edc2f7a38a91b2fd725db67cb796afbb1704caac18722d095c44056d8a23e15550047eefc510f78cd4e6857cb2e47616c9590f1563926ee3171ad94747e31977c651e3a8db07689e8031baa38dada6abef7436a4a", 0xc4, 0x7}], 0x218090, &(0x7f0000000200)={[{@nls={'nls', 0x3d, 'euc-jp'}, 0x2c}, {@case_sensitive_no={'case_sensitive=no', 0x3d, [0x36]}, 0x2c}, {@fmask={'fmask', 0x3d, [0x37, 0x32, 0x34, 0x33, 0x30, 0x30]}, 0x2c}, {@uid={'uid', 0x3d, [0x39, 0x38, 0x30]}, 0x2c}]}) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000000)=0x2, 0x4) [ 403.198684] *** Guest State *** [ 403.202097] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 403.210989] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 403.219872] CR3 = 0x0000000000000000 [ 403.223659] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 403.229670] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 403.235710] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 403.242425] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 403.250489] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.258522] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.266593] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.274616] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.282651] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.290669] GDTR: limit=0x000007ff, base=0x0000000000001000 2018/05/04 05:58:42 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000000)={0x0, 0x2}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x2, 0x30, 0x8000, 0x9, 0x3, 0x1000, 0x5, 0xffff, r1}, &(0x7f00000000c0)=0x20) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$LOOP_CLR_FD(r0, 0x4c01) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) mknodat(r0, &(0x7f0000000100)='./file0\x00', 0xe004, 0x9) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:42 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x40, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:42 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./controlp') [ 403.298709] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 403.306733] IDTR: limit=0x00000000, base=0x0000000000000000 [ 403.314770] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 403.322786] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 403.329272] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 403.336764] Interruptibility = 00000008 ActivityState = 00000000 [ 403.343063] *** Host State *** 2018/05/04 05:58:42 executing program 6: r0 = socket$netlink(0x10, 0x3, 0xf) write(r0, &(0x7f0000000280)="27000000140007a4d53a5000120f0a0011000100f5fe0012ff00a51b82d77a4b6db0068dd304f9", 0x27) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000000)) [ 403.346299] RIP = 0xffffffff811f7279 RSP = 0xffff8801cb8ef390 [ 403.352350] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 403.358802] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 403.366655] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 403.372578] CR0=0000000080050033 CR3=00000001cc65e000 CR4=00000000001426e0 [ 403.379650] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 403.386360] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 403.392459] *** Control State *** [ 403.395952] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 403.400543] FAULT_INJECTION: forcing a failure. [ 403.400543] name failslab, interval 1, probability 0, space 0, times 0 [ 403.402658] EntryControls=0000d1ff ExitControls=0023efff [ 403.402672] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 403.402679] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 403.402697] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 403.413917] CPU: 0 PID: 26727 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 403.419349] reason=80000021 qualification=0000000000000000 [ 403.426236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 403.426242] Call Trace: [ 403.426266] dump_stack+0x1b9/0x294 [ 403.426288] ? dump_stack_print_info.cold.2+0x52/0x52 [ 403.432948] IDTVectoring: info=00000000 errcode=00000000 [ 403.439498] ? zap_class+0x720/0x720 [ 403.439523] should_fail.cold.4+0xa/0x1a [ 403.446782] TSC Offset = 0xffffff24a8d0bc4e [ 403.453076] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 403.453096] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 403.462456] EPT pointer = 0x00000001a76ec01e [ 403.465008] ? graph_lock+0x170/0x170 [ 403.465021] ? find_held_lock+0x36/0x1c0 [ 403.465046] ? find_held_lock+0x36/0x1c0 [ 403.489329] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 403.491329] ? __lock_is_held+0xb5/0x140 [ 403.491356] ? check_same_owner+0x320/0x320 [ 403.491376] ? rcu_note_context_switch+0x710/0x710 [ 403.521453] ntfs: (device loop7): parse_options(): The case_sensitive option requires a boolean argument. [ 403.528002] ? _raw_spin_unlock+0x22/0x30 [ 403.528029] __should_failslab+0x124/0x180 [ 403.559306] should_failslab+0x9/0x14 [ 403.563120] kmem_cache_alloc+0x2af/0x760 [ 403.567281] __d_alloc+0xc0/0xd30 [ 403.570746] ? shrink_dcache_for_umount+0x290/0x290 [ 403.575773] ? kasan_check_read+0x11/0x20 [ 403.579932] ? do_raw_spin_unlock+0x9e/0x2e0 [ 403.584349] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 403.588943] ? kasan_check_write+0x14/0x20 [ 403.593185] ? do_raw_spin_lock+0xc1/0x200 [ 403.597436] ? _raw_spin_unlock+0x22/0x30 [ 403.601586] ? d_find_any_alias+0x137/0x1b0 [ 403.605911] ? path_check_mount+0x220/0x220 [ 403.610351] ? kasan_check_write+0x14/0x20 [ 403.614589] ? __brelse+0xfe/0x170 [ 403.618117] ? block_commit_write+0x30/0x30 [ 403.622430] __d_obtain_alias.part.40+0x6b/0xb0 [ 403.627088] d_obtain_alias+0x5a/0x70 [ 403.630877] ext4_get_parent+0x356/0x3e0 [ 403.634926] ? ext4_lookup+0x730/0x730 [ 403.638801] ? down_read+0x1b0/0x1b0 [ 403.642511] reconnect_path+0x1c4/0x6f0 [ 403.646484] ? ext4_lookup+0x730/0x730 [ 403.650372] exportfs_decode_fh+0x3cd/0x6d0 [ 403.654689] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 403.660303] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 403.665676] ? __fget_light+0x2ef/0x430 [ 403.669649] ? fget_raw+0x20/0x20 [ 403.673093] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 403.678098] ? __check_object_size+0x95/0x5d9 [ 403.682591] ? __might_sleep+0x95/0x190 [ 403.686587] do_handle_open+0x3f8/0x950 [ 403.690639] ? vfs_dentry_acceptable+0x10/0x10 [ 403.695208] ? ksys_write+0x1a6/0x250 [ 403.698997] ? __ia32_sys_read+0xb0/0xb0 [ 403.703305] __x64_sys_open_by_handle_at+0x76/0xb0 [ 403.708224] do_syscall_64+0x1b1/0x800 [ 403.712098] ? finish_task_switch+0x1ca/0x810 [ 403.716584] ? syscall_return_slowpath+0x5c0/0x5c0 [ 403.721500] ? syscall_return_slowpath+0x30f/0x5c0 [ 403.726420] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 403.731781] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 403.736618] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 403.741803] RIP: 0033:0x455979 2018/05/04 05:58:43 executing program 1: r0 = memfd_create(&(0x7f0000000000)="776c616e302a6d696d655f747970652d747275737465647d26776c616e30766d6e65743104000000000000007b5c87f971cff19b2cde58be7b47504c00", 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:43 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000000000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x10000000000001b3) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 403.744980] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 403.752677] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 403.759931] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 403.767184] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 403.774437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 403.781701] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000008 2018/05/04 05:58:43 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000015c0)={&(0x7f0000000380)={0x20, 0x22, 0x1, 0x0, 0x0, {0x3}, [@nested={0xc, 0x2, [@generic="a42036860f"]}]}, 0x20}, 0x1}, 0x0) [ 403.801701] *** Guest State *** [ 403.805201] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 403.814089] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 403.822961] CR3 = 0x0000000000000000 [ 403.826703] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 403.832701] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 403.838705] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 403.845398] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 403.853407] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.861403] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.869401] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.877428] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.885438] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.893456] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 403.901469] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 403.909489] IDTR: limit=0x00000000, base=0x0000000000000000 [ 403.917503] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 403.925524] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 403.931970] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 403.939473] Interruptibility = 00000008 ActivityState = 00000000 [ 403.945731] *** Host State *** [ 403.948980] RIP = 0xffffffff811f7279 RSP = 0xffff8801c9717390 [ 403.954998] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 403.961446] FSBase=00007f2148a3f700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 403.969280] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 403.975207] CR0=0000000080050033 CR3=00000001cc65e000 CR4=00000000001426e0 [ 403.982264] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 403.988960] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 403.995045] *** Control State *** [ 403.998530] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 404.005224] EntryControls=0000d1ff ExitControls=0023efff [ 404.010721] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 404.017681] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 404.024379] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 404.030990] reason=80000021 qualification=0000000000000000 [ 404.037341] IDTVectoring: info=00000000 errcode=00000000 [ 404.042822] TSC Offset = 0xffffff24a8d0bc4e [ 404.047169] EPT pointer = 0x00000001a76ec01e 2018/05/04 05:58:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000480)=@ioapic) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) clone(0x10000, &(0x7f0000000740)="cdc59e631d4b4018a741550aea4299b16291df6b10997f6279a485fba39d6b1e19c5c4d62cb724f156d52fe81c04c3395218386b56c99d14defd6d42c656b989dc262d28312d23fea31fe864d0246248fc7d556fdc53b2f032ba48adb4d68142482d8ecb71a83495094bceef87ba3cebba7db34c2177c9561c961e74502bd6d6ce9ac9aa9c742eb533ef813970d7aa2dde65caeaef5eb7516cf98c6ec2fd0ff0c6e6d906f748d5870160b525e8d206eff5bc43adaad89210cebee144b3610ae54ab880", &(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000200)="54ec574e2ea78b48e869e213910b90261744aa13d579188fcd9f48273985bdf32b0ec293dfb43425f0e01b47d74ccfcee8a17ce17e0b8881da3354f272865ba90e49c3fd4338240f27ea53b411a36ec40b4ac103cc47c50d580f9e6abffe14963a8836c84f") ioctl$SG_GET_SG_TABLESIZE(r2, 0x227f, &(0x7f00000000c0)) 2018/05/04 05:58:43 executing program 6: setsockopt$inet6_MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000240)={{0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, {0xa, 0x0, 0x0, @loopback={0x0, 0x1}}}, 0x5c) bind$inet(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x80000000000000, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) setsockopt$RDS_CANCEL_SENT_TO(0xffffffffffffffff, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x2fa) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x11, @broadcast=0xffffffff, 0x0, 0x0, "566c630000000bab000800"}, 0x2c) setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)="02ddcbe00000400400040000ddffffff", 0x10) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000400)={r0}) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/wireless\x00') getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f00000000c0), &(0x7f0000000100)=0x4) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r3, 0x111, 0x3, 0x0, 0x4) pread64(r3, &(0x7f0000001200)=""/4096, 0x1000, 0x4) mq_timedreceive(r3, &(0x7f0000000140)=""/165, 0xa5, 0x24000, &(0x7f0000000200)={0x77359400}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x402c5342, &(0x7f0000000040)={0xfffffffffffffe01, 0x374b, 0x4, {0x0, 0x989680}, 0xffff}) sendto$ax25(r2, &(0x7f0000000440)="5b9617f54b423fe27a87184d6fb06095630e231fea08109c68803c7c888e282438fe880e49d6eef4dc72028105f573a6990f1cb20d0c0c5867d98be919d89f418a3a59890ec43f8ceb6d054e4a785c2731da59936faab79b3cc971596ab0476ec9c9d86215f04ea8bd871c0c874d1e585824afbd030ece4ebbd9b034adde4ac0c2926fabde77eb0dea402c5a9248b60df63b0d004888c8e55f171ee80c7a61dbcfe7bfd7bd2cfbc37b4f5db12c3eda322903196f051b4363", 0xb8, 0x8000, &(0x7f0000000540)={0x3, {"0b251d74ec7391"}}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000b2000)=0xffffffffffffffff, 0x4) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000180)={0x0, @multicast2, @multicast2}, &(0x7f0000000500)=0xc) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x0, 0xffff}, 0x14) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000ffefa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-twofish-3way\x00'}, 0x58) r5 = accept$alg(r4, 0x0, 0x0) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00003bcfd0)="d3ab27191a01002356ba602dff05000bfef9b9d2a4b20079fffffffffffffe000225070097c11ed4c2c4dc42ffa86eb9", 0x30) sendmmsg$alg(r5, &(0x7f0000002c80)=[{0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000200)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) write(r5, &(0x7f00000000c0)="791f7dfde08186d67d777a649298a8fb2ad96c735b539d025e309b4949b81f36919e0bc93e876c5cf313aeda8e6bdb5e", 0x30) recvmsg(r5, &(0x7f0000158000)={&(0x7f00002fffa0)=@nfc_llcp, 0x60, &(0x7f0000b9c000)=[{&(0x7f000080f000)=""/4096, 0x1000}], 0x1, &(0x7f0000da2000)}, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f00000002c0)={0x0, 0x80000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000340)={0x2, &(0x7f0000000300)=[{}, {}]}) ioctl$DRM_IOCTL_UNLOCK(0xffffffffffffffff, 0x4008642b, &(0x7f0000000380)={0x0, 0x24}) 2018/05/04 05:58:43 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) mkdir(&(0x7f0000000000)='./file1\x00', 0x80) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) close(r0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') symlink(&(0x7f0000000040)='./control\x00', &(0x7f0000000080)='./control\x00') 2018/05/04 05:58:43 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)="2e2f636f6e74726f6cf5") 2018/05/04 05:58:43 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[{0x3e7b, 0x0, 0x2, 0x401}, {0x3, 0xfffffffffffffffb, 0x1b, 0x5}, {0x1000, 0x3fe4, 0x2, 0xf5}, {0x3, 0x2, 0x100000001, 0x5}, {0x1ff, 0x6b, 0xffffffff888bd178, 0xc3}, {0x89, 0x9, 0x0, 0x4}]}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:43 executing program 2 (fault-call:8 fault-nth:9): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:43 executing program 3 (fault-call:7 fault-nth:0): perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:43 executing program 7: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snapshot\x00', 0x400, 0x0) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000280)={0xaf, 0xffffffffffffff13}) mkdir(&(0x7f00000000c0)='./control\x00', 0x8) syz_fuseblk_mount(&(0x7f0000000000)='./control\x00', &(0x7f0000000080)='./control/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) rename(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)='./file0\x00') r1 = open(&(0x7f0000000080)='./file0\x00', 0x4001, 0x0) bind$unix(r0, &(0x7f0000000480)=@file={0x0, './file0\x00'}, 0xfffffffffffffca8) r2 = getuid() getresgid(&(0x7f00000003c0)=0x0, &(0x7f0000000340), &(0x7f0000000400)) lremovexattr(&(0x7f0000000380)='./control\x00', &(0x7f0000000440)=@known='com.apple.FinderInfo\x00') chown(&(0x7f00000002c0)='./file0\x00', r2, r3) fallocate(r1, 0x0, 0x0, 0xfffffeff000) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f0000000180)) utime(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000300)={0x9, 0x1002}) open(&(0x7f0000000100)='./control/file0\x00', 0x10200, 0x50) [ 404.147411] FAULT_INJECTION: forcing a failure. [ 404.147411] name failslab, interval 1, probability 0, space 0, times 0 [ 404.159068] CPU: 1 PID: 26776 Comm: syz-executor3 Not tainted 4.17.0-rc3+ #31 [ 404.166348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 404.175708] Call Trace: [ 404.178295] dump_stack+0x1b9/0x294 [ 404.181928] ? dump_stack_print_info.cold.2+0x52/0x52 [ 404.187129] should_fail.cold.4+0xa/0x1a [ 404.191181] ? page_add_file_rmap+0x779/0xe20 [ 404.195668] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 404.200764] ? print_usage_bug+0xc0/0xc0 [ 404.204816] ? debug_check_no_locks_freed+0x310/0x310 [ 404.209993] ? print_usage_bug+0xc0/0xc0 [ 404.214046] ? graph_lock+0x170/0x170 [ 404.217829] ? perf_trace_lock+0xd6/0x900 [ 404.221960] ? print_usage_bug+0xc0/0xc0 [ 404.226010] ? __wake_up_common_lock+0x1c2/0x300 [ 404.230760] ? find_held_lock+0x36/0x1c0 [ 404.234809] ? __lock_is_held+0xb5/0x140 [ 404.238865] ? check_same_owner+0x320/0x320 [ 404.243174] ? rcu_note_context_switch+0x710/0x710 [ 404.248093] __should_failslab+0x124/0x180 [ 404.252317] should_failslab+0x9/0x14 [ 404.256104] kmem_cache_alloc_node+0x272/0x780 [ 404.260677] ? tcp_req_err+0x4b0/0x4b0 [ 404.264575] __alloc_skb+0x111/0x780 [ 404.268278] ? skb_scrub_packet+0x580/0x580 [ 404.272585] ? __build_flow_key.constprop.55+0x5f0/0x5f0 [ 404.278033] ? tcp_v4_md5_lookup+0x22/0x30 [ 404.282264] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 404.287785] ? tcp_established_options+0x2ea/0x440 [ 404.292701] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 404.297707] ? tcp_current_mss+0x2ac/0x400 [ 404.301929] ? tcp_mtu_to_mss+0x4c0/0x4c0 [ 404.306066] sk_stream_alloc_skb+0x139/0x960 [ 404.310463] ? tcp_init_transfer+0x450/0x450 [ 404.314858] ? audit_remove_tree_rule+0x500/0xb90 [ 404.319688] ? tcp_rate_check_app_limited+0x119/0x460 [ 404.324866] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 404.330497] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 404.335501] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 404.340504] tcp_sendmsg_locked+0xe9f/0x3e10 [ 404.344899] ? perf_trace_lock+0xd6/0x900 [ 404.349057] ? lock_downgrade+0x8e0/0x8e0 [ 404.353212] ? tcp_sendpage+0x60/0x60 [ 404.356998] ? rcu_is_watching+0x85/0x140 [ 404.361137] ? zap_class+0x720/0x720 [ 404.364843] ? print_usage_bug+0xc0/0xc0 [ 404.368889] ? find_held_lock+0x36/0x1c0 [ 404.372943] ? lock_acquire+0x1dc/0x520 [ 404.376900] ? tcp_sendmsg+0x21/0x50 [ 404.380605] ? mark_held_locks+0xc9/0x160 [ 404.384745] ? __local_bh_enable_ip+0x161/0x230 [ 404.389405] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 404.394406] ? lock_sock_nested+0x9f/0x120 [ 404.398639] ? trace_hardirqs_on+0xd/0x10 [ 404.402776] ? __local_bh_enable_ip+0x161/0x230 [ 404.407429] ? lock_sock_nested+0xe7/0x120 [ 404.411651] tcp_sendmsg+0x2f/0x50 [ 404.415181] inet_sendmsg+0x19f/0x690 [ 404.418969] ? __might_sleep+0x95/0x190 [ 404.422938] ? ipip_gro_receive+0x100/0x100 [ 404.427249] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 404.432774] ? security_socket_sendmsg+0x94/0xc0 [ 404.437517] ? ipip_gro_receive+0x100/0x100 [ 404.441827] sock_sendmsg+0xd5/0x120 [ 404.445541] __sys_sendto+0x3d7/0x670 [ 404.449332] ? __ia32_sys_getpeername+0xb0/0xb0 [ 404.453992] ? wait_for_completion+0x870/0x870 [ 404.458577] ? __sb_end_write+0xac/0xe0 [ 404.462540] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 404.468061] ? fput+0x130/0x1a0 [ 404.471326] ? ksys_write+0x1a6/0x250 [ 404.475114] ? __ia32_sys_read+0xb0/0xb0 [ 404.479163] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 404.483992] __x64_sys_sendto+0xe1/0x1a0 [ 404.488044] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 404.493048] do_syscall_64+0x1b1/0x800 [ 404.496922] ? finish_task_switch+0x1ca/0x810 [ 404.501401] ? syscall_return_slowpath+0x5c0/0x5c0 [ 404.506316] ? syscall_return_slowpath+0x30f/0x5c0 [ 404.511237] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 404.516600] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 404.521432] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 404.526606] RIP: 0033:0x455979 [ 404.529782] RSP: 002b:00007fbb9f6d3c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 404.537477] RAX: ffffffffffffffda RBX: 00007fbb9f6d46d4 RCX: 0000000000455979 [ 404.544738] RDX: 0000000000007fb8 RSI: 0000000020000040 RDI: 0000000000000014 [ 404.551994] RBP: 000000000072bea0 R08: 0000000020000140 R09: 0000000000000010 [ 404.559251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 404.566504] R13: 0000000000000545 R14: 00000000006fbf18 R15: 0000000000000000 [ 404.574515] IPVS: Scheduler module ip_vs_Vlc not found 2018/05/04 05:58:44 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) ioctl$EVIOCGUNIQ(r0, 0x80404508, &(0x7f0000000000)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000000)={0x79198b88ff54e906, 0x100000}) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) timerfd_gettime(r0, &(0x7f00000000c0)) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 404.632832] FAULT_INJECTION: forcing a failure. [ 404.632832] name failslab, interval 1, probability 0, space 0, times 0 [ 404.644271] CPU: 1 PID: 26791 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 404.652228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 404.661587] Call Trace: [ 404.664198] dump_stack+0x1b9/0x294 [ 404.667835] ? dump_stack_print_info.cold.2+0x52/0x52 [ 404.673027] should_fail.cold.4+0xa/0x1a [ 404.677103] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 404.682203] ? debug_check_no_locks_freed+0x310/0x310 [ 404.687382] ? __kernel_text_address+0xd/0x40 [ 404.691875] ? unwind_get_return_address+0x61/0xa0 [ 404.696806] ? __save_stack_trace+0x7e/0xd0 [ 404.701117] ? find_held_lock+0x36/0x1c0 [ 404.705170] ? btrfs_mount+0xec0/0x213e [ 404.709142] ? check_same_owner+0x320/0x320 [ 404.713450] ? rcu_note_context_switch+0x710/0x710 [ 404.718365] ? graph_lock+0x170/0x170 [ 404.722155] __should_failslab+0x124/0x180 [ 404.726385] should_failslab+0x9/0x14 [ 404.730174] kmem_cache_alloc+0x2af/0x760 [ 404.734322] get_empty_filp+0x125/0x520 [ 404.738283] ? proc_nr_files+0x60/0x60 [ 404.742158] ? perf_trace_lock+0xd6/0x900 [ 404.746293] ? lock_downgrade+0x8e0/0x8e0 [ 404.750426] ? zap_class+0x720/0x720 [ 404.754129] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 404.759656] ? generic_fillattr+0x58e/0x6d0 [ 404.763973] ? ext4_getattr+0x32a/0x3d0 [ 404.767943] dentry_open+0x49/0xf0 [ 404.771475] get_name+0x3b0/0x6a0 [ 404.774929] ? _raw_spin_unlock+0x22/0x30 [ 404.779064] ? __d_instantiate_anon+0x40c/0x8e0 [ 404.783724] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 404.788730] ? find_held_lock+0x36/0x1c0 [ 404.792780] ? exportfs_encode_fh+0x120/0x120 [ 404.797278] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 404.802108] exportfs_get_name+0x1a3/0x240 [ 404.806329] ? get_name+0x6a0/0x6a0 [ 404.809944] ? down_read+0x1b0/0x1b0 [ 404.813653] reconnect_path+0x221/0x6f0 [ 404.817618] exportfs_decode_fh+0x3cd/0x6d0 [ 404.821938] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 404.827550] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 404.832908] ? __fget_light+0x2ef/0x430 [ 404.836871] ? fget_raw+0x20/0x20 [ 404.840313] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 404.845314] ? __check_object_size+0x95/0x5d9 [ 404.849800] ? __might_sleep+0x95/0x190 [ 404.853768] do_handle_open+0x3f8/0x950 [ 404.857732] ? vfs_dentry_acceptable+0x10/0x10 [ 404.862296] ? ksys_write+0x1a6/0x250 [ 404.866081] ? __ia32_sys_read+0xb0/0xb0 [ 404.870128] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 404.874968] __x64_sys_open_by_handle_at+0x76/0xb0 [ 404.879882] do_syscall_64+0x1b1/0x800 [ 404.883753] ? finish_task_switch+0x1ca/0x810 [ 404.888233] ? syscall_return_slowpath+0x5c0/0x5c0 [ 404.893148] ? syscall_return_slowpath+0x30f/0x5c0 [ 404.898069] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 404.903430] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 404.908259] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 404.913436] RIP: 0033:0x455979 [ 404.916607] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 404.924300] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:44 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:44 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) lstat(&(0x7f0000000040)='./control\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x5, &(0x7f0000000100)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0]) fchownat(r0, &(0x7f0000000000)='./control\x00', r1, r2, 0x1400) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 404.931563] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 404.938817] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 404.946070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 404.953322] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000009 2018/05/04 05:58:44 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 405.041204] IPVS: Scheduler module ip_vs_Vlc not found 2018/05/04 05:58:44 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:44 executing program 2 (fault-call:8 fault-nth:10): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 405.094739] *** Guest State *** [ 405.098117] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 405.107046] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 405.115921] CR3 = 0x0000000000000000 [ 405.119695] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 405.125696] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 405.131711] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 2018/05/04 05:58:44 executing program 6: socketpair(0x0, 0x7, 0xf57b, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={0x0}) ioctl$DRM_IOCTL_SWITCH_CTX(r1, 0x40086424, &(0x7f0000000100)={r2, 0x1}) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000140), &(0x7f00000001c0)=0x68) perf_event_open(&(0x7f00000017c0)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc24f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sndtimer(&(0x7f0000000200)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, &(0x7f0000000000)={{0x3}}) 2018/05/04 05:58:44 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) link(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./control\x00') mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') symlink(&(0x7f0000000240)='./control\x00', &(0x7f00000002c0)='./file1\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') readlinkat(r0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340)=""/102, 0x66) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0x8) syz_open_dev$dmmidi(&(0x7f00000003c0)='/dev/dmmidi#\x00', 0xfffffffffffffffb, 0xc8100) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000080)={r1, @in6={{0xa, 0x4e24, 0x6e, @mcast1={0xff, 0x1, [], 0x1}, 0x1000}}}, 0x84) [ 405.138414] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 405.146441] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.154469] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.162501] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.170524] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.178558] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.186571] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 405.194610] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 405.202620] IDTR: limit=0x00000000, base=0x0000000000000000 [ 405.210659] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 405.218666] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 405.225131] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 405.232634] Interruptibility = 00000008 ActivityState = 00000000 [ 405.238910] *** Host State *** [ 405.242145] RIP = 0xffffffff811f7279 RSP = 0xffff8801d3d87390 [ 405.248183] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 405.254627] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 405.262481] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 405.268405] CR0=0000000080050033 CR3=000000018d4e1000 CR4=00000000001426e0 [ 405.275489] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 405.282198] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 405.288302] *** Control State *** [ 405.291788] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 405.298499] EntryControls=0000d1ff ExitControls=0023efff [ 405.303987] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 405.310959] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 405.317655] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 405.319800] FAULT_INJECTION: forcing a failure. [ 405.319800] name failslab, interval 1, probability 0, space 0, times 0 [ 405.324280] reason=80000021 qualification=0000000000000000 [ 405.324289] IDTVectoring: info=00000000 errcode=00000000 [ 405.324296] TSC Offset = 0xffffff23a4abaea1 [ 405.324312] EPT pointer = 0x000000018669b01e [ 405.337083] CPU: 0 PID: 26832 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 405.364786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.374140] Call Trace: [ 405.376740] dump_stack+0x1b9/0x294 [ 405.380382] ? dump_stack_print_info.cold.2+0x52/0x52 [ 405.385580] ? print_usage_bug+0xc0/0xc0 [ 405.389648] ? find_held_lock+0x36/0x1c0 [ 405.393722] should_fail.cold.4+0xa/0x1a [ 405.397791] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 405.402906] ? graph_lock+0x170/0x170 [ 405.406716] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 405.411911] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 405.417110] ? find_held_lock+0x36/0x1c0 [ 405.421185] ? __lock_is_held+0xb5/0x140 [ 405.425259] ? snd_seq_oss_process_timer_event+0x100/0x370 [ 405.430905] ? check_same_owner+0x320/0x320 [ 405.435239] ? rcu_note_context_switch+0x710/0x710 [ 405.440180] __should_failslab+0x124/0x180 [ 405.444429] should_failslab+0x9/0x14 [ 405.448232] kmem_cache_alloc_trace+0x2cb/0x780 [ 405.452906] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 405.458015] ? do_syscall_64+0x1b1/0x800 [ 405.459890] *** Guest State *** [ 405.462081] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 405.462105] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 405.462125] ext4_readdir+0x2722/0x3bb0 [ 405.462143] ? debug_mutex_init+0x1c/0x60 [ 405.465426] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 405.470759] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 405.470783] ? __ext4_check_dir_entry+0x370/0x370 [ 405.470800] ? lock_acquire+0x1dc/0x520 [ 405.476338] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 405.480313] ? iterate_dir+0xd4/0x5d0 [ 405.480330] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 405.480348] ? lock_release+0xa10/0xa10 [ 405.484486] CR3 = 0x0000000000000000 [ 405.493291] ? check_same_owner+0x320/0x320 [ 405.493309] ? rcu_note_context_switch+0x710/0x710 [ 405.493327] ? __might_sleep+0x95/0x190 [ 405.498333] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 405.503146] ? down_read_killable+0xaf/0x1f0 [ 405.503165] ? iterate_dir+0xd4/0x5d0 [ 405.507156] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 405.515941] ? security_file_open+0x14f/0x1d0 [ 405.515955] ? down_write+0x120/0x120 [ 405.515987] ? do_dentry_open+0x46c/0xf10 [ 405.519769] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 405.525360] ? security_file_permission+0x1c6/0x240 [ 405.525380] iterate_dir+0x4b0/0x5d0 [ 405.529345] CS: sel=0x0000, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 405.533030] get_name+0x51c/0x6a0 [ 405.533048] ? _raw_spin_unlock+0x22/0x30 [ 405.537366] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.542260] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 405.542278] ? find_held_lock+0x36/0x1c0 [ 405.546244] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.552174] ? exportfs_encode_fh+0x120/0x120 [ 405.552212] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 405.556602] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.560370] exportfs_get_name+0x1a3/0x240 [ 405.560389] ? get_name+0x6a0/0x6a0 [ 405.566358] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.570809] ? down_read+0x1b0/0x1b0 [ 405.570834] reconnect_path+0x221/0x6f0 [ 405.574629] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 405.578746] exportfs_decode_fh+0x3cd/0x6d0 [ 405.578764] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 405.585419] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 405.590404] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 405.590424] ? __fget_light+0x2ef/0x430 [ 405.594144] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 405.602073] ? fget_raw+0x20/0x20 [ 405.602088] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 405.602106] ? __check_object_size+0x95/0x5d9 [ 405.605558] IDTR: limit=0x00000000, base=0x0000000000000000 [ 405.609676] ? __might_sleep+0x95/0x190 [ 405.609703] do_handle_open+0x3f8/0x950 [ 405.617666] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 405.622644] ? vfs_dentry_acceptable+0x10/0x10 [ 405.622654] ? ksys_write+0x1a6/0x250 [ 405.622671] ? __ia32_sys_read+0xb0/0xb0 [ 405.626901] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 405.634838] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 405.634860] __x64_sys_open_by_handle_at+0x76/0xb0 [ 405.639343] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 405.644153] do_syscall_64+0x1b1/0x800 [ 405.644166] ? finish_task_switch+0x1ca/0x810 [ 405.644184] ? syscall_return_slowpath+0x5c0/0x5c0 [ 405.652144] Interruptibility = 00000008 ActivityState = 00000000 [ 405.656342] ? syscall_return_slowpath+0x30f/0x5c0 [ 405.656364] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 405.659973] *** Host State *** [ 405.667926] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.667948] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 405.671650] RIP = 0xffffffff811f7279 RSP = 0xffff8801d3d87390 [ 405.675585] RIP: 0033:0x455979 [ 405.675594] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 405.683578] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 405.687851] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 405.687860] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 405.687868] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 405.687879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 405.693498] FSBase=00007f2148a81700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 405.701422] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000000a [ 405.902990] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 405.908924] CR0=0000000080050033 CR3=000000018d4e1000 CR4=00000000001426e0 [ 405.915970] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87801380 [ 405.922676] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 405.928761] *** Control State *** [ 405.932251] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 405.938950] EntryControls=0000d1ff ExitControls=0023efff 2018/05/04 05:58:45 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x5b0, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:45 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control&') 2018/05/04 05:58:45 executing program 2 (fault-call:8 fault-nth:11): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:45 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-serpent-avx\x00'}, 0x58) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x0, 0x20000) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000), 0x0) r2 = accept$alg(r0, 0x0, 0x0) close(r0) sendmmsg$alg(r2, &(0x7f0000000180)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002780)="a7", 0x1}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) close(r2) recvmsg(r2, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f0000000000)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) 2018/05/04 05:58:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) ioctl$DRM_IOCTL_VERSION(r3, 0xc0406400, &(0x7f0000000140)={0x0, 0x117, 0xd4, 0xf5, &(0x7f0000000480)=""/245, 0xbb, &(0x7f0000000040)=""/187, 0x1000, &(0x7f0000000740)=""/4096}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000600)={{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0x9}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:45 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./control/file0\x00', 0x3, 0x2, &(0x7f0000000140)=[{&(0x7f0000003000)="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", 0x1000, 0x80000001}, {&(0x7f00000000c0)="acbebc05608e59744293083e5eeaa34d1ed06bb6eb8534670d44f67994ee5c912da9cc8dab2db78ed77727ed792afa97b4d2db186a146d4b650308dbd305ada698989efd40c235494db5a777da60109994715efecf469a825fb3eb68921354d21316df7cb1779a8f56a548c5237da3d9cf3ae9ad8c78ca5105", 0x79, 0x9}], 0x1c8001, &(0x7f0000000180)=ANY=[@ANYBLOB="6465766963653d2e2f66696c65307f62087802d5b5699b5493a26c4e00"]) r0 = getuid() quotactl(0x4, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000340)="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") r1 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r1, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r1, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:45 executing program 7: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snapshot\x00', 0x400, 0x0) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000280)={0xaf, 0xffffffffffffff13}) mkdir(&(0x7f00000000c0)='./control\x00', 0x8) syz_fuseblk_mount(&(0x7f0000000000)='./control\x00', &(0x7f0000000080)='./control/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) rename(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)='./file0\x00') r1 = open(&(0x7f0000000080)='./file0\x00', 0x4001, 0x0) bind$unix(r0, &(0x7f0000000480)=@file={0x0, './file0\x00'}, 0xfffffffffffffca8) r2 = getuid() getresgid(&(0x7f00000003c0)=0x0, &(0x7f0000000340), &(0x7f0000000400)) lremovexattr(&(0x7f0000000380)='./control\x00', &(0x7f0000000440)=@known='com.apple.FinderInfo\x00') chown(&(0x7f00000002c0)='./file0\x00', r2, r3) fallocate(r1, 0x0, 0x0, 0xfffffeff000) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f0000000180)) utime(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000300)={0x9, 0x1002}) open(&(0x7f0000000100)='./control/file0\x00', 0x10200, 0x50) [ 405.944431] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 405.951378] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 405.958080] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 405.964679] reason=80000021 qualification=0000000000000000 [ 405.971046] IDTVectoring: info=00000000 errcode=00000000 [ 405.976507] TSC Offset = 0xffffff23a4abaea1 [ 405.980840] EPT pointer = 0x000000018669b01e 2018/05/04 05:58:45 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000000040)='./control\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:45 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 406.131899] FAULT_INJECTION: forcing a failure. [ 406.131899] name failslab, interval 1, probability 0, space 0, times 0 [ 406.143264] CPU: 0 PID: 26871 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 406.150548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 406.159908] Call Trace: [ 406.162513] dump_stack+0x1b9/0x294 [ 406.166157] ? dump_stack_print_info.cold.2+0x52/0x52 [ 406.171364] should_fail.cold.4+0xa/0x1a [ 406.175444] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 406.180561] ? wake_up_process+0x10/0x20 [ 406.184633] ? wake_up_worker+0x113/0x180 [ 406.188923] ? graph_lock+0x170/0x170 [ 406.192755] ? print_usage_bug+0xc0/0xc0 [ 406.196816] ? lock_downgrade+0x8e0/0x8e0 [ 406.200955] ? workqueue_congested+0x3b0/0x3b0 [ 406.205529] ? __lock_is_held+0xb5/0x140 [ 406.209582] ? kasan_check_read+0x11/0x20 [ 406.213728] ? check_same_owner+0x320/0x320 [ 406.218040] ? rcu_note_context_switch+0x710/0x710 [ 406.222958] __should_failslab+0x124/0x180 [ 406.227181] should_failslab+0x9/0x14 [ 406.230962] __kmalloc+0x2c8/0x760 [ 406.234489] ? ext4_find_extent+0x6f3/0x960 [ 406.238796] ext4_find_extent+0x6f3/0x960 [ 406.242934] ext4_ext_map_blocks+0x28a/0x6270 [ 406.247411] ? zap_class+0x720/0x720 [ 406.251113] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 406.256647] ? graph_lock+0x170/0x170 [ 406.260438] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 406.265439] ? __radix_tree_insert+0x8d0/0x8d0 [ 406.270006] ? __lock_acquire+0x7f5/0x5140 [ 406.274231] ? mark_held_locks+0xc9/0x160 [ 406.278450] ? delayed_work_timer_fn+0x90/0x90 [ 406.283022] ? find_held_lock+0x36/0x1c0 [ 406.287073] ? graph_lock+0x170/0x170 [ 406.290865] ? graph_lock+0x170/0x170 [ 406.294652] ? lock_downgrade+0x8e0/0x8e0 [ 406.298790] ? lock_acquire+0x1dc/0x520 [ 406.302755] ? ext4_map_blocks+0x466/0x1b40 [ 406.307064] ? lock_release+0xa10/0xa10 [ 406.311029] ? check_same_owner+0x320/0x320 [ 406.315345] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 406.320866] ? ext4_es_lookup_extent+0x45d/0xdd0 [ 406.325605] ? rcu_note_context_switch+0x710/0x710 [ 406.333501] ? debug_check_no_locks_freed+0x310/0x310 [ 406.338683] ? __might_sleep+0x95/0x190 [ 406.342647] ? down_read+0xaf/0x1b0 [ 406.347271] ? ext4_map_blocks+0x466/0x1b40 [ 406.351583] ? __down_interruptible+0x6e0/0x6e0 [ 406.356245] ext4_map_blocks+0xe17/0x1b40 [ 406.360386] ? ext4_issue_zeroout+0x190/0x190 [ 406.364873] ? check_noncircular+0x20/0x20 [ 406.369093] ? debug_check_no_locks_freed+0x310/0x310 [ 406.374280] ext4_getblk+0x4d5/0x600 [ 406.377980] ? ext4_iomap_begin+0x1330/0x1330 [ 406.382463] ? lock_downgrade+0x8e0/0x8e0 [ 406.386611] ext4_bread+0x8d/0x2a0 [ 406.390137] ? ext4_getblk+0x600/0x600 [ 406.394016] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 406.399193] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 406.404368] __ext4_read_dirblock+0x36/0x980 [ 406.408765] htree_dirblock_to_tree+0x132/0xac0 [ 406.413417] ? unwind_get_return_address+0x61/0xa0 [ 406.418338] ? dx_probe+0x1120/0x1120 [ 406.422125] ? save_stack+0xa9/0xd0 [ 406.425737] ? save_stack+0x43/0xd0 [ 406.429438] ? kasan_kmalloc+0xc4/0xe0 [ 406.433308] ? kmem_cache_alloc_trace+0x152/0x780 [ 406.438135] ? ext4_readdir+0x2722/0x3bb0 [ 406.442266] ? iterate_dir+0x4b0/0x5d0 [ 406.446138] ? get_name+0x51c/0x6a0 [ 406.449749] ? exportfs_get_name+0x1a3/0x240 [ 406.454139] ? reconnect_path+0x221/0x6f0 [ 406.458268] ? exportfs_decode_fh+0x3cd/0x6d0 [ 406.462748] ? do_handle_open+0x3f8/0x950 [ 406.466884] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 406.471969] ? do_syscall_64+0x1b1/0x800 [ 406.476018] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 406.481366] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 406.486543] ext4_htree_fill_tree+0x404/0xd40 [ 406.491029] ? print_usage_bug+0xc0/0xc0 [ 406.495080] ? do_split+0x1bb0/0x1bb0 [ 406.498872] ? __lock_is_held+0xb5/0x140 [ 406.502921] ? ext4_readdir+0x2722/0x3bb0 [ 406.507055] ? rcu_read_lock_sched_held+0x108/0x120 [ 406.512055] ? kmem_cache_alloc_trace+0x616/0x780 [ 406.516880] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 406.521967] ? do_syscall_64+0x1b1/0x800 [ 406.526017] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 406.531378] ? free_rb_tree_fname+0x9c/0xe0 [ 406.535682] ext4_readdir+0x1c82/0x3bb0 [ 406.539641] ? debug_mutex_init+0x1c/0x60 [ 406.543778] ? __ext4_check_dir_entry+0x370/0x370 [ 406.548605] ? lock_acquire+0x1dc/0x520 [ 406.552566] ? iterate_dir+0xd4/0x5d0 [ 406.556361] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 406.561886] ? lock_release+0xa10/0xa10 [ 406.565846] ? check_same_owner+0x320/0x320 [ 406.570155] ? rcu_note_context_switch+0x710/0x710 [ 406.575072] ? __might_sleep+0x95/0x190 [ 406.579035] ? down_read_killable+0xaf/0x1f0 [ 406.583426] ? iterate_dir+0xd4/0x5d0 [ 406.587321] ? security_file_open+0x14f/0x1d0 [ 406.591800] ? down_write+0x120/0x120 [ 406.595586] ? do_dentry_open+0x46c/0xf10 [ 406.599721] ? security_file_permission+0x1c6/0x240 [ 406.604727] iterate_dir+0x4b0/0x5d0 [ 406.608432] get_name+0x51c/0x6a0 [ 406.611871] ? _raw_spin_unlock+0x22/0x30 [ 406.616007] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 406.621017] ? find_held_lock+0x36/0x1c0 [ 406.625201] ? exportfs_encode_fh+0x120/0x120 [ 406.629704] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 406.634544] exportfs_get_name+0x1a3/0x240 [ 406.638765] ? get_name+0x6a0/0x6a0 [ 406.642374] ? down_read+0x1b0/0x1b0 [ 406.646084] reconnect_path+0x221/0x6f0 [ 406.650052] exportfs_decode_fh+0x3cd/0x6d0 [ 406.654362] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 406.659971] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 406.665334] ? __fget_light+0x2ef/0x430 [ 406.669301] ? fget_raw+0x20/0x20 [ 406.672749] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 406.677754] ? __check_object_size+0x95/0x5d9 [ 406.682238] ? __might_sleep+0x95/0x190 [ 406.686202] do_handle_open+0x3f8/0x950 [ 406.690164] ? vfs_dentry_acceptable+0x10/0x10 [ 406.694726] ? ksys_write+0x1a6/0x250 [ 406.698527] ? __ia32_sys_read+0xb0/0xb0 [ 406.702577] __x64_sys_open_by_handle_at+0x76/0xb0 [ 406.707491] do_syscall_64+0x1b1/0x800 [ 406.711366] ? syscall_return_slowpath+0x5c0/0x5c0 [ 406.716290] ? syscall_return_slowpath+0x30f/0x5c0 [ 406.721207] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 406.726556] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 406.731383] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 406.736552] RIP: 0033:0x455979 [ 406.739725] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 406.747416] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 406.754667] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 406.761927] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 406.769397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 406.776648] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000000b 2018/05/04 05:58:46 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) socket$can_raw(0x1d, 0x3, 0x1) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) socketpair$inet6_sctp(0xa, 0x5, 0x84, &(0x7f0000000000)) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) unlinkat(r0, &(0x7f0000000040)='./control\x00', 0x200) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$VT_DISALLOCATE(r0, 0x5608) 2018/05/04 05:58:46 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0xa78, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:46 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:46 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000000)={{{@in6=@dev, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f0000000100)=0xe8) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000140)={@ipv4={[], [0xff, 0xff]}, @mcast1={0xff, 0x1, [], 0x1}, @mcast1={0xff, 0x1, [], 0x1}, 0x6, 0x1, 0x9, 0x400, 0x0, 0x40000, r1}) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x37}], 0x0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 406.784565] EXT4-fs warning (device sda1): htree_dirblock_to_tree:978: inode #2267: lblock 0: comm syz-executor2: error -12 reading directory block 2018/05/04 05:58:46 executing program 6: r0 = socket(0x10, 0x80002, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) write(r0, &(0x7f0000df8fd9)="2600000022004701050007008980e8ff06006d20002b1f00c0e9ff094a51f10101c7033500b0", 0x26) connect$netlink(r0, &(0x7f0000000100)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r0, 0x1, 0x40000000008, &(0x7f0000b4bffc), 0x4) sendto(r0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000280)={0x0, 0x1c9c380}, &(0x7f0000000380)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0xfffffffffffffe20) prctl$intptr(0x2b, 0x0) setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x7, 0x4) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)}) 2018/05/04 05:58:46 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x67, 0x7, 0x4, 0x4, 0xff, 0x1, 0x5, 0x200, 0x1ff, 0x6d, 0x4, 0x2}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000100)='./control\x00') 2018/05/04 05:58:46 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:46 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7a08, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:46 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) bind(r0, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x1, 0x3, 0x1, 0x2, {0xa, 0x4e22, 0x1, @mcast2={0xff, 0x2, [], 0x1}, 0x4}}}, 0x80) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000080)='./file0\x00', 0xc080, 0x1) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) restart_syscall() symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:46 executing program 2 (fault-call:8 fault-nth:12): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:46 executing program 7: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x26a701, 0x0) ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000140)) write$evdev(r0, &(0x7f00000001c0)=[{{0x77359400}, 0x9, 0x6, 0x5}, {{0x77359400}, 0x2, 0x1f, 0x6}], 0x30) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc008551c, &(0x7f00000000c0)={0xffffffff, 0x10, [0x8e4f, 0xfffffffffffffffd, 0x7ff, 0x84e]}) r1 = socket(0x1000000000010, 0x2, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=@mpls_newroute={0x1c, 0x18, 0xc01, 0x0, 0x0, {0x1c, 0x14, 0x10}}, 0x1c}, 0x1}, 0x0) [ 407.186272] FAULT_INJECTION: forcing a failure. [ 407.186272] name failslab, interval 1, probability 0, space 0, times 0 [ 407.197625] CPU: 0 PID: 26934 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 407.204902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 407.214258] Call Trace: [ 407.216860] dump_stack+0x1b9/0x294 [ 407.220495] ? dump_stack_print_info.cold.2+0x52/0x52 [ 407.225673] ? __lock_acquire+0x7f5/0x5140 [ 407.229891] ? do_syscall_64+0x1b1/0x800 [ 407.233954] should_fail.cold.4+0xa/0x1a [ 407.238022] ? do_raw_spin_lock+0xc1/0x200 [ 407.242265] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 407.247363] ? debug_check_no_locks_freed+0x310/0x310 [ 407.252543] ? __lock_is_held+0xb5/0x140 [ 407.256623] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 407.262160] ? ext4_ext_map_blocks+0xf9d/0x6270 [ 407.266811] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 407.272339] __should_failslab+0x124/0x180 [ 407.276671] should_failslab+0x9/0x14 [ 407.280472] kmem_cache_alloc+0x47/0x760 [ 407.284516] ? find_held_lock+0x36/0x1c0 [ 407.288565] ? __es_tree_search.isra.12+0x1ba/0x220 [ 407.293566] __es_insert_extent+0x2fd/0x1130 [ 407.297957] ? ext4_es_insert_extent+0x20b/0x7c0 [ 407.302698] ? ext4_es_free_extent+0x800/0x800 [ 407.307277] ? lock_release+0xa10/0xa10 [ 407.311235] ? __lock_is_held+0xb5/0x140 [ 407.315280] ? kasan_check_write+0x14/0x20 [ 407.319500] ? do_raw_write_lock+0xbd/0x1b0 [ 407.323809] ext4_es_insert_extent+0x2d9/0x7c0 [ 407.328612] ? ext4_es_find_delayed_extent_range+0xd70/0xd70 [ 407.334397] ? down_read+0xaf/0x1b0 [ 407.338016] ? ext4_map_blocks+0x466/0x1b40 [ 407.342341] ? __down_interruptible+0x6e0/0x6e0 [ 407.347633] ? __lock_acquire+0x7f5/0x5140 [ 407.351859] ext4_map_blocks+0x630/0x1b40 [ 407.355993] ? ext4_issue_zeroout+0x190/0x190 [ 407.360477] ? check_noncircular+0x20/0x20 [ 407.365295] ? debug_check_no_locks_freed+0x310/0x310 [ 407.370473] ext4_getblk+0x4d5/0x600 [ 407.374172] ? ext4_iomap_begin+0x1330/0x1330 [ 407.378673] ? lock_downgrade+0x8e0/0x8e0 [ 407.382812] ext4_bread+0x8d/0x2a0 [ 407.386346] ? ext4_getblk+0x600/0x600 [ 407.390225] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 407.395397] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 407.400568] __ext4_read_dirblock+0x36/0x980 [ 407.404963] htree_dirblock_to_tree+0x132/0xac0 [ 407.409614] ? unwind_get_return_address+0x61/0xa0 [ 407.414529] ? dx_probe+0x1120/0x1120 [ 407.418318] ? save_stack+0xa9/0xd0 [ 407.421928] ? save_stack+0x43/0xd0 [ 407.425536] ? kasan_kmalloc+0xc4/0xe0 [ 407.429403] ? kmem_cache_alloc_trace+0x152/0x780 [ 407.434227] ? ext4_readdir+0x2722/0x3bb0 [ 407.438356] ? iterate_dir+0x4b0/0x5d0 [ 407.442224] ? get_name+0x51c/0x6a0 [ 407.445832] ? exportfs_get_name+0x1a3/0x240 [ 407.450222] ? reconnect_path+0x221/0x6f0 [ 407.454468] ? exportfs_decode_fh+0x3cd/0x6d0 [ 407.458950] ? do_handle_open+0x3f8/0x950 [ 407.463088] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 407.468172] ? do_syscall_64+0x1b1/0x800 [ 407.472219] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 407.477564] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 407.482738] ext4_htree_fill_tree+0x404/0xd40 [ 407.487214] ? print_usage_bug+0xc0/0xc0 [ 407.491258] ? do_split+0x1bb0/0x1bb0 [ 407.495048] ? __lock_is_held+0xb5/0x140 [ 407.499094] ? ext4_readdir+0x2722/0x3bb0 [ 407.503224] ? rcu_read_lock_sched_held+0x108/0x120 [ 407.508220] ? kmem_cache_alloc_trace+0x616/0x780 [ 407.513048] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 407.518132] ? do_syscall_64+0x1b1/0x800 [ 407.522173] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 407.527519] ? free_rb_tree_fname+0x9c/0xe0 [ 407.531824] ext4_readdir+0x1c82/0x3bb0 [ 407.535782] ? debug_mutex_init+0x1c/0x60 [ 407.539915] ? __ext4_check_dir_entry+0x370/0x370 [ 407.544761] ? lock_acquire+0x1dc/0x520 [ 407.548723] ? iterate_dir+0xd4/0x5d0 [ 407.552509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 407.558040] ? lock_release+0xa10/0xa10 [ 407.562019] ? check_same_owner+0x320/0x320 [ 407.566331] ? rcu_note_context_switch+0x710/0x710 [ 407.571242] ? __might_sleep+0x95/0x190 [ 407.575199] ? down_read_killable+0xaf/0x1f0 [ 407.579590] ? iterate_dir+0xd4/0x5d0 [ 407.583373] ? security_file_open+0x14f/0x1d0 [ 407.587864] ? down_write+0x120/0x120 [ 407.591648] ? do_dentry_open+0x46c/0xf10 [ 407.595781] ? security_file_permission+0x1c6/0x240 [ 407.600780] iterate_dir+0x4b0/0x5d0 [ 407.604485] get_name+0x51c/0x6a0 [ 407.607923] ? _raw_spin_unlock+0x22/0x30 [ 407.612054] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 407.617052] ? find_held_lock+0x36/0x1c0 [ 407.621095] ? exportfs_encode_fh+0x120/0x120 [ 407.625583] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 407.630411] exportfs_get_name+0x1a3/0x240 [ 407.634634] ? get_name+0x6a0/0x6a0 [ 407.638252] ? down_read+0x1b0/0x1b0 [ 407.641962] reconnect_path+0x221/0x6f0 [ 407.645936] exportfs_decode_fh+0x3cd/0x6d0 [ 407.650448] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 407.656057] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 407.661416] ? __fget_light+0x2ef/0x430 [ 407.665376] ? fget_raw+0x20/0x20 [ 407.668899] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 407.673897] ? __check_object_size+0x95/0x5d9 [ 407.678378] ? __might_sleep+0x95/0x190 [ 407.682366] do_handle_open+0x3f8/0x950 [ 407.686323] ? vfs_dentry_acceptable+0x10/0x10 [ 407.690884] ? ksys_write+0x1a6/0x250 [ 407.694666] ? __ia32_sys_read+0xb0/0xb0 [ 407.698718] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 407.703554] __x64_sys_open_by_handle_at+0x76/0xb0 [ 407.708467] do_syscall_64+0x1b1/0x800 [ 407.712335] ? finish_task_switch+0x1ca/0x810 [ 407.716812] ? syscall_return_slowpath+0x5c0/0x5c0 [ 407.721737] ? syscall_return_slowpath+0x30f/0x5c0 [ 407.726649] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 407.731997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 407.736847] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 407.742023] RIP: 0033:0x455979 [ 407.745197] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 407.752885] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 407.760138] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 407.767391] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 407.774640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 407.781890] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000000c 2018/05/04 05:58:47 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:47 executing program 7: mmap$binder(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x2, 0x100000002132, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x11, 0x503000) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000004c0)=0xd9, 0x4) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0xc812, r0, 0x0) r2 = fcntl$dupfd(r0, 0x406, r0) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000001300)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000400)=0x2) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000440)='nv\x00', 0x3) r3 = getpgid(0x0) fcntl$setown(r2, 0x8, r3) perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) readv(r4, &(0x7f0000000000)=[{&(0x7f0000000080)=""/22, 0x16}, {&(0x7f00000000c0)=""/199, 0xc7}, {&(0x7f00000001c0)=""/224, 0xe0}, {&(0x7f00000002c0)=""/157, 0x9d}, {&(0x7f0000000380)=""/71, 0x47}, {&(0x7f0000000400)}], 0x6) sendto$llc(r4, &(0x7f0000001240), 0x0, 0x0, &(0x7f00000012c0)={0x1a, 0x304, 0x0, 0x0, 0x0, 0x0, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) 2018/05/04 05:58:47 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0xfffffdef, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:47 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') writev(r0, &(0x7f0000001500)=[{&(0x7f0000000000)="31e38412f0944a89de82dc44bfef678d8fd8da6b142970e04ace3d33f920dc7375a6f4fdd0c929ea8f50d5deaf16c6200dbe9e64c5e1a1849bf62ceaaf445f6ce6fb76966e5c1c8fb73d01fca2dc69f1a3da8d476a69b70397b28eb644afd18b6cc3a2528d28fea3b50cb749f18673b045cb6548e3bbe1c3207e1ba9a15b4d7721d4c753ffee2628a94e38eec1f33df518ab3d5f09fff01c1fd4fb7d0db5dc093a87739cdce5212f6739e24351e3875d3aa657362aaf68cb01c5eb547c5ecdeb96dc4913d9d18346dd9d9700e1ad3822388d06d2eddc67f2046126b108b9fe4da3a636aa490ef75e6e5ad9", 0xb4}, {&(0x7f0000000100)="863de45dd1c0b013540a681546a6307254", 0x11}, {&(0x7f0000000140)="3493a90b04ebf29f607d0a6dcf6b9842975e9b13ea67bc3802097d74f991ca7ff7a44526d018324cb44f7c", 0x2b}, {&(0x7f0000000340)="92bedab437db3d4b8571a0c5f0606f732074c4f0535921c378cc0917ae4afffdc523db1e5d9605ed14a5e1b234e1dbcbdcc6167d1ba4de4dcc45eff1ea9f5baaa0042cfce9faee8ae5aac7803abf00298a463382d362e7d3d6ad323ac8040485a20439eead652a5c78f0fcde13ea8d81645f8b36dd9e4c970ee892142fe371cfcb260a4f10c6fb5ac18d2b9d41b2381b88489fde94020576d7a11e4a9c61abcb14d0c44225f8c403754c74a5c8763b916f609b7fd777b727b7251c397f50d87671e41d6e47ef1302d2305e", 0xcb}, {&(0x7f0000004040)="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", 0x1000}, {&(0x7f0000003000)="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", 0x1000}, {&(0x7f0000001440)="d336c18d27635237267087c2970e430dd5962ee1c2e0fa8307d65e54eefc3f5c73ac88179cc1a8a38c5746adb0aa50878f40c03866a202a34add9f36694ea26f1a45ec1082ca50752cbf0bf5c1efb47ee0b4045dd70a882db9ac72fd621d0107cb4728cff7b5a60b5c62fb1957be3e5340c566292ec964996d39167771e5e5c460b1936091f77551776e9d58ce883cbc9f4b932097fc1f777041ab8f5180", 0x9e}, {&(0x7f0000000180)="091d13232538e0e9dbb66534595481b61cc60eec825674713e88140fa1e4949c53a4ba800bf7f2510cba702f81d4c46d66bfabc7c66415c6cc97a72f3edc9ee646", 0x41}], 0x8) 2018/05/04 05:58:47 executing program 2 (fault-call:8 fault-nth:13): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:47 executing program 6: r0 = socket(0x10, 0x80002, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) write(r0, &(0x7f0000df8fd9)="2600000022004701050007008980e8ff06006d20002b1f00c0e9ff094a51f10101c7033500b0", 0x26) connect$netlink(r0, &(0x7f0000000100)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r0, 0x1, 0x40000000008, &(0x7f0000b4bffc), 0x4) sendto(r0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000280)={0x0, 0x1c9c380}, &(0x7f0000000380)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0xfffffffffffffe20) prctl$intptr(0x2b, 0x0) setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x7, 0x4) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)}) 2018/05/04 05:58:47 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x2, 0x2, &(0x7f0000000080)=@raw=[@ldst], &(0x7f0000000040)='GPL\x00', 0x8000000000000000, 0x67, &(0x7f0000000280)=""/103}, 0x48) r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x3) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x1ff) syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000100)='./file1\x00', 0x8001, 0x9, &(0x7f00000008c0)=[{&(0x7f0000000380)="6c30d3b6c651472b3bafbf1768a36fbfd16b421ed290292f0fe2fa4c30f7b1f0fcc4be25f82f4c11fa507d6517e1023c904bc1a9ac2cf1d997097fa5950c71152fe7b66ccbcfc8ebea2eb94812bfad67e6bbfb8e068833625ec8857423f75e5d773bf5aa438aee8df8d3fae4c80e7421a8b27e83074ac21a5f68044418b6ebeffb6e45a0812d0f8fb516d6c9c59859cb6a626671937f014bbd066e8bc4f88b11c025588f3550ec053fa676b1b23b516458bb84b48ae497241bba4e26dc6cb94dee96280283", 0xc5, 0x200}, {&(0x7f0000000140)="ea92a408b999d2d536c3845c5f04387c5353230b344ae193528f6d1e4708007058c0c12728573c20f77886b3875024136a077c2a219517329bc78e600dd786602b27c050ac2ca116ee3cca0ccad2d9407eaa48412eeac83c8f1ac2955c6327303e8e62a5063f837ed2705ac475b2dd34c68610a15c9b65363a95133fc197aa8ed68f0761eb3c39c25ade995243ffb0ba23f63abddb63740cfe89b3a0f32492e6d6ee825792c2bb6994d02f9ce15b150f8ba7", 0xb2, 0x100}, {&(0x7f0000000480)="8a5f89b6af74e605c9cdcb0c7763222a36cb0f48e1638cf9c446d4cf613fbb5d87ca28f2d132a84c5c11544845b1db8e44ddd00bfb784172fbe4a7dfddc43d27a4c5213530adac7094e9dcae2cb21bc4769ea4e47a96876d605a92c9394f2dfc3541f5a663e87b761b395605798a605c01f5887f0ca4b2fa5608176dc6813755eda8ea6005f6946ef5fbdde17f13ad3eb34c6859f82781844ddb943861bbd616a6443d02556b96f362652374b725bbb9f202ffa6ffeaf1a78659031331c5351edead8f82cf545caaf089b44b80c69c3b7ae1558e6c5adb9c", 0xd8, 0xd2}, {&(0x7f0000000580)="1a48115a68542ae3c7a500fa3504352d99959b3f558997c7eb4616b7bbebb5a5cb801a4772f611c738662af08e9a4a037094df2f4bbbe5fc35b18437d7462c0e146484585ba110f3df7f4162d5ea731ebc4f4f9d15c99005c49707ff8ccfa0698617d8b4d409ed631aad632ae6278758870cc9654de6989b6b032e7c305ac1aa7a8c746eaa", 0x85, 0xc}, {&(0x7f0000000640)="b85078ba3bb0816a5b738d374191e53aca76669ba86c393148f51752118ccbf8ab195b70a7f7113d71b0e15c8c23e0652e38dcc7ce36120be2ba258d0775670e987e5a720649767ea8bebaff96af04070ab429d8390aff1657aab3cf", 0x5c, 0xad}, {&(0x7f00000006c0)="66feb395395cd9d4121fcc7e1b8d2a9c88b8dcee98829ceda863d6b8f2c7d492e41bea9be7fe7225f690c836c51ff7c3f6f9c2709318f96df28699368d5b106a4033f77b387d226995029026c82f5e43312b89be224bed5d20eebdf93225c560586434137f974bb1bbe2b66fd37427beaf74e183ecb8125d565ac26820a0d0056873eec45fb108cc6190d183110011b711c378d934ec6169370fa5e05284f7758ad456d1360cb49aac9123431716d843e32e82b313a8d09f8b8ad7971558ba436cb367b272baf1fcfaf0699035d2be2191", 0xd1, 0x7ff}, {&(0x7f0000000240)="3a509280f2ae7b6bb3b1a993501a801fd0aeb63c95b49c67acac5ffa1fdaf4569b298f6766b61f60b917a4c95200bbe71c77c16b7d2c64bbc7", 0x39, 0xaf6}, {&(0x7f00000007c0)="e02c59417605e1b004701dd07881e1c5918f086e18d0e6715631da60d8486a48edf27f11fac29cf8ad613b9f527006b75f6bab3abdfac2034cd8e36eac1ee18256c204aa3f99bf98e399bf472492c2f14803b83f0e71b2cd893d625ff0b1b618bba5010dbc5aeec96b1bb4a359730d15ae1dc66c5120afe5e5d627ea6ff6521e6bce1570a596400e34bf302113ed6fe7ec0c61995cf9e230f7e22aec33dc0f", 0x9f, 0x2}, {&(0x7f0000000880)="9280434b43186c68a68a16a7387eded21c2087719fd6d59e5f25d791178e59caeaf72a0e56854e47", 0x28, 0x2}], 0x1000000, &(0x7f00000009c0)={[{@check_normal='check=normal', 0x2c}, {@time_offset={'time_offset', 0x3d, [0x3f, 0x3f, 0x0, 0x3d]}, 0x2c}, {@nfs='nfs', 0x2c}, {@errors_continue='errors=continue', 0x2c}, {@flush='flush', 0x2c}, {@dos1xfloppy='dos1xfloppy', 0x2c}, {@check_relaxed='check=relaxed', 0x2c}, {@showexec='showexec', 0x2c}, {@usefree='usefree', 0x2c}, {@gid={'gid', 0x3d, [0x33, 0x33, 0x37, 0xea1]}, 0x2c}]}) ioctl$KVM_PPC_GET_PVINFO(r0, 0x4080aea1, &(0x7f0000000000)=""/13) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 408.106622] FAT-fs (loop1): Unrecognized mount option "time_offset=??" or missing value [ 408.120288] FAULT_INJECTION: forcing a failure. [ 408.120288] name failslab, interval 1, probability 0, space 0, times 0 [ 408.131605] CPU: 1 PID: 26959 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 408.138886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.140300] *** Guest State *** [ 408.148254] Call Trace: [ 408.148279] dump_stack+0x1b9/0x294 [ 408.148301] ? dump_stack_print_info.cold.2+0x52/0x52 [ 408.148319] ? __ext4_read_dirblock+0x36/0x980 [ 408.148340] ? htree_dirblock_to_tree+0x132/0xac0 [ 408.151749] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 408.154293] ? ext4_htree_fill_tree+0x404/0xd40 [ 408.154321] should_fail.cold.4+0xa/0x1a [ 408.154341] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 408.157972] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 408.163125] ? lock_downgrade+0x8e0/0x8e0 [ 408.163152] ? kasan_check_write+0x14/0x20 [ 408.163169] ? __brelse+0xfe/0x170 [ 408.167771] CR3 = 0x0000000000000000 [ 408.172552] ? block_commit_write+0x30/0x30 [ 408.172571] ? __find_get_block+0xa29/0xe50 [ 408.172589] ? graph_lock+0x170/0x170 [ 408.181532] RSP = 0x0000000000000f80 RIP = 0x0000000000000383 [ 408.186097] ? __find_get_block+0x365/0xe50 [ 408.186127] ? __lock_is_held+0xb5/0x140 [ 408.190185] RFLAGS=0x00000046 DR7 = 0x0000000000000400 [ 408.195262] __should_failslab+0x124/0x180 [ 408.195285] should_failslab+0x9/0x14 [ 408.204122] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 408.208222] kmem_cache_alloc+0x47/0x760 [ 408.208240] ? rcu_note_context_switch+0x710/0x710 [ 408.208262] ? mempool_free+0x370/0x370 [ 408.212493] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 408.215987] mempool_alloc_slab+0x44/0x60 [ 408.216004] mempool_alloc+0x18b/0x490 [ 408.216027] ? remove_element.isra.4+0x1c0/0x1c0 [ 408.216040] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 408.216054] ? __check_block_validity.constprop.78+0xd9/0x200 [ 408.216073] ? ext4_map_blocks+0x421/0x1b40 [ 408.219787] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.224073] bio_alloc_bioset+0x3a1/0x7f0 [ 408.224090] ? check_noncircular+0x20/0x20 [ 408.228414] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.232162] ? debug_check_no_locks_freed+0x310/0x310 [ 408.232178] ? bvec_alloc+0x2d0/0x2d0 [ 408.232206] submit_bh_wbc+0x155/0x7c0 [ 408.238174] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.242451] ? ext4_iomap_begin+0x1330/0x1330 [ 408.242468] ll_rw_block+0x1e5/0x220 [ 408.242486] ext4_bread+0x154/0x2a0 [ 408.246546] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.252472] ? ext4_getblk+0x600/0x600 [ 408.252486] ? print_usage_bug+0xc0/0xc0 [ 408.252504] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 408.256734] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.260490] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 408.260509] __ext4_read_dirblock+0x36/0x980 [ 408.260533] htree_dirblock_to_tree+0x132/0xac0 [ 408.267186] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 408.271211] ? retint_kernel+0x10/0x10 [ 408.271235] ? dx_probe+0x1120/0x1120 [ 408.276163] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 408.280098] ? retint_kernel+0x10/0x10 [ 408.280126] ? ext4_htree_fill_tree+0x12f/0xd40 [ 408.288088] IDTR: limit=0x00000000, base=0x0000000000000000 [ 408.292199] ext4_htree_fill_tree+0x404/0xd40 [ 408.292211] ? print_usage_bug+0xc0/0xc0 [ 408.292232] ? do_split+0x1bb0/0x1bb0 [ 408.296228] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 408.300948] ? __lock_is_held+0xb5/0x140 [ 408.300972] ? ext4_readdir+0x2722/0x3bb0 [ 408.306499] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 408.312340] ? rcu_read_lock_sched_held+0x108/0x120 [ 408.312356] ? kmem_cache_alloc_trace+0x616/0x780 [ 408.312374] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 408.316695] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 408.324625] ? do_syscall_64+0x1b1/0x800 [ 408.324639] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 408.324657] ? free_rb_tree_fname+0x9c/0xe0 [ 408.330648] Interruptibility = 00000008 ActivityState = 00000000 [ 408.334842] ext4_readdir+0x1c82/0x3bb0 [ 408.334863] ? debug_mutex_init+0x1c/0x60 [ 408.342818] *** Host State *** [ 408.347991] ? __ext4_check_dir_entry+0x370/0x370 [ 408.348009] ? lock_acquire+0x1dc/0x520 [ 408.348027] ? iterate_dir+0xd4/0x5d0 [ 408.351823] RIP = 0xffffffff811f7279 RSP = 0xffff8801cb8ef390 [ 408.355675] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 408.355690] ? lock_release+0xa10/0xa10 [ 408.355709] ? check_same_owner+0x320/0x320 [ 408.365161] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 408.369592] ? rcu_note_context_switch+0x710/0x710 [ 408.369617] ? __might_sleep+0x95/0x190 [ 408.373329] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 408.376917] ? down_read_killable+0xaf/0x1f0 2018/05/04 05:58:48 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) sendto$inet6(r0, &(0x7f0000000000)="1d72772daf9ba9a333e953262c003e2778e472029cf7b4dbee69e1fe5cc49784fff506b550846be2e90ea10f96d72ac07e3fb461afd003fa1038dd583a991e1d283e3650b1beccf941dc8c129590b52088", 0x51, 0x41, &(0x7f0000000080)={0xa, 0x4e20, 0x1, @loopback={0x0, 0x1}, 0x400}, 0x1c) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:48 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000180)='./control\x00', &(0x7f00000000c0)='./file0\x00') [ 408.376931] ? iterate_dir+0xd4/0x5d0 [ 408.376951] ? security_file_open+0x14f/0x1d0 [ 408.384911] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 408.388756] ? down_write+0x120/0x120 [ 408.388773] ? do_dentry_open+0x46c/0xf10 [ 408.388795] ? security_file_permission+0x1c6/0x240 [ 408.392865] CR0=0000000080050033 CR3=00000001d9527000 CR4=00000000001426f0 [ 408.398006] iterate_dir+0x4b0/0x5d0 [ 408.398032] get_name+0x51c/0x6a0 [ 408.398051] ? _raw_spin_unlock+0x22/0x30 2018/05/04 05:58:48 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000)) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 408.406036] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 408.411196] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 408.411218] ? find_held_lock+0x36/0x1c0 [ 408.415621] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 408.420251] ? exportfs_encode_fh+0x120/0x120 [ 408.420290] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 408.428240] *** Control State *** [ 408.432101] exportfs_get_name+0x1a3/0x240 [ 408.432124] ? get_name+0x6a0/0x6a0 [ 408.436091] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 408.444017] ? down_read+0x1b0/0x1b0 2018/05/04 05:58:48 executing program 2 (fault-call:8 fault-nth:14): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 408.444040] reconnect_path+0x221/0x6f0 [ 408.444062] exportfs_decode_fh+0x3cd/0x6d0 [ 408.447937] EntryControls=0000d1ff ExitControls=0023efff [ 408.452568] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 408.452586] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 408.452604] ? __fget_light+0x2ef/0x430 [ 408.460567] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 408.465021] ? fget_raw+0x20/0x20 [ 408.465036] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 408.465054] ? __check_object_size+0x95/0x5d9 2018/05/04 05:58:48 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 408.469108] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 408.472883] ? __might_sleep+0x95/0x190 [ 408.472909] do_handle_open+0x3f8/0x950 [ 408.480866] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 408.484899] ? vfs_dentry_acceptable+0x10/0x10 [ 408.484911] ? ksys_write+0x1a6/0x250 [ 408.484928] ? __ia32_sys_read+0xb0/0xb0 [ 408.489070] reason=80000021 qualification=0000000000000000 [ 408.495439] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 408.495464] __x64_sys_open_by_handle_at+0x76/0xb0 2018/05/04 05:58:48 executing program 4: r0 = memfd_create(&(0x7f0000000080)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0xfffffffffffffffd) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000), 0x0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$DRM_IOCTL_AGP_ACQUIRE(r0, 0x6430) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000000)=0xffffffffffffde97, 0x8) [ 408.500471] IDTVectoring: info=00000000 errcode=00000000 [ 408.505280] do_syscall_64+0x1b1/0x800 [ 408.505294] ? finish_task_switch+0x1ca/0x810 [ 408.505312] ? syscall_return_slowpath+0x5c0/0x5c0 [ 408.510407] TSC Offset = 0xffffff220316f51a [ 408.517817] ? syscall_return_slowpath+0x30f/0x5c0 [ 408.517835] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 408.517858] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.521904] EPT pointer = 0x00000001d687201e [ 408.527233] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 408.527243] RIP: 0033:0x455979 [ 408.527254] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 [ 408.647869] *** Guest State *** [ 408.650853] ORIG_RAX: 0000000000000130 [ 408.650863] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 408.650872] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 408.650881] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 408.650890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 408.650899] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000000d [ 408.853514] FAULT_INJECTION: forcing a failure. [ 408.853514] name failslab, interval 1, probability 0, space 0, times 0 [ 408.856791] CR0: actual=0x0000000080000021, shadow=0x0000000080000001, gh_mask=fffffffffffffff7 [ 408.856805] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 408.856810] CR3 = 0x0000000000000000 [ 408.856818] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 408.856827] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 408.856840] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 408.856853] CS: sel=0x0000, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 408.856870] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.856886] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.856901] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.860109] CPU: 1 PID: 26988 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 408.860118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.860124] Call Trace: [ 408.860145] dump_stack+0x1b9/0x294 [ 408.860167] ? dump_stack_print_info.cold.2+0x52/0x52 [ 408.865560] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.868792] should_fail.cold.4+0xa/0x1a [ 408.868812] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 408.872786] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 408.880018] ? graph_lock+0x170/0x170 [ 408.880035] ? remove_wait_queue+0x350/0x350 [ 408.880051] ? graph_lock+0x170/0x170 [ 408.887331] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 408.894561] ? find_held_lock+0x36/0x1c0 [ 408.894582] ? __lock_is_held+0xb5/0x140 [ 408.901853] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 408.909096] ? check_same_owner+0x320/0x320 [ 408.909119] ? rcu_note_context_switch+0x710/0x710 [ 408.920290] IDTR: limit=0x00000000, base=0x0000000000000000 [ 408.929088] ? ext4fs_dirhash+0xb23/0x1060 [ 408.929105] __should_failslab+0x124/0x180 [ 408.929123] should_failslab+0x9/0x14 [ 408.937956] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 408.941624] __kmalloc+0x2c8/0x760 [ 408.941640] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 408.941658] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 408.947619] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 408.953554] ext4_htree_store_dirent+0x8b/0x5a0 [ 408.953579] htree_dirblock_to_tree+0x563/0xac0 [ 408.960235] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 408.968189] ? dx_probe+0x1120/0x1120 [ 408.968207] ? save_stack+0xa9/0xd0 [ 408.976164] Interruptibility = 00000008 ActivityState = 00000000 [ 408.984099] ? save_stack+0x43/0xd0 [ 408.984112] ? kasan_kmalloc+0xc4/0xe0 [ 408.984131] ? iterate_dir+0x4b0/0x5d0 [ 408.992080] *** Host State *** [ 408.999328] ? get_name+0x51c/0x6a0 [ 408.999343] ? exportfs_get_name+0x1a3/0x240 [ 408.999360] ? reconnect_path+0x221/0x6f0 [ 409.008846] RIP = 0xffffffff811f7279 RSP = 0xffff8801cb8ef390 [ 409.011380] ? exportfs_decode_fh+0x3cd/0x6d0 [ 409.011393] ? do_handle_open+0x3f8/0x950 2018/05/04 05:58:48 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)="01", 0x1) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x200000, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x100000, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000000)={0x6f, 0x1f}) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./control\x00') setsockopt$llc_int(r1, 0x10c, 0x8, &(0x7f00000000c0)=0xfffffffffffff800, 0x4) ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f0000000100)={'veth1\x00', {0x2, 0x4e21, @multicast1=0xe0000001}}) [ 409.011409] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 409.015051] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 409.020178] ? do_syscall_64+0x1b1/0x800 [ 409.020193] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 409.020211] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 409.028168] FSBase=00007f2148a81700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 409.032192] ext4_htree_fill_tree+0x404/0xd40 [ 409.032205] ? print_usage_bug+0xc0/0xc0 [ 409.032224] ? do_split+0x1bb0/0x1bb0 [ 409.037318] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 2018/05/04 05:58:48 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000800)={0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000840)={{{@in6=@local, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000000940)=0xe8) r3 = getegid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000980)={0x0}, &(0x7f00000009c0)=0xc) lstat(&(0x7f0000000a00)='./file0\x00', &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000ac0)=0x0, &(0x7f0000000b00), &(0x7f0000000b40)) sendmsg$unix(r0, &(0x7f0000000c80)={&(0x7f0000000680)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f00000007c0)=[{&(0x7f0000000700)="2a139d53b5f3ea8431cda9a2720cd8d431d0f3358519edf98eee5fd06fbbdefb64cc2fc3c21d924f4347ffc8339c75b575485f89352e1fbb08501d63419ad4b4d17411072a9856786f6a518dba5b4e4f40554014e85bb7d5ec85ffd18188409f1c8203c23e8a487a56e19b050f6fef97b819ac69ec62eccfb3b108436eb8d0779cceeb9c5dafe76d5d51a829ba", 0x8d}], 0x1, &(0x7f0000000b80)=[@rights={0x38, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r1, r2, r3}, @rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r4, r5, r6}, @rights={0x38, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0, r0, r0]}], 0xc8, 0x40}, 0x800) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x18000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='T\x00@\x00', @ANYRES16=r7, @ANYBLOB="00012abd7000fedbdf25050000001c0003fa080007004e23000008000100906e56790800030004000000080006000101000008000500db0000000c00240008000400ff0100000800060000000000"], 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x80) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') getsockopt$inet_sctp6_SCTP_STATUS(r8, 0x84, 0xe, &(0x7f00000004c0)={0x0, 0x0, 0x3, 0x9, 0x20, 0xa8, 0x7fffffff, 0x1000, {0x0, @in={{0x2, 0x4e22, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x7, 0x0, 0x80, 0x6, 0x3}}, &(0x7f0000000580)=0xb0) sendmsg$inet_sctp(r0, &(0x7f0000000640)={&(0x7f0000000040)=@in6={0xa, 0x4e24, 0x5b, @dev={0xfe, 0x80, [], 0x16}, 0x200}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000340)="5dd1846ccd4944944e50299c20b4bda1e17fedb53b36d3bda8e563168743ff584698f5e4655ce122726f30a4518b2237325588c69fa49bbe9caa035b29a67f16711ceab9f69822a13906ba4d1f622ecc6f56ceea0f6bae9607dbeef076a22779e27edf39b80b501838341525bfc0833ed61a92ee5e972182a05537af51d52ecd81e58655d9b1e0dd89a70cf455d284400ef1935bbcc1aa892379da7765448a4ae53f0ae3af0a1c0a6dc387648cd2883ca3af", 0xb2}, {&(0x7f0000000240)="02c555d18b6585b480cd06ec1b7168e54d0d6ab86ecbc6153687ccd750f46fba45f296e00faf0a9440a2", 0x2a}, {&(0x7f0000000400)="4a07a2808b0547ecafcd02a7e44b02d3a78beaaebb67e91f576bcf2250aad039422f2dc12970dfdc421b1100c4aeb62dcf850fbabc7f08118d902db5aeb54573c26acd35e1191af52879e1317fba6e6f2429ac5d691dcd82c7beb53a8df204873a97c72655d7b02f2db1ef248c225600efa43ae053c2291e41b46d059dac6dc1678bd9b288fa2c0722e84a3e89e859848c1f5ce1a92508e6b1f7b3", 0x9b}], 0x3, &(0x7f00000005c0)=[@sndinfo={0x20, 0x84, 0x2, {0x9, 0x8200, 0x5, 0x0, r9}}, @authinfo={0x18, 0x84, 0x6, {0x7fffffff}}, @init={0x18, 0x84, 0x0, {0x7, 0x6, 0x7, 0x1}}], 0x50, 0x4000}, 0x20000000) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 409.045251] ? __lock_is_held+0xb5/0x140 [ 409.045272] ? ext4_readdir+0x2722/0x3bb0 [ 409.049064] CR0=0000000080050033 CR3=00000001d9527000 CR4=00000000001426f0 [ 409.053431] ? rcu_read_lock_sched_held+0x108/0x120 [ 409.053446] ? kmem_cache_alloc_trace+0x616/0x780 [ 409.053462] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 409.057257] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87801380 [ 409.065179] ? do_syscall_64+0x1b1/0x800 [ 409.065193] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 409.065210] ? free_rb_tree_fname+0x9c/0xe0 2018/05/04 05:58:48 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000)=0x100000000, 0x4) [ 409.069262] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 409.073287] ext4_readdir+0x1c82/0x3bb0 [ 409.073300] ? debug_mutex_init+0x1c/0x60 [ 409.073324] ? __ext4_check_dir_entry+0x370/0x370 [ 409.081276] *** Control State *** [ 409.085566] ? lock_acquire+0x1dc/0x520 [ 409.085579] ? iterate_dir+0xd4/0x5d0 [ 409.085599] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 409.090514] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 409.098457] ? lock_release+0xa10/0xa10 [ 409.098472] ? check_same_owner+0x320/0x320 [ 409.098490] ? rcu_note_context_switch+0x710/0x710 [ 409.102709] EntryControls=0000d1ff ExitControls=0023efff [ 409.106914] ? __might_sleep+0x95/0x190 [ 409.106939] ? down_read_killable+0xaf/0x1f0 [ 409.110727] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 409.118659] ? iterate_dir+0xd4/0x5d0 [ 409.118675] ? security_file_open+0x14f/0x1d0 [ 409.118691] ? down_write+0x120/0x120 [ 409.122222] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 409.126858] ? do_dentry_open+0x46c/0xf10 [ 409.126883] ? security_file_permission+0x1c6/0x240 [ 409.131713] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 409.138091] iterate_dir+0x4b0/0x5d0 [ 409.138116] get_name+0x51c/0x6a0 [ 409.142776] reason=80000021 qualification=0000000000000000 [ 409.147406] ? _raw_spin_unlock+0x22/0x30 [ 409.147423] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 409.147439] ? find_held_lock+0x36/0x1c0 [ 409.154875] IDTVectoring: info=00000000 errcode=00000000 [ 409.158639] ? exportfs_encode_fh+0x120/0x120 [ 409.158673] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 409.162282] TSC Offset = 0xffffff220316f51a [ 409.168481] exportfs_get_name+0x1a3/0x240 [ 409.168497] ? get_name+0x6a0/0x6a0 [ 409.168513] ? down_read+0x1b0/0x1b0 [ 409.172130] EPT pointer = 0x00000001d687201e [ 409.175996] reconnect_path+0x221/0x6f0 [ 409.176019] exportfs_decode_fh+0x3cd/0x6d0 [ 409.492570] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 409.498196] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 409.503549] ? __fget_light+0x2ef/0x430 [ 409.507509] ? fget_raw+0x20/0x20 [ 409.510944] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 409.515943] ? __check_object_size+0x95/0x5d9 [ 409.520442] ? __might_sleep+0x95/0x190 [ 409.524432] do_handle_open+0x3f8/0x950 [ 409.528413] ? vfs_dentry_acceptable+0x10/0x10 [ 409.533004] ? ksys_write+0x1a6/0x250 [ 409.536808] ? __ia32_sys_read+0xb0/0xb0 [ 409.540881] __x64_sys_open_by_handle_at+0x76/0xb0 [ 409.545823] do_syscall_64+0x1b1/0x800 [ 409.549715] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 409.554556] ? syscall_return_slowpath+0x5c0/0x5c0 [ 409.559467] ? syscall_return_slowpath+0x30f/0x5c0 [ 409.564380] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 409.569726] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 409.574555] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 409.579749] RIP: 0033:0x455979 [ 409.582932] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 409.590637] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 409.597896] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 409.605148] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 409.612404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 409.619665] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000000e 2018/05/04 05:58:49 executing program 2 (fault-call:8 fault-nth:15): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) modify_ldt$read_default(0x2, &(0x7f0000000040)=""/127, 0x7f) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0xaaaa9e3, 0x52, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:49 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) setsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000040)=0x10000, 0x4) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x61, 0x1) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:49 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4013, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x4, [0x3ff, 0x34, 0x3, 0x5c18]}) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') recvmmsg(r0, &(0x7f0000006100)=[{{&(0x7f0000000140)=@vsock={0x0, 0x0, 0x0, @hyper}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/166, 0xa6}], 0x1, 0x0, 0x0, 0xd3a8}, 0x34}, {{&(0x7f0000000400)=@ethernet={0x0, @local}, 0x80, &(0x7f00000016c0)=[{&(0x7f0000000480)=""/198, 0xc6}, {&(0x7f0000000240)=""/9, 0x9}, {&(0x7f0000000580)=""/116, 0x74}, {&(0x7f00000002c0)=""/20, 0x14}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/149, 0x95}], 0x6, &(0x7f0000001740)=""/27, 0x1b, 0xd884}, 0x4}, {{&(0x7f0000001780)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001a80)=[{&(0x7f0000001800)=""/171, 0xab}, {&(0x7f00000018c0)=""/69, 0x45}, {&(0x7f0000003000)=""/4096, 0x1000}, {&(0x7f0000004040)=""/4096, 0x1000}, {&(0x7f0000001940)=""/46, 0x2e}, {&(0x7f0000001980)=""/215, 0xd7}], 0x6, &(0x7f0000001b00)=""/59, 0x3b, 0x6}, 0xdce}, {{&(0x7f0000001b40)=@can={0x0, 0x0}, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000005040)=""/4096, 0x1000}], 0x1, &(0x7f0000001c00)=""/213, 0xd5, 0x798}, 0x10001}, {{&(0x7f0000001d00)=@l2, 0x80, &(0x7f0000002300)=[{&(0x7f0000001d80)=""/105, 0x69}, {&(0x7f0000001e00)=""/74, 0x4a}, {&(0x7f0000001e80)=""/66, 0x42}, {&(0x7f0000002000)=""/255, 0xff}, {&(0x7f0000001f00)=""/35, 0x23}, {&(0x7f0000001f40)=""/76, 0x4c}, {&(0x7f0000002100)=""/248, 0xf8}, {&(0x7f0000002200)=""/48, 0x30}, {&(0x7f0000002240)=""/39, 0x27}, {&(0x7f0000002280)=""/98, 0x62}], 0xa, &(0x7f00000023c0)=""/172, 0xac, 0xfffffffffffffff8}, 0x1ff}, {{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000002480)=""/250, 0xfa}, {&(0x7f0000002580)=""/100, 0x64}, {&(0x7f0000002600)=""/191, 0xbf}, {&(0x7f00000026c0)=""/241, 0xf1}, {&(0x7f00000027c0)=""/215, 0xd7}, {&(0x7f00000028c0)=""/228, 0xe4}, {&(0x7f00000029c0)=""/113, 0x71}, {&(0x7f0000002a40)=""/219, 0xdb}, {&(0x7f0000002b40)=""/178, 0xb2}, {&(0x7f0000002c00)=""/146, 0x92}], 0xa, 0x0, 0x0, 0xc559}}, {{&(0x7f0000002d80)=@sco, 0x80, &(0x7f0000002f00)=[{&(0x7f0000002e00)=""/248, 0xf8}], 0x1, &(0x7f0000006040)=""/139, 0x8b, 0x1}, 0x1}], 0x7, 0x2000, &(0x7f0000002f40)={0x0, 0x989680}) sendto$packet(r0, &(0x7f0000000000)="d8eaac17879d985975e05cfc819acde3454bd3f9343b61ea442fa722dbd4507f3bcd069dc69095441c728f86864f7aea2aac3deaba1269507204d6b7e4a20a88f9140a61d71a50e112f7c7a439e12fce8732a9e3089c1f0043ffcf10b90e8b222e0350df4eceb77e8ceff865c9c9df6ddf0b0d0f380b1b29f814f62a2f803f02409c9280a3d59465c5b9c01cd6", 0xfffffffffffffee9, 0x40000, &(0x7f0000002f80)={0x11, 0x16, r1, 0x1, 0x7ffffffffffff, 0x6}, 0x14) rename(&(0x7f0000000100)='./file0\x00', &(0x7f00000062c0)='./control\x00') 2018/05/04 05:58:49 executing program 6: r0 = socket(0x10, 0x80002, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) write(r0, &(0x7f0000df8fd9)="2600000022004701050007008980e8ff06006d20002b1f00c0e9ff094a51f10101c7033500b0", 0x26) connect$netlink(r0, &(0x7f0000000100)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r0, 0x1, 0x40000000008, &(0x7f0000b4bffc), 0x4) sendto(r0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000280)={0x0, 0x1c9c380}, &(0x7f0000000380)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0xfffffffffffffe20) prctl$intptr(0x2b, 0x0) setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x7, 0x4) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)}) 2018/05/04 05:58:49 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:49 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f00000000c0)={0x0, 0x7fff}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000140)={r1, @in6={{0xa, 0x4e21, 0x10000, @mcast2={0xff, 0x2, [], 0x1}, 0x200}}, 0x0, 0x5}, 0x90) r2 = perf_event_open(&(0x7f00006d7000)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082406, &(0x7f0000000080)) 2018/05/04 05:58:49 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x20007ff8, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:49 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x902, 0x2c) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:49 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0xc5, 0x21, &(0x7f0000000040)="bd419949c7ede6aa65cbcceda9012edc5a07d7880eace3537507766c063838470bf5021df304a216424bb1f2dbcddd345f6df83ba2b0b00c44ed1257b975fbfa50b3457428ba587f7d547d44c3bc078b85ba7b30946beb17139c83c1b33fb0d5312c7ede41b9c16f63f2bb98c9f171acace3b64ec85c1563c08947539c24ae0e7d1603893ac12fb5ba7f190ef6dfb26c64fb650b809908d9b2749c107136319e8846130ce5c24d591277f8b7649032dea748c4f3a9fd70e30d4dbee27ae00a94ec37dc5167", &(0x7f0000000140)=""/33, 0x1000, 0x2}, 0x28) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) rmdir(&(0x7f0000000000)='./control\x00') symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:49 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) remap_file_pages(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0x7, 0x4000) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000000080)="8940a0dba81cfb0cc493c8b1b573a26c03b62362896709138cf6d78a5dc46e8e47f51e3d3dfadf089d14209415915c2a654856a984507f4d3c0d0061f9151c46305231d3535245c82a99fc9f1505537d2156e1d800c1071b9190c9d2", 0x5c}, {&(0x7f0000000100)="e3f88e48744ecfcce46b03748907ac6d47f197e2a10226b5072f8977d73fd6204f3e604f1f28ce9bcd02a0f3efad54af02d6cb18", 0x34}, {&(0x7f0000001340)="718778d7f6170c322fc4c08bc05309bb65cd6fd0c942046659391ca4a74afd1dfcd49f0fd3f79462de906f07733b09b22f677b6fb68ccc04f30d7a1ffb5f016030c56ff97c0912f2ade2ef16df14573f8df8c1a00f1f129c70ccf562c97e0e9f56a8a73b8672600004336b3641143026f46c8285629b3b966928e43089f87c4cd9914feb6970981e0436a08c6e4e50280d793b964cd57ef162fb64494778a62401ba0b51fda47f1ae7e9710ef1a281885e97c08c2309f5950a5aa06339110b341c", 0xc1}], 0x4) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000000)={{0x2, 0x4e21, @broadcast=0xffffffff}, {0x306, @random="728778e79a2c"}, 0x6, {0x2, 0x4e20}, 'team_slave_0\x00'}) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 409.821941] FAULT_INJECTION: forcing a failure. [ 409.821941] name failslab, interval 1, probability 0, space 0, times 0 [ 409.833638] CPU: 0 PID: 27036 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 409.840924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 409.850279] Call Trace: [ 409.852884] dump_stack+0x1b9/0x294 [ 409.856533] ? dump_stack_print_info.cold.2+0x52/0x52 [ 409.861739] ? __save_stack_trace+0x7e/0xd0 [ 409.866079] should_fail.cold.4+0xa/0x1a [ 409.870157] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 409.875276] ? save_stack+0x43/0xd0 [ 409.878917] ? kasan_kmalloc+0xc4/0xe0 [ 409.882811] ? __kmalloc+0x14e/0x760 [ 409.886537] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 409.891391] ? htree_dirblock_to_tree+0x563/0xac0 [ 409.896255] ? ext4_htree_fill_tree+0x404/0xd40 [ 409.900936] ? graph_lock+0x170/0x170 [ 409.904747] ? reconnect_path+0x221/0x6f0 [ 409.908904] ? exportfs_decode_fh+0x3cd/0x6d0 [ 409.913409] ? do_handle_open+0x3f8/0x950 2018/05/04 05:58:49 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) ioctl$DRM_IOCTL_AGP_INFO(r0, 0x80386433, &(0x7f0000000340)=""/227) linkat(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00', 0x1000) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) symlink(&(0x7f00000001c0)='./control\x00', &(0x7f0000000240)='./control\x00') mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000100), &(0x7f0000000140)=0x4) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000000)={0x7, 0x70, 0x0, 0x200, 0x81, 0x4, 0x0, 0x3e8, 0x20010, 0x1, 0xeb5, 0x4a, 0x5, 0x56e, 0xca5, 0x1, 0xe8, 0x0, 0x3, 0xfffffffffffffff8, 0x7, 0x7, 0x7, 0x2, 0x2, 0xff, 0x0, 0xea, 0x3, 0x8, 0x0, 0x2, 0x1, 0x101, 0x7, 0x9, 0x6, 0x1f, 0x0, 0x9, 0x2, @perf_config_ext={0x4, 0x9}, 0xc0, 0x100000001, 0x3, 0x5, 0x3, 0x6, 0x4}) ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000180)="0137f0274a388593824089210c7b8ad92b1dc7a200dc7631fe27228cb0e3279d22e85e11237954559002515ab1648b1817d9ca4afc744c8a9bf4c3") rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 409.917562] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 409.922841] ? do_syscall_64+0x1b1/0x800 [ 409.926918] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 409.932290] ? find_held_lock+0x36/0x1c0 [ 409.936367] ? __lock_is_held+0xb5/0x140 [ 409.940445] ? check_same_owner+0x320/0x320 [ 409.944782] ? rcu_note_context_switch+0x710/0x710 [ 409.949724] ? ext4fs_dirhash+0xb23/0x1060 [ 409.953971] __should_failslab+0x124/0x180 [ 409.958215] should_failslab+0x9/0x14 [ 409.962024] __kmalloc+0x2c8/0x760 [ 409.965573] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 409.970261] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 409.975123] ext4_htree_store_dirent+0x8b/0x5a0 [ 409.979807] htree_dirblock_to_tree+0x563/0xac0 [ 409.984501] ? dx_probe+0x1120/0x1120 [ 409.988308] ? save_stack+0xa9/0xd0 [ 409.991944] ? save_stack+0x43/0xd0 [ 409.995580] ? kasan_kmalloc+0xc4/0xe0 [ 409.999475] ? iterate_dir+0x4b0/0x5d0 [ 410.003370] ? get_name+0x51c/0x6a0 [ 410.007003] ? exportfs_get_name+0x1a3/0x240 [ 410.011417] ? reconnect_path+0x221/0x6f0 [ 410.015567] ? exportfs_decode_fh+0x3cd/0x6d0 [ 410.020066] ? do_handle_open+0x3f8/0x950 [ 410.024219] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 410.029334] ? do_syscall_64+0x1b1/0x800 [ 410.033401] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 410.038773] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 410.043975] ext4_htree_fill_tree+0x404/0xd40 [ 410.048474] ? print_usage_bug+0xc0/0xc0 [ 410.052568] ? do_split+0x1bb0/0x1bb0 [ 410.056389] ? __lock_is_held+0xb5/0x140 [ 410.060459] ? trace_raw_output_xprt_ping+0x58/0x180 [ 410.065574] ? ext4_readdir+0x2722/0x3bb0 [ 410.069736] ? rcu_read_lock_sched_held+0x108/0x120 [ 410.074774] ? kmem_cache_alloc_trace+0x616/0x780 [ 410.079620] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 410.084726] ? do_syscall_64+0x1b1/0x800 [ 410.088789] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 410.094171] ? free_rb_tree_fname+0x9c/0xe0 [ 410.098504] ext4_readdir+0x1c82/0x3bb0 [ 410.102480] ? debug_mutex_init+0x1c/0x60 [ 410.106616] ? __ext4_check_dir_entry+0x370/0x370 [ 410.111442] ? lock_acquire+0x1dc/0x520 [ 410.115399] ? iterate_dir+0xd4/0x5d0 [ 410.119182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 410.124699] ? lock_release+0xa10/0xa10 [ 410.128655] ? check_same_owner+0x320/0x320 [ 410.132959] ? rcu_note_context_switch+0x710/0x710 [ 410.137873] ? __might_sleep+0x95/0x190 [ 410.141834] ? down_read_killable+0xaf/0x1f0 [ 410.146234] ? iterate_dir+0xd4/0x5d0 [ 410.150028] ? security_file_open+0x14f/0x1d0 [ 410.154514] ? down_write+0x120/0x120 [ 410.158297] ? do_dentry_open+0x46c/0xf10 [ 410.162435] ? security_file_permission+0x1c6/0x240 [ 410.167433] iterate_dir+0x4b0/0x5d0 [ 410.171149] get_name+0x51c/0x6a0 [ 410.174596] ? _raw_spin_unlock+0x22/0x30 [ 410.178729] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 410.183725] ? find_held_lock+0x36/0x1c0 [ 410.187767] ? exportfs_encode_fh+0x120/0x120 [ 410.192259] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 410.197104] exportfs_get_name+0x1a3/0x240 [ 410.201327] ? get_name+0x6a0/0x6a0 [ 410.204935] ? down_read+0x1b0/0x1b0 [ 410.208650] reconnect_path+0x221/0x6f0 [ 410.212615] exportfs_decode_fh+0x3cd/0x6d0 [ 410.216922] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 410.222532] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 410.227879] ? __fget_light+0x2ef/0x430 [ 410.231838] ? fget_raw+0x20/0x20 [ 410.235277] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 410.240288] ? __check_object_size+0x95/0x5d9 [ 410.244782] ? __might_sleep+0x95/0x190 [ 410.248743] do_handle_open+0x3f8/0x950 [ 410.252699] ? vfs_dentry_acceptable+0x10/0x10 [ 410.257262] ? ksys_write+0x1a6/0x250 [ 410.261050] ? __ia32_sys_read+0xb0/0xb0 [ 410.265097] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 410.269937] __x64_sys_open_by_handle_at+0x76/0xb0 [ 410.274859] do_syscall_64+0x1b1/0x800 [ 410.278740] ? finish_task_switch+0x1ca/0x810 [ 410.283240] ? syscall_return_slowpath+0x5c0/0x5c0 [ 410.288164] ? syscall_return_slowpath+0x30f/0x5c0 [ 410.293078] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 410.298444] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 410.303287] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 410.308459] RIP: 0033:0x455979 [ 410.311628] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 410.319328] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 410.326828] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 410.334090] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 410.342775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 410.350037] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000000f 2018/05/04 05:58:50 executing program 6: r0 = socket(0x40000000015, 0x5, 0x0) accept$unix(r0, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000200)=0xc) setreuid(0x0, r1) setreuid(r1, 0x0) 2018/05/04 05:58:50 executing program 5: r0 = memfd_create(&(0x7f0000000040)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) r1 = socket$vsock_dgram(0x28, 0x2, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) flock(r1, 0x2) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') socket(0x1b, 0x5, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x101000, 0x0) 2018/05/04 05:58:50 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x218, 0x0, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:50 executing program 2 (fault-call:8 fault-nth:16): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000040)) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2018/05/04 05:58:50 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$TTUNGETFILTER(r0, 0x801054db, &(0x7f0000000340)=""/4096) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:50 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x1, 0x10400) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) syz_emit_ethernet(0x3d2, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000000069e70db2377699e008004500002800000000000004014fc14d62a4db3000000000000000003a3cf8bb8c67b4b05cb4f603b92aea91c246a966d7ce78afc7311da0d522b4a1aa32ba25afba1e466ae79c65708a042bea9a445318dac9f8133d35a7cde36160d9d484a32daaed392d75e0addd807174106f9cf99672d13d0d1cc7b09b3a8573be20d2825e3664d0a9", @ANYRES32=0x42424242, @ANYRES32=0x42424242, @ANYBLOB="0000000090780000"], 0x0) 2018/05/04 05:58:50 executing program 4: r0 = memfd_create(&(0x7f0000000180)="002315ca0687c27cba60b49b237e3b63aa949b", 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d0b459a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) lremovexattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='system.advise\x00') getsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000040)=0x3, &(0x7f0000000080)=0x4) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') unlinkat(r0, &(0x7f0000000000)='./control\x00', 0x200) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:50 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='/dev/qat_adf_ctl\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x10000000000000, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x10800, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r1, 0x40405515, &(0x7f0000000080)={0x81, 0x0, 0x6, 0x0, "64889867e160f1e660931567fdd635c791960c509accdc65870ff7248dbaece568d3f0aed0a517f413babbfe", 0x100000001}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, &(0x7f0000000000)={0x1, 0x5}) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:50 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000), &(0x7f0000000040)=0x4) 2018/05/04 05:58:50 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x9000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 410.884175] FAULT_INJECTION: forcing a failure. [ 410.884175] name failslab, interval 1, probability 0, space 0, times 0 [ 410.895511] CPU: 1 PID: 27084 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 410.902783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 410.912127] Call Trace: [ 410.914706] dump_stack+0x1b9/0x294 [ 410.918320] ? dump_stack_print_info.cold.2+0x52/0x52 [ 410.923496] ? __save_stack_trace+0x7e/0xd0 [ 410.927805] should_fail.cold.4+0xa/0x1a [ 410.931851] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 410.936940] ? save_stack+0x43/0xd0 [ 410.940551] ? kasan_kmalloc+0xc4/0xe0 [ 410.944423] ? __kmalloc+0x14e/0x760 [ 410.948122] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 410.952964] ? htree_dirblock_to_tree+0x563/0xac0 [ 410.957792] ? ext4_htree_fill_tree+0x404/0xd40 [ 410.962446] ? graph_lock+0x170/0x170 [ 410.966234] ? reconnect_path+0x221/0x6f0 [ 410.970366] ? exportfs_decode_fh+0x3cd/0x6d0 [ 410.974846] ? do_handle_open+0x3f8/0x950 [ 410.978978] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 410.984068] ? do_syscall_64+0x1b1/0x800 [ 410.988116] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 410.993466] ? find_held_lock+0x36/0x1c0 [ 410.997511] ? __lock_is_held+0xb5/0x140 [ 411.001557] ? async_gen_syndrome+0xff0/0x1980 [ 411.006129] ? check_same_owner+0x320/0x320 [ 411.010436] ? rcu_note_context_switch+0x710/0x710 [ 411.015349] ? ext4fs_dirhash+0xb23/0x1060 [ 411.019570] __should_failslab+0x124/0x180 [ 411.023791] should_failslab+0x9/0x14 [ 411.027577] __kmalloc+0x2c8/0x760 [ 411.031102] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 411.035755] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 411.040586] ext4_htree_store_dirent+0x8b/0x5a0 [ 411.045256] htree_dirblock_to_tree+0x563/0xac0 [ 411.049915] ? dx_probe+0x1120/0x1120 [ 411.053701] ? save_stack+0xa9/0xd0 [ 411.057315] ? save_stack+0x43/0xd0 [ 411.060924] ? kasan_kmalloc+0xc4/0xe0 [ 411.064829] ? iterate_dir+0x4b0/0x5d0 [ 411.068701] ? get_name+0x51c/0x6a0 [ 411.072311] ? exportfs_get_name+0x1a3/0x240 [ 411.076701] ? reconnect_path+0x221/0x6f0 [ 411.080832] ? exportfs_decode_fh+0x3cd/0x6d0 [ 411.085308] ? do_handle_open+0x3f8/0x950 [ 411.089440] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 411.094525] ? do_syscall_64+0x1b1/0x800 [ 411.098568] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 411.103917] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 411.109096] ext4_htree_fill_tree+0x404/0xd40 [ 411.113575] ? print_usage_bug+0xc0/0xc0 [ 411.117622] ? do_split+0x1bb0/0x1bb0 [ 411.121414] ? __lock_is_held+0xb5/0x140 [ 411.125466] ? ext4_readdir+0x2722/0x3bb0 [ 411.129599] ? rcu_read_lock_sched_held+0x108/0x120 [ 411.134601] ? kmem_cache_alloc_trace+0x616/0x780 [ 411.139513] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 411.144599] ? do_syscall_64+0x1b1/0x800 [ 411.148647] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 411.153998] ? free_rb_tree_fname+0x9c/0xe0 [ 411.158312] ext4_readdir+0x1c82/0x3bb0 [ 411.162280] ? debug_mutex_init+0x1c/0x60 [ 411.166420] ? __ext4_check_dir_entry+0x370/0x370 [ 411.171250] ? lock_acquire+0x1dc/0x520 [ 411.175208] ? iterate_dir+0xd4/0x5d0 [ 411.179004] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 411.184530] ? lock_release+0xa10/0xa10 [ 411.188488] ? check_same_owner+0x320/0x320 [ 411.192794] ? rcu_note_context_switch+0x710/0x710 [ 411.197718] ? __might_sleep+0x95/0x190 [ 411.201679] ? down_read_killable+0xaf/0x1f0 [ 411.206079] ? iterate_dir+0xd4/0x5d0 [ 411.209870] ? security_file_open+0x14f/0x1d0 [ 411.214350] ? down_write+0x120/0x120 [ 411.218139] ? do_dentry_open+0x46c/0xf10 [ 411.222275] ? security_file_permission+0x1c6/0x240 [ 411.227282] iterate_dir+0x4b0/0x5d0 [ 411.230996] get_name+0x51c/0x6a0 [ 411.234439] ? _raw_spin_unlock+0x22/0x30 [ 411.238573] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 411.243583] ? find_held_lock+0x36/0x1c0 [ 411.247633] ? exportfs_encode_fh+0x120/0x120 [ 411.252130] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 411.256960] exportfs_get_name+0x1a3/0x240 [ 411.261193] ? get_name+0x6a0/0x6a0 [ 411.264804] ? down_read+0x1b0/0x1b0 [ 411.268509] reconnect_path+0x221/0x6f0 [ 411.272471] exportfs_decode_fh+0x3cd/0x6d0 [ 411.276785] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 411.282396] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 411.287747] ? __fget_light+0x2ef/0x430 [ 411.291705] ? fget_raw+0x20/0x20 [ 411.295150] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 411.300152] ? __check_object_size+0x95/0x5d9 [ 411.304642] ? __might_sleep+0x95/0x190 [ 411.308611] do_handle_open+0x3f8/0x950 [ 411.312577] ? vfs_dentry_acceptable+0x10/0x10 [ 411.317143] ? ksys_write+0x1a6/0x250 [ 411.320928] ? __ia32_sys_read+0xb0/0xb0 [ 411.324978] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 411.329812] __x64_sys_open_by_handle_at+0x76/0xb0 [ 411.334726] do_syscall_64+0x1b1/0x800 [ 411.338602] ? syscall_return_slowpath+0x5c0/0x5c0 [ 411.343525] ? syscall_return_slowpath+0x30f/0x5c0 [ 411.348452] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 411.353806] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 411.358638] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 411.363816] RIP: 0033:0x455979 [ 411.366994] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 411.374694] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:50 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000389000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x121000, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x8, 0x7, 0x5, 0x8, 0xf6}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000001c0)={r1, 0xfd7}, &(0x7f0000000200)=0x248) r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000389000)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000002f00)={0x8, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, r2, 0x0) [ 411.381946] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 411.389200] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 411.396465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 411.403718] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000010 2018/05/04 05:58:51 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) mkdir(&(0x7f0000000000)='./control\x00', 0x7a5405119bf2caee) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) read(r0, &(0x7f0000000480)=""/251, 0xfb) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r5 = dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r5, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0xaaaaaaaaaaaab5f, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2018/05/04 05:58:51 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) lsetxattr(&(0x7f0000000000)='./control\x00', &(0x7f0000000040)=@random={'trusted.', 'cpusetselinux\x00'}, &(0x7f0000000080)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x33, 0x2) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, &(0x7f00000000c0)=0x7, 0x4) 2018/05/04 05:58:51 executing program 2 (fault-call:8 fault-nth:17): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:51 executing program 6: r0 = memfd_create(&(0x7f0000001fcd)='/dev/qat_adf_ctl\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x10000000000000, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x10800, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r1, 0x40405515, &(0x7f0000000080)={0x81, 0x0, 0x6, 0x0, "64889867e160f1e660931567fdd635c791960c509accdc65870ff7248dbaece568d3f0aed0a517f413babbfe", 0x100000001}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, &(0x7f0000000000)={0x1, 0x5}) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) ioctl$RNDCLEARPOOL(r0, 0x5206, &(0x7f0000000000)=0x100) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000000040)="de220b1253baf64b358a09eeb6851cd0481707772a655022e27234d08b6b8ac10a57508faf3f4381632c7e546ad1d30b2f676204dadcd8ec8bcd75b4f6afce0f988377665b6956d3a9d2a1dde2558a81f14f7222dc2156589d4453cfdfb9da55138624c020b7325aa93d5c46661dd6d299fcdcb92bf0600d0a7087bd9c37a072e5195a17a7", 0x85}, {&(0x7f0000000100)="f7ceb496dfc00d7b443a2c2c480816a517ded3bce7b1f8f6820e84c65959f0d5ea1d83dbe5c7a96e3be3b2325ede696dd81b60ae3603ce560546271fc7832b4d07680287ab42f1ac4d44e6a8ec9cf9729bc139e6dce8217318d0cfa09a172054adb2800558b5ff050786fdd35dc5a8f475bb5b1e4ac4ee2d66a322e1043bbde16e6a86de6a7cbd299ee1b31745e4234e", 0x90}, {&(0x7f0000001440)="53b3ff865b7f699936d08014993c915cb125820314ca0677335b97f48f390c5b230f75cbcb0893525d1eb14aeca63a76ca406718c89e33b8d3cc271627549ee0428872aa65485c962881ed59ecced718fa281854c7a5d26638776b12c3db46d46ab9ac1243a5b0e9c259bd", 0x6b}, {&(0x7f0000003000)="81a4c4eb686595497413396d05ac987effcf350d62f3365bbca769d4ab76f7251d2f3f480bb7ba83ccbbf3181dd2b2f528f369f818876eae02e9aef63c97d0e7f56899ab0f8e22e3000024a3cb539ecc60ef0282e9a974b359129c322bd340c445d09c8cbdde01cdfab517b2c84e67007f5346c17ec2736d98d4cdddc58ec8201e718519021dec9fbbf4755d916e70552215abe7e6a08b258776db2a8305455073ae04c4f4a8a80d11e71997ef5d4b8ef8f7d29986ef5dd3845b85eb4bb453bda31cd32b95b6fbf8ca01af73c99934de1d2460be509e544b3c0f7c6c7de114e73d986b986bf3a1e592c0813653c96ce7a1318ee9c416da7c034e9ac5655c949221316fa3de081e118951c074809f4915a5b5755057f326a0a1c4a2e8ad492efcaa7e24a0df36fe66c31fab44b1846382f392e336f7d9c7530744224f8173a65cc7c9d14b4ea30960fe750c8a1792f06d2b49377965e9e4356925c0445afdae4809bd3569a0c07b0eaf36ccc7238ce14b34cc8d39c45d51e6e755cdbf84594635b5163206cefa07ad9ac51dd6f46ba5a7f3db583711f9a0fa24824dce4e66588dd8fefb729155dc6fd8bad4ba93f0dd60b021e508924badef3431af9dc23c65b39080a3148a333da1b92c4822e4be4f14f789f8bb4c08cecbc86a9cc7931d47e75f227c16be55a5db49106d42157257cf435ce22f869959440773c4bdf33538d76e7f9c0aa7edb5bb2f1a937ee9b312e1e6d431f6ff5e72b7475ad1d40ebc30a6c6cb38786421f99dd316906ef0419b8b1a5cc810461aacc9a62b3773e2e43c374f1ba90b8b96ba09dc79ee8897de0acedeb523bd99161552a9488f5ab24ac57112ef34a0defb335849a293c6f1f37bae173fca985cd71b38b5190a783e1bb1fe7a741498f07fe11ea2da6dea92374f6e291e0f4a8e3da90a9748bc596ec4529b0f8d8768c634dca1fb48251922ec32b87cdb81e51b0509358274ec008dd4b422314daea2e79318a8a54ce377ec293de407d64121d7fea0d576870a0db0adde6e857ca2fbd939a88ac03dc72d3503736afc0a0a63b64a7a2d51253bf0475ac2ca7e4820d7d82ea66b2c200ab41a3ec331cf401923f905c13a16b406df333d71b5feb9ffc6acfa563cb9f6cd9a6e429b4ecb26898817b96d36ad50830e500528d92386f43404e8ff3e8927618a3d4fccde69de056d216512bd57763f54e42c702cff4d5801c6b7279fa369bc10f9fb5f6b27873f8c93049bd41deb8a400f1ff0262c3bdfa9ce5b3dde57615dbbfca19ea5915eab0c72b8d3e862c529ef5e38931738fb6a5eed979ea77fa3d3d4ec5e327ee44706ed52aa6945c6bb8d8016d0343c76b24522a59714b96c4e3c108c6f1fe9eebf867300387a00fd720c67d1325ff2fb39dd101cdeac3a9a945dff795554d149deb3b4f47a33cc0c0e0c15948e914b69f77d9cb993b952e825e0cee124bb73ec6451b323861edb9cdbbecdf17ff253b17254a45637a67a665ed6ea9d8351693ff6754ccf7bc61fa756bd61b8b529fa71473d47debd94b7461a939880a7d56b3506b67acd5d2d07b24ee454bf76263a5e05e8ad5bd72141d8ebf52908f60e56003043575f386f6ffa753dcbcc2aa2253660ffa4ad8ca26febae5a7b81aaab0b82f54b25c47b24e40a8fd540a039d8edc13a6936a22cc1af62504dc1cd690671cc5bb9037503ea47f00ffe851eb2d0446e19e7e4e88603b2e75a827e74927e4b7b404aa2f9c0cfc9d276c77a2b3e6d9a5e035777f2e1561cda6a5d9e9e20a189110a846c4dc5e8448356eecbc3ccf1635ed1477ae8d01b2e1532272f02c7470e27eadd98a2c3c93cc7d4266da39647ecc09b0738463c2ec3288053aaf62e64fa2af2942ca3f60c1d02716c87987cf1d7e5e2f14e857805865d6e84f3642b2026057babf49258ebe6dd810adaf3437253b356de8fa974c95928bd02ff9383a7f57a7829e2b21c1138f6decb296679ac0c1000f7f052b6752965c70fac0d67786d4cc0e8175d1bc34fc06fbcaa80aa84cf9177294f0ec3b9ae0c6b19128f6c1842ccc6a88b9cb5ea1926a2a431ed3e9506bf255d7fbb9da38eb0ac1ff7817e1df8cbada57ae9835a209e729b919e64b8aa875aea18fd379f272b2f32c31bc9e4fef80910ca2fc6cab8e2035abcd63237d9847b687204eb6d68e7562bdb2af64ad5aa64be99245215e2eaa2b33dff3603bdc06c0c822fb67c358b03e5b2ddc28035ac460e0771c13c2c3634e824dc56215f340802b00a5030a7b15f70e5dcec4d3bb59997e6c8b94512946a841881f677891e821765874cabd30bbd50ecfeafb65eb804090115c74f6635e68af37e86d75867cf1d7f1959977896cdc969acb8e2ec03854cc66b18d61c7f2328c8623762e9b58a08c6d4f2d20a6a53083c525516bad548f2f7ad3bcb6cfcf0bfd988b5a67747b4740363bef7c2051cccac28fc959636037cbcb82a0c9d03ee78ec2123a45458cb5253078cf346cff9ed1d3c496f3ba0d380ae93221ba9b6006fd2fcf4b7a5396240b3f6f0752d092fc52725dda404353d7edd76ee335d78e5dc498dfa3ab8ef9249a61f2705fd3c6d2127d07e827efd0b0e0642ff7f4fab527d10f14b5dde3903bd01e9c8de179793d286447ddf326ab8755075f394b4fea02b34b1cd50ac0cfc1380b6e4e85a45bc9986e0c8059f73fb1bb928508873a8312bf383469c77fabf3d503d448b77e688908122e380024bfbfbc076267799e9035461e59e8fc8cef5d4d23f719f338b03178df3825e6865617e9a1fbfd8af8b752dfc7fc5a8ca10b4d79c6b7795f329fef0535d30ab21ef7197262074f6eda1d0453226d509a5962df3ce732d537164139a85539a90f11441e2b06ecadbb3b58ba36dc7c11801b3c9238e724dd02714d012ff3f1537836be1eddd68e00a9cd0ae60b366bbe3632992bd397a197de30a97dd5ec8abf30666950c322a7a48a46fd7ffbf8b882909d9e8240c3ee227aa7ede1699dad54a55e84acdecc7b481c01bf150a9b97c5764aed32b793ce25c7c0a297b552afca3fb11ca9638d2ccc6d3fdf8fa99bde486c50b807d4b6fa58614768de408b6037c48be08c7ae127a70c1abceac6dd74343b40b4eac0611a7cd29f85ae9314e32da456265db9c8b8484349d101c98846b0b7cea7dc606e6cb93e46cdc612cab362461ce1ab5ec64baddcad9b4f26ed9348912f00df0b080b7ed8cbb6a39f2ea09c10c2ae3f45fe7494ad3958ddbfcbdb684467b1c07b6a241d44507bec8f6c2dd7bee49a5c0d1ca3db9cc18d4aa9bb4e58c7e38e0e5509b5fa30fb89c5b89affb511966a64f766487b681d28283ff816dff4bd1b8e914bf1ec1179d5cf43c09fbc4c9dd5997b82e598cddabeeb0138e927a83b828fdc4dd3de18aefe01975865d818ca12db1a1686f3fd462e773085065b5928e5a71b65fd8c902401e1fca173f6384d11a87c04beff43166f49ed55313e1b54c7c0ab077f09107547e55f1eab776ad6d809e21faa65bccc9248e9bff9fdfe64176e5928074dfc9f03797fd61890a7f780637ef576f3e3b1697d0e47347ad1e200c6bf331ef32c4536a3514525a37d40eecce67d6f750d7900fcb1f907ad28f02feb534d0867dd5d6ac1bcf7f1b1ee9a7fab627767af160bb35ba48bb6ba78ba321412c485f30e3cb092707cc5f077cf0cf0605c5914d44e0fece825eb9a0e7475a75c3a4b8f81b946d07d799125e148cb36857df9ad177a341c9bcfd22fd779200e80905ff81a1aebeeeef28c516e664a50666a5e8d9b13950937f3169c1aa1f5f672cbae653496c3f453cb4436b1b289a8d9b30a87c39da40deab5240493c6cf526c5a3729a73107d8d78ab9d69c9ff1a68d264f8b0acf8a4280f6e421b248198fadb04562266f5447ab897a29bf0b1d8aeb85e4747dcc1ead054e1e84f1600f651a795dd83b4c9faa086e7ef906c27e8bb7d6da1b0de93ffd70d58950f4222baf2df0ea420493179401a516abf34f5dd9b41b855ba1ae5f3459f3a8a9809676d019df2095f5e3d1c62657ee0cc76a5590ea5e6262a0a97bd78013c5572f789e18087bcb21e09ae1af0b98c1fc6cbcb3cb95c0cee8b8ea86f69c58e1e58da30946a0b99b4e0d9356c378c997811471c53d1b246bfcc9a755859a2d5b4444ec64af6a2c649f8924d95da437b828328516ed6cbb3716725cbf03ec7a9b48f3cd411af4cb9f2c01995cf7ce8a61709269504ad551f2f4f4562c1901c0a252021f2fdde460f4683a08c111aae6defcfbd52323a634a432b844d694dca1e4c35294a238e0e90284988fae0b4e793446c203087b69c97890feaa967d0f39ac9a4dce83198326dffa8055ce9f1c2c4cf437cc3c1dcec856a70e96dc0143fb9315101abda701cb6971eab527cf0a729440a100f9e5d580c304575f60d01d5ad2cfeed82114c3f9519eb7d75ccd2ca5c732981e45748577e0d8aae187a3981345eafc8ca81708ae38ac4623ac33ee9e1ad08ffd5e7bbe1858a159c0eefb4f3f74104b4685e7f1a1277a397a49d5f2602dc31341ecd4fbb33148dd8911c1738fc1b6acb83c6317a83ac8cfb93d3c7d8d907c81cf03d698fe78b69645a5f8b790ba48e9c267e0db354a1d0fd0350b1b8e1210c85c7f963842fe9f8bcf120914c182e9aee1db95ff5499e8d97c493a5010e89685ec4d8bebfb60c6224c8d98c0728dc80d916574d590e31fc1f6736e07b900393a4f65103fd2a1daba1a984f85f05e0f4c415bd9ce043a8d0662ee879abe2542102da5992ce63fd74df9522d0d18f785a0b066146f2368fe50f709693e9c43d9825d53e8ebae045f77f7d4cda2b5f6bb54c3cd63757fb9f56bb2859958bebf493a4a665c329df9ea4a9557f63797379b66f6dd684aeebe5e952b8715533d3c4b7aa0d770466413c823a551c9f9b7b75d4ba159e540b6e521d3cf381d6a357c3e735073c233e690f3a356bfd9956f732e2f8b05b480243c8659ed092eb25f21cebabeff8305473203c46565df3866d256fd2cfbd9b2acd277c4651cb630cce9b57eb5df3851267b0c45987035a4eb59ec63c6f732478b17725f8f444c1321e320316ddc3ac6c895e775fe0f752eba1b12486a2d5971344aebe37b3c433654fd49e46f75020e7246e2c1ecf7bb297f8187d6c25686723f7ad866fc0490a6415fb988b92bdfedd7c45798e7641892eb2691980576e70fbb9894a54686f0f9efaa2e8780e18c3bdc16c89c47c3c994ebc3cf53e7e168179c1fe49f62545268cbd7e8ac60ecb2f90df315adf5fba460260d1b13abb5ab6997f2cbaf70728e6fb0fa5f6b8125ef5d319f90135b72c020a01068bb1b678c707c82d7175f9aae67a03ff32b7e06c3cce8d5864748e8585e367f6d1530a6e1342cc16b8e0e4b583f5639e5a8da01f79cf3e5b000d62690360283967dab18f6d09bff3ac572d4fdb33567ebab77ad8020c041bdb80577fbeccd7adce2a94ea77010d5a5c7baf91b0340cad37ec7f0659c7fd3c6aaf5844104b94e9c2bb0056466a85b205f1b1757dc12060764144e4281e2f59d14f484c51324196d4aee2e0170c0f7865e0c557bc1a31460e10d15b6c9b19652bf4d961ce147fef67fe36aaf9066592d3b7acf5e87ca3dd3fcf9711e5e47735dedf19f617b6041889912754bd651fc540ca75f3a30b40f9f78779491597df77ab3743e1534667c4f2328f49b5f17270b4298f4cb8eefe95ab321779a1a7a56dd6c6f55c235af4b96fa08d641b28b376ab1de5e3b959a71ea0deca0fd5547f4e510dfc8351ff6b385970", 0x1000}], 0x5) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(camellia)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000000c0)=0x0) ptrace$getregset(0x4204, r1, 0x3, &(0x7f0000000100)={&(0x7f0000000380)=""/216, 0xd8}) r2 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000000080)=[{0x0, 0x0, &(0x7f0000002500)=[{&(0x7f0000002640)="2ee766", 0x3}, {&(0x7f0000002480)="966faed0ebcc3568f348cd0d1615e2cbe1b3f418730bafc6b124bf9db137c47095348a7df93b65ed5beb31376d360db64dba07abf6b92c2871b7091c4e", 0x3d}], 0x2, &(0x7f0000000040)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmsg(r2, &(0x7f0000000140)={&(0x7f0000000280)=@sco, 0x80, &(0x7f0000000000)=[{&(0x7f0000001480)=""/4096, 0x1000}], 0x1, &(0x7f0000000200)=""/6, 0x6}, 0x0) inotify_init1(0x800) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000180)={0x512, 0x1, 0x100000000, 0xfffffffffffffff9, 0x2b14, 0x1cb50594, 0x5, 0x0, 0x7fffffff, 0x7, 0xffffffffffffff6b, 0x7ff}) 2018/05/04 05:58:51 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x780a000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:51 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000000480)="82aaabfc6c5b1c7a0270e00d637af19150d09e59a695e5eca5c5ab0458f38fca8bbf14adfe615f1e536e0f35664718c366c4243465d942f602ac25588f1a39855539154e40c91a3d33742b1929573790392d4962fddda9f0c394bffe3a58c45e69222eefe5cd149cf702ba936c944e387165277c0aa950711c35b3e06fb4a6c8841d523a3bd8b1596af691dd8884a3bf76c06f4400000000000000000000000000000000", 0x36e}], 0x65b9) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="7afbb904769434da7b989dd757f65823fd47a1cd165962db6fe19ec014b845666ec143e2846d050362edbcda0616497bd1e06439f2c28a52dd02058d1ba6a58cc1a327770b5cf3c2af7e0c080582faa8f431b1b73b3bdb9660ac9a8640c05ec38902e4ef83a41ff2ab2f7c9e2dc161e2709e5d12ab77019a6d1252cd3b47acec227010abc67f8a901980fc25e15633188e51b005c1e5a9fc739e0f26c834c2eedbc4832a7bd82db489ea9d74df5f4aa28044680bbd323558b22545f38f1b70028f3fc87fc3dfdb883df9f30160a82eefe98aa52309910da40048b7949afac02b89931b5f2333b7e52cde11812e759af8a8c2e5a94c1942f9e9fd4f44664b11cd9922f85f064ab25dd247409afb44c2384de5abb147d75b43426b632dfd116a2202"], &(0x7f0000000040)=0x8) r1 = shmat(0x0, &(0x7f0000004000/0x3000)=nil, 0x6000) shmdt(r1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000340)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(r2, 0x891c, &(0x7f0000000040)={'\x00', {0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}}) dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000580)="b8260b8ec80fc75bf20f01ca660f383337440f20c066350e000000440f22c0b810008ee066b9980100000f320f20e06635000002000f22e066b98b02000066b87500000066ba000000000f30268adf", 0x4f}], 0x1, 0x0, &(0x7f0000000480), 0x0) sysfs$2(0x2, 0x2, &(0x7f0000000380)=""/218) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000600)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f00000002c0)="ba410066b80200000066efbaf80c66b8f3e5ab8266efbafc0cb05bee0f01c80fc71b66b93a0000000f320f01c966b9790200000f323e660f56d22e0fc72cbaf80c66b85c64de8866efbafc0c66b839f6ffff66ef", 0x54}], 0x1, 0x0, &(0x7f0000000340), 0x0) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000000)={0x53}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 411.736954] FAULT_INJECTION: forcing a failure. [ 411.736954] name failslab, interval 1, probability 0, space 0, times 0 [ 411.748396] CPU: 0 PID: 27131 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 411.755680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.765040] Call Trace: [ 411.767656] dump_stack+0x1b9/0x294 [ 411.771299] ? dump_stack_print_info.cold.2+0x52/0x52 [ 411.776501] ? __save_stack_trace+0x7e/0xd0 [ 411.780839] should_fail.cold.4+0xa/0x1a [ 411.784919] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 411.790045] ? save_stack+0x43/0xd0 [ 411.793677] ? kasan_kmalloc+0xc4/0xe0 [ 411.797552] ? __kmalloc+0x14e/0x760 [ 411.801255] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 411.806090] ? htree_dirblock_to_tree+0x563/0xac0 [ 411.810920] ? ext4_htree_fill_tree+0x404/0xd40 [ 411.816373] ? graph_lock+0x170/0x170 [ 411.820164] ? reconnect_path+0x221/0x6f0 [ 411.824297] ? exportfs_decode_fh+0x3cd/0x6d0 [ 411.828787] ? do_handle_open+0x3f8/0x950 [ 411.832922] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 411.838016] ? do_syscall_64+0x1b1/0x800 [ 411.842089] ? find_held_lock+0x36/0x1c0 [ 411.846143] ? __lock_is_held+0xb5/0x140 [ 411.850204] ? check_same_owner+0x320/0x320 [ 411.854515] ? rcu_note_context_switch+0x710/0x710 [ 411.859435] ? ext4fs_dirhash+0xb23/0x1060 [ 411.863662] __should_failslab+0x124/0x180 [ 411.867888] should_failslab+0x9/0x14 [ 411.871891] __kmalloc+0x2c8/0x760 [ 411.875423] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 411.880088] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 411.884942] ext4_htree_store_dirent+0x8b/0x5a0 [ 411.889609] htree_dirblock_to_tree+0x563/0xac0 [ 411.894277] ? dx_probe+0x1120/0x1120 [ 411.898074] ? save_stack+0xa9/0xd0 [ 411.901688] ? save_stack+0x43/0xd0 [ 411.905301] ? kasan_kmalloc+0xc4/0xe0 [ 411.909176] ? iterate_dir+0x4b0/0x5d0 [ 411.913048] ? get_name+0x51c/0x6a0 [ 411.916661] ? exportfs_get_name+0x1a3/0x240 [ 411.921054] ? reconnect_path+0x221/0x6f0 [ 411.925193] ? exportfs_decode_fh+0x3cd/0x6d0 [ 411.929676] ? do_handle_open+0x3f8/0x950 [ 411.933809] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 411.938896] ? do_syscall_64+0x1b1/0x800 [ 411.942944] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 411.948298] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 411.953481] ext4_htree_fill_tree+0x404/0xd40 [ 411.957966] ? print_usage_bug+0xc0/0xc0 [ 411.962027] ? do_split+0x1bb0/0x1bb0 [ 411.965830] ? __lock_is_held+0xb5/0x140 [ 411.969879] ? trace_raw_output_xprt_ping+0x58/0x180 [ 411.974976] ? ext4_readdir+0x2722/0x3bb0 [ 411.979110] ? rcu_read_lock_sched_held+0x108/0x120 [ 411.984121] ? kmem_cache_alloc_trace+0x616/0x780 [ 411.989100] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 411.994197] ? do_syscall_64+0x1b1/0x800 [ 411.998243] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 412.003595] ? free_rb_tree_fname+0x9c/0xe0 [ 412.007907] ext4_readdir+0x1c82/0x3bb0 [ 412.011868] ? debug_mutex_init+0x1c/0x60 [ 412.016017] ? __ext4_check_dir_entry+0x370/0x370 [ 412.020854] ? lock_acquire+0x1dc/0x520 [ 412.024815] ? iterate_dir+0xd4/0x5d0 [ 412.028608] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 412.034133] ? lock_release+0xa10/0xa10 [ 412.038095] ? check_same_owner+0x320/0x320 [ 412.042407] ? rcu_note_context_switch+0x710/0x710 [ 412.047325] ? __might_sleep+0x95/0x190 [ 412.051291] ? down_read_killable+0xaf/0x1f0 [ 412.055697] ? iterate_dir+0xd4/0x5d0 [ 412.059495] ? security_file_open+0x14f/0x1d0 [ 412.063977] ? down_write+0x120/0x120 [ 412.067766] ? do_dentry_open+0x46c/0xf10 [ 412.071909] ? security_file_permission+0x1c6/0x240 [ 412.076916] iterate_dir+0x4b0/0x5d0 [ 412.080625] get_name+0x51c/0x6a0 [ 412.084068] ? _raw_spin_unlock+0x22/0x30 [ 412.088206] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 412.093217] ? find_held_lock+0x36/0x1c0 [ 412.097273] ? exportfs_encode_fh+0x120/0x120 [ 412.101777] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 412.106622] exportfs_get_name+0x1a3/0x240 [ 412.110856] ? get_name+0x6a0/0x6a0 [ 412.114470] ? down_read+0x1b0/0x1b0 [ 412.118178] reconnect_path+0x221/0x6f0 [ 412.122147] exportfs_decode_fh+0x3cd/0x6d0 [ 412.126455] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 412.134845] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 412.140201] ? __fget_light+0x2ef/0x430 [ 412.144167] ? fget_raw+0x20/0x20 [ 412.147606] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 412.152610] ? __check_object_size+0x95/0x5d9 [ 412.157099] ? __might_sleep+0x95/0x190 [ 412.161091] do_handle_open+0x3f8/0x950 [ 412.165058] ? vfs_dentry_acceptable+0x10/0x10 [ 412.169634] ? ksys_write+0x1a6/0x250 [ 412.173423] ? __ia32_sys_read+0xb0/0xb0 [ 412.177472] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 412.182307] __x64_sys_open_by_handle_at+0x76/0xb0 [ 412.187242] do_syscall_64+0x1b1/0x800 [ 412.191119] ? syscall_return_slowpath+0x5c0/0x5c0 [ 412.196051] ? syscall_return_slowpath+0x30f/0x5c0 [ 412.200971] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 412.206325] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 412.211158] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 412.216334] RIP: 0033:0x455979 [ 412.219508] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 412.227203] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 412.234559] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 412.241811] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 412.249068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 412.256324] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000011 2018/05/04 05:58:51 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) r1 = getpgrp(0x0) timer_create(0x6, &(0x7f0000000000)={0x0, 0x1b, 0x6, @tid=r1}, &(0x7f0000000040)) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f00000000c0)={{0x57f9, 0x3, 0x7, 0x10001, "12da98d9466596e9a2b13a5cb5ae5b2cc51ff1848186fc1761c5e6d5c8025cd66c09771052e7799d12fb601a", 0x6}, 0x0, 0x0, 0xc671, r1, 0x9, 0x8000, "5a980df7f5ed56fcd8d76834c6ccf55ae99bc2d444c7cdaa32993306a2fb66dc5e4fcd45dcf94d3488fbbe4a9ea8b8e7026710ae12945dabf12e0035716eeeb3", &(0x7f0000000080)='\x00', 0x1, [], [0x3, 0x1, 0x384, 0x1d80]}) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xc020000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:51 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c462000042b05000000000000000300030001800000d7000000000000004000000000000000c403000000000000ff7f0000030038000200cd0e0000090007000070ac100000dd08000000000000f7ffffffff0400ff030000000000000006000000000000000500000000000000ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000053a5f43433584ce40000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x178) writev(r0, &(0x7f0000000000), 0x0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f00000000c0)='./control\x00', &(0x7f0000000040)='./file0\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:51 executing program 6: prctl$intptr(0x1c, 0x64) io_setup(0xff, &(0x7f0000000000)=0x0) r1 = socket$inet6_dccp(0xa, 0x6, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x200000, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$RNDZAPENTCNT(r2, 0x5204, &(0x7f00000002c0)=0x5) r4 = syz_open_dev$midi(&(0x7f0000000200)='/dev/midi#\x00', 0x8, 0x80000) io_submit(r0, 0x2, &(0x7f0000000280)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0xfff, r1, &(0x7f0000000040)="dc751f547f5f630499de66495044f344db0ecb5036e43ba54ae91b650ef45a504b4595a4d9db7a0372447f1b9b7c0d7d67dbe5d3c0960a5c4c0d5b4af52690d9374231a81b836723f3bd0e9a80d0ab278f53e7b634a1042791b3a3c8bac6dd64c2a71410973afef3c458a08d47865f22fcb6f6a952499b45abe71a6966a24f09c6fea88fc93c891e5ee2b4b5cbe9aaaa6c9e", 0x92, 0x2, 0x0, 0x2283532d22a329ce, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x6, 0x4, r3, &(0x7f0000000180)="5b4adecde48c8453dcd3e0dae345271bfc0c01005a2a873a701afbdb9228a0c05e4452d69345c7898b22ce4882bc23b9e1db4509b12df8e3666fd7e5ca13778f97fb3891b29d33c14b9ad087bae9b8958729c6fedd16219b382820", 0x5b, 0xffffffffffffff90, 0x0, 0x0, r4}]) prctl$intptr(0x1c, 0x7ffff7fffffffffe) io_destroy(r0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r2, 0x84, 0x1c, &(0x7f0000000300), &(0x7f0000000340)=0x4) 2018/05/04 05:58:51 executing program 0: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$KDENABIO(r1, 0x4b36) getsockopt(r0, 0x2000000000010d, 0xa, &(0x7f0000003ffc)=""/4, &(0x7f0000000000)=0x4) 2018/05/04 05:58:51 executing program 2 (fault-call:8 fault-nth:18): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:51 executing program 7: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x41, 0x0) timerfd_gettime(r0, &(0x7f0000000040)) perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 2018/05/04 05:58:52 executing program 6: r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x80000000, 0x121000) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x3f, 0x200, 0x3, 0x2, 0x4, 0x0, 0xf6}, 0x1c) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0xce) ioctl$TIOCEXCL(r0, 0x540c) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x800bf, 0x0) ioctl$TCSETS(r2, 0x40045436, &(0x7f0000000000)) 2018/05/04 05:58:52 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) fgetxattr(r0, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', &(0x7f0000000040)=""/1, 0x1) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 412.518868] FAULT_INJECTION: forcing a failure. [ 412.518868] name failslab, interval 1, probability 0, space 0, times 0 [ 412.530221] CPU: 0 PID: 27178 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 412.537621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 412.546977] Call Trace: [ 412.549672] dump_stack+0x1b9/0x294 [ 412.553306] ? dump_stack_print_info.cold.2+0x52/0x52 [ 412.558489] ? __save_stack_trace+0x7e/0xd0 [ 412.562808] should_fail.cold.4+0xa/0x1a [ 412.566866] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 412.571961] ? save_stack+0x43/0xd0 [ 412.575573] ? kasan_kmalloc+0xc4/0xe0 [ 412.579445] ? __kmalloc+0x14e/0x760 [ 412.583149] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 412.587978] ? htree_dirblock_to_tree+0x563/0xac0 [ 412.592806] ? ext4_htree_fill_tree+0x404/0xd40 [ 412.597461] ? graph_lock+0x170/0x170 [ 412.601264] ? reconnect_path+0x221/0x6f0 [ 412.605398] ? exportfs_decode_fh+0x3cd/0x6d0 [ 412.609881] ? do_handle_open+0x3f8/0x950 [ 412.614029] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 412.619119] ? do_syscall_64+0x1b1/0x800 [ 412.623172] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 412.628552] ? find_held_lock+0x36/0x1c0 [ 412.632608] ? __lock_is_held+0xb5/0x140 [ 412.636670] ? check_same_owner+0x320/0x320 [ 412.640984] ? rcu_note_context_switch+0x710/0x710 [ 412.645921] ? ext4fs_dirhash+0xb23/0x1060 [ 412.650151] __should_failslab+0x124/0x180 [ 412.654378] should_failslab+0x9/0x14 [ 412.658165] __kmalloc+0x2c8/0x760 [ 412.661695] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 412.666354] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 412.671185] ext4_htree_store_dirent+0x8b/0x5a0 [ 412.675873] htree_dirblock_to_tree+0x563/0xac0 [ 412.680541] ? dx_probe+0x1120/0x1120 [ 412.684333] ? save_stack+0xa9/0xd0 [ 412.687947] ? save_stack+0x43/0xd0 [ 412.691560] ? kasan_kmalloc+0xc4/0xe0 [ 412.695436] ? iterate_dir+0x4b0/0x5d0 [ 412.699309] ? get_name+0x51c/0x6a0 [ 412.702920] ? exportfs_get_name+0x1a3/0x240 [ 412.707316] ? reconnect_path+0x221/0x6f0 [ 412.711451] ? exportfs_decode_fh+0x3cd/0x6d0 [ 412.715930] ? do_handle_open+0x3f8/0x950 [ 412.720063] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 412.725154] ? do_syscall_64+0x1b1/0x800 [ 412.729200] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 412.734551] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 412.739736] ext4_htree_fill_tree+0x404/0xd40 [ 412.744219] ? print_usage_bug+0xc0/0xc0 [ 412.748272] ? do_split+0x1bb0/0x1bb0 [ 412.752091] ? __lock_is_held+0xb5/0x140 [ 412.756148] ? ext4_readdir+0x2722/0x3bb0 [ 412.760281] ? rcu_read_lock_sched_held+0x108/0x120 [ 412.765297] ? kmem_cache_alloc_trace+0x616/0x780 [ 412.770125] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 412.775214] ? do_syscall_64+0x1b1/0x800 [ 412.779260] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 412.784624] ? free_rb_tree_fname+0x9c/0xe0 [ 412.788939] ext4_readdir+0x1c82/0x3bb0 [ 412.792904] ? debug_mutex_init+0x1c/0x60 [ 412.797063] ? __ext4_check_dir_entry+0x370/0x370 [ 412.801897] ? lock_acquire+0x1dc/0x520 [ 412.805861] ? iterate_dir+0xd4/0x5d0 [ 412.809651] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 412.815184] ? lock_release+0xa10/0xa10 [ 412.819148] ? check_same_owner+0x320/0x320 [ 412.823459] ? rcu_note_context_switch+0x710/0x710 [ 412.828381] ? __might_sleep+0x95/0x190 [ 412.832345] ? down_read_killable+0xaf/0x1f0 [ 412.836739] ? iterate_dir+0xd4/0x5d0 [ 412.840542] ? security_file_open+0x14f/0x1d0 [ 412.845372] ? down_write+0x120/0x120 [ 412.849164] ? do_dentry_open+0x46c/0xf10 [ 412.853308] ? security_file_permission+0x1c6/0x240 [ 412.858325] iterate_dir+0x4b0/0x5d0 [ 412.862037] get_name+0x51c/0x6a0 [ 412.865480] ? _raw_spin_unlock+0x22/0x30 [ 412.869621] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 412.874624] ? find_held_lock+0x36/0x1c0 [ 412.878675] ? exportfs_encode_fh+0x120/0x120 [ 412.883186] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 412.888033] exportfs_get_name+0x1a3/0x240 [ 412.892458] ? get_name+0x6a0/0x6a0 [ 412.896073] ? down_read+0x1b0/0x1b0 [ 412.899783] reconnect_path+0x221/0x6f0 [ 412.903760] exportfs_decode_fh+0x3cd/0x6d0 [ 412.908072] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 412.913685] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 412.919039] ? __fget_light+0x2ef/0x430 [ 412.923016] ? fget_raw+0x20/0x20 [ 412.926459] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 412.931462] ? __check_object_size+0x95/0x5d9 [ 412.935951] ? __might_sleep+0x95/0x190 [ 412.939924] do_handle_open+0x3f8/0x950 [ 412.943896] ? vfs_dentry_acceptable+0x10/0x10 [ 412.948462] ? ksys_write+0x1a6/0x250 [ 412.952250] ? __ia32_sys_read+0xb0/0xb0 [ 412.956299] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 412.961134] __x64_sys_open_by_handle_at+0x76/0xb0 [ 412.966057] do_syscall_64+0x1b1/0x800 [ 412.969930] ? finish_task_switch+0x1ca/0x810 [ 412.974418] ? syscall_return_slowpath+0x5c0/0x5c0 [ 412.979337] ? syscall_return_slowpath+0x30f/0x5c0 [ 412.984258] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 412.989611] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 412.994584] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 412.999772] RIP: 0033:0x455979 [ 413.002968] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 413.010667] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:52 executing program 0: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000240)=0xc) getresuid(&(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)=0x0) sendmsg$nl_generic(r0, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x3000100}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)=ANY=[@ANYBLOB="e80000003b00010029bd7000fddbdf251f00000079d12e464496621483fd8c4779a338e19624866b97a4acc8c54776e0d89ffbb22ae8cc2178bb88b8fad59a602c0002002f70726f632f7379732f6e65742f697076342f76732f73796e635f736f636b5f73697a650000000008008000", @ANYRES32=r1, @ANYBLOB='\b\x00h\x00', @ANYRES32=r2, @ANYBLOB="5c553b070f23356ae2cb797e11fcb85d11d58fb623cdda2c323ae867e21299ffed36675c281219f542a283fcc372e4f4d8eb9a4fb84d90444a3cf4151ceac0553dba57716a160250cbb5a48d022ca70f9708397c7b2da3bab836bb55dfca5e64fb3c8590693762a73a96a7cf"], 0xe8}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, &(0x7f0000000140)) fstat(r0, &(0x7f00000001c0)) fchownat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0) 2018/05/04 05:58:52 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000340)={r0, r0, 0x7, 0x5, &(0x7f00000000c0)="9ddeb80cc71de81d355e4e57911d7592b0a3335f8ce094214a6538ff35dd91fda49e28235b2db19da41c4f25323aab9953b60bff2156755a7a4ff6ea44cf2129cb14a753804ee94f3d004b5306775dfb343065289b742bf4d32a4998f362a6ef64fc0c1ce9e1d87f807d6bbdf5fa590e560bd72ce61a2b59595b3981a9558039455936e37f61a561f06bce21c844e123914f2091440e62afc125e7dfdc9704896f22c23a41a9d298ef57d84f91699f39de483297270ca6ba16632c35070b01db2a84685d987cbcb409212623e96e82ef87e6257d1c7918", 0x100000001, 0x7, 0x912f, 0x19, 0x7, 0x1, 0x6, "5afac70287d8884c4e0c03424bb73e316ceeb487f523c9585b06abd936b594c117d07a836118b021ad410a628e4a601e6537634cedeb7a569cc3864c87fc663241b3117a190dc819539c836b4caa63855e344c1da5767567003e504d73aa445a6c0931b3e1264ea43e526bc46b3c2f7d6a9884ce7ef324d2eefa6211a7d2292315bf99d8cbfe7a38271422e1d2a44e1888"}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:52 executing program 1: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x202040, 0x0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040), &(0x7f0000000080)=0x14) r1 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000001740)={0x0, 0xffffffff}, &(0x7f0000001780)=0x8) sendmmsg$inet_sctp(r0, &(0x7f0000001800)=[{&(0x7f00000001c0)=@in6={0xa, 0x4e23, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0xffffffffffffff07}, 0x1c, &(0x7f00000016c0)=[{&(0x7f0000000240)="a21c0de9e20897576203a55382fce2bf21a39c581af8a3a56c43f23e8dd7f9bbe1e0cdbe3a114d79ee92d5a712749ca707906b751d603253897c90227b081f2ddc1710ea24f71e74c6673b4df8081200e84cd8dbdcc6ee0a425f7d5bae1270471a2041f345697a9b3534025e67a7f665fdc52f80570710ed03ed48def4e3f44e001baffaca313b6475cb831cf5c9ffb4951a51976364c8e0205f1f36e7e494043d7658e8f5ab22ca1d2d9ae2dffce519756bc80a79799fac4a0a6adadc07ec6790c0e16ef7e3ce5cc87593cd887d315557c8bd9e24530b2fec0da8ac3c202328ec844e379a0cd97c4ad2421ca8d33349fa3ebba46403be8fea", 0xf9}, {&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="031b678b06dcb71b5cd7257f2f255106c0aa86d9c7ea7107ec8c2146fe9b2d9f3305fb55d227e5df2594e17159ca44351ab913320759278feed5c4db6789fea6467923d2a91890863e830b194687b00a606dd524a4fbc5e679e7e11dc4dd7711de4873e7c6dc692a7b9a7243616ee2bbb6856174db1cdd2d4c0e3a6675404a8df6b7ccc1d16bce071b6513fa74267563a55d66b027a62d64ec2fe58064e090d526b35be638453dd096e17dc796c4a25873b4fa223b65df3cda0cb841ec8eff298f6188d8e09a", 0xc6}, {&(0x7f0000001440)="ce15993fd774b8cb31846c074ce17618213e936fe66c4fb700ea3eba4011cf6ef5b134784f1ad831757040cc18f84689a0626fd5091cd1f334846ab1f28999e3047f492e", 0x44}, {&(0x7f00000014c0)="422cda387685073f210a50f5b95ae2ad8b658b900c26894789fc9046da10d353d590261be1b61aa9d3313f1ba86b770fef39ced9cc894a126681949cdfe08cb24f5811fb44ba35194252fb3f947919daa0e803dde43e03e0a77bbbc353306452828f132258721bf8dde53072cc0dbc6bcdf51df40c4f088cb991315c0a3516c48a03f991ac23ed9cef0aaafa9eb3c5a98b5b1e7b1c4022a63c55c3cbfe45d8f9637c55a4599bb44e30d63755248b2b10eb238c18fa9a55003281ce329393236bd637ec098eb35b8d101c00f52e2c9efd", 0xd0}, {&(0x7f00000015c0)="c0434b63b631eb085e6855ad4489f4eb9c1dbd373e886f00d5a5152f8bd3717266a82f53bab85d0aa7e95a5c6b10b1c42ae1a9365cfc0a9af33e66e855faa9be1782a8dea5d7cb3e288ffce569d3b868c149d55f02d07ee302e87f99215c53d14f77c873f3435eed48990f683718d8c298369371ddafb91ba7507a54017579537379864b97ec359e2920bfc49f6ae0609289b7ab2874e89307dd0a51cb92f2b5940f782a9901d8037911e325d700a1e7ae312613a92f1ba867f63872bf156ad17d1c63563c7e222d8eb514e43b75b4ecc9f3a0c03be88db63ca4e8c2234f0b42c4c98c1f781e79ac70a99885fa0e", 0xee}], 0x6, &(0x7f00000017c0)=[@sndinfo={0x20, 0x84, 0x2, {0x7fff, 0x8201, 0xdbb4, 0xd891, r2}}], 0x20, 0x4}], 0x1, 0x4000000) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r1, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r1, &(0x7f0000000180)=[{&(0x7f00000000c0)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000100)='./control\x00', &(0x7f0000000140)='./control\x00') [ 413.017922] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 413.025178] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 413.032443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 413.039698] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000012 2018/05/04 05:58:52 executing program 6: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000980)={&(0x7f0000000200)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @loopback}}}, 0x80, &(0x7f00000008c0), 0x0, &(0x7f0000000940)=""/24, 0x18}, 0x2040) sendmsg$kcm(r1, &(0x7f0000000540)={&(0x7f0000000000)=@pptp={0x18, 0x2, {0x3}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000100)="263746e1d1f580b9fa350398c3e1bb0bd7eb558bf7f78644baf483b03bbb6ba15dd9119ae7af41d6584d9a1c756ee7622b7612e2841fad751cda00ed98d0a431faa14b242bbfc733b374654e681699", 0x4f}, {&(0x7f0000000080)="c2fd", 0x2}, {&(0x7f0000000180)="e152a1c857d551", 0x7}, {&(0x7f00000001c0)="af8d1c829e0a4387145e5789d201a28ab8d229c6eff7d702ba453452f1dc6f37c59aeffe1611b626016461", 0x2b}], 0x4, &(0x7f00000002c0)=[{0xb8, 0x10a, 0x4, "8f0ffdbc9e9116959d20528cb93ec2867d027b29c680f0e012113278796a65b92fa7e86da70696f7055e981b8a9ddada410c4752ca9fec389ede7d29662626215c506f4559f632e390a267242995a59a0b964729eb7b97739fc3f3274e6e84b9fcc6214f86025a5848e32ea2be7e6e3a55918236a1f1a35f84ef9d644ea23c1bd44d9d87b9567496c196ef1d12708804f8869fe47bbe2156b74733857ad1f92b0118699e1523a898"}, {0xe8, 0x103, 0xe465, "e35408a78afb0e19dabc27f859e650a8269903e7219aeb7b934a30a7507fdf79718a394c018a7e6225e2736fadb24c1bd9cd1a0200ecafc129158bb0d614f682b84e7ab5fe4a5ada5b2bfcf35658e9fad192cd3693f866d17e09a9f4ec5a04cba1a4381f44483d7bc1f3bed96ef7168200f3cfc5fdf25eff4640704837afa978d0d7d696b92f142dd7c4c338b1c065f25c9d144490f7e9704d1f2bc2cbe1a510f96dc15de519743e948f41f3419fb97f4bbdfd7e88ea76d6d3fd267ad9ba841dc341db8da1c7b86d01857c8ee30381959209"}, {0x90, 0x18b, 0x15, "503745c7f41fc2dc33e33f952dc38f65c623733a9f72f63a154d31152b2f71d287a22939ec4a92ae97920d3496a7035fa85b096157cec142efead03de1f28ee9e96b08550ebf0cf077738bd07561440290b42df5daa9da9c1849d42449c8fb4c699148b57c2e76fe924548c201ccb114e41b88f2acafa0967e"}, {0x40, 0x11, 0x1800000, "ad3955f628d85f5c4abc433056dccc54c53cc6e647bf49081d31f7c917258baca1efc4e256d649fbb67c89a0"}], 0x270, 0x24040800}, 0x0) 2018/05/04 05:58:52 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) ioctl$sock_bt(r0, 0x5411, &(0x7f0000000000)="7e9a19d881ba99e596903d1d2ba7d6d99c904282c5848287300687062857303117fd5831d884245f1439015c7bd4a520e7e2708c8a740e379517d9e5409362ef762c0706ebd21ab99025305fc3f11cd08debe2e6492d50b145a5a3007cbbca6e69ec6bab5890e3dd45bce56dc15a5ca41621b73f47326b0f51cc8ff67db030f35bb92ffd5c73080e1ee00fc32624d251e76a1596") 2018/05/04 05:58:52 executing program 0: r0 = syz_open_dev$tun(&(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x4001}) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)=0x3) 2018/05/04 05:58:52 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) fcntl$setlease(r0, 0x400, 0x0) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./control\x00') getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000040)=0x8) fdatasync(r0) 2018/05/04 05:58:52 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x80010, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') sync_file_range(r0, 0x1, 0x3, 0x2) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)=0x0) mq_open(&(0x7f0000000080)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0, 0x20, &(0x7f00000000c0)={0x9, 0x7, 0x9, 0x5f684e35, 0x0, 0xffff, 0x2, 0x8b}) ioctl$KDDELIO(r0, 0x4b35, 0x6) sched_rr_get_interval(r1, &(0x7f0000000040)) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:52 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x40020000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:52 executing program 2 (fault-call:8 fault-nth:19): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:52 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='oom_adj\x00') setsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000100)=0x80, 0x4) sendmsg$nl_xfrm(r0, &(0x7f0000001b40)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000001b00)={&(0x7f00000019c0)=ANY=[@ANYBLOB="c00000001b00010300000000000000007f000001000000000000000000000000e000000100000000000000000000000000000000000000000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b16b6e0000000000000000001800000000000000"], 0xc0}, 0x1}, 0x0) r2 = dup3(r0, r0, 0x80000) getsockopt$inet6_dccp_int(r2, 0x21, 0x1b, &(0x7f0000000040), &(0x7f0000000080)=0x4) 2018/05/04 05:58:52 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) semget$private(0x0, 0x0, 0x1) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000004, 0x401d, r0, 0x0) syz_extract_tcp_res(&(0x7f0000000180), 0x80000001, 0x101) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={0x0, 0x80000, r0}) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000100)={0x0, 0x0, 0x10000}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000140)={r1, r2}) getsockname$unix(r0, &(0x7f0000000000), &(0x7f00000000c0)=0x6e) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 413.373967] FAULT_INJECTION: forcing a failure. [ 413.373967] name failslab, interval 1, probability 0, space 0, times 0 [ 413.385298] CPU: 1 PID: 27231 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 413.392580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 413.401942] Call Trace: [ 413.404548] dump_stack+0x1b9/0x294 [ 413.408194] ? dump_stack_print_info.cold.2+0x52/0x52 [ 413.413402] ? __save_stack_trace+0x7e/0xd0 [ 413.417744] should_fail.cold.4+0xa/0x1a [ 413.421827] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 413.426953] ? save_stack+0x43/0xd0 [ 413.430592] ? kasan_kmalloc+0xc4/0xe0 [ 413.434490] ? __kmalloc+0x14e/0x760 [ 413.438212] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 413.443068] ? htree_dirblock_to_tree+0x563/0xac0 [ 413.447923] ? ext4_htree_fill_tree+0x404/0xd40 [ 413.452607] ? graph_lock+0x170/0x170 [ 413.456419] ? reconnect_path+0x221/0x6f0 [ 413.460580] ? exportfs_decode_fh+0x3cd/0x6d0 [ 413.465086] ? do_handle_open+0x3f8/0x950 [ 413.469245] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 413.474360] ? do_syscall_64+0x1b1/0x800 [ 413.478427] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 413.483811] ? find_held_lock+0x36/0x1c0 [ 413.487887] ? __lock_is_held+0xb5/0x140 [ 413.491969] ? check_same_owner+0x320/0x320 [ 413.496284] ? rcu_note_context_switch+0x710/0x710 [ 413.501204] ? ext4fs_dirhash+0xb23/0x1060 [ 413.505434] __should_failslab+0x124/0x180 [ 413.509658] should_failslab+0x9/0x14 [ 413.513451] __kmalloc+0x2c8/0x760 [ 413.516984] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 413.521645] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 413.526482] ext4_htree_store_dirent+0x8b/0x5a0 [ 413.531155] htree_dirblock_to_tree+0x563/0xac0 [ 413.535830] ? dx_probe+0x1120/0x1120 [ 413.539622] ? save_stack+0xa9/0xd0 [ 413.543241] ? save_stack+0x43/0xd0 [ 413.546869] ? kasan_kmalloc+0xc4/0xe0 [ 413.550749] ? iterate_dir+0x4b0/0x5d0 [ 413.554623] ? get_name+0x51c/0x6a0 [ 413.558237] ? exportfs_get_name+0x1a3/0x240 [ 413.562632] ? reconnect_path+0x221/0x6f0 [ 413.566768] ? exportfs_decode_fh+0x3cd/0x6d0 [ 413.571248] ? do_handle_open+0x3f8/0x950 [ 413.575381] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 413.580474] ? do_syscall_64+0x1b1/0x800 [ 413.584525] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 413.589880] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 413.595065] ext4_htree_fill_tree+0x404/0xd40 [ 413.599549] ? print_usage_bug+0xc0/0xc0 [ 413.603605] ? do_split+0x1bb0/0x1bb0 [ 413.607412] ? __lock_is_held+0xb5/0x140 [ 413.611476] ? ext4_readdir+0x2722/0x3bb0 [ 413.615621] ? rcu_read_lock_sched_held+0x108/0x120 [ 413.620635] ? kmem_cache_alloc_trace+0x616/0x780 [ 413.625465] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 413.630553] ? do_syscall_64+0x1b1/0x800 [ 413.634599] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 413.639953] ? free_rb_tree_fname+0x9c/0xe0 [ 413.644263] ext4_readdir+0x1c82/0x3bb0 [ 413.648234] ? debug_mutex_init+0x1c/0x60 [ 413.652383] ? __ext4_check_dir_entry+0x370/0x370 [ 413.657225] ? lock_acquire+0x1dc/0x520 [ 413.661187] ? iterate_dir+0xd4/0x5d0 [ 413.664978] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 413.670505] ? lock_release+0xa10/0xa10 [ 413.674468] ? check_same_owner+0x320/0x320 [ 413.678788] ? rcu_note_context_switch+0x710/0x710 [ 413.683710] ? __might_sleep+0x95/0x190 [ 413.687680] ? down_read_killable+0xaf/0x1f0 [ 413.692074] ? iterate_dir+0xd4/0x5d0 [ 413.695861] ? security_file_open+0x14f/0x1d0 [ 413.700343] ? down_write+0x120/0x120 [ 413.704137] ? do_dentry_open+0x46c/0xf10 [ 413.708286] ? security_file_permission+0x1c6/0x240 [ 413.713298] iterate_dir+0x4b0/0x5d0 [ 413.717011] get_name+0x51c/0x6a0 [ 413.720457] ? _raw_spin_unlock+0x22/0x30 [ 413.724596] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 413.729604] ? find_held_lock+0x36/0x1c0 [ 413.733654] ? exportfs_encode_fh+0x120/0x120 [ 413.738162] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 413.743007] exportfs_get_name+0x1a3/0x240 [ 413.747238] ? get_name+0x6a0/0x6a0 [ 413.750853] ? down_read+0x1b0/0x1b0 [ 413.754561] reconnect_path+0x221/0x6f0 [ 413.758534] exportfs_decode_fh+0x3cd/0x6d0 [ 413.762846] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 413.768459] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 413.773812] ? __fget_light+0x2ef/0x430 [ 413.777783] ? fget_raw+0x20/0x20 [ 413.781224] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 413.786230] ? __check_object_size+0x95/0x5d9 [ 413.790729] ? __might_sleep+0x95/0x190 [ 413.794701] do_handle_open+0x3f8/0x950 [ 413.798666] ? vfs_dentry_acceptable+0x10/0x10 [ 413.803244] ? ksys_write+0x1a6/0x250 [ 413.807039] ? __ia32_sys_read+0xb0/0xb0 [ 413.811088] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 413.815936] __x64_sys_open_by_handle_at+0x76/0xb0 [ 413.820873] do_syscall_64+0x1b1/0x800 [ 413.824751] ? finish_task_switch+0x1ca/0x810 [ 413.829234] ? syscall_return_slowpath+0x5c0/0x5c0 [ 413.834152] ? syscall_return_slowpath+0x30f/0x5c0 [ 413.839075] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 413.844433] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 413.849269] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 413.854441] RIP: 0033:0x455979 [ 413.857617] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 413.865313] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:52 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x3) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:52 executing program 6: r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt(r0, 0x65, 0x3, &(0x7f0000000040), 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x1, 0x4244, &(0x7f0000000000)=[0x0, 0x0], 0x2}, 0x20) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0x80, 0x4) 2018/05/04 05:58:53 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000180)=0xa, &(0x7f0000000400)=0x2ad) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000880)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000040)=0xa) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x32, @remote={0xac, 0x14, 0x14, 0xbb}, 0x4e20, 0x0, 'sed\x00', 0x3c, 0xffffffff, 0xa}, 0x2c) connect$llc(r0, &(0x7f0000000140)={0x1a, 0x30f, 0x6, 0x1, 0x5, 0x3, @random="0e79499ecbe3"}, 0x10) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000100)={'veth1_to_bridge\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}}) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000080)={r1, 0x9}, &(0x7f00000000c0)=0x8) symlink(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)='./file1\x00') setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000340)={0xfffffffffffffffd, {{0x2, 0x4e24, @rand_addr=0x100000001}}}, 0x88) ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000440)={0x9, 0x0, [{0xa, 0x65d, 0x3, 0x80000000000000, 0x989, 0x6, 0x7}, {0x80000001, 0x78cf, 0x4, 0x80000001, 0x7, 0x1ff, 0x6}, {0x40000000, 0xffffffffffffff00, 0x2, 0x1, 0x676, 0x8, 0x80000001}, {0x80000007, 0x8, 0x2, 0x3, 0x7fffffff, 0x7fff, 0x800}, {0x80000006, 0x800, 0x5, 0x1f, 0x8, 0x400}, {0x80000019, 0x8, 0x3, 0x100000001, 0x400, 0x80000000, 0x7ff}, {0x8000001f, 0x9, 0x3, 0x48, 0x7fff, 0x7, 0xfff}, {0x7, 0x7, 0x4, 0x7, 0x3, 0x4, 0xfffffffffffffff9}, {0xf, 0x80000000, 0x1, 0x10001, 0x17, 0x1, 0x3f}]}) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:53 executing program 0: syz_mount_image$msdos(&(0x7f00000001c0)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400100401000200027400f8", 0x16}], 0x0, &(0x7f00000002c0)={[{@check_strict='check=strict', 0x2c}]}) open$dir(&(0x7f00000000c0)='./file0/f.le0\x00', 0x40, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x40000, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000040)={0x0, 0x0, 0x7, [0xff, 0x4, 0x6, 0xe, 0xf8, 0x100000001, 0x4]}, &(0x7f0000000080)=0x16) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000140)={r1, 0x5}, &(0x7f0000000180)=0x8) [ 413.872567] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 413.879820] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 413.887076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 413.894328] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000013 2018/05/04 05:58:53 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mount(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='devtmpfs\x00', 0x40004, &(0x7f0000000580)="ab3776372c7193eb2d7169d75c8167c76db6e3bfa53ab1edd15336552df012061b2985a1d3621c570bc0a0ac1f0b871b0265a580f356de95ed2e5a6904a863403bf04bada5bd3815f82f92eba1") mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') r1 = shmget$private(0x0, 0x1000, 0x80, &(0x7f0000004000/0x1000)=nil) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@mcast1}}, &(0x7f0000000000)=0xe8) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@dev}}, &(0x7f0000000240)=0xe8) r5 = getgid() r6 = gettid() ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000002c0)=0x0) shmctl$IPC_SET(r1, 0x1, &(0x7f0000000440)={{0x8800, r2, r3, r4, r5, 0x10, 0x10000}, 0x7fff, 0x5, 0x8, 0x80000001, r6, r7, 0x2504}) 2018/05/04 05:58:53 executing program 6: r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt(r0, 0x65, 0x3, &(0x7f0000000040), 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x1, 0x4244, &(0x7f0000000000)=[0x0, 0x0], 0x2}, 0x20) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0x80, 0x4) 2018/05/04 05:58:53 executing program 2 (fault-call:8 fault-nth:20): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) [ 414.133347] FAULT_INJECTION: forcing a failure. [ 414.133347] name failslab, interval 1, probability 0, space 0, times 0 [ 414.144665] CPU: 0 PID: 27267 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 414.151943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.161300] Call Trace: [ 414.163885] dump_stack+0x1b9/0x294 [ 414.167497] ? dump_stack_print_info.cold.2+0x52/0x52 [ 414.172669] ? __save_stack_trace+0x7e/0xd0 [ 414.176979] should_fail.cold.4+0xa/0x1a [ 414.181032] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 414.186123] ? save_stack+0x43/0xd0 [ 414.189729] ? kasan_kmalloc+0xc4/0xe0 [ 414.193594] ? __kmalloc+0x14e/0x760 [ 414.197289] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 414.202127] ? htree_dirblock_to_tree+0x563/0xac0 [ 414.206951] ? ext4_htree_fill_tree+0x404/0xd40 [ 414.211603] ? graph_lock+0x170/0x170 [ 414.215386] ? reconnect_path+0x221/0x6f0 [ 414.219515] ? exportfs_decode_fh+0x3cd/0x6d0 [ 414.224008] ? do_handle_open+0x3f8/0x950 [ 414.228148] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 414.233233] ? do_syscall_64+0x1b1/0x800 [ 414.237283] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.242637] ? find_held_lock+0x36/0x1c0 [ 414.246692] ? __lock_is_held+0xb5/0x140 [ 414.250742] ? check_same_owner+0x320/0x320 [ 414.255054] ? rcu_note_context_switch+0x710/0x710 [ 414.259968] ? ext4fs_dirhash+0xb23/0x1060 [ 414.264192] __should_failslab+0x124/0x180 [ 414.268410] should_failslab+0x9/0x14 [ 414.272190] __kmalloc+0x2c8/0x760 [ 414.275714] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 414.280367] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 414.285193] ext4_htree_store_dirent+0x8b/0x5a0 [ 414.289848] htree_dirblock_to_tree+0x563/0xac0 [ 414.294504] ? dx_probe+0x1120/0x1120 [ 414.298298] ? save_stack+0xa9/0xd0 [ 414.301908] ? save_stack+0x43/0xd0 [ 414.305512] ? kasan_kmalloc+0xc4/0xe0 [ 414.309381] ? iterate_dir+0x4b0/0x5d0 [ 414.313249] ? get_name+0x51c/0x6a0 [ 414.316857] ? exportfs_get_name+0x1a3/0x240 [ 414.321248] ? reconnect_path+0x221/0x6f0 [ 414.325380] ? exportfs_decode_fh+0x3cd/0x6d0 [ 414.331543] ? do_handle_open+0x3f8/0x950 [ 414.335675] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 414.340909] ? do_syscall_64+0x1b1/0x800 [ 414.344954] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.350300] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 414.355480] ext4_htree_fill_tree+0x404/0xd40 [ 414.359958] ? print_usage_bug+0xc0/0xc0 [ 414.364025] ? do_split+0x1bb0/0x1bb0 [ 414.367816] ? __lock_is_held+0xb5/0x140 [ 414.371864] ? ext4_readdir+0x2722/0x3bb0 [ 414.375991] ? rcu_read_lock_sched_held+0x108/0x120 [ 414.380996] ? kmem_cache_alloc_trace+0x616/0x780 [ 414.385826] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 414.390907] ? do_syscall_64+0x1b1/0x800 [ 414.394945] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.400292] ? free_rb_tree_fname+0x9c/0xe0 [ 414.404597] ext4_readdir+0x1c82/0x3bb0 [ 414.408669] ? debug_mutex_init+0x1c/0x60 [ 414.412802] ? __ext4_check_dir_entry+0x370/0x370 [ 414.417626] ? lock_acquire+0x1dc/0x520 [ 414.421579] ? iterate_dir+0xd4/0x5d0 [ 414.425362] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 414.431675] ? lock_release+0xa10/0xa10 [ 414.435632] ? check_same_owner+0x320/0x320 [ 414.439938] ? rcu_note_context_switch+0x710/0x710 [ 414.444866] ? __might_sleep+0x95/0x190 [ 414.448821] ? down_read_killable+0xaf/0x1f0 [ 414.453211] ? iterate_dir+0xd4/0x5d0 [ 414.457010] ? security_file_open+0x14f/0x1d0 [ 414.461496] ? down_write+0x120/0x120 [ 414.465281] ? do_dentry_open+0x46c/0xf10 [ 414.469423] ? security_file_permission+0x1c6/0x240 [ 414.474424] iterate_dir+0x4b0/0x5d0 [ 414.478121] get_name+0x51c/0x6a0 [ 414.481565] ? _raw_spin_unlock+0x22/0x30 [ 414.485712] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 414.490708] ? find_held_lock+0x36/0x1c0 [ 414.494762] ? exportfs_encode_fh+0x120/0x120 [ 414.499248] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 414.504073] exportfs_get_name+0x1a3/0x240 [ 414.508290] ? get_name+0x6a0/0x6a0 [ 414.511909] ? down_read+0x1b0/0x1b0 [ 414.515612] reconnect_path+0x221/0x6f0 [ 414.519582] exportfs_decode_fh+0x3cd/0x6d0 [ 414.523884] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 414.529489] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 414.534837] ? __fget_light+0x2ef/0x430 [ 414.538796] ? fget_raw+0x20/0x20 [ 414.542237] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 414.547235] ? __check_object_size+0x95/0x5d9 [ 414.551717] ? __might_sleep+0x95/0x190 [ 414.555677] do_handle_open+0x3f8/0x950 [ 414.559645] ? vfs_dentry_acceptable+0x10/0x10 [ 414.564218] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 414.569735] ? exit_to_usermode_loop+0x1ef/0x310 [ 414.574471] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 414.579398] __x64_sys_open_by_handle_at+0x76/0xb0 [ 414.584308] do_syscall_64+0x1b1/0x800 [ 414.588177] ? syscall_return_slowpath+0x5c0/0x5c0 [ 414.593087] ? syscall_return_slowpath+0x30f/0x5c0 [ 414.597999] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 414.603352] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 414.608177] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.613344] RIP: 0033:0x455979 [ 414.616512] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 414.624200] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:54 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000040)={{{@in6=@loopback, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6}}, &(0x7f0000000140)=0xe8) getresgid(&(0x7f0000000180), &(0x7f00000001c0)=0x0, &(0x7f0000000240)) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f00000002c0)=""/64) chown(&(0x7f0000000000)='./control\x00', r1, r2) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:54 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) readahead(r0, 0x1769, 0x4) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:54 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000ff5ffc)={0x0, 0x3}, 0x4) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'gre0\x00'}) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) r2 = socket$inet(0x2, 0x5, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x11, 0x0, 0x0, 'ip6gretap0\x00', 'syz_tun\x00', 'ip6tnl0\x00', 'syz_tun\x00', @link_local={0x1, 0x80, 0xc2}, [0x0, 0x0, 0x0, 0x0, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], 0x70, 0x108, 0x158}, [@common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}]}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x10000, 'syz0\x00'}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0xd, 0x0, 0x86dd, 'syzkaller0\x00', 'tunl0\x00', 'sit0\x00', 'ifb0\x00', @empty, [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0x130, 0x1b0, 0x200, [@ip6={'ip6\x00', 0x50, {{@empty, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}}}, @limit={'limit\x00', 0x20, {{0x0, 0xec}}}]}, [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x81, 'syz1\x00'}}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}]}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}]}, 0x460) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x7}, &(0x7f0000000040)=0x8) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x400000, 0x0) getsockopt$llc_int(r4, 0x10c, 0x3, &(0x7f0000000200), &(0x7f0000000940)=0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x2, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x0, r3}, &(0x7f0000000180)=0x20) r5 = socket(0xf, 0x7ff, 0x6f) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000040)={"73797a5e39a3151016642900ffff00", &(0x7f0000000980)=@ethtool_coalesce={0xf, 0x81, 0xf353, 0x1ff, 0x5, 0x13b, 0x80, 0x9, 0x81, 0x4, 0x7, 0x80000001, 0x5, 0x2, 0x2, 0x1, 0x100, 0x6, 0xffffffffffffff73, 0x4, 0x401, 0x80, 0x3ff}}) setsockopt$inet_group_source_req(r5, 0x0, 0xfe0d64ad1c6cb9f1, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108) r7 = socket$inet6(0x10, 0x2, 0x0) sendmsg(r7, &(0x7f0000000080)={&(0x7f0000000240)=@nl=@kern={0x10}, 0x80, &(0x7f0000000040), 0x0, &(0x7f00000000c0)}, 0x0) setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000007c0)='tls\x00', 0x4) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260) socketpair$inet(0x2, 0x80000, 0x1000, &(0x7f0000000880)) getsockopt$inet6_mtu(r5, 0x29, 0x17, &(0x7f0000000800), &(0x7f0000000840)=0x4) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='schedstat\x00') ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r8, 0xc4c85512, &(0x7f0000000a00)={{0xfffffffffffffff8, 0x7, 0xffffffffffffff00, 0x0, "f2e59bfeedb9f71a058a6c345e1d26164f8411c1083e1c04f0a7f529152e571286d464f92226976b88039e9e", 0xe311}, 0x6, [0x401, 0x0, 0x0, 0x40, 0x7, 0x3, 0x1, 0x4, 0x5c0, 0x800, 0x80000000, 0xffff, 0x7, 0x6, 0x5, 0x200, 0x5, 0x30fc, 0xfffffffffffffff9, 0x9, 0x0, 0x20, 0x100000001, 0xffffffff, 0x80000001, 0x8, 0xc000000000000000, 0x400, 0x1ff, 0x9, 0x6, 0x7, 0x1, 0x30, 0x4, 0x33, 0x10000, 0x7, 0x3f, 0x2, 0x6f5, 0x1, 0x4, 0x8, 0xffffffffffffff00, 0x7, 0x6, 0xc6d, 0x1, 0x8, 0x2, 0x1, 0x3, 0x800, 0x9, 0x7, 0x1f, 0x2, 0x81, 0x6, 0xebd3, 0xb23, 0x2, 0x1, 0x0, 0x1, 0x80000000, 0x6, 0x2, 0x40, 0x63, 0x3, 0x9, 0xc40f, 0xd1b366c, 0x10001, 0x1, 0x1, 0xcca, 0xf4d2, 0x100000001, 0x3f, 0x9, 0x124, 0x100, 0x40, 0x1, 0x3, 0x7, 0x4, 0x3, 0x6, 0x7ff, 0x9ef7, 0x8001, 0x5, 0x8, 0x5, 0x5, 0xd1f, 0x4, 0x9, 0xf6de, 0x5, 0x4c690fb1, 0x4, 0x6, 0x3, 0x1, 0x2, 0x4, 0x0, 0x7fff, 0x9, 0x100000001, 0x7fff, 0x7dfc, 0xfffffffffffffffc, 0x9, 0x3, 0xffffffffffffff81, 0xffffffffffffff81, 0x80, 0x6b4, 0x5, 0x3, 0xca0e, 0x100000000], {0x77359400}}) setsockopt$bt_hci_HCI_FILTER(r8, 0x0, 0x2, &(0x7f00000000c0)={0x2, 0x8, 0x7, 0x3}, 0x10) setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000100)={0xfffffffffffffffe, 0x5, 0x2}, 0x4) 2018/05/04 05:58:54 executing program 6: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mount(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='devtmpfs\x00', 0x40004, &(0x7f0000000580)="ab3776372c7193eb2d7169d75c8167c76db6e3bfa53ab1edd15336552df012061b2985a1d3621c570bc0a0ac1f0b871b0265a580f356de95ed2e5a6904a863403bf04bada5bd3815f82f92eba1") mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') r1 = shmget$private(0x0, 0x1000, 0x80, &(0x7f0000004000/0x1000)=nil) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@mcast1}}, &(0x7f0000000000)=0xe8) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@dev}}, &(0x7f0000000240)=0xe8) r5 = getgid() r6 = gettid() ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000002c0)=0x0) shmctl$IPC_SET(r1, 0x1, &(0x7f0000000440)={{0x8800, r2, r3, r4, r5, 0x10, 0x10000}, 0x7fff, 0x5, 0x8, 0x80000001, r6, r7, 0x2504}) 2018/05/04 05:58:54 executing program 4: recvmsg(0xffffffffffffff9c, &(0x7f00000002c0)={&(0x7f0000000080)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000001680)=[{&(0x7f0000000100)=""/226, 0xe2}, {&(0x7f0000000340)=""/195, 0xc3}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000003000)=""/4096, 0x1000}, {&(0x7f0000000000)=""/49, 0x31}, {&(0x7f0000000200)=""/79, 0x4f}, {&(0x7f0000001440)=""/232, 0xe8}, {&(0x7f0000001540)=""/109, 0x6d}, {&(0x7f00000015c0)=""/151, 0x97}], 0x9, &(0x7f0000001740)=""/239, 0xef, 0xe7}, 0x1) connect$bt_l2cap(r0, &(0x7f0000001840)={0x1f, 0x4, {0x5, 0x80000000, 0x0, 0x4, 0x800, 0xff}, 0x9, 0x5}, 0xe) r1 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r1, 0x0) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) writev(r1, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:54 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x900, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:54 executing program 2 (fault-call:8 fault-nth:21): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:54 executing program 7: socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000080)={'ipvs\x00'}, &(0x7f00000000c0)=0x1e) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r2, 0xfffffffe) sendto$inet6(r1, &(0x7f0000f6f000), 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x4e22}, 0x1c) r3 = socket$inet(0x10, 0x3, 0x4) sendmsg(r3, &(0x7f0000014000)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa2830007a6000000000900000000683540150024001d0004c41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b079881", 0x16}], 0x1000000000000058}, 0x0) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x40000, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r4, 0x10e, 0x1, &(0x7f0000000140)=0x10, 0x4) [ 414.631448] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 414.638719] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 414.645984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 414.653233] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000014 2018/05/04 05:58:54 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0x5, 0x3, &(0x7f0000000340)=[{&(0x7f0000000080)="2f6fb3d57170832239ea32f10328ec7dbc2490135f1b5fea30cd32920aae6ff5bc4a5905ed674109af65da0375ed013a699ef9e992f344ed30ce7f671697931cb30b09ee943abc096757a4f4521cac22f1a4c5364e07a7886857d300eb4af8ef24f93aecd3909165d38fba34716f55fcd7554edcec01645ba3336019412d71de5c0c65cf135880de25cd9edaee1f11b5b867e448d48be2b8c93268b2454a9ff2441d336b547264ef2ee085af7f4ef09d0df8aa0b05848f6dbda23593766dfedc199d08782b3910c882884f", 0xcb, 0x8001}, {&(0x7f0000000180)="7939b7985770c9172761a9cc670f9dcf4233d42b009734d918a35a4af1bc3ef573a50a7aa0089e0e158415db2088666115ffc540164bdef5ff11e0f11aece22fd10e63b74c", 0x45, 0x80000001}, {&(0x7f0000000240), 0x0, 0xc682}], 0x1008, &(0x7f00000003c0)={[{@data_err_ignore='data_err=ignore', 0x2c}, {@norecovery='norecovery', 0x2c}, {@quota='quota', 0x2c}, {@test_dummy_encryption='test_dummy_encryption', 0x2c}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, [0x3d]}, 0x2c}]}) 2018/05/04 05:58:54 executing program 6: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'erspan0\x00'}}, 0x1e) sendmmsg(r0, &(0x7f00000043c0)=[{{&(0x7f0000001d40)=@can={0x1d}, 0x80, &(0x7f0000002380), 0x0, &(0x7f0000002440)}}, {{&(0x7f0000002a00)=@can={0x1d}, 0x80, &(0x7f0000003e00), 0x375, &(0x7f0000003e80)}, 0x7}], 0x2, 0x0) lstat(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x2, &(0x7f0000000040)=[r1, r2]) [ 414.775536] FAULT_INJECTION: forcing a failure. [ 414.775536] name failslab, interval 1, probability 0, space 0, times 0 [ 414.786867] CPU: 0 PID: 27292 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 414.794144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.803497] Call Trace: [ 414.806099] dump_stack+0x1b9/0x294 [ 414.809744] ? dump_stack_print_info.cold.2+0x52/0x52 [ 414.814950] ? __save_stack_trace+0x7e/0xd0 [ 414.819287] should_fail.cold.4+0xa/0x1a [ 414.823358] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 414.828469] ? save_stack+0x43/0xd0 [ 414.832105] ? kasan_kmalloc+0xc4/0xe0 [ 414.835998] ? __kmalloc+0x14e/0x760 [ 414.839722] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 414.844579] ? htree_dirblock_to_tree+0x563/0xac0 [ 414.849431] ? ext4_htree_fill_tree+0x404/0xd40 [ 414.854124] ? graph_lock+0x170/0x170 [ 414.857933] ? reconnect_path+0x221/0x6f0 [ 414.862088] ? exportfs_decode_fh+0x3cd/0x6d0 [ 414.866584] ? do_handle_open+0x3f8/0x950 [ 414.870735] ? __x64_sys_open_by_handle_at+0x76/0xb0 2018/05/04 05:58:54 executing program 6: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x400800, 0x0) fchdir(r0) mkdir(&(0x7f000047eff8)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, &(0x7f0000000200)) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000000c0)) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x0, 0x4) r1 = syz_open_procfs(0x0, &(0x7f0000373ff5)="6d6f756e74696e666f00a4") sendfile(r1, r1, &(0x7f0000000040)=0x4000000, 0x8) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000140)={0x4001, &(0x7f0000000100), 0x1, r0, 0x4}) getsockopt$ax25_int(r0, 0x101, 0xa, &(0x7f0000000180), &(0x7f00000001c0)=0x4) 2018/05/04 05:58:54 executing program 7: sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000100)=""/87, 0x57) readv(r0, &(0x7f00003fd000)=[{&(0x7f0000853000)=""/255, 0xffffff1f}], 0x1000000000000183) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040)) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.current\x00', 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000440)={{{@in6=@dev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@rand_addr}}, &(0x7f0000000540)=0xe8) getresuid(&(0x7f0000000580)=0x0, &(0x7f00000005c0), &(0x7f0000000600)) setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000640)={{{@in=@multicast1=0xe0000001, @in=@broadcast=0xffffffff, 0x4e23, 0x5, 0x4e22, 0xa8d, 0x2, 0x20, 0x80, 0x3b, r3, r4}, {0x7ff, 0x5, 0x1, 0xfffffffffffff800, 0x7, 0x3, 0x6, 0xd53}, {0x401, 0xfff, 0x3, 0x4}, 0x5, 0x6e6bb7, 0x1, 0x0, 0x1, 0x2}, {{@in6=@local={0xfe, 0x80, [], 0xaa}, 0x4d4, 0x32}, 0xa, @in6, 0x0, 0x4, 0x3, 0x8, 0x6cfc, 0x1200000000000000, 0x5}}, 0xe8) dup3(r0, r1, 0x0) [ 414.875849] ? do_syscall_64+0x1b1/0x800 [ 414.879917] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.885288] ? find_held_lock+0x36/0x1c0 [ 414.889363] ? __lock_is_held+0xb5/0x140 [ 414.893440] ? check_same_owner+0x320/0x320 [ 414.897774] ? rcu_note_context_switch+0x710/0x710 [ 414.902709] ? ext4fs_dirhash+0xb23/0x1060 [ 414.906953] __should_failslab+0x124/0x180 [ 414.911195] should_failslab+0x9/0x14 [ 414.914997] __kmalloc+0x2c8/0x760 [ 414.918552] ? str2hashbuf_unsigned+0x2a0/0x2a0 2018/05/04 05:58:54 executing program 6: r0 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000e5bef8)={0x0, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, {{0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}}}}, 0x108) r1 = accept(r0, &(0x7f0000000980)=@nfc_llcp, &(0x7f0000000a00)=0x80) recvfrom$ax25(r1, &(0x7f0000000a40)=""/190, 0xbe, 0x10002, &(0x7f0000000b00)={0x3, {"fb2e29fe77452b"}, 0xfffffffffffffff8}, 0x10) syz_emit_ethernet(0xfffffffffffffff7, &(0x7f0000000c80)={@random="cd390b081bf2", @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x13}, [{[{0x9100, 0x327e4080, 0x2, 0x4}], {0x8100, 0xffffffff, 0x3d6d9b54, 0x3}}], {@arp={0x806, @generic={0x30d, 0x89ff, 0x6, 0x7, 0x4, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, "bdb9703b2d134c", @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, "65cf4d4725d08a720906acc99bbda1e0"}}}}, 0x0) r2 = dup(r0) r3 = getpid() ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r3, 0x10, &(0x7f0000000000)={0x81}) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x61, &(0x7f0000000080)={'filter\x00', 0x4}, 0x19c) sendmsg$rds(r2, &(0x7f0000000940)={&(0x7f0000000040)={0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10, &(0x7f0000000600)=[{&(0x7f0000000180)=""/170, 0xaa}, {&(0x7f0000000240)=""/218, 0xda}, {&(0x7f0000000340)=""/155, 0x9b}, {&(0x7f0000000400)=""/126, 0x7e}, {&(0x7f0000000480)=""/44, 0x2c}, {&(0x7f00000004c0)=""/230, 0xe6}, {&(0x7f00000005c0)=""/27, 0x1b}], 0x7, &(0x7f0000000800)=[@fadd={0x58, 0x114, 0x6, {{0x2, 0xfffffffffffff001}, &(0x7f0000000680)=0xe8, &(0x7f00000006c0)=0x100000000, 0x9, 0x8, 0x6, 0xaa, 0x20, 0x9}}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f0000000700)=""/56, 0x38}, &(0x7f0000000740), 0x35}}, @rdma_dest={0x18, 0x114, 0x2, {0x5, 0x7}}, @cswp={0x58, 0x114, 0x7, {{0x5}, &(0x7f0000000780)=0x7ff, &(0x7f00000007c0)=0x9a, 0x7f, 0x3, 0x2, 0x0, 0x2, 0x6}}, @rdma_dest={0x18, 0x114, 0x2, {0x4, 0x400}}], 0x110, 0x20004841}, 0x800) [ 414.923228] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 414.928081] ext4_htree_store_dirent+0x8b/0x5a0 [ 414.932766] htree_dirblock_to_tree+0x563/0xac0 [ 414.937660] ? dx_probe+0x1120/0x1120 [ 414.941472] ? save_stack+0xa9/0xd0 [ 414.945107] ? save_stack+0x43/0xd0 [ 414.948740] ? kasan_kmalloc+0xc4/0xe0 [ 414.952634] ? iterate_dir+0x4b0/0x5d0 [ 414.956518] ? get_name+0x51c/0x6a0 [ 414.960126] ? exportfs_get_name+0x1a3/0x240 [ 414.964515] ? reconnect_path+0x221/0x6f0 [ 414.968642] ? exportfs_decode_fh+0x3cd/0x6d0 [ 414.973123] ? do_handle_open+0x3f8/0x950 [ 414.977269] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 414.982354] ? do_syscall_64+0x1b1/0x800 [ 414.986396] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.991743] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 414.996918] ext4_htree_fill_tree+0x404/0xd40 [ 415.001395] ? print_usage_bug+0xc0/0xc0 [ 415.005452] ? do_split+0x1bb0/0x1bb0 [ 415.009258] ? __lock_is_held+0xb5/0x140 [ 415.013309] ? ext4_readdir+0x2722/0x3bb0 [ 415.017444] ? rcu_read_lock_sched_held+0x108/0x120 [ 415.022454] ? kmem_cache_alloc_trace+0x616/0x780 [ 415.027287] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 415.032379] ? do_syscall_64+0x1b1/0x800 [ 415.036421] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 415.041863] ? free_rb_tree_fname+0x9c/0xe0 [ 415.046182] ext4_readdir+0x1c82/0x3bb0 [ 415.050153] ? debug_mutex_init+0x1c/0x60 [ 415.054287] ? __ext4_check_dir_entry+0x370/0x370 [ 415.059111] ? lock_acquire+0x1dc/0x520 [ 415.063066] ? iterate_dir+0xd4/0x5d0 [ 415.066858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 415.072382] ? lock_release+0xa10/0xa10 [ 415.076342] ? check_same_owner+0x320/0x320 [ 415.080645] ? rcu_note_context_switch+0x710/0x710 [ 415.085556] ? __might_sleep+0x95/0x190 [ 415.089515] ? down_read_killable+0xaf/0x1f0 [ 415.093903] ? iterate_dir+0xd4/0x5d0 [ 415.097684] ? security_file_open+0x14f/0x1d0 [ 415.102159] ? down_write+0x120/0x120 [ 415.105941] ? do_dentry_open+0x46c/0xf10 [ 415.110079] ? security_file_permission+0x1c6/0x240 [ 415.115080] iterate_dir+0x4b0/0x5d0 [ 415.118808] get_name+0x51c/0x6a0 [ 415.122266] ? _raw_spin_unlock+0x22/0x30 [ 415.126403] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 415.131411] ? find_held_lock+0x36/0x1c0 [ 415.135453] ? exportfs_encode_fh+0x120/0x120 [ 415.139942] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 415.144768] exportfs_get_name+0x1a3/0x240 [ 415.148992] ? get_name+0x6a0/0x6a0 [ 415.152605] ? down_read+0x1b0/0x1b0 [ 415.156311] reconnect_path+0x221/0x6f0 [ 415.160283] exportfs_decode_fh+0x3cd/0x6d0 [ 415.164586] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 415.170191] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 415.175538] ? __fget_light+0x2ef/0x430 [ 415.179505] ? fget_raw+0x20/0x20 [ 415.182948] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 415.187949] ? __check_object_size+0x95/0x5d9 [ 415.192426] ? __might_sleep+0x95/0x190 [ 415.196399] do_handle_open+0x3f8/0x950 [ 415.200363] ? vfs_dentry_acceptable+0x10/0x10 [ 415.204931] ? ksys_write+0x1a6/0x250 [ 415.208714] ? __ia32_sys_read+0xb0/0xb0 [ 415.212758] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 415.217603] __x64_sys_open_by_handle_at+0x76/0xb0 [ 415.222521] do_syscall_64+0x1b1/0x800 [ 415.226390] ? syscall_return_slowpath+0x5c0/0x5c0 [ 415.231299] ? syscall_return_slowpath+0x30f/0x5c0 [ 415.236215] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 415.241564] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 415.246512] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 415.251684] RIP: 0033:0x455979 [ 415.254857] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 415.262546] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 415.269799] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 2018/05/04 05:58:54 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trqsted}&wl(n0vmnet1.trustmf{\\{GPL\x00', 0x0) r1 = mq_open(&(0x7f0000000000)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x3, 0x8, &(0x7f0000000040)={0x1, 0x6, 0x6, 0x4, 0x6, 0x452, 0x1, 0x3be}) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r1, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') connect$ax25(r0, &(0x7f0000000080)={0x3, {"ad6b2c0254a828"}, 0x5}, 0x10) 2018/05/04 05:58:54 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x7, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 415.277054] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 415.284311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 415.291571] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000015 2018/05/04 05:58:54 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') sendmsg$netrom(r0, &(0x7f0000000240)={&(0x7f0000000000)=@ax25={0x3, {"f25e9cdcb8fc0d"}, 0x7ff}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000040)="7eca6866171a463959a33689c1b3f151b4c0f893b945ae52915b06df98bcdf51b8fd20fa1f6beb1bc26aaaf34eb1c1a12649b3651517e11241ceddb81b3c06fd851e8ee74025ab244e55d168426c46a327d61038439fe0d2151aaa66eca2256cf47170e4fe98c94374e8a913da28", 0x6e}, {&(0x7f00000000c0)="36eef0394482051086fc02d9d569ce02b9d633c9a36656f61f1490c8e4742a9291b6c6feb21172957361597c0e39f872729099e9b9d6325a7ab12e8bb5730d89d3a653ec9720df2c5800bf9bd83a9e62e2f5520d6f86a41dfa3f2ce6ce989f3cf14280595a188a766b2684e2a0df075b732edd46d5a8f0597dbb02628e5592aeb11bbcc8e6c57e192b56140dfec6392fee0fc2f218371f3bc2f53b05022b01ca37726b29a2ffa7fd76fd8cf9ad11be34157d4c170bd7be5ac23bf48cd9a78881f9a58bf6b152996aabcb04b4c7bc", 0xce}, {&(0x7f0000000340)="91de1413833fad0d9456be800b2f9c5549ac1202f124bb835d923e8bf717cc62421fdb06b5bff8e6b46887575a1ace0a93543bdb9d988d015ad513f0ff446376f3e8a87a093ac3dec0127a4036e32fa9453c602889bf564373db12731a9dffe3e592badd708450e62aa9c2283008c7c1b402d57a56f3a331aa31204610be7e1acfd68dd9e60eb39dc749802ebf1d", 0x8e}, {&(0x7f0000000400)="eeccf4e198277d2ab1ddbace59f8680c2d90f1c14c0c8903504e1462874102202de9f4701a43da07789f385d97558f026f2dd62eeef7762e5e722dd9320e34b5fbb0e75b6197073da8e52469c4dd89b994e4a30fcb8563f07706d2da0e53f0dd9931b9f32f61da6879fff1497ea1aa7117aee320592216f846460bb582252d9cec2dbbcd109173ed34b51e74cdea9d1b1fb2132a1c375e1427941c003fe86880223bb2944b63118a42bb4720133a6b8607b34f5b4789b4506c05c961a1c0e689c0a74ebd92ea4c05ad9dcb967c3ce0b5c7d323a04e34e4a598454455e0604126baf5cafe7c50576501d510aeca5674bc3225", 0xf2}], 0x4, &(0x7f0000000500)=[{0x80, 0x88, 0x4, "478cb408bf0fd25bec1f3a9ac92255978e1f95c822959747ee1e9d3e42a59f43838bfac2f48fa4d2bea2fd64aaca229b7fb475b1c6d2ad464c9d54b9a72aeed0a5de62a9c2196d4fce23cf2e1d0d0614d07016ab4ebd56e106b5017dd5ccf201641a7afb153efe2855fbcf17fce872"}, {0x78, 0x11d, 0x4, "809f104f5c8cd476cae6d73b414e5a53097bbb541cacae1fd40430cc36e26fba209fceb5d58d8adcb529c435d412b48dca11fd1d7dfe6f52be6c09bed4c5364721c79cbb652c92aa01ade0f4601c70ba901e4c4e7768d5bbd2fd3ff8e15b6c1ed7c5"}, {0x20, 0x107, 0x8, "b84238d7d13b6cacc384"}, {0xd8, 0x129, 0x100000000, "986007116d01846ca02192ee2c44443fd2be809db03a190c1fcadf4c150a5838c63764d2294a1f579d32927851b5bf3c4367708c7dd1ff2922a5cda627d3fa2a63406978864128a1ea7d4786daed3bac4fbfae38379b007c026cea18ae4bcd23f0c25fe39f2f557e5f3167de37a325eb6a70470aedd68a0bb1594c1d2b5e70b3bc37dc4c00e791d2772633f75cd9fad52f13be89620265c15d0599b47b338617af7150cc930a816c0c6e741b07d97ffe298849ba319aa83a8cb4acdbe48e9b1d01dbb6aeb863811f"}, {0x88, 0x6, 0x0, "0ed2140fb30323c3d83aa627253db54ce93ba523a3cc63702d2c9679e0ebc16335b1dd7404f24c231fe0d654d81024d52de6bff82a47e3cfff79c816a940a4341f68bb60c9480d21f08d97b78ee605265c7e28ec6ecd045925777d18ab8795197bff38f6ca99533c42cbd8bda696207e6921"}, {0xb0, 0x107, 0xffffffffffffff70, "509f1f728e5f5a5348d803979bccd55d823904c76e4809f7ec9b3d06b43b04e35b42858b81783776449cfc6fa984d6e7a87765333b9a92a848aeaebef6e84dfaef6732e8a31fae2ede70cce0da214aaa9fb492bc81a2d05133e42c34b6c281475688c51d9f89e9ec88210deb49e7fadae318a3845ff830c2fd365ccba9c45648b2cc65e72d2647ffa0da9d96b437371fd612cf9ba68bd99adb5e052794fa"}, {0x110, 0x188, 0x0, "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"}], 0x438}, 0x8000) setsockopt$packet_buf(r0, 0x107, 0xd, &(0x7f0000000940)="6aa4c11775d099a943c0f3f4d66164bb6b2ed41622ff3cebe9f801e3b893d6ddc3da787c30d5fae3eb32ae5baf698539013c2834238ffdf91c8f42e7f8af22dc3a29d1fac487b1d4d6d82151de0057b3c3ec54cf7ab91de86fc9c1a8e2a8ba09c200556bd811c6d156196291a9d8f1e9e4f702a952c6153b8cbfe28ee776656f3c2ef8a2c74629562692df4d7e65ebcb5741073266f5649194314d492c5ae83c52931e0cba6833187da25f09ca3891271df3531f", 0xb4) 2018/05/04 05:58:54 executing program 2 (fault-call:8 fault-nth:22): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:54 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000340)={0x0, @in6={{0xa, 0x4e22, 0x0, @empty, 0x3}}}, &(0x7f0000000180)=0x84) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0)={r1, 0x3}, 0x8) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xffffffffffffff0b) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x88024010}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r2, 0x10, 0x70bd28, 0x25dfdbff, {0x6}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}]}, 0x24}, 0x1}, 0x40c1) 2018/05/04 05:58:55 executing program 0: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x7, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:55 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$sock_ipx_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000080)={'nr0\x00', {0x4, 0x80, 0x7fff, "5da9879b4803", 0x401}}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000000)={'ipvs\x00'}, &(0x7f0000000040)=0x1e) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') getsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000100)=0xb) 2018/05/04 05:58:55 executing program 6: r0 = socket$inet6(0xa, 0x2100000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0xffffffffffffffff, @loopback={0x0, 0x1}, 0x5}, 0x1c) creat(&(0x7f0000000040)='./file0\x00', 0x100) connect$inet6(r0, &(0x7f0000000180)={0xa}, 0x1c) 2018/05/04 05:58:55 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000000000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) stat(&(0x7f00000001c0)='./control\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETOWNER(r0, 0x400454cc, r1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000040)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000000c0)={r3, @in={{0x2, 0x4e22, @multicast1=0xe0000001}}, 0x6, 0x4, 0x8, 0x800, 0xf4b}, &(0x7f0000000180)=0x98) truncate(&(0x7f0000000240)='./control\x00', 0x2) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') syz_fuseblk_mount(&(0x7f00000002c0)='./control\x00', &(0x7f00000003c0)='./control\x00', 0xc000, r1, r2, 0x3, 0x200000000000, 0x81) 2018/05/04 05:58:55 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:55 executing program 6: syz_mount_image$xfs(&(0x7f0000000140)='xfs\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffd, 0x1, &(0x7f0000000200)=[{&(0x7f0000000000)="58465342000010000000000000001000000000000000000000e4eec1142c991dbf48b6ad26c597eb4f5c1900000000130000040000000000000d880000000000000d890000000000000d8a000000010000100000000001000000000000035ab4240200040000000000000000000000000c090a020c", 0x33, 0x1000000000}], 0x0, &(0x7f0000000180)={'nouuid,'}) removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='system.posix_acl_access\x00') 2018/05/04 05:58:55 executing program 0: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x7, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 415.649529] FAULT_INJECTION: forcing a failure. [ 415.649529] name failslab, interval 1, probability 0, space 0, times 0 [ 415.660882] CPU: 0 PID: 27353 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 415.668159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 415.677512] Call Trace: [ 415.680113] dump_stack+0x1b9/0x294 [ 415.683765] ? dump_stack_print_info.cold.2+0x52/0x52 [ 415.688968] ? __save_stack_trace+0x7e/0xd0 [ 415.693308] should_fail.cold.4+0xa/0x1a 2018/05/04 05:58:55 executing program 0: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x7, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 415.697380] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 415.702497] ? save_stack+0x43/0xd0 [ 415.706136] ? kasan_kmalloc+0xc4/0xe0 [ 415.710030] ? __kmalloc+0x14e/0x760 [ 415.713761] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 415.718612] ? htree_dirblock_to_tree+0x563/0xac0 [ 415.723461] ? ext4_htree_fill_tree+0x404/0xd40 [ 415.725334] XFS (loop6): Invalid superblock magic number [ 415.728137] ? graph_lock+0x170/0x170 [ 415.728155] ? reconnect_path+0x221/0x6f0 [ 415.728172] ? exportfs_decode_fh+0x3cd/0x6d0 [ 415.728186] ? do_handle_open+0x3f8/0x950 2018/05/04 05:58:55 executing program 0: r0 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$inet_tcp_buf(r0, 0x6, 0x1d, &(0x7f0000000140)=""/219, &(0x7f0000000080)=0xfffffffffffffdd1) setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000100)=0x5, 0x4) r1 = dup2(r0, r0) accept$inet6(r1, 0x0, &(0x7f0000000000)) [ 415.728204] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 415.755285] ? do_syscall_64+0x1b1/0x800 [ 415.759368] ? find_held_lock+0x36/0x1c0 [ 415.763456] ? __lock_is_held+0xb5/0x140 [ 415.767566] ? check_same_owner+0x320/0x320 [ 415.771901] ? rcu_note_context_switch+0x710/0x710 [ 415.776841] ? ext4fs_dirhash+0xb23/0x1060 [ 415.781085] __should_failslab+0x124/0x180 [ 415.785329] should_failslab+0x9/0x14 [ 415.789135] __kmalloc+0x2c8/0x760 [ 415.792689] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 415.797376] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 415.802233] ext4_htree_store_dirent+0x8b/0x5a0 [ 415.806924] htree_dirblock_to_tree+0x563/0xac0 [ 415.811617] ? dx_probe+0x1120/0x1120 [ 415.816264] ? save_stack+0xa9/0xd0 [ 415.819895] ? save_stack+0x43/0xd0 [ 415.823521] ? kasan_kmalloc+0xc4/0xe0 [ 415.827402] ? iterate_dir+0x4b0/0x5d0 [ 415.831289] ? get_name+0x51c/0x6a0 [ 415.834922] ? exportfs_get_name+0x1a3/0x240 [ 415.839351] ? reconnect_path+0x221/0x6f0 [ 415.843505] ? exportfs_decode_fh+0x3cd/0x6d0 [ 415.848013] ? do_handle_open+0x3f8/0x950 [ 415.852165] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 415.857268] ? do_syscall_64+0x1b1/0x800 [ 415.861330] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 415.866701] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 415.871905] ext4_htree_fill_tree+0x404/0xd40 [ 415.876404] ? print_usage_bug+0xc0/0xc0 [ 415.880483] ? do_split+0x1bb0/0x1bb0 [ 415.884304] ? __lock_is_held+0xb5/0x140 [ 415.888379] ? ext4_readdir+0x2722/0x3bb0 [ 415.892531] ? rcu_read_lock_sched_held+0x108/0x120 [ 415.897558] ? kmem_cache_alloc_trace+0x616/0x780 [ 415.902408] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 415.907512] ? do_syscall_64+0x1b1/0x800 [ 415.911560] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 415.916916] ? free_rb_tree_fname+0x9c/0xe0 [ 415.921228] ext4_readdir+0x1c82/0x3bb0 [ 415.925194] ? debug_mutex_init+0x1c/0x60 [ 415.929337] ? __ext4_check_dir_entry+0x370/0x370 [ 415.934169] ? lock_acquire+0x1dc/0x520 [ 415.938133] ? iterate_dir+0xd4/0x5d0 [ 415.941925] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 415.947448] ? lock_release+0xa10/0xa10 [ 415.951408] ? check_same_owner+0x320/0x320 [ 415.955913] ? rcu_note_context_switch+0x710/0x710 [ 415.960846] ? __might_sleep+0x95/0x190 [ 415.964812] ? down_read_killable+0xaf/0x1f0 [ 415.969209] ? iterate_dir+0xd4/0x5d0 [ 415.972996] ? security_file_open+0x14f/0x1d0 [ 415.977484] ? down_write+0x120/0x120 [ 415.981277] ? do_dentry_open+0x46c/0xf10 [ 415.985429] ? security_file_permission+0x1c6/0x240 [ 415.990435] iterate_dir+0x4b0/0x5d0 [ 415.994141] get_name+0x51c/0x6a0 [ 415.997580] ? _raw_spin_unlock+0x22/0x30 [ 416.001718] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 416.006730] ? find_held_lock+0x36/0x1c0 [ 416.010778] ? exportfs_encode_fh+0x120/0x120 [ 416.015284] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 416.020115] exportfs_get_name+0x1a3/0x240 [ 416.024340] ? get_name+0x6a0/0x6a0 [ 416.027953] ? down_read+0x1b0/0x1b0 [ 416.031665] reconnect_path+0x221/0x6f0 [ 416.035646] exportfs_decode_fh+0x3cd/0x6d0 [ 416.039967] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 416.045578] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 416.050941] ? __fget_light+0x2ef/0x430 [ 416.054902] ? fget_raw+0x20/0x20 [ 416.058340] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 416.063342] ? __check_object_size+0x95/0x5d9 [ 416.067829] ? __might_sleep+0x95/0x190 [ 416.071800] do_handle_open+0x3f8/0x950 [ 416.075762] ? vfs_dentry_acceptable+0x10/0x10 [ 416.080328] ? ksys_write+0x1a6/0x250 [ 416.084116] ? __ia32_sys_read+0xb0/0xb0 [ 416.088166] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 416.093000] __x64_sys_open_by_handle_at+0x76/0xb0 [ 416.097924] do_syscall_64+0x1b1/0x800 [ 416.101795] ? finish_task_switch+0x1ca/0x810 [ 416.106278] ? syscall_return_slowpath+0x5c0/0x5c0 [ 416.111197] ? syscall_return_slowpath+0x30f/0x5c0 [ 416.116119] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 416.121475] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 416.126319] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 416.131504] RIP: 0033:0x455979 [ 416.134690] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 416.142402] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 416.149658] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 416.156912] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 416.164166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 416.171421] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000016 2018/05/04 05:58:55 executing program 7: r0 = creat(&(0x7f0000002540)='./file0\x00', 0x0) ioctl$fiemap(r0, 0x40086602, &(0x7f00000002c0)=ANY=[@ANYBLOB]) write(r0, &(0x7f0000000080)="dc", 0x1) 2018/05/04 05:58:55 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) dup3(r0, r0, 0x80000) sendmsg$key(r0, &(0x7f0000196fe4)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000327f68)={0x2, 0x400000000000003, 0x0, 0x2, 0x11, 0x0, 0xffffffffffffffff, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa}}, @sadb_address={0x3, 0x8, 0x2, 0x0, 0x0, @in={0x2, 0x0, @multicast2=0xe0000002}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x3}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}}}]}, 0x88}, 0x1}, 0x0) 2018/05/04 05:58:55 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000240)='/dev/cuse\x00', 0x407, 0x0) getsockopt(r0, 0x3, 0x401, &(0x7f0000000080)=""/206, &(0x7f0000000180)=0xce) r1 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r1, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000480)={0x0, @in6={{0xa, 0x4e23, 0x8b, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x8001}}}, &(0x7f0000000040)=0x84) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000540)={r2, 0x5, 0x62, 0x1, 0x6, 0x8}, 0x14) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r1, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f00000001c0)={r1, 0x9, 0x7857933d, r1}) symlink(&(0x7f00000002c0)='./control\x00', &(0x7f0000002ff6)='./control\x00') setsockopt$inet6_udp_int(r1, 0x11, 0x64, &(0x7f0000000000)=0x3ff, 0x4) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000340)={0x5, 0x97, 0x1, 0x6e24, [], [], [], 0x2, 0xffff, 0xf6, 0x80, "78d250302f72761cfaed3f4905193e08"}) 2018/05/04 05:58:55 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f0000000000)={0x401, 0x20, 0xff, 0x0, 0x0, [], [], [], 0x1}) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000140), 0x4) 2018/05/04 05:58:55 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xe00000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:55 executing program 1: r0 = memfd_create(&(0x7f0000000000)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:55 executing program 2 (fault-call:8 fault-nth:23): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:55 executing program 6: bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0xc, 0x5, &(0x7f0000346fc8)=ANY=[@ANYBLOB="180000000000000000000000000000001f010000000000000000000000da1001a095a547e77a0ce3"], &(0x7f0000000000)='syzkaller\x00', 0x5c6e, 0x362b, &(0x7f0000000000)=""/251}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe, 0x84, &(0x7f0000000340)="4e77582ae86bc806202d7ead41a4", &(0x7f0000000400)=""/132}, 0x28) [ 416.363455] FAULT_INJECTION: forcing a failure. [ 416.363455] name failslab, interval 1, probability 0, space 0, times 0 [ 416.374840] CPU: 0 PID: 27413 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 416.382106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 416.391446] Call Trace: [ 416.394031] dump_stack+0x1b9/0x294 [ 416.397650] ? dump_stack_print_info.cold.2+0x52/0x52 [ 416.402826] ? __save_stack_trace+0x7e/0xd0 [ 416.407140] should_fail.cold.4+0xa/0x1a [ 416.411193] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 416.416293] ? save_stack+0x43/0xd0 [ 416.419908] ? kasan_kmalloc+0xc4/0xe0 [ 416.423779] ? __kmalloc+0x14e/0x760 [ 416.427480] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 416.432306] ? htree_dirblock_to_tree+0x563/0xac0 [ 416.437134] ? ext4_htree_fill_tree+0x404/0xd40 [ 416.441810] ? graph_lock+0x170/0x170 [ 416.445604] ? reconnect_path+0x221/0x6f0 [ 416.449740] ? exportfs_decode_fh+0x3cd/0x6d0 [ 416.454228] ? do_handle_open+0x3f8/0x950 [ 416.458362] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 416.463553] ? do_syscall_64+0x1b1/0x800 [ 416.467600] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 416.472953] ? find_held_lock+0x36/0x1c0 [ 416.477017] ? __lock_is_held+0xb5/0x140 [ 416.481075] ? check_same_owner+0x320/0x320 [ 416.485383] ? rcu_note_context_switch+0x710/0x710 [ 416.490298] ? ext4fs_dirhash+0xb23/0x1060 [ 416.494520] __should_failslab+0x124/0x180 [ 416.498744] should_failslab+0x9/0x14 [ 416.502527] __kmalloc+0x2c8/0x760 [ 416.506054] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 416.510707] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 416.515536] ext4_htree_store_dirent+0x8b/0x5a0 [ 416.520199] htree_dirblock_to_tree+0x563/0xac0 [ 416.524863] ? dx_probe+0x1120/0x1120 [ 416.528655] ? save_stack+0xa9/0xd0 [ 416.532278] ? save_stack+0x43/0xd0 [ 416.535890] ? kasan_kmalloc+0xc4/0xe0 [ 416.539764] ? iterate_dir+0x4b0/0x5d0 [ 416.543635] ? get_name+0x51c/0x6a0 [ 416.547246] ? exportfs_get_name+0x1a3/0x240 [ 416.551636] ? reconnect_path+0x221/0x6f0 [ 416.555769] ? exportfs_decode_fh+0x3cd/0x6d0 [ 416.560245] ? do_handle_open+0x3f8/0x950 [ 416.564374] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 416.569462] ? do_syscall_64+0x1b1/0x800 [ 416.573510] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 416.578860] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 416.584040] ext4_htree_fill_tree+0x404/0xd40 [ 416.588520] ? print_usage_bug+0xc0/0xc0 [ 416.592569] ? do_split+0x1bb0/0x1bb0 [ 416.596365] ? __lock_is_held+0xb5/0x140 [ 416.600415] ? ext4_readdir+0x2722/0x3bb0 [ 416.604552] ? rcu_read_lock_sched_held+0x108/0x120 [ 416.609553] ? kmem_cache_alloc_trace+0x616/0x780 [ 416.614378] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 416.619587] ? do_syscall_64+0x1b1/0x800 [ 416.623629] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 416.628978] ? free_rb_tree_fname+0x9c/0xe0 [ 416.633284] ext4_readdir+0x1c82/0x3bb0 [ 416.637243] ? debug_mutex_init+0x1c/0x60 [ 416.641383] ? __ext4_check_dir_entry+0x370/0x370 [ 416.646221] ? lock_acquire+0x1dc/0x520 [ 416.650182] ? iterate_dir+0xd4/0x5d0 [ 416.654116] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 416.659648] ? lock_release+0xa10/0xa10 [ 416.663613] ? check_same_owner+0x320/0x320 [ 416.667922] ? rcu_note_context_switch+0x710/0x710 [ 416.672840] ? __might_sleep+0x95/0x190 [ 416.676804] ? down_read_killable+0xaf/0x1f0 [ 416.681196] ? iterate_dir+0xd4/0x5d0 [ 416.684985] ? security_file_open+0x14f/0x1d0 [ 416.689464] ? down_write+0x120/0x120 [ 416.693255] ? do_dentry_open+0x46c/0xf10 [ 416.697393] ? security_file_permission+0x1c6/0x240 [ 416.702407] iterate_dir+0x4b0/0x5d0 [ 416.706113] get_name+0x51c/0x6a0 [ 416.709549] ? _raw_spin_unlock+0x22/0x30 [ 416.713687] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 416.718693] ? find_held_lock+0x36/0x1c0 [ 416.722752] ? exportfs_encode_fh+0x120/0x120 [ 416.727247] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 416.732084] exportfs_get_name+0x1a3/0x240 [ 416.736314] ? get_name+0x6a0/0x6a0 [ 416.739927] ? down_read+0x1b0/0x1b0 [ 416.743634] reconnect_path+0x221/0x6f0 [ 416.747605] exportfs_decode_fh+0x3cd/0x6d0 [ 416.751913] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 416.757524] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 416.762874] ? __fget_light+0x2ef/0x430 [ 416.766833] ? fget_raw+0x20/0x20 [ 416.770271] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 416.775270] ? __check_object_size+0x95/0x5d9 [ 416.779755] ? __might_sleep+0x95/0x190 [ 416.783723] do_handle_open+0x3f8/0x950 [ 416.787685] ? vfs_dentry_acceptable+0x10/0x10 [ 416.792251] ? ksys_write+0x1a6/0x250 [ 416.796135] ? __ia32_sys_read+0xb0/0xb0 [ 416.800186] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 416.805036] __x64_sys_open_by_handle_at+0x76/0xb0 [ 416.809952] do_syscall_64+0x1b1/0x800 [ 416.813823] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 416.818650] ? syscall_return_slowpath+0x5c0/0x5c0 [ 416.823577] ? syscall_return_slowpath+0x30f/0x5c0 [ 416.828503] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 416.833856] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 416.838701] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 416.843875] RIP: 0033:0x455979 [ 416.847045] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 416.854741] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:56 executing program 4: r0 = syz_open_dev$sndpcmc(&(0x7f0000000380)='/dev/snd/pcmC#D#c\x00', 0x100000000003, 0x1) faccessat(r0, &(0x7f00000002c0)='./file0\x00', 0x8, 0x400) r1 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x30, r1, 0x40000000000000) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r1, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0\x00', 0x2, 0x2) syz_mount_image$nfs(&(0x7f0000000000)='nfs\x00', &(0x7f0000000040)='./control\x00', 0x7, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="6a2bdd17d8cc8d3e44b20bdaefd74223afcc540cb625373f35bf11822748e2ac92cfc86722010cc8f23a64a21d381741e569d104d8b56755de4d07b40a8c52cc78bb53973be90047fa8dbc90d034794e2dd3ba47a8da63687000a16a99680356d7bcad721aebe2a88205e8e1ba87c9ef58dd490c9dee1abdb1e9e806a884cd1e5777913c27fa30d94c5e98ad257b75ff271b777b3afd392fb1b3ccead93cf45a85dd9c236c6c765ccc281200f7fd09eb58b4edb4311c92b1886f5fcb1800d909ed0d9a94890cbe40371df93127ec2eecc8bd618e05f671d55480edddd0e8431fefb12864a0f402ade9", 0xe9}], 0x8, &(0x7f00000001c0)='system/trusted(\\system:\x00') symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x1, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 0: socketpair$inet(0x2, 0x1, 0x57, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x8, 0x8, 0x4e}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f0000000140)={r2, 0xff}, 0x8) r3 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x800, 0x1) ioctl$SG_GET_NUM_WAITING(r3, 0x227d, &(0x7f0000000240)) r4 = memfd_create(&(0x7f00000003c0)='\x00', 0x3) ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000480)={0xa, &(0x7f0000000400)=[{0xff, 0x7, 0x53, 0x7fff}, {0x0, 0x800, 0xffffffff, 0x4}, {0x4, 0x2, 0x7, 0xffffffffffffff7f}, {0x7, 0x9, 0x7, 0x7}, {0x1, 0x4, 0x2, 0x7}, {0x4, 0xfffffffffffffffb, 0x9, 0x2}, {0x4, 0x2, 0xc00, 0x1000}, {0x651, 0x873b, 0x9, 0x4}, {0x8, 0x7, 0x6, 0x8}, {0x17a, 0x2, 0xd4d, 0x6}]}) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000340)={r2, 0x10000}, &(0x7f0000000380)=0x8) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000280)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=0x0) r6 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x7, 0x100) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000002c0), &(0x7f0000000080)=0x4) r7 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000580)={&(0x7f00000005c0)='./file0\x00', 0x0, 0x11}, 0xfffffffffffffea9) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7) perf_event_open(&(0x7f0000ff3f88)={0x1, 0xfffffc3d, 0xfffffffffffffc01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd9, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0xc}, r5, 0x0, 0xffffffffffffffff, 0x0) 2018/05/04 05:58:56 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ashmem\x00', 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@mcast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@loopback}}, &(0x7f0000000080)=0xe8) setfsuid(r2) dup2(r0, r1) [ 416.861995] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 416.869263] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 416.876516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 416.883774] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000017 2018/05/04 05:58:56 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x20, 0xffffffffffffffff) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000040)={0x303, 0x33}, 0x4) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000000)={r0}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') 2018/05/04 05:58:56 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000000000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e87f9536e0f356685c255eea91250b4b24dc720ec25985f9a1737d7986c6bb10950d125282bb734b17b598eb0b44fac0db386d939344945e33f28d12365c3880861b17907dfa0ac52834ac622954542280d9914db7b0cb7d9abf481b8ee64c75e3b9b1ed35e79f95cae87b165a349ee266ba114c8f32000f36af1f5", 0xb0}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 5: r0 = memfd_create(&(0x7f0000000040)='vmnet1vboxnet1$\x00', 0x400) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a671cbadabd246d62c80270e00d637af191ad5ca9fba695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x74}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4068aea3, &(0x7f00000000c0)={0x7b, 0x0, [0xffffffffffffffc1, 0xc8f, 0xffffffff, 0x6]}) getpeername$unix(r0, &(0x7f0000000140)=@abs, &(0x7f0000000000)=0x6e) 2018/05/04 05:58:56 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='ns/net\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@loopback, @in6=@ipv4={[], [], @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@loopback}}, &(0x7f0000000000)=0xe8) lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r0, r1, r2) fchown(r0, 0x0, 0x0) 2018/05/04 05:58:56 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x4002000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:56 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = eventfd2(0x0, 0x0) io_setup(0xa3c, &(0x7f0000409000)=0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000740)='/dev/null\x00', 0x301000, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f0000000780)={0x6bc1, 0x7, 0x0, 0x7fffffff, 0x401, 0x800, 0x5}, 0xc) io_submit(r2, 0x2, &(0x7f0000000880)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000440)}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000580)}]) 2018/05/04 05:58:56 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x400000000, 0x0) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000000)={0x1000000, 0x310c, 0x1}) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 0: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x1, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 2 (fault-call:8 fault-nth:24): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:56 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') unlink(&(0x7f0000000000)='./file0\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 5: r0 = socket$bt_cmtp(0x1f, 0x3, 0x5) writev(r0, &(0x7f0000000680)=[{&(0x7f0000000080)="fbd580c3c756ffa8ea5ca99f10e79449745afd14e2b33cf8090a914e2d2453b5ea7c1db1e99edd03ff6265c4d7b6232a2d0430384bcfb0c6779a430e777fd6689a", 0x41}, {&(0x7f0000000100)="ff526028dae4fd9cff793339f646dfe13500d9d7651ede1944cf4855bfeca948414ca98a07131e6e91980c521e58d10ef0834960b5c6a3387f123f7effa7f0332f9c6598c22020602334ff7b94fb47e0dea08b5d82e12ec38f54", 0x5a}, {&(0x7f0000000180)="923a69ca6800257b0f2c32b6dd27", 0xe}, {&(0x7f00000001c0)="b2aa0d692e5c9ceb", 0x8}, {&(0x7f0000000340)="ee1be34e5b5bad46b2edf1a4654312247b3fbfbd3dcadfe8bed55800f06bd537c52bc4665fc6c821f556665eef324c783911fb025199411d87ddc2cb58c8023546ccc1c78f2c811062c4ec7f0d59884d368742bfbcf68ebc582b4fff0b0e515bcb8bdd32383f3af9c3642fe7538088a3414c2fafa2b64fe528e945f41c9e47988c6b969b29a85eaeb7a50722988c4535a5e21f3c83e7357c5f5a9761f2d25a4a7345000b73a86d43b6e59d2cb269a73fd4b4ccce6d0b7033d22ad7818066b998acf58d80ea21b4f4472c2062544d56ee5b7aafb76dc46945cb22", 0xda}, {&(0x7f0000000440)="14359699df83487e344649963f2dcdd2d6d82d386eb089909909edcca65e5617b6f781db7f44f7c24fdf7330d957308ec60770eee8d6ca1895202c6b2863d9a5d0be7f5d1ee9db5876b20a9e0299c7bb3eb59af6ffbff9e5c356288397653aee01e4b2aca1058b2a427bccdaa8c4692eb48c107894b43e502de02ebcb879caddda2aab1aa509cf35f6236e8f64275f7b49b495b7662d973692fe71cec822231921aa96a9d95b4796437ffa905f0648b155830a079f7d63f4520049188131e3ec059055e0286198b80cc4e20bfc2222ee609abcb7f31256e8a0bd1dc840cac75068ab72b2d122e2f02123f5ed518414765e84", 0xf2}, {&(0x7f0000000240)="fe70cc44a4144fb9258078f0131bc5f13269f12e8dd65ed99fcb746b", 0x1c}, {&(0x7f0000000540)="199335defc7cb72a8c2877752da6a93bf70b52b280d2e558f69715e8ab00a1be0ba04910dd03156d38453ecadb7aee7bce142768e90a9695c71d9e57ff3f3e92de9fbe421ddad40bae517ee03a5319c097c8b98e144cf35591914d00665f691110e4627e2d1e33f526d944d720051aa866ff9378029aabdb26e1aaaa1e3021ed4f265965c60d00d60c2d64bc284fe61eec5ae22b94f7fc5a1f67242e81124c6d22cfbbd55d9930859c826e21d2a07958b851d36044f221d310abdc6db1f0468dde8c686a2155af9b803b364c222dfcb2f58842d0448e27dab6e02d70b11bd1f14eb3fe00d284a771081ed697793015", 0xef}, {&(0x7f00000002c0)="f287940bf6ec02c3065e2da3107c58506ad451a67515c352bd34372c", 0x1c}, {&(0x7f0000000640)="75398cd936ea6f25256d420e15a1e00f517accc01e80eddd568cc8c2ec692b665b57b895d791c725c9627f715f2d2fc8446a298ed61f56cf00da9340aa4a", 0x3e}], 0xa) r1 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r1, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r1, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r1, &(0x7f0000000000)="f1f75eb7d7a0ba"}, 0x10) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$BLKIOOPT(r0, 0x1279, &(0x7f00000000c0)) socket$vsock_stream(0x28, 0x1, 0x0) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) ioctl$TIOCLINUX4(r0, 0x541c, &(0x7f0000000080)=0x4) symlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 6: r0 = socket$inet(0x2, 0x6, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@nat={'nat\x00', 0x19, 0x1, 0x168, [0x20000300, 0x0, 0x0, 0x20000330, 0x20000360], 0x0, &(0x7f0000000000), &(0x7f00000000c0)=ANY=[@ANYBLOB="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"]}, 0x1ee) r1 = socket$packet(0x11, 0x2, 0x300) sendto$inet6(r1, &(0x7f0000003fd9), 0x0, 0x0, &(0x7f0000008000)={0xa, 0x0, 0xd, @loopback={0x0, 0x1}}, 0x1c) rt_sigprocmask(0x0, &(0x7f0000000240)={0xef90}, 0x0, 0x8) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000280)={{0x2, 0x4e23, @broadcast=0xffffffff}, {0x306}, 0x40, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x13}}, 'veth0_to_team\x00'}) 2018/05/04 05:58:56 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x2000)=nil, 0x2000, 0x2000008, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000100)=0x3, 0x4) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) fchmodat(r0, &(0x7f0000000240)='./control/file0\x00', 0xfffffffffffffffe) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000000), &(0x7f0000000040)=0x40) rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:56 executing program 5: r0 = memfd_create(&(0x7f0000000140)="776c616e302a6d696d655f747970652d747275737405647d26776c616e30766d6e6574312e747275737465647b5c7b47504c00", 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) splice(r0, &(0x7f0000000000), r0, &(0x7f0000000040), 0x5, 0x1) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000080)={{0x2, 0x9ae}, 'port0\x00', 0x81, 0x10000, 0x81, 0x8000, 0x101, 0x3, 0x367, 0x0, 0x1, 0xd76}) 2018/05/04 05:58:56 executing program 0: r0 = socket(0x8000000000001f, 0x9, 0x52) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x100000001, 0xffffffffffffffff, 0xa1e, 0x4, 0x5, 0x682, 0x2}, 0x1c) setresuid(r1, r1, 0x0) getsockopt$inet6_int(r0, 0x29, 0x77, &(0x7f0000000000), &(0x7f0000000040)=0x4) setresuid(0x0, 0x0, 0x0) 2018/05/04 05:58:56 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x700000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 417.417688] kernel msg: ebtables bug: please report to author: Wrong len argument [ 417.459428] kernel msg: ebtables bug: please report to author: Wrong len argument 2018/05/04 05:58:57 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) sendmsg$kcm(r0, &(0x7f00000001c0)={&(0x7f0000000000)=@in={0x2, 0x4e20, @broadcast=0xffffffff}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000080)="ab9a709f1c4fc44e6af8b10cca48f0b8be44c89d792c870faf78dcb5f8950912fc39566f600c", 0x26}, {&(0x7f00000000c0)="912edfcd766f9bb202b93bdf462efcbf104c1ce2c29d96df0c848329cf", 0x1d}, {&(0x7f0000000100)="dcf9cb99a4ae13f36295da6e4d435516f745613bf32fef86e9018eea3de0c823087f0aa4b8", 0x25}, {&(0x7f0000000140)="b1563d7fd7673556bc372704e13b9e2dda5919fcc332785a022f932519e3eff916f81b380c766f30bd8b7bb8d61c440dbd28bc554aeeb0c1cce59ea25e6a4862a81155eccb58da70e0711f149b00f429", 0x50}, {&(0x7f0000000340)="213f2dc7df7a11f293b80afa46dfe3e0ce2e87f1d98267745dbe8a893e7bb5106e62d69aa54db1da3bef5088189e94f693e56503cafbfd4d8485b5ab79d5dcf6a2eb0b68aa0c7be596b6f2d8f3663158f8be97842e05e06cd2eae097f8b2069421e0380ec17e74b0422071b16a553e91ae443d353a4a2fcc96f373e1f1e8a76dffd44e8076d172a4a9c68955b4847d3d3208537d4e4f663b8b75f0aa7b7f297b5c54ec4f1cc9176ce6ee738ca8e13c4d0aedb3839d7bdf5be018770f6934a0837c65aa8e9be6d116c6d7b830e7abe0603352310d775c992a00b68adc6cf75ac7722317ac22c2b307519e4d1b5f6c1a573d98d157a68a6cc1665691c332a6", 0xfe}, {&(0x7f0000000440)="30294a4451371f672285b8e5ef1b959713ea324ec8d2e502e8e8aa0af4afb833f4947cdb753c2c2586f250c3718e16b97c5cbbe4a49e9784bfec1bcac06033d8df4205", 0x43}], 0x6, &(0x7f0000000540)=[{0xb8, 0x1bd, 0x80000000, "9e8a9ccae6972f1452d1f87432aab0746afc2f15ff042777411bed569abb695ab2319ad4d57fb12f9adac95726fcdff4afa8c6d9383040442b88ae30ed33de681309065bdabe87e5ab28d7a2a76fcc139ed0333d82bbf36c38e8bf25f2667ba3d8c6e4c2a46c21b1f43887605c149054987089bfe5ee7f04e7a33cb845f0bd97a6e162e2b97ace7d8bede5b67c014e9d3893f69a5a38f0605af0a2e0715a0139baf8698d927c"}], 0xb8, 0x4}, 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 417.535087] FAULT_INJECTION: forcing a failure. [ 417.535087] name failslab, interval 1, probability 0, space 0, times 0 [ 417.546453] CPU: 1 PID: 27514 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 417.553732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 417.563092] Call Trace: [ 417.565709] dump_stack+0x1b9/0x294 [ 417.569362] ? dump_stack_print_info.cold.2+0x52/0x52 [ 417.574564] ? __save_stack_trace+0x7e/0xd0 [ 417.578901] should_fail.cold.4+0xa/0x1a [ 417.582974] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 417.588090] ? save_stack+0x43/0xd0 [ 417.591724] ? kasan_kmalloc+0xc4/0xe0 [ 417.595608] ? __kmalloc+0x14e/0x760 [ 417.599311] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 417.604144] ? htree_dirblock_to_tree+0x563/0xac0 [ 417.608974] ? ext4_htree_fill_tree+0x404/0xd40 [ 417.613630] ? graph_lock+0x170/0x170 [ 417.617420] ? reconnect_path+0x221/0x6f0 [ 417.621558] ? exportfs_decode_fh+0x3cd/0x6d0 [ 417.626042] ? do_handle_open+0x3f8/0x950 [ 417.630176] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 417.635268] ? do_syscall_64+0x1b1/0x800 [ 417.639316] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 417.644674] ? find_held_lock+0x36/0x1c0 [ 417.648741] ? __lock_is_held+0xb5/0x140 [ 417.652805] ? check_same_owner+0x320/0x320 [ 417.657118] ? rcu_note_context_switch+0x710/0x710 [ 417.662042] ? ext4fs_dirhash+0xb23/0x1060 [ 417.666270] __should_failslab+0x124/0x180 [ 417.670497] should_failslab+0x9/0x14 [ 417.674285] __kmalloc+0x2c8/0x760 [ 417.677814] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 417.682474] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 417.687307] ext4_htree_store_dirent+0x8b/0x5a0 [ 417.691973] htree_dirblock_to_tree+0x563/0xac0 [ 417.696643] ? dx_probe+0x1120/0x1120 [ 417.700435] ? save_stack+0xa9/0xd0 [ 417.704051] ? save_stack+0x43/0xd0 [ 417.707666] ? kasan_kmalloc+0xc4/0xe0 [ 417.711543] ? iterate_dir+0x4b0/0x5d0 [ 417.715419] ? get_name+0x51c/0x6a0 [ 417.719040] ? exportfs_get_name+0x1a3/0x240 [ 417.723446] ? reconnect_path+0x221/0x6f0 [ 417.727583] ? exportfs_decode_fh+0x3cd/0x6d0 [ 417.732072] ? do_handle_open+0x3f8/0x950 [ 417.736211] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 417.741304] ? do_syscall_64+0x1b1/0x800 [ 417.745351] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 417.750705] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 417.755890] ext4_htree_fill_tree+0x404/0xd40 [ 417.760381] ? print_usage_bug+0xc0/0xc0 [ 417.764433] ? do_split+0x1bb0/0x1bb0 [ 417.768234] ? __lock_is_held+0xb5/0x140 [ 417.772289] ? ext4_readdir+0x2722/0x3bb0 [ 417.776426] ? rcu_read_lock_sched_held+0x108/0x120 [ 417.781430] ? kmem_cache_alloc_trace+0x616/0x780 [ 417.786260] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 417.791350] ? do_syscall_64+0x1b1/0x800 [ 417.795400] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 417.800754] ? free_rb_tree_fname+0x9c/0xe0 [ 417.805072] ext4_readdir+0x1c82/0x3bb0 [ 417.810513] ? debug_mutex_init+0x1c/0x60 [ 417.814678] ? __ext4_check_dir_entry+0x370/0x370 [ 417.819527] ? lock_acquire+0x1dc/0x520 [ 417.823489] ? iterate_dir+0xd4/0x5d0 [ 417.827282] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 417.832811] ? lock_release+0xa10/0xa10 [ 417.836775] ? check_same_owner+0x320/0x320 [ 417.841092] ? rcu_note_context_switch+0x710/0x710 [ 417.846020] ? __might_sleep+0x95/0x190 [ 417.849989] ? down_read_killable+0xaf/0x1f0 [ 417.854387] ? iterate_dir+0xd4/0x5d0 [ 417.858175] ? security_file_open+0x14f/0x1d0 [ 417.862658] ? down_write+0x120/0x120 [ 417.866450] ? do_dentry_open+0x46c/0xf10 [ 417.870603] ? security_file_permission+0x1c6/0x240 [ 417.875618] iterate_dir+0x4b0/0x5d0 [ 417.879328] get_name+0x51c/0x6a0 [ 417.882769] ? _raw_spin_unlock+0x22/0x30 [ 417.886924] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 417.891939] ? find_held_lock+0x36/0x1c0 [ 417.895990] ? exportfs_encode_fh+0x120/0x120 [ 417.900499] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 417.905334] exportfs_get_name+0x1a3/0x240 [ 417.909561] ? get_name+0x6a0/0x6a0 [ 417.913176] ? down_read+0x1b0/0x1b0 [ 417.916886] reconnect_path+0x221/0x6f0 [ 417.920855] exportfs_decode_fh+0x3cd/0x6d0 [ 417.925163] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 417.930785] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 417.936141] ? __fget_light+0x2ef/0x430 [ 417.940103] ? fget_raw+0x20/0x20 [ 417.943553] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 417.948560] ? __check_object_size+0x95/0x5d9 [ 417.953052] ? __might_sleep+0x95/0x190 [ 417.957038] do_handle_open+0x3f8/0x950 [ 417.961007] ? vfs_dentry_acceptable+0x10/0x10 [ 417.965578] ? ksys_write+0x1a6/0x250 [ 417.969368] ? __ia32_sys_read+0xb0/0xb0 [ 417.973420] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 417.978258] __x64_sys_open_by_handle_at+0x76/0xb0 [ 417.983175] do_syscall_64+0x1b1/0x800 [ 417.987048] ? finish_task_switch+0x1ca/0x810 [ 417.991535] ? syscall_return_slowpath+0x5c0/0x5c0 [ 417.996453] ? syscall_return_slowpath+0x30f/0x5c0 [ 418.001375] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 418.006738] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 418.011573] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 418.016748] RIP: 0033:0x455979 [ 418.019925] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 418.027622] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:57 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000), 0x10000000000006a3) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') setrlimit(0xd, &(0x7f0000000000)={0x5cb, 0x80000000}) execveat(r0, &(0x7f0000000040)='./control\x00', &(0x7f0000000340)=[&(0x7f0000000080)='-]\x00', &(0x7f00000000c0)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', &(0x7f0000000100)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', &(0x7f0000000140)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', &(0x7f0000000180)='\x00', &(0x7f00000001c0)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', &(0x7f0000000240)='user[eth0\x00', &(0x7f00000002c0)='+nodev-\x00'], &(0x7f0000000400)=[&(0x7f0000000380)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', &(0x7f00000003c0)='keyringppp1ppp1\x00'], 0x100) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000440)='/dev/hwrng\x00', 0x80, 0x0) [ 418.034887] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 418.042143] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 418.049407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 418.056673] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000018 2018/05/04 05:58:57 executing program 7: setitimer(0x2, &(0x7f0000000040)={{0x77359400}}, &(0x7f0000000080)) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0xfffffffffffffff7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setitimer(0x0, &(0x7f00000000c0)={{}, {0x77359400}}, 0x0) 2018/05/04 05:58:57 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) accept4(r0, &(0x7f0000000180)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @rand_addr}}}}, &(0x7f0000000240)=0x80, 0x80800) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) r2 = dup3(r0, r0, 0x80000) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f0000000340)=""/172, &(0x7f00000002c0)=0xac) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x1d, r3}, 0x10, &(0x7f0000000100)={&(0x7f0000000080)={0x5, 0x44, 0x8001, {}, {0x0, 0x7530}, {0x4, 0x8000, 0x0, 0x4}, 0x1, @can={{0xfffffffffffffffc, 0x800, 0x9, 0xffff}, 0x3, 0x1, 0x0, 0x0, "de4cd662c8afcc77"}}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x40) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:57 executing program 2 (fault-call:8 fault-nth:25): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:57 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:57 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', &(0x7f0000000080)='./file0\x00', 0x7fffffff, 0x8, &(0x7f0000001540)=[{&(0x7f00000000c0)='C#', 0x2}, {&(0x7f0000000100)="f75c48da4c78961785c4fb180dae7d6791c69d8bff9af11464d38c48196d80dae08c513fad60bf5a2ee619d9010d3dd61d489113646c62ce12388453290300d5854a1886d939fe101af99196119e1d015a286426d3d89d78c041203d11791c2ded3ccb163a4bb3113d1d637f656d9821", 0x70, 0xfffffffffffffff8}, {&(0x7f0000000340)="4d0820d78d39783e71b260299c62bd69559e22de89fb4a4ba53ea219771afc7530b1ad38e199a5163d988fdc1406d1bec50f8b396e76d2d79d80a15bd772cff8a3f0483b9fd530e9001732ec2a700a22f5c67c2755ac9c6b3d5f2c0aa1837783ac4c5af0990355eaabfedf4394324230ce61d8f4f3e5750ce48a902affb4a62a22e9ca58f13754e1520a058b748159cfcff5e199ff9e1779e4ec070c5736", 0x9e, 0x1000}, {&(0x7f0000000400)="cba56953d5deea559015f8d4d1b9a14b88d8758fce5a3b64a941f77def2a36ce89317f0d0f549bedc445ecd7e50a0e2dec8843327dee0e1708dd08846918e7362f2346b0cb6a4d2e0036c9813c3c35465a1d8285fc10df77fccc74afa12049a0c40fa6b47989796dda04fd9566ef55b072da1c1ec1dd967260d76cea2b4824f20ff042eed2c46aa534f29f4f15b4c4f02cfec9fcf08af0aa1eddb43b6004de4836e32665cda4e3f5d2fa49933a62c32c1f7daa34b0e8bfc0a3933b88d5a416b02385f566dd719efb3d5710cb87d79a52656c17772b87a08948f8b7c19aa7c1043815a4e41fab63a62c434a80f264cc3b016a8491f9d66c0e6d4fa7ec3063ba1e35cef7546a238458ceba87592de5ab689f5aa02df4804b166c28450921906d2e094bdaa62dbe701f1760b300d52abe8197ca9d6a1d64c815c8c788104abb3271c45d7fa07b583a86ad1f63cd7f812695b497b40c4d5769e71f149a9c0d8556a3c635fd0ed63bbe403657fa5ac97a2156dd9b2def458deee6d0a816351aba1959b04860663648b6d07070f2667cc25ac20f114a6b53f8984243adb3e06f52c63e0d5aec06c806c53b5e301ad19edf694ce157827c238c7dbf932003696bc79c3c6a902f0a5d4d4a7c29f9325e675e9f60fbc9c39880548c9a716d08be0369714068a304a754408d72470d0842fb091d94dbd696453ff61e329fcf3393bc923afc250182b77d2346763062162314860f578a732d245e0ba6fbdc7a07e14ac7e900524a59807088b38d473a8a1efe1476e23beed66bd12d721749394a7d58c7611263e9d4a2f692e522e597bc6aa9495949eaa84a87acd38f8c3517a50de43e28f23a1dea8aeb38acf9fd17e96b56aed0df7b3cc4cc69119f67812ed4e9850048ab885da83c43e17bb32bbd80fb4029e705e1f37add54455fbeae78f45b7e63f88ae555c216d5a12798790c2eef1da598215b8fdfe916a77dc207d2e0bbf1e77f2e5b870cfc069dfa58c391b66a59c1780f1686aef1e8f4bfaa5495e35ea78b50af513eb7965deafac08d10bd1e73c8599e3f329ff43144eaac4ffb496847d9525478023b64ea22ecf12de8626ef580be597acf35339f3de4ea0a6cebebc82a3633dc7fda0b95fd07e352ec468fb9e4194e6c69c285071111fb86fffc24c5bf18aef8dfd2f51634d39e5a94ba3de22402627de87ace7962a153728c84edcd64688e18e2fcb4aa302b5d47bc70d3f38fa6c84dda4ade0a364f192243200afcc3ddda2b56e2f28ad930b7c8352eaa144382e07525c7c6a00cf7437ab4cdcab7729aab636093f6368fcb0dde124573dda5f9ac219a62106d3f8946ad13a93b7474495f56589db624d5e7b419022da935133e5dc98976528af483cb00d9c7d124721a285776ece53a9ec52f1b47fb5f20014e5fc19ba90b8ff62d3e6e40f12d70390667f92c3867fbf68049dc69cde847b02533acfb7e5ff168e17f123152cd3591bc29eaaada9380eab90ee33ccb5349688b32fca0175a5f229878515baa4af82b2582f1701017c5948359098f41f82de354f4848f2512ec3567736e8e2877cf1c212864ff9ff8f1c0d9d1b688b09973ddbbf20246065bc0512c07d84e9ebb9adc8ff812a65bbb67bdc49754ac611e1f72a618c901c1b41ffcf17af112b387717556e6ca4ac8bd58862edcdb371f771310bc8454ade83fc9c61b0124841f2ab1059833ca0c254e481a39865d977f00ea4553c49b1b2406c7c43d69e3eeecb2aa7ebec6ba71c5ba3305a7af8880d507fa0c78fb1cd254412a9a5d73a80fa27ac3188c34b583b27eacb68ea64b9c2f0ed3095a62f6d9154f0f79b9881cbc25bfd0c7de81bab8f884fcebc0a511c89bac8eada1d3af999bc2883f950ea3c79a72de9a17dd70b337754559e325890f791d1252ca64b59165425bb041d35552f789d17f37ccf7bff31035d826955bd0fc1df78e759bf799323f35d6aae33ea27378c4aa119871dc519c58c7347ff41edd579fb42bfc62d52c62cd79b94b9651d026de38209ef89bf7d8e8f39b4b0fac4f95ac74d8d4ce45184120fad9a0695f24ecdc7b9fd56750629270f52363be955812b957cee50e15eb2f8598335bca7ea27cc4c7207e1b7e0dafe0f87c069e119800f62d5f34eb813866c62a492163564b8d7a95b8dc5cafc88ad0f6a73b86ee828020bdc5adce18931fbd35fd3cbaf5d8a4821c68b1ba948f3924f72dd28a49665ad30e24a80a310b82787fb7c17fd899c01fa9d6f8499c7ed6604d6fb0559f27ba742cfad97819bec66b739851657a3dea5719b9c391edf96038dcf91d3c233b3f39f7b2e3c7751fe578175838c6ae9e32afb4b75f45d12db329efe48d200af5bde050dc0d398937b0bef04086da9f68d682c5371d6d72ecf1f751d2c3dad849fe09332ca52d1daee30d506609da37231fb1cd9c3cd36d3d0a01f9cc902919f998ca976da11b6dab22e39cfcfcb15c50f2ef4950e08c69d152ed492f88072b9dc1ee6ae0e980dc322dabd1736d1951990a764d13297eb33f90edf507245982cd5f9d371a0c8a44ef9151ecf8ccc0a5183486b8f08fbaf466dc3af7bc5ad43af5c2ead6e103ccdf9b57fe626111c176fc11d992d4df1ad0eb3e88202f3f4254df94cc98a4f2ca9edda970bec117bff81aead30060b05c2a976b7cf919e3ed958911f3b27bb09da63c09d9f16415da61e20b0718796d9cbffa1bd139bc6901625a2de0508766f8e193b6f3befd8754ba7cd357f82d4cc170fe7c0aa116c99653bd7b284d2aecaed2b448a138242715d1611b7e41ff2364212de3bb34e6c2dad6551aad276993d606ad73e0abdd0a329c92bd42db30df7e6c0904ea181bf11b8fb3f0a71a45b2b6b8cc9ecba794c5d9d8527cf90f09d88477b41b21471d831968e7457e4e21e16f96f45f8ac69570847d6fa9da3d0c815cecd66086744fb66118b8d18b549effa4a524eb746e5286d976b6ba8a0a55fc82d98e7c507a68ff235a77f33e39c6c0615237b169d14193958de15929847401a29328aea018f9480542783aa799ae2fc8f04a55a07936d4d8c53a0c2d5c6336452de0610007c4ef5f41bcb6192cc0849ea742739b88fa3b429b2379d6b749d00277b7f404626f53277b75f10052d1a565803769efa3f27b43d43d1594e211bbd9a832ed249b56614b51119a133125c7998406a6fa146cad70780904ce6587ae6504b9d763c439fe14275a720d1ee96968b51dc8f52a9ff691836536b5de37b224a2a9c3f09d6a6e9e23d75caf26b437f5335bc26c8850f8ba3d8899131b8bf44fada1f5595757bf8a7d163a4148df28ee080fbafd83710112b20ba81adb352a6975f71235a4f65ab27638a5246af3d6d9b4063a4dc4e88151bc64ed4052624574a0e324a671f69a1562ec7f904390fe459225799a98e4baed1d76fef3982968242fcc854c5dd40b0fce8824e30f602f15e185dec3611886665b529649ee0bdb5489e6cb93cac73c902130f0117ba9136ee02127b2c67a2f4b426649f261022ed0fdebb4630986e011cde531c70f93ae6116b10cdf89b030c32d5c19b38c9ec287949fd7dfb77e6e0fcba6e95556cb8090f9baac96614c8eb891fbb26b3a6baada663128690bf335494fff8e83dfcbe685d9eb4bfc14c58040ff3e559daf4a1958231617f6524a2ace0f5736c07caf61fbfd2081a13761895b1c3a581672285d94f80df9d319758c90c6a2b3c2608eebe23514c2b9ca6acf3304f332b42e42784d8ecf27816b4702ea3802e33b6133d1dc69006eeb3ce17b18850cc7bc9dc5edeb1cf3abeeea4e46d3a6ef02539197cd0e481a41f39fe3ae81c588122f380be208a45dd6592b613be0dd4e90cf0fae6d2d8c3b509dd55d5cca727b5975867c4ca6978ec140ac0e8071c37c0ee3a091ca1e1b538c2e9add5fa64cd9128d2a45d8dc4278b113a4780f717fe4754574103c6aca083a5fd9f2c00933457da19e26cef847eebe0f05b4730a2e83fb043de0d12b11d021cb5c87370987649371949aa58eb7c70fe6527610d1529a5186c377e49d5fc9112b63ffbba3d814269b482a1565b5d48445da3576b0b68e4777ffdc9013b2c00224720f0610f6fc5892f913b38e8cf80460243908f30a60a258686538aba9503bb0d263013f72d215fec656837e7d5f5ac542fb6bf82ebf4e109cc5b4f6fad7f02f60eb61f8de4e0ade88bc0043055a50e6e9f99625ba6bad7c220fe4960fdfab9a41acb3f844ca8fe23255220e10b1e2c1937073bfb7f10c9d0685c2dfcb11295a2467fc9ee8c270a60c09b5f9eba0a0e902a5ec2d2e71bc22ed595bb961213b132b2ade6bc4162d64514f65c650959c05261682e2392356f84bb295af196fa0848a34ffb57078755d076bb1ce16c5332a523c9805efb92ba30443fcbb3fc4a6999783393e2e6b4ddd2585ff783c37a8c8a9d10f864ac26a7c67c9bb0e20626ae59168ee08ac68fa82e2aab6f745db2a0d18a859550f857f375ddf988c79d8f41926a47a073160fe52a282be5bc2c0478dfafd321197a89391ae2851809ffe009226cb57883387d6c138f95aac03f4aa09a4ec7c279b91116a6c749e3658c8131a50b92d9a18ec1fdbbf9a5d7366376116e14396ecfa2805f01604318c0e7e9c1fa30e89f9cc7eaea962f370dfd2770013a96a3aa28deb15013eda17fd142c933fcdb127b2b641a0f52dd0620017377a6775670abbba55e63d12be7cf101a132716383e0f45d9398dd7597592d3ddbaf4d920aa6c3327f5b15eed18acd22a3f3cd08b1e3e5de014656e9dd1f3f34f1d74a11a7f5b923a3b1c2ee62efc980779682bb69da42cbc76308a336c102fcde716f9a05721d8ba86d3762b4d5c8c766a6869450b2e0baa3f614d2026d505389bf47903776cca183e7c1c9861f1e25d3ebaa8db6a00a26bd44dbbcc38e06542444dbc89d7c0d167bfed59dc90d0c6d05181c19abfc7323f3230a7d1f022b2e5c29385359ac38fbbb448841f74606c3a1e7337ae28209be0f27cc469a83afeb6943de1a0f07b8b91a8f4a6e16ea6bb6c3a760ff0a6318f198c99ebd3f1e1d5764137d3963d6e11d63bdc204126671dfc2d1bb14285f4f854937199235cc8da2e362c6e2d64297e669309f623877253f6635d4b48fa98e86a225681fa4cb766dc38cf673f5df12569a2334af459780606f040374f013b9d0500802115328405e1c7dbd983d4b146622c0aebb39e5db729d63fca499bbe396000574a31482ec8efb91f9c32d55a19ae547fa57cfbead14f92256cac976a438ef610c46c8ff5c55ce9c957c9c3debcd903aaba577d1ae69bf09d543b7a5287611fde17f54c052e8981331c572010cf8a32a81ea16ac7c0423764fdccd61de98f90de70b005308c60b2fe230adf419b251a1d5f5981a23adebfc6aaa72973b3f8fdcc844c8c3ed6061cd4c4d7c31feaa020236125c7576e66b7f633667feefcd3d3f7d5d6185cca940d9b3feaa1559788b3a4e1dc4c1db0c3f0206d56bcf0e1695129393d3174a9d3f7ade3fee3137799ca4644236a1e0a301035aa79aa89553f69051041245aeb8dad77a6b7fabcd0eb68d1ac08e452ae1918ee0407832a9a7ffff3646146622b722eaf6074a5dee62f216f4462ee1a58f81c99aaba61333a3e13b30d8760ef29eeb4434febf839948e9b14f6f369180d4eb5057fe56de09b23099dde2667ace8dda2ea3dbb6d431d1e3486095541d88b88e1ea7817753bbafefb7fd835866ff06c36a0687539a036280bbd66d2a1e79dcb1b5bc98d1b71ad7f62d5d99839f", 0x1000, 0x9a}, {&(0x7f0000000180)="aeb63e64799151d531f2797de6f84af055f2ce0d80561588a4d310a3d3bde39ff9aa12c68174a367496e9074539681b4d3699f5881e8a173ac454f1e1d15dd238929a6df81aa7d3ece0d44a07ae9a20723cf433a62a46154f945b67e3cbd7e7bc6f911b994646b8425708a96eba2cacf311746cf20508d1be80e435870b68310", 0x80, 0x200}, {&(0x7f0000000240)="a689ecf69f85b0d8e390885a359811a44e681c783c8f8ab969cec715eb766ff76e62a3efb924117953e950ebc3a39776f09c51a9e9954a6b442b", 0x3a}, {&(0x7f0000001400)="ec6cf1d7d23d969a6b31d757ec741840ab834a88e2d5d619eda1f7ea0fcc41057af9291a34d0fdf7d2f2c38d019e6d87734778463159d5bc85aa11a2d2d46a32082e", 0x42, 0x2a6}, {&(0x7f0000001480)="20e3ce51a3bdc906aa4358f956e9f91d4ff89602928cc84a5f80a01ec138f3b7f9d181c8ab2d549e73a4008a9b66250a754e1a03c5219841bac990ad186218056e24496d6a9f2fdb90eef61ba1b126d17a4dbf1ad73b65c41ab5a4bb6d4904388e16f6ea382d654a3d9596b82447bd5295ede41268272711492ddc869227ae256b31358607d7e604cb358db7e7527f35ed9d6c3af247506b7620d638200c605e191afebb1db049391d5a39d0df870a776bac51e8", 0xb4, 0x6}], 0x10, &(0x7f0000001600)={[{@dmode={'dmode', 0x3d, [0x7b]}, 0x2c}, {@check_relaxed='check=relaxed', 0x2c}, {@nocompress='nocompress', 0x2c}, {@iocharset={'iocharset', 0x3d, 'cp1251'}, 0x2c}, {@gid={'gid', 0x3d, [0x39]}, 0x2c}, {@nocompress='nocompress', 0x2c}, {@mode={'mode', 0x3d}, 0x2c}, {@session={'session', 0x3d, [0x38, 0x7c]}, 0x2c}, {@overriderock='overriderockperm', 0x2c}, {@overriderock='overriderockperm', 0x2c}]}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000000000)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') chdir(&(0x7f00000002c0)='./file0\x00') 2018/05/04 05:58:57 executing program 0: mknod$loop(&(0x7f0000000ff8)='./file0\x00', 0x3, 0xffffffffffffffff) lsetxattr(&(0x7f0000712ff8)='./file0\x00', &(0x7f0000000000)=@known='security.capability\x00', &(0x7f0000000080)="00000002010010d31c98baa9c794000000000000", 0x14, 0x0) execve(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240), &(0x7f0000000400)) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r0) 2018/05/04 05:58:57 executing program 6: pipe2(&(0x7f0000f61000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x800) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000080)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000604ffc)) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000000)) r3 = dup2(r0, r2) ioctl$sock_bt(r3, 0x8906, &(0x7f00000000c0)="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") 2018/05/04 05:58:57 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xf401000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:57 executing program 6: setrlimit(0x9, &(0x7f0000000200)) io_setup(0x101, &(0x7f0000000100)) rt_sigprocmask(0x1, &(0x7f0000000040)={0x2}, &(0x7f0000000080), 0x8) rt_sigprocmask(0x2, &(0x7f00000000c0)={0xc40000000}, 0x0, 0x8) io_setup(0x8001, &(0x7f0000000000)) r0 = syz_open_dev$dmmidi(&(0x7f0000000140)='/dev/dmmidi#\x00', 0xda5, 0x80000) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000180)=@assoc_value={0x0, 0x10001}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000240)={r1, 0x9, 0xa9, "8d97e4a646469801d80de2d7dffe50f6930b671b01c2c2447a1f7973e0ee2a0c8bb451858a43c3b4baf7043f6ef60db93fe57aaab3035691ee544faa5e62355d9302128052cbc22f7017e759a1dfccd936cc6ef8bb7b8b8997ecc5f32c6ac1cc356100230edbd2c5283740cfe5b1901d022d2aae16fec6682ae1f8796643ad80c951d562bbd9cac228f9adb73069ef3d9c098379a1e7f153f63c84f411922de5076ce25b65bc6d5e4c"}, 0xb1) 2018/05/04 05:58:57 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$sock_ipx_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000000)={'nr0\x00', {0x4, 0x7fffffff, 0x101, "55ea35ec63ca", 0x101}}) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') getpeername$unix(r0, &(0x7f0000000100), &(0x7f0000000080)=0x6e) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f00000000c0)=0x75b) socket$unix(0x1, 0x1, 0x0) ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000040)) fchmodat(r0, &(0x7f0000000180)='./control\x00', 0x10) 2018/05/04 05:58:57 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x9000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:57 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x6) fcntl$getownex(r0, 0x10, &(0x7f0000000240)={0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f00000017c0)=0xc) fstat(r0, &(0x7f0000001800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = getpgid(0xffffffffffffffff) r6 = getuid() fstat(r0, &(0x7f0000001880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r8 = fcntl$getown(r0, 0x9) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001900)={{{@in=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000001a00)=0xe8) r10 = getgid() ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000001a40)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000001a80)={{{@in6, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f0000001b80)=0xe8) r13 = getgid() sendmsg$unix(r0, &(0x7f0000001d00)={&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001700)=[{&(0x7f0000000080)="56632c697289c4aa9ae03c00ace5baab74a937405db7c9a858b818a698", 0x1d}, {&(0x7f00000000c0)="a7c42c7612f4200080660c2c18e9c8baba9f3d7fdd88b07ec3f140091a35ee21ea5dee1e45252dbf2e5af1f8dc41332e7b85b1061d3bce74ba999840594ea9bff934", 0x42}, {&(0x7f0000000140)="b83ea3e76e27d575ad7f71bb14d47b6df9015ac9f833b3e5ef541ae756740ec16042a37dc4", 0x25}, {&(0x7f0000000340)="5ec0202e64fca0d6d72672e6778b38bbc1303b4fa8ec386dff4cbabdf53834cb51b5d8c409e744d6b81adbb6448f2f8d2419a6a0e6dd193a5e4733600998ab722cff247205441a78f0b4677a3f6d962c666c25351d2435a702f32aa801c6e4940741f4012fb3de38905ed21af883ad2daebf3a19472a796e01eb86f56bdf1ef1f61233ea8bb8e1890ac9ada2b20feeec175b68ce6b7291", 0x97}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000000180)="842e60cdd134dd9ad9b12809d3cc49a930c2d1b6deddbcb50f6de087e3dd39bf5e67b797e4adf172b803095bd1fc9128285b61e5750f640f418642f18acad259e56e67e371dde8cc755cf0e96bd76985619d18b1822e5838b56bde40683c", 0x5e}, {&(0x7f0000001400)="1708b32e209c223520312fa3fd05cd63a4b97d13e18c44fbb4760b4e62aedef1b4068798f8589bdcaddc7b90cc0f23ac78c83b6a70b99100114eaa75c59687e93caeca050724bb07b654097a006bc86275265e7632f45cb6f034f5a9d56696431b03fdcce26b3069d67ed31b1a368097dfc1e941e7aec1001a8ad4f5ef7de16477738b968c39f84ff4f6bb0b47786dd210a4b8449681c7579a3d312d1590d17aba07acbbfbd60c966180d1a45e00c2641ffe00ad951b348eb96030c01f19f48f7edf37437944115efe04", 0xca}, {&(0x7f0000001500)="2378bd5fe0f8906fc532d674e5fea263ee3cc7c3f44f01106c44b0e7f9cbb420191458b25399379f02ce2a0e830c1594abb93244d052ccfec0cd3e51bc75c76bd59efe78f204b45c776b", 0x4a}, {&(0x7f0000001580)="8971ff1bc45c6f3cf7520cb687f9a11451bcbabf003a1b43ceecd1b76984b083213300df71ecfbef8f5139e8494d089647d7f015fb12b685dcff7218442add5637c2c7e3c1868aef016f5479955ed699fdcc423fc5fbc7253e5a749fdede992b2b98529b06967f3332fc3d1c46939b13472f8b5dfe4d4ff9075b8fa61282e0c1ab9f81762e3303eaec0ea218eb35ae2364fa0bee070201354b203bcbeb86177f2a91ac5625cdebc64d55358e16b40743", 0xb0}, {&(0x7f0000001640)="1cd75fb31d1d5f515cc3c133aeee972058199f603f8532308f8319fc81cc7905bcef31d08a90983bf2db7bdbbe4f4d5ce947843473dde0b46709d3e06903c0ab15e861f4626206a108abdb7d824dbe9cfdab480e5e5ddfaa9c980969dd5fb492ccd01756849798593881c5ec09e29a93ad458ad39300b136cf4295525125e0121d6cb7da725d8da703bb17a185bd012617595238dccd8d8f2d93b56660fd876666c5e98ee92fa87e833605da5a8b0f091ba5eda4ed7c2bc6", 0xb8}], 0xa, &(0x7f0000001bc0)=[@rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r1]}, @rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r2, r3, r4}, @rights={0x20, 0x1, 0x1, [r0, r0, r0]}, @rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @cred={0x20, 0x1, 0x2, r8, r9, r10}, @cred={0x20, 0x1, 0x2, r11, r12, r13}], 0x108}, 0x4000) r14 = shmget(0x1, 0x1000, 0x1, &(0x7f0000004000/0x1000)=nil) shmctl$SHM_LOCK(r14, 0xb) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:57 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) prctl$seccomp(0x16, 0x3, &(0x7f0000000080)={0x9, &(0x7f0000000000)=[{0x400, 0x6763, 0x7, 0x3}, {0xd121, 0xd19c, 0x1, 0x80}, {0x2d7d8b94, 0x4e5f, 0xaa2, 0x1}, {0x6, 0x1, 0x28, 0xaac1}, {0x1000, 0x7, 0x3, 0x101}, {0x81, 0x3, 0xc28, 0x9}, {0xbe0, 0x8, 0x1, 0x1ff}, {0x9, 0xee1, 0x4, 0x8de}, {0x4, 0x3, 0x9, 0x5}]}) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') memfd_create(&(0x7f00000000c0)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x2) [ 418.359234] FAULT_INJECTION: forcing a failure. [ 418.359234] name failslab, interval 1, probability 0, space 0, times 0 [ 418.370569] CPU: 0 PID: 27557 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 418.377849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 418.387203] Call Trace: [ 418.389801] dump_stack+0x1b9/0x294 [ 418.393442] ? dump_stack_print_info.cold.2+0x52/0x52 [ 418.398644] ? __save_stack_trace+0x7e/0xd0 [ 418.402984] should_fail.cold.4+0xa/0x1a 2018/05/04 05:58:57 executing program 0: r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@llc, &(0x7f0000000080)=0x80, 0x800) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000340)=0x1, 0xfffffe1e) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xf8, r1, 0x300, 0x70bd28, 0x25dfdbfd, {0x10}, [@IPVS_CMD_ATTR_DAEMON={0x70, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote={0xfe, 0x80, [], 0xbb}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x3a}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0x1d}}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, [], 0x20}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1ff}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x24, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x4}]}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x81}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xdc}, @IPVS_SVC_ATTR_AF={0x8, 0x1}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x8000}, 0x40) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000003c0)=0x0) r3 = syz_open_procfs(r2, &(0x7f0000000380)='autogroup\x00') set_mempolicy(0x2, &(0x7f0000000400)=0xffffffff, 0x2) readv(r3, &(0x7f0000001340)=[{&(0x7f00000012c0)=""/98, 0x62}], 0x1) ioctl$DRM_IOCTL_GET_UNIQUE(r3, 0xc0106401, &(0x7f0000000180)={0x1f, &(0x7f00000000c0)=""/31}) [ 418.407058] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 418.412171] ? save_stack+0x43/0xd0 [ 418.415800] ? kasan_kmalloc+0xc4/0xe0 [ 418.419691] ? __kmalloc+0x14e/0x760 [ 418.423410] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 418.428265] ? htree_dirblock_to_tree+0x563/0xac0 [ 418.433113] ? ext4_htree_fill_tree+0x404/0xd40 [ 418.437792] ? graph_lock+0x170/0x170 [ 418.441599] ? reconnect_path+0x221/0x6f0 [ 418.445753] ? exportfs_decode_fh+0x3cd/0x6d0 [ 418.450254] ? do_handle_open+0x3f8/0x950 [ 418.454409] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 418.459527] ? do_syscall_64+0x1b1/0x800 [ 418.463620] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 418.468982] ? find_held_lock+0x36/0x1c0 [ 418.473040] ? __lock_is_held+0xb5/0x140 [ 418.477101] ? check_same_owner+0x320/0x320 [ 418.481413] ? rcu_note_context_switch+0x710/0x710 [ 418.486333] ? ext4fs_dirhash+0xb23/0x1060 [ 418.490565] __should_failslab+0x124/0x180 [ 418.494792] should_failslab+0x9/0x14 [ 418.498579] __kmalloc+0x2c8/0x760 [ 418.502111] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 418.506769] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 418.511602] ext4_htree_store_dirent+0x8b/0x5a0 [ 418.516270] htree_dirblock_to_tree+0x563/0xac0 [ 418.520942] ? dx_probe+0x1120/0x1120 [ 418.524732] ? save_stack+0xa9/0xd0 [ 418.528353] ? save_stack+0x43/0xd0 [ 418.531966] ? kasan_kmalloc+0xc4/0xe0 [ 418.535840] ? iterate_dir+0x4b0/0x5d0 [ 418.539715] ? get_name+0x51c/0x6a0 [ 418.543330] ? exportfs_get_name+0x1a3/0x240 [ 418.547741] ? reconnect_path+0x221/0x6f0 [ 418.551878] ? exportfs_decode_fh+0x3cd/0x6d0 [ 418.556358] ? do_handle_open+0x3f8/0x950 [ 418.560490] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 418.565584] ? do_syscall_64+0x1b1/0x800 [ 418.569631] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 418.574982] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 418.580167] ext4_htree_fill_tree+0x404/0xd40 [ 418.584653] ? print_usage_bug+0xc0/0xc0 [ 418.588714] ? do_split+0x1bb0/0x1bb0 [ 418.592521] ? __lock_is_held+0xb5/0x140 [ 418.596580] ? ext4_readdir+0x2722/0x3bb0 [ 418.600724] ? rcu_read_lock_sched_held+0x108/0x120 [ 418.605731] ? kmem_cache_alloc_trace+0x616/0x780 [ 418.610558] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 418.615647] ? do_syscall_64+0x1b1/0x800 [ 418.619696] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 418.625051] ? free_rb_tree_fname+0x9c/0xe0 [ 418.629362] ext4_readdir+0x1c82/0x3bb0 [ 418.633327] ? debug_mutex_init+0x1c/0x60 [ 418.637473] ? __ext4_check_dir_entry+0x370/0x370 [ 418.642311] ? lock_acquire+0x1dc/0x520 [ 418.646291] ? iterate_dir+0xd4/0x5d0 [ 418.650088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 418.655613] ? lock_release+0xa10/0xa10 [ 418.659682] ? check_same_owner+0x320/0x320 [ 418.663993] ? rcu_note_context_switch+0x710/0x710 [ 418.668917] ? __might_sleep+0x95/0x190 [ 418.672885] ? down_read_killable+0xaf/0x1f0 [ 418.677280] ? iterate_dir+0xd4/0x5d0 [ 418.681066] ? security_file_open+0x14f/0x1d0 [ 418.685547] ? down_write+0x120/0x120 [ 418.689336] ? do_dentry_open+0x46c/0xf10 [ 418.693479] ? security_file_permission+0x1c6/0x240 [ 418.698499] iterate_dir+0x4b0/0x5d0 [ 418.702209] get_name+0x51c/0x6a0 [ 418.705650] ? _raw_spin_unlock+0x22/0x30 [ 418.709787] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 418.714792] ? find_held_lock+0x36/0x1c0 [ 418.718838] ? exportfs_encode_fh+0x120/0x120 [ 418.723340] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 418.728176] exportfs_get_name+0x1a3/0x240 [ 418.732410] ? get_name+0x6a0/0x6a0 [ 418.736028] ? down_read+0x1b0/0x1b0 [ 418.739745] reconnect_path+0x221/0x6f0 [ 418.743715] exportfs_decode_fh+0x3cd/0x6d0 [ 418.748029] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 418.753643] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 418.759010] ? __fget_light+0x2ef/0x430 [ 418.762980] ? fget_raw+0x20/0x20 [ 418.766431] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 418.771436] ? __check_object_size+0x95/0x5d9 [ 418.775933] ? __might_sleep+0x95/0x190 [ 418.779907] do_handle_open+0x3f8/0x950 [ 418.783871] ? vfs_dentry_acceptable+0x10/0x10 [ 418.788445] ? ksys_write+0x1a6/0x250 [ 418.792236] ? __ia32_sys_read+0xb0/0xb0 [ 418.796289] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 418.801127] __x64_sys_open_by_handle_at+0x76/0xb0 [ 418.806046] do_syscall_64+0x1b1/0x800 [ 418.809919] ? finish_task_switch+0x1ca/0x810 [ 418.814401] ? syscall_return_slowpath+0x5c0/0x5c0 [ 418.819319] ? syscall_return_slowpath+0x30f/0x5c0 [ 418.824239] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 418.829592] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 418.834429] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 418.839702] RIP: 0033:0x455979 [ 418.842875] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 418.850572] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 418.857828] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 418.865086] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 418.872339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 418.879593] R13: 000000000000045c R14: 00000000006fa940 R15: 0000000000000019 2018/05/04 05:58:58 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) sendto$inet(r0, &(0x7f0000000080), 0xfffffffffffffd90, 0x20020003, &(0x7f0000385ff0)={0x2, 0x20000000004e21, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='lp\x00', 0x3) recvfrom$inet(r0, &(0x7f0000000040)=""/149, 0xfffffffffffffdab, 0xd00, 0x0, 0xfd69) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) fcntl$getownex(r0, 0x10, &(0x7f00000001c0)) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000200)=0xc87, 0x2) setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000140)={@broadcast=0xffffffff, @loopback=0x7f000001}, 0x8) connect$bt_rfcomm(r1, &(0x7f0000000180)={0x1f, {0x0, 0x0, 0x3}}, 0xa) 2018/05/04 05:58:58 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) getsockopt$inet_tcp_buf(r0, 0x6, 0x1e, &(0x7f0000000000)=""/173, &(0x7f00000000c0)=0xad) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') rename(&(0x7f0000000180)='./control\x00', &(0x7f0000000300)='./file0\x00') 2018/05/04 05:58:58 executing program 7: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00004da000), 0x4) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000100)={0x1}, 0x4) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x40, 0x0) ioctl$sock_inet6_udp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000040)) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f000007affc)={0x0, 0x0, 0xfffffffffffffffc}, 0x4) 2018/05/04 05:58:58 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={r0, 0x7, 0x1, 0x1, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9}, 0x20) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:58 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c8e270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') chdir(&(0x7f0000000000)='./control\x00') 2018/05/04 05:58:58 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000180)=0x1) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0x1) writev(r0, &(0x7f0000000000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c85f70e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x5, 0x0) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') ioctl$PIO_FONTX(r0, 0x4b6c, &(0x7f0000000080)="38fbda35024bc127b6131af11a75c506776fccbeffea345807389f7be1b4a4facc989bf809ee39f51a6f7feb0eb28c1b53da3c1b4298878fa99deaf0542e048c02aec6ef136a39e7f25b92133b248ac70b15321b210d31cd821f4db55ec2f73cb698cc042d95d716382808163690f1573863ae8a6310718031b1e95cda3fa211abd920a3c31199db7de6cf17a7cfd050157281970cd6837f62daba3b0818824ceaf5c6e361c355a06636954975bec432c60cc4d92937a69704ab639411bc1af1e92f9fb9062799a120281064cc2bcb075ad55aad0d9cfd0cf4c3fbe66947da7dec4df7b87693cd26b0fbc2d0069ffe744e") 2018/05/04 05:58:58 executing program 6: r0 = socket$inet6(0xa, 0x2100000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x400000002}, 0x1c) sendmmsg(r0, &(0x7f000000b180)=[{{0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000001500)}}, {{&(0x7f0000000400)=@in6={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}, 0x80, &(0x7f0000001280), 0x0, &(0x7f0000003740)}}], 0x2, 0x0) r1 = shmget$private(0x0, 0x2000, 0x78000122, &(0x7f0000ffb000/0x2000)=nil) shmctl$SHM_INFO(r1, 0xe, &(0x7f0000000480)=""/4096) 2018/05/04 05:58:58 executing program 0: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x10200000, &(0x7f0000000080)="0ae3b2a76db9aea4c1573a34f71e41bb9ee6c434ea3924a1536104d43453b366c0a6", &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="671f6ca538ed26bd0588ef88f820c827c603dd4436d525cdbd4757704ea98390222866be3622e10b4d34d4bb") r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00003cefe4)={&(0x7f0000000040)={0x10, 0x34000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)={0x18, 0x2c, 0x6fd, 0x0, 0x0, {0x2004}, [@nested={0x4}]}, 0x18}, 0x1}, 0x0) 2018/05/04 05:58:58 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xa00, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:58 executing program 2 (fault-call:8 fault-nth:26): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:58 executing program 6: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000cd0000)={0x80ffffff, 0x1700000000000000, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x1, 0x0, 0xffffff7f, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}}]}, 0x60}, 0x1}, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x105840, 0x0) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000001c0)=0x4, 0x4) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0xa, 0x200, 0x6, 0x6, 0x0, 0x70bd2b, 0x25dfdbfc, [@sadb_ident={0x2, 0x0, 0x7, 0x0, 0x50f3}, @sadb_ident={0x2, 0xb, 0xb7, 0x0, 0xd0}]}, 0x30}, 0x1}, 0x20044801) 2018/05/04 05:58:58 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000), 0x0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:58 executing program 4: r0 = memfd_create(&(0x7f0000000000)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x3) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') ioctl$void(r0, 0xc0045c79) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:58 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x8, 0x4011, r0, 0x3) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:58 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x9, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:58 executing program 6: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x200080, 0x0) ioctl$KVM_SET_DEBUGREGS(r0, 0x4080aea2, &(0x7f0000000040)={[0x10f002, 0x6000, 0x0, 0x100000], 0xffff, 0xa8, 0x401}) setsockopt$inet6_dccp_buf(r0, 0x21, 0xe, &(0x7f0000000200)="59c3b49052c9cfa742090937d4559a272eceeee4e70fe8e1ead6e77291b0eecbc1d557126d26ee01963d975053f2188f5fec8f206e9fbd2964ba4e8dfab7d164d08a0fa2b24aec200c7b605056efb9fb0cc3bfe2c2d95c91db3469741a648173065a581f48a7c274ac21fb960f7aaf33c5ac4a77ce940c64a0133c7269b0a978397293884fb0bda8467a208d747f99a6d7f1005d02b50e4b9e477ace008aca88202b30", 0xa3) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) io_setup(0x7, &(0x7f0000000180)=0x0) io_submit(r2, 0x1, &(0x7f00000016c0)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="f03510bac4331f2dd9e28fa2aa9aa7e64467483f70b0b7cd4d33218cb8c9781946f7a080c2b7f79f5137e025f3ac50fbca328fb245", 0x35}]) 2018/05/04 05:58:58 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) accept4(r0, &(0x7f0000000040)=@can, &(0x7f00000000c0)=0x80, 0x800) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xd47b, 0x8000) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:58 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) r1 = request_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000080)="ce2b7b656d316d643573756d1c2373656c66776c616e31292b736563757269747970726f632827406370757365742370707030256c6f00", 0xfffffffffffffffd) r2 = add_key(&(0x7f0000000140)='logon\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$search(0xa, r1, &(0x7f00000000c0)='ceph\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x3}, r2) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 419.449410] FAULT_INJECTION: forcing a failure. [ 419.449410] name failslab, interval 1, probability 0, space 0, times 0 [ 419.460736] CPU: 1 PID: 27638 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 419.468021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 419.477379] Call Trace: [ 419.479984] dump_stack+0x1b9/0x294 [ 419.483634] ? dump_stack_print_info.cold.2+0x52/0x52 [ 419.488838] ? perf_trace_lock_acquire+0xe3/0x980 [ 419.493695] ? __save_stack_trace+0x7e/0xd0 [ 419.498045] should_fail.cold.4+0xa/0x1a [ 419.502125] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 419.507232] ? save_stack+0x43/0xd0 [ 419.510850] ? kasan_kmalloc+0xc4/0xe0 [ 419.514729] ? __kmalloc+0x14e/0x760 [ 419.518453] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 419.523285] ? htree_dirblock_to_tree+0x563/0xac0 [ 419.528131] ? ext4_htree_fill_tree+0x404/0xd40 [ 419.532795] ? graph_lock+0x170/0x170 [ 419.536586] ? reconnect_path+0x221/0x6f0 [ 419.540725] ? exportfs_decode_fh+0x3cd/0x6d0 [ 419.545217] ? do_handle_open+0x3f8/0x950 [ 419.549352] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 419.554448] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 419.559819] ? find_held_lock+0x36/0x1c0 [ 419.563879] ? __lock_is_held+0xb5/0x140 [ 419.567950] ? check_same_owner+0x320/0x320 [ 419.572266] ? rcu_note_context_switch+0x710/0x710 [ 419.577188] ? ext4fs_dirhash+0xb23/0x1060 [ 419.581429] __should_failslab+0x124/0x180 [ 419.585668] should_failslab+0x9/0x14 [ 419.589463] __kmalloc+0x2c8/0x760 [ 419.592997] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 419.597666] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 419.602505] ext4_htree_store_dirent+0x8b/0x5a0 [ 419.607172] htree_dirblock_to_tree+0x563/0xac0 [ 419.611847] ? dx_probe+0x1120/0x1120 [ 419.615643] ? save_stack+0xa9/0xd0 [ 419.619259] ? save_stack+0x43/0xd0 [ 419.622872] ? kasan_kmalloc+0xc4/0xe0 [ 419.626764] ? iterate_dir+0x4b0/0x5d0 [ 419.630641] ? get_name+0x51c/0x6a0 [ 419.634257] ? exportfs_get_name+0x1a3/0x240 [ 419.638652] ? reconnect_path+0x221/0x6f0 [ 419.642789] ? exportfs_decode_fh+0x3cd/0x6d0 [ 419.647273] ? do_handle_open+0x3f8/0x950 [ 419.651409] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 419.656502] ? do_syscall_64+0x1b1/0x800 [ 419.660551] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 419.665905] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 419.671093] ext4_htree_fill_tree+0x404/0xd40 [ 419.675575] ? print_usage_bug+0xc0/0xc0 [ 419.679631] ? do_split+0x1bb0/0x1bb0 [ 419.683436] ? __lock_is_held+0xb5/0x140 [ 419.687493] ? ext4_readdir+0x2722/0x3bb0 [ 419.691627] ? rcu_read_lock_sched_held+0x108/0x120 [ 419.696632] ? kmem_cache_alloc_trace+0x616/0x780 [ 419.701462] ? perf_trace_lock+0x900/0x900 [ 419.705700] ? free_rb_tree_fname+0x9c/0xe0 [ 419.710021] ext4_readdir+0x1c82/0x3bb0 [ 419.713990] ? debug_mutex_init+0x1c/0x60 [ 419.718145] ? __ext4_check_dir_entry+0x370/0x370 [ 419.722981] ? lock_acquire+0x1dc/0x520 [ 419.726953] ? iterate_dir+0xd4/0x5d0 [ 419.730745] ? lock_release+0xa10/0xa10 [ 419.734715] ? rcu_note_context_switch+0x710/0x710 [ 419.739640] ? __might_sleep+0x95/0x190 [ 419.743608] ? down_read_killable+0xaf/0x1f0 [ 419.748003] ? iterate_dir+0xd4/0x5d0 [ 419.751798] ? security_file_open+0x14f/0x1d0 [ 419.756290] ? down_write+0x120/0x120 [ 419.760082] ? do_dentry_open+0x46c/0xf10 [ 419.764224] ? security_file_permission+0x1c6/0x240 [ 419.769240] iterate_dir+0x4b0/0x5d0 [ 419.772952] get_name+0x51c/0x6a0 [ 419.776395] ? _raw_spin_unlock+0x22/0x30 [ 419.780539] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 419.785549] ? find_held_lock+0x36/0x1c0 [ 419.789612] ? exportfs_encode_fh+0x120/0x120 [ 419.794125] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 419.798963] exportfs_get_name+0x1a3/0x240 [ 419.803190] ? get_name+0x6a0/0x6a0 [ 419.806803] ? down_read+0x1b0/0x1b0 [ 419.810513] reconnect_path+0x221/0x6f0 [ 419.814498] exportfs_decode_fh+0x3cd/0x6d0 [ 419.818813] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 419.824429] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 419.829784] ? __fget_light+0x2ef/0x430 [ 419.833751] ? fget_raw+0x20/0x20 [ 419.837198] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 419.842205] ? __check_object_size+0x95/0x5d9 [ 419.846696] ? __might_sleep+0x95/0x190 [ 419.850674] do_handle_open+0x3f8/0x950 [ 419.854641] ? vfs_dentry_acceptable+0x10/0x10 [ 419.859211] ? ksys_write+0x1a6/0x250 [ 419.863005] ? __ia32_sys_read+0xb0/0xb0 [ 419.867065] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 419.871909] __x64_sys_open_by_handle_at+0x76/0xb0 [ 419.876829] do_syscall_64+0x1b1/0x800 [ 419.880709] ? syscall_return_slowpath+0x5c0/0x5c0 [ 419.885628] ? syscall_return_slowpath+0x30f/0x5c0 [ 419.890550] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 419.895913] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 419.900750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 419.905927] RIP: 0033:0x455979 [ 419.909102] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 419.916802] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 419.924057] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 419.931326] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 419.938583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 419.945841] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000001a 2018/05/04 05:58:59 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x11}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp6\x00') ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000001200)) r2 = syz_init_net_socket$llc(0x1a, 0x3, 0x0) getsockname$llc(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f00000011c0)=0x10) r3 = accept4(r0, &(0x7f0000000080)=@vsock={0x0, 0x0, 0x0, @host}, &(0x7f0000000100)=0x80, 0x80000) r4 = open(&(0x7f0000002240)='./file0\x00', 0x10000, 0x50) ioctl$EVIOCGVERSION(r4, 0x80044501, &(0x7f0000002280)=""/250) sendmsg$nl_netfilter(r3, &(0x7f0000002200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000021c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="24100000120210002abd7000fddbdf250000000708006c00ac141415bfb67353b65939b00465cfb469ed73e32d3416df136aa0bf29562676076c7fb4fd1f4af9447094a236b60f854634786fcb6760dd85dc14cda31d8bf51a005adde49b271edd6ef04422080aaa2b08ff298b18f87e31363dc8b6139113f62412012bab6a5ce5642dfe17cdd6a7e2c075a9003c82ec854c4dadf7941f157e4c686cf0aa76251118dec27684455fe2a4b44af13a4b1e6db23b9cbb774305c7cc0a6e250ffbc23d5b19b74fcf5575830a7ab50bc8d9a7a03a830dcf7a9a6570c4dbfcca243b837c14b9c39df972aafe1bedbd131a1bfb386976d8ad13ebd16476744ad153a1b65bfeb13eb246880765bdfec447260598e26d5401a560c9f57099185d951297e16f40216a4415cf9f87cbac3ee998cdef55fcaefe9bba874e58e677a120abdfbe13340e54aa1a5478201fa6b1bbf5db2d9920edd9c8dc7d022e5bd2cda0d2ad9bc8661ed2849263896acbe8734e66b2bc790af2441fc147543794258237f6cf99f0ec073b481804bb28ff2af477b00e8cccd092ce12d93edecbc16351a9699d1fe1e9a7652f9b8e709227a8a88b1c0e101e2f92ab3ebe30c19f436e7c7bcb296125e723fedadb1a03df852e7766cc2877b8104edbf65cd79ff9c5e6aab4deb3c4f008c2c6a84ab2eb67920fc406a10612c138243e6b3decc1a787cf31899cdf9982b2ccfdf714a2c92dfcc8ed29d423dab718ccc534e127684485e004516c573abfc81c0450d0537b549e352394168d13b4729f974aed48eb61b0e16968bb5b779b9c04c6713188b1111d3db23b8be331791197c04685aa01bd5d4da9841514c0d90f72341e970b82f089d084915720588e17ff863480ffd06f3431a729c2ba6916b3baf6a9f568b041ab7753b74ed5e30391ac30926e8e0b27a7b42714c2a952fd6072c885215e851244302eb80a4622fcf5b74a83bb90a871ed048d44b33aec7f0e73b5b448685bc99f6cf995744a5b9763afd9116cee1128f2865a22d0280edbe50f65a8cc03ba5f6e6ee7e737ca38103eb6b95bc75f3038cfff006e7dc7182a9ffb9bc2b19ccf655cd2c16cd4ba4c4bbd4e87753a196a95386beefd25976136d1d01b958956aa73bf3beccc2b14f77442d5ec7fea35c3402f9a0048cf9a09286d363d90bc9847074e6ef48383b794e11274b2d95c03ec2886680e06dd413f2f2a4f4907cf8d0fbebb2195d08aadf62d2d101894e88c7c1c09e6659729398f98b082449c031f879c1c731a40f7b11066c4b156b1313dce97b94c98ff970de91711e5574be6e7af2bcd596f1cefef4372ea393ba502248ce1e512d10066a50e891ac83bdde644fa735a6052f3f670b4f672529376fb9c9ff0ef21a4ef650d3a479f9ff7f11527161152e6fe0a305cf5de6eb3223fe7abcf7bc2bf18508457ac22b8a4e654e938f158e0788a1c7d8ee548bd4a3959f3733c12d4d94d8d9535e0346fbb28628f3ef9efc3b0d1ba269c4f7284adc6786d2950705a69f0ca7fef040036097e3731d69c564ff4a0a24fe25b424caca27a7d7e40ced680f790631d3946ae0f6bc67c2531e8f07491e32ab8f858fcf0832a2e37d1949fbf730227c46dbf493260e8e864e11a512c7b7c243cee023847cc32e5ef80377d85dbd69c6f4dac6b8b238839e24febd46b8823e3c886faaed22cddf5e7a50c7977de8531afc952e51e58d2b1851516b16aa32920bf332689a1fcbcddb7b32fa5018a15ae608667b069fc82ecacde4b6843d8f2c54810cbf4cf316680214ebec57afbc0b4835955513739439d6cbe14acf0782297a753a1d90228a1e591aadf5d6dbc3d57690df3bc72fe82c14f3cdb7fce6fc1d7f1cd43e348cc9550a067eb751dd3a1e334783482ea55927b2788bede41502895b8ff43b7f0644696620e6c554f621e69670dfa3ee86f53174ce39ca098edcb4aaf68f6943585a6e0e6bb6a54df71b67a8beeca2818860d81d9ab91d08b8c9e161f38b09436b14b1eaba411b552754b162e645c3875d789ca2cf6cfa571095e8d305060211e647f8b250ad553e372666422f8b149f8d9fb6a04a6602e0e47683327dcf662fdb3415f2da11efc1701cd62b057e3a8cd3dffdb6453d0a2c04281c7bec74a19071a2dc0ba44979700427000ae6022b14b1a184e2f4c1c183597eaaff7f6438f8cdd3b682a4ea3267df1dfc7a6306e6915e00ee6e005043fb061b3ad0b5f7f464fe8fa1f613f2cfd24bed4ce12386ce2db3ae2bd67b2bad2732804fed812e6e8a4293c3e4ba24b7ef691d47f41dab7e79d454d7f88baeee4e06bdfac4eafca45774163c6535fb876ee2583012be3d8b2bd9814e5dad67f1a259a9853cafe7377ee90f336d14905fac0560b8d1b1f6fb9136de221bb02f30556f4c42d7270b108daf054070bfacd509d026c7cc676ff708de4e1a5bc0efb49e5c69c1e5d7af4a2cd2208333c994520a1116e2da0e62628c3e69ba54048f34b7894250950b28f2a75ff22ee5c9cd0557e96def1146b32d53c8f53100fa519032024253886a90ff4dd290ffff33cc694f6bac89a7849dc62e85f8ec17d40ff0ec9a6129efbcdb90f65d1bdc69a0faa06cac50f13337310e842d1d5a6fdaca76fd617831ddfde2d3b1441bb040c257734cd34dc88572e631e21e8c7a9fc5f4e3cf719297cd3e3b4ba0f3f2bdf2967175ca01ec248b9426b3d44fa02b2032fde86e5affd74ce6fc7207f53e9b54dc54c9deec67dcdcbfe805dcd810c1abf8f27464ae8ebc38d5ed6601d5904452f27584267745d2b3a6caf99782e07a1eba79b663d684d1ce4bd0b35f534c5c7602762dbbb9b40280d28a30d28dba3e1decd69d1ac40278d66517b5dda0e05464951fe46c0c3aa536eaceb0502ffca4fe52c42425fdc240f42748c503abc1a791be4f9fc758688473038f207ced99414a6536ad5db5fedef776facda1529bebb629b3d170f9709c2f5df75874d65ad21196ab26a494c8cceda7e8c170270928fea9544a8b14617327d028f79562c8fea51283eadcbb8e4d47e9bbdf0fb5d50f2f8a085cc2dd6e1cfac414dc99a1e250be42ea7c7be53cbcea73988bb253e1964f22f2c0244b97e0fad3a51a25b611050670798c0c5f2c455e0b2e724870abf58bd0b0e1ed81f682d9d454673a66bd88d001e0c38ae4621acdb05b126dbdbf45b00a41e898bc0697800bc70c8cd0a1a9f9edf41887553ef0a2680a0919e1b12742ae3c82a27b8ce42add60b8ecbbc2fc0493d57543a84f01dc420b5c5f55707d549b37ddf44cc59ea8641e41a351b61d788172edec212a4e6c225dac029d60cd0aeec740ce64a8c8ed69e986fc0b0cfff0456e7b6ab35a05975850aeb87705409beeac03000283da0390d54c9a65681a135039864ccd77e9edb8cf76da2662c822717bd346793535d1d5afda64f891fcd32f7ae4f734074dd9c6651b39b58e4c01a8e35718dce67ff41b821cb8dfbe51710999f031ac8d75eeeda7666e416661c76df3c66f4a27a1c8344d1090d4eb4bcb70c470538019c3b10520055b3d14a02f4187bad56718fdaef4742f521de8df88ade2a0339893538e7c8ddef1bb7bf6765ea7d2f4ef220bb09a7de6d13ab35d10452291213127b5ca1833628e8cf025fe8a180bec998b02b8973ba2df4fcf8f37de519ba4891e93ea89176da4efae3c1feebf2e97a033bb20f6532029bccb7ea9e17bd214d0dd8f3e052fb727ec5f71851029ca87956890f06608a0cea51bf3a36002c200d24377f15c65d8e85c1d09c862f000dea551eafd6ce93c546367ad2d692ec98935583cbccca3413d00e458169700ebde67c026abc12ee9f18487afe2acdf97ebd199c427dcecf243c1f8acfac5441504931fb54607e53cc927401b745b48c081fd876f9b84134cc665d40ac5c3dd875dc1ad1497d5e1b9b74d8dc2f319cdf3901223f3714780268343b428027b6e16fbdb899e272396a38512c08276ffdaa43221348006ef1cb6577d303f3dc137101327c4019a2e7f7dc94c15c027df4da2e05ea458b303b9a9509e857f8979b6ea57bb109eafb185a44e4689981a14073683c6a0e6233aff7d01dad41e2ce6642e4d91b5086c9ebe0c72fae864156a857d72c6a734e30bb267f64f22709edb3df71ec660fbdc1fae092aae79858b4b40dc2208f3be1d4b08ebd9b530728bf4b9fd2e320e45a696539f5c49f0d4ad85027baf387d578efc7fe75106d5238e8eafdfaa6fabad54fd298767bbdc1c0d344b90e27c8cfd7e057ebf632bff728ce02e9f49c72359454b6e88456852b73a40a8c4bb550f76eb0cf11b6f35998f7be660d6d07692181ef35438f6319525319c7b9fb37941687bce89f4f4fb7487e07ab649ee59d2fcc443ffad9b42b8fbaff2418aa03ceb8516ba23daaaedfc3511af9a1319f94c534d27231bc7397e1e2d7c19ea72eb1e9f1b2d80876fba4d0ff6c1f70c25a5d251709111c0b7b537f4635f77955f75478f1090014c896310d6ee2d666216fdd95fcc2eae91a7c5ce5a4ee076e2802d6a4b84f37d42f8d8ea99744a79e88c65b424a4707b32a8a533ea5407c6cece0bb14c5ac65d8b8bbbbb85e4c74f8a0107c97dcd87ad4e9c7cfa78838150b0a1fde7acf9bad611e374b5a47efd452a4634677a5a5741d322cad92cdbaba9b7d4a1f3e025e89c9b8929c0794e4b3c873c8b8bbb4819e6e2aff6d57c3c4b7e4ca86a4ab9f4fbf5a80aeede9ffa75b17032d33e8770510b532c3506e8e3393b383775c96e70e790c6036f5d8ecf7d899f5c4d41835af873db1838a0ef5edfa33a253dfccdaacd5da65f7b6170898b9315b5fc7935c2a1c1159a203cc3ffc166292d5a35d9309d57794de7f465c59a6f9acd2376e1ad901dda889f3348b62bd046c0cb569c6375c80f303d4557c3f5dacead90cc09fd1aa7bb99826104bd8b70fdaf2d4be75fa3fd7d0d7cb360c0b826045083141ddb08d2c076641fc0e06a44b250a83cac798fffa38dbeed9953b1886f7702f9b3bca7c3f0b05d0a40ffcfd9673349f284c563431b98533d55119598d7e9e2e7aa767987f8d589fe6e0e50b6dbbfa9d30aa7b7f147e9751a63faec1b18bc54079fb71e735d53e6fadbd44616a3fccfc0ac9cff106e7f1ba793c901d874ff6acf0ea9df6fd62e661697cf784244f45bb43c805c03e310b1c81cc5bfb673b0b7560bb10f0643e7e4a0931d052b568ef764f4f45ca6c6011eb82d3eb61b54830056fa2d303ae2bc06e3a46807251fc7b8a88d9bd16ac8b874d454e8404eea400d2e93c396818f38ae4b62d3ede05da9bc3fe7277da20765d69257c6a487a6a3818ecc786164a532457116b0484d8589a80234bddc456c33973afdfe56dc5bb02a07f8cb2811a7794c192c89caa4089ce15e7eb729faccc9aae67e8b69a855ccf76ea6f53095fbb0cc3d915cd85466e3ab2f3260d3f503a4911fe3354deac7d38927a08254f69db4e3fdade55b9cbd1693f1015a8d2066d2099b79d919605cd8643a2b03eec243394838833f72b9ad16f34af4f7467af8fffeef64d2fc0f7ec070170c46673ea3d9f62df458340c5eddfb715b07b6a70132c6849b08de856e29cd8ed555ffafc2fb17f79b6669ee52ca4c6ec7e1bdf63e520985b321e196715d193c03761fac8301696433249b7a74284cdac961114ce10aaa1ed4fe66f3a65a22e20288f8933c37a29a82292ccdb4f0d95acf59dfdaa29d36bb36a12fd30ab8f089bfc4dbb6ddfb76dff129ce9d9d1706c67b7e932741d4cea3dd22548941a968eb4b995ee5845f3aaf93fa0c57578318debe4ae2bda378743d0e4982ecb4f9f7b08002800", @ANYRES32], 0x1024}, 0x1, 0x0, 0x0, 0x20004001}, 0x4) ioctl$SG_GET_TIMEOUT(r4, 0x2202, 0x0) 2018/05/04 05:58:59 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000000)={0x8, {{0xa, 0x4e23, 0x1, @mcast2={0xff, 0x2, [], 0x1}, 0x3}}, 0x1, 0x1, [{{0xa, 0x4e21, 0x3c, @loopback={0x0, 0x1}, 0x8}}]}, 0x110) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:59 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:59 executing program 6: 2018/05/04 05:58:59 executing program 2 (fault-call:8 fault-nth:27): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:58:59 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x900000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:58:59 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) socket$inet(0x2, 0x800, 0x9) syz_mount_image$nfs4(&(0x7f0000000040)='nfs4\x00', &(0x7f0000000080)='./file0\x00', 0x8, 0x3, &(0x7f0000001340)=[{&(0x7f00000000c0)="4739df73085683133bad1887796e34334e9e4e00df3b1cffe9529b62b9d7f0100130a230999f03cf2445ac80d85b7d7e3f2b75aa2cfc444a776aeeb96ae0eb4e1d24f5c0220942217e10f934a0f4db821c07edf9dedb10ab", 0x58, 0x3f}, {&(0x7f0000000340)="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", 0x1000, 0xffff}, {&(0x7f0000000140)="2eebcb47c2ad102b69a93db35c256114865b2a0622128246e5ea0764947af79ff8838fee5ad57d4f52c753d3b5921fb79d2977d3a3488a13569d516e857bed4e178723cdb8ba77c7c7b39a73f461799e6553d925570de1b954f8babb001d0f2546f2bf740e1d5724e5e172f3dd2d1fc3df69ae70a49bdcf6311ccb", 0x7b, 0x100000000}], 0x2, &(0x7f00000001c0)='\x00') symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:58:59 executing program 0: r0 = socket(0x400000000000010, 0x802, 0x0) write(r0, &(0x7f00000000c0)="240000001a0099f0003be90000ed190e020808160000000031ba0080080003007f196be0", 0x24) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x100, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0xe08e) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0x2, &(0x7f0000000040)=0x7, 0x4) 2018/05/04 05:58:59 executing program 6: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x200000, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) r1 = syz_open_dev$sg(&(0x7f0000626ff7)='/dev/sg#\x00', 0x0, 0x100) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e23, 0x67, @mcast2={0xff, 0x2, [], 0x1}, 0x1e}}, 0x3f, 0xdcf4, 0x8, 0x7fffffff, 0x41}, &(0x7f00000001c0)=0x98) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={r2, 0xc0, 0x9, 0x8}, &(0x7f0000000240)=0x10) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$sndseq(r1, &(0x7f0000001040)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}], 0x30) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x60000, 0x0) poll(&(0x7f0000000040)=[{}, {r1, 0x1}], 0x2, 0x0) [ 420.169676] FAULT_INJECTION: forcing a failure. [ 420.169676] name failslab, interval 1, probability 0, space 0, times 0 [ 420.181048] CPU: 1 PID: 27687 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 420.188326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 420.197682] Call Trace: [ 420.200282] dump_stack+0x1b9/0x294 [ 420.203925] ? dump_stack_print_info.cold.2+0x52/0x52 [ 420.209134] ? __save_stack_trace+0x7e/0xd0 [ 420.213475] should_fail.cold.4+0xa/0x1a [ 420.217534] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 420.222635] ? save_stack+0x43/0xd0 [ 420.226256] ? kasan_kmalloc+0xc4/0xe0 [ 420.230133] ? __kmalloc+0x14e/0x760 [ 420.233838] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 420.238672] ? htree_dirblock_to_tree+0x563/0xac0 [ 420.243502] ? ext4_htree_fill_tree+0x404/0xd40 [ 420.248163] ? graph_lock+0x170/0x170 [ 420.251956] ? reconnect_path+0x221/0x6f0 [ 420.256092] ? exportfs_decode_fh+0x3cd/0x6d0 [ 420.260573] ? do_handle_open+0x3f8/0x950 [ 420.264709] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 420.269802] ? do_syscall_64+0x1b1/0x800 [ 420.273855] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 420.279214] ? find_held_lock+0x36/0x1c0 [ 420.283271] ? __lock_is_held+0xb5/0x140 [ 420.287344] ? check_same_owner+0x320/0x320 [ 420.291659] ? rcu_note_context_switch+0x710/0x710 [ 420.296577] ? ext4fs_dirhash+0xb23/0x1060 [ 420.300805] __should_failslab+0x124/0x180 [ 420.305043] should_failslab+0x9/0x14 [ 420.308831] __kmalloc+0x2c8/0x760 [ 420.312369] ? str2hashbuf_unsigned+0x2a0/0x2a0 [ 420.317040] ? ext4_htree_store_dirent+0x8b/0x5a0 [ 420.321887] ext4_htree_store_dirent+0x8b/0x5a0 [ 420.326551] htree_dirblock_to_tree+0x563/0xac0 [ 420.331251] ? dx_probe+0x1120/0x1120 [ 420.335049] ? save_stack+0xa9/0xd0 [ 420.338667] ? save_stack+0x43/0xd0 [ 420.342288] ? kasan_kmalloc+0xc4/0xe0 [ 420.346172] ? iterate_dir+0x4b0/0x5d0 [ 420.350068] ? get_name+0x51c/0x6a0 [ 420.353682] ? exportfs_get_name+0x1a3/0x240 [ 420.358080] ? reconnect_path+0x221/0x6f0 [ 420.362216] ? exportfs_decode_fh+0x3cd/0x6d0 [ 420.366702] ? do_handle_open+0x3f8/0x950 [ 420.370842] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 420.375941] ? do_syscall_64+0x1b1/0x800 [ 420.379990] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 420.385351] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 420.390542] ext4_htree_fill_tree+0x404/0xd40 [ 420.395036] ? print_usage_bug+0xc0/0xc0 [ 420.399093] ? do_split+0x1bb0/0x1bb0 [ 420.402898] ? __lock_is_held+0xb5/0x140 [ 420.406958] ? ext4_readdir+0x2722/0x3bb0 [ 420.411096] ? rcu_read_lock_sched_held+0x108/0x120 [ 420.416101] ? kmem_cache_alloc_trace+0x616/0x780 [ 420.420929] ? __x64_sys_open_by_handle_at+0x76/0xb0 [ 420.426029] ? do_syscall_64+0x1b1/0x800 [ 420.430083] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 420.435438] ? free_rb_tree_fname+0x9c/0xe0 [ 420.439751] ext4_readdir+0x1c82/0x3bb0 [ 420.443714] ? debug_mutex_init+0x1c/0x60 [ 420.447867] ? __ext4_check_dir_entry+0x370/0x370 [ 420.452719] ? lock_acquire+0x1dc/0x520 [ 420.456682] ? iterate_dir+0xd4/0x5d0 [ 420.460475] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 420.466000] ? lock_release+0xa10/0xa10 [ 420.469970] ? check_same_owner+0x320/0x320 [ 420.474286] ? rcu_note_context_switch+0x710/0x710 [ 420.479207] ? __might_sleep+0x95/0x190 [ 420.483185] ? down_read_killable+0xaf/0x1f0 [ 420.487580] ? iterate_dir+0xd4/0x5d0 [ 420.491369] ? security_file_open+0x14f/0x1d0 [ 420.495854] ? down_write+0x120/0x120 [ 420.499645] ? do_dentry_open+0x46c/0xf10 [ 420.503796] ? security_file_permission+0x1c6/0x240 [ 420.508805] iterate_dir+0x4b0/0x5d0 [ 420.512518] get_name+0x51c/0x6a0 [ 420.515958] ? _raw_spin_unlock+0x22/0x30 [ 420.520105] ? bl_resolve_deviceid.cold.3+0x2d/0x2d [ 420.525113] ? find_held_lock+0x36/0x1c0 [ 420.529165] ? exportfs_encode_fh+0x120/0x120 [ 420.533671] ? __d_obtain_alias.part.40+0x8f/0xb0 [ 420.538506] exportfs_get_name+0x1a3/0x240 [ 420.542732] ? get_name+0x6a0/0x6a0 [ 420.546346] ? down_read+0x1b0/0x1b0 [ 420.550063] reconnect_path+0x221/0x6f0 [ 420.554045] exportfs_decode_fh+0x3cd/0x6d0 [ 420.558362] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 420.563984] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 420.569343] ? __fget_light+0x2ef/0x430 [ 420.573310] ? fget_raw+0x20/0x20 [ 420.576754] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 420.581759] ? __check_object_size+0x95/0x5d9 [ 420.586248] ? __might_sleep+0x95/0x190 [ 420.590225] do_handle_open+0x3f8/0x950 [ 420.594190] ? vfs_dentry_acceptable+0x10/0x10 [ 420.598760] ? ksys_write+0x1a6/0x250 [ 420.602550] ? __ia32_sys_read+0xb0/0xb0 [ 420.606603] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 420.611443] __x64_sys_open_by_handle_at+0x76/0xb0 [ 420.616361] do_syscall_64+0x1b1/0x800 [ 420.620234] ? finish_task_switch+0x1ca/0x810 [ 420.624720] ? syscall_return_slowpath+0x5c0/0x5c0 [ 420.629640] ? syscall_return_slowpath+0x30f/0x5c0 [ 420.634562] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 420.639919] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 420.645471] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 420.650648] RIP: 0033:0x455979 [ 420.653821] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 420.661525] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 2018/05/04 05:58:59 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) r1 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffb) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, r1) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) r2 = request_key(&(0x7f0000000000)='syzkaller\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000080)='\'\x00', 0x0) keyctl$set_timeout(0xf, r2, 0x101) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) connect$unix(r0, &(0x7f0000000340)=@file={0x1, './control\x00'}, 0x6e) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:59:00 executing program 1: creat(&(0x7f0000000000)='./file0\x00', 0x2) r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) close(r0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:59:00 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ctr-camellia-asm,ghash-generic)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="d3ab27191a010023560fd9d5e03eba602dff05b82756df62", 0x18) sendmmsg$alg(r1, &(0x7f0000002c80)=[{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000180)="5a793e3c903323368229478247139c41ebea037c6ee57d4e6a675b51fcd3ff9d0121c97206343ba3ed6be51e46cb1fb434", 0x31}, {&(0x7f00000002c0)="852b419419002472848c88320f394d7e6432a0ab1a9fe202fcf4af3b92ce8944b31f5aca643446", 0x27}, {&(0x7f00000004c0)="a8aa374dca07e02eb9e79b3be9f6c8164aefba69374b68d9a446840839a05e13c793723736623f902e7f9adbc87ceb84fb083855bd686d3ab8aec9c507f2f7340a9ebc3faf569f02b687a62c23e6972c1d43a3474d80797d2973b96fb16252aa2bc327147a3117c9b27f974db9b41999bc6150c532a7ae5bb30562ad80c6d8a20e473de1e2030ee64866811e4a01ae10e5a99541498451c653b0b4c51125782f8970d1452ae2ec4045efe49918e60896db72e0c8301f88f742c91264badee65f8eb550795edbfe9b57f5e39b6b0078ea4f658423f008f0520022174c6e56b2601b1922", 0xe3}, {&(0x7f00000005c0)="2d80796d3b503c2c3b5fb13ac7a78c5558bec3f19851bbfbf3baae30435fb8aa0fc9bb8c8a798e2eafabeeeb94ee1d0bfd90182489eb4c04e24b4a935a6ad531136747c1c1840589c881811daa4519a5ef10e35186b9cfd2e7bda622e2cc6c3ff68d0f8d1ab29df95ba55df5b02de8a6cec2453ba3ad6432acd61f253d0cca0e505ebeb3ff99862df9bac2f9", 0x8c}, {&(0x7f0000000400)="b836a297d500d561a29aee88d414f0dd5b66f40da3de667f8c22e1d120d361c35fb69813fcd0ae4c5eafdb2b450207cac155b63a7a62ad9306722388bbe83fe82258501a90b3dd", 0x47}, {&(0x7f0000000680)="405f8ce4a6777576138cd40b5b328b92f63d447d482f4fc1e10d30b79603ca66aaabbeb15012a149a1b4c75cc6a9f183c0cb43e5c5f6d0bf98e41e1cd617678b88d4fd045ec2f9020593954ef615cfd3e4427601c1cd844aa3ae8b37a009d8e3f68901a7c1ea31f03ed46f974c602dd9b8e9019116b30e9ecc5999938856db8529fb4c0e0a50ba7e6724544383fca058b2d5e4b2565e749bf583aaac69587ee6e4953e4e072cfef8f087fc7b2dd6de975afac3210fdfa74316762a02043708d2278b0d81556c0c7e1a7633c6559bb0291e867283dc4c469bc4d32ec652a72b877f1916dcbf8f", 0xe6}], 0x6, &(0x7f0000000300)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmsg(r1, &(0x7f00000003c0)={&(0x7f0000000240)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4}}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000001700)=""/4096, 0x1000}], 0x1, &(0x7f0000000340)=""/80, 0x50}, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[0x20, 0x1, 0xa5d8, 0x0, 0xd46c, 0x8]}) r2 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x7, 0x200200) ioctl$HDIO_GETGEO(r2, 0x301, &(0x7f00000000c0)) [ 420.668784] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 420.676042] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 420.683300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 420.690555] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000001b 2018/05/04 05:59:00 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xe000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:59:00 executing program 5: r0 = memfd_create(&(0x7f0000000080)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x3) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:59:00 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) rename(&(0x7f0000000000)='./control\x00', &(0x7f0000000040)='./file0\x00') mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={r0, 0x3, 0x1, 0x4, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7}, 0x20) ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f0000000100)) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:59:00 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./file0\x00') 2018/05/04 05:59:00 executing program 2 (fault-call:8 fault-nth:28): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x0, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x2, 0x480) open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x8001, 0x37, 0x1, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0xfffffffffffffffa, 0x5) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x3fffa, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) close(0xffffffffffffffff) open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1700000001000000e1080000000000000081ec2637b645"], 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)) socket$netlink(0x10, 0x3, 0xc) 2018/05/04 05:59:00 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x5e5d5da92b, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:59:00 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x4) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x2, 0x0) ioctl$EVIOCSABS20(r1, 0x401845e0, &(0x7f0000000100)={0x3, 0x30, 0x9, 0x0, 0x8, 0x3}) writev(r0, &(0x7f0000312ff0)=[{&(0x7f0000000080)="480000001400190d090043eafd068c560affffffffe00600003a984fb2bff49a3326a6ffffffff00000000bc5603ca00000fff890000000309ff5bff87c3e4cb6b716c0123b261a2", 0x48}], 0x1) 2018/05/04 05:59:00 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f00000003c0)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0xfffffffffffffff7) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000480)=ANY=[@ANYRES32=0x0, @ANYBLOB="15000000b6b3e5c0c34c0d2c42ca3639b75738eac9b9e8e21268ecc0698db060acaaab364c195d5809040000000000fc5c3bd6000000000062a04762e4f4c82acaf72e"], &(0x7f00000002c0)=0x1d) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000340)={r1, 0x100000000, 0x8, 0x0, 0x1, 0x4}, &(0x7f0000000380)=0x14) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000440)={r2, 0x7fff}, 0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000500)={r2, 0xe, "4d03cf9307f29a625f70fae2505b"}, &(0x7f0000000540)=0x16) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0xbc, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x7, @ipv4={[], [0xff, 0xff], @rand_addr=0x7}, 0x3}, @in6={0xa, 0x4e24, 0x75e4, @mcast1={0xff, 0x1, [], 0x1}}, @in={0x2, 0x4e21, @rand_addr=0x1}, @in={0x2, 0x4e22, @broadcast=0xffffffff}, @in={0x2, 0x4e24, @loopback=0x7f000001}, @in6={0xa, 0x4e21, 0x6, @empty, 0x7}, @in6={0xa, 0x4e22, 0x100000001, @remote={0xfe, 0x80, [], 0xbb}, 0x9}, @in6={0xa, 0x4e22, 0x800, @dev={0xfe, 0x80, [], 0x18}, 0xf4a}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000180)=@sack_info={r3, 0x93, 0x800}, &(0x7f00000001c0)=0xc) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000240)={r4, 0x3}, &(0x7f0000000400)=0x8) 2018/05/04 05:59:00 executing program 7: r0 = perf_event_open(&(0x7f00000017c0)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, &(0x7f0000000040), r0, &(0x7f00000000c0), 0x0, 0x3) r1 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x80840) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000180)) poll(&(0x7f0000000080)=[{}], 0x200000000000006d, 0x5) tee(r0, r0, 0x800, 0x3) 2018/05/04 05:59:00 executing program 0: syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x8, 0x0) rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xfffffffffffffffe}, 0x0, 0x8) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000021ff8)={0xffffffffffffffff}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) writev(r1, &(0x7f000000b000)=[{&(0x7f0000c01f96)="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", 0x1001}], 0x1) dup2(r0, r1) 2018/05/04 05:59:00 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:59:00 executing program 4: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) geteuid() symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') sendmsg$unix(r0, &(0x7f0000000340)={&(0x7f0000000000)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000080)="8f2d5714c39eea7b0a77b23a83257748fd4b7255e99fa205f59262c55eacde4eb2379dfec75a4f2d92d064b030530af5b2f7fb54b99f5605a3b5dff3e32e8406c0378bb9028436754afc9a994ccdbd571959c4d00edf8d48c3a98b08536c0c906733258446c049fadd3a20835c757a0bcab8fb42e85dc2df7321d16bc4ecc1a3f39373845d8bb2c5a5ff537e2ad35162e223997799382b7628", 0x99}, {&(0x7f0000000140)="efabc63796a81bcba27de5d58f25b94592", 0x11}, {&(0x7f0000000180)="177e34565dbc97db0cee6a92a13df55703240d03ff6a37a7f4608db5f6f5ffd068f204a5403b281023772b32b235ad5b400ec736dbe16aa06b8047a493ef1d90a423f6cd0bafea469b656f21764c8c0504d635d71ce156d58c500c3d104413787fbb671dd46dc337f3009691f6671319002edf", 0x73}], 0x3, &(0x7f00000002c0)=[@rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0]}], 0x30, 0x4000010}, 0x80) [ 421.170987] FAULT_INJECTION: forcing a failure. [ 421.170987] name failslab, interval 1, probability 0, space 0, times 0 [ 421.182309] CPU: 1 PID: 27762 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 421.189584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.198931] Call Trace: [ 421.201532] dump_stack+0x1b9/0x294 [ 421.205177] ? dump_stack_print_info.cold.2+0x52/0x52 [ 421.210388] should_fail.cold.4+0xa/0x1a [ 421.214460] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 421.219581] ? graph_lock+0x170/0x170 [ 421.223400] ? find_held_lock+0x36/0x1c0 [ 421.227474] ? __lock_is_held+0xb5/0x140 [ 421.231560] ? check_same_owner+0x320/0x320 [ 421.235896] ? dx_probe+0x1120/0x1120 [ 421.239707] ? rcu_note_context_switch+0x710/0x710 [ 421.244647] ? save_stack+0xa9/0xd0 [ 421.248289] __should_failslab+0x124/0x180 [ 421.252538] should_failslab+0x9/0x14 [ 421.256346] kmem_cache_alloc+0x2af/0x760 [ 421.260505] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 421.265716] __d_alloc+0xc0/0xd30 [ 421.269182] ? shrink_dcache_for_umount+0x290/0x290 [ 421.274207] ? __lock_acquire+0x7f5/0x5140 [ 421.278452] ? graph_lock+0x170/0x170 [ 421.282266] ? print_usage_bug+0xc0/0xc0 [ 421.286344] ? debug_check_no_locks_freed+0x310/0x310 [ 421.291542] ? print_usage_bug+0xc0/0xc0 [ 421.295611] ? print_usage_bug+0xc0/0xc0 [ 421.299692] d_alloc+0x8e/0x370 [ 421.302980] ? perf_trace_lock+0xd6/0x900 [ 421.307135] ? __d_alloc+0xd30/0xd30 [ 421.310856] ? perf_trace_lock+0xd6/0x900 [ 421.315024] d_alloc_parallel+0x152/0x1e80 2018/05/04 05:59:00 executing program 4: r0 = memfd_create(&(0x7f0000000040)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') 2018/05/04 05:59:00 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000000000)=""/216) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000180)=0x14, 0x4) fchmod(r0, 0x100) fcntl$addseals(r0, 0x409, 0x1) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000000100)='./control\x00', &(0x7f0000000140)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') dup2(r0, r0) 2018/05/04 05:59:00 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xab000000000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:59:00 executing program 5: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000100)=0x0) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000040)='erspan0\x00') rt_tgsigqueueinfo(r1, r2, 0x0, &(0x7f0000000080)={0x1a, 0x2, 0x6, 0x57}) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) getsockopt$inet6_buf(r0, 0x29, 0x2d, &(0x7f0000000140)=""/26, &(0x7f0000000180)=0x1a) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f00000000c0)={0x6}, 0x1) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') [ 421.319274] ? debug_check_no_locks_freed+0x310/0x310 [ 421.324490] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 421.330037] ? timespec_trunc+0xe7/0x170 [ 421.334122] ? __d_lookup_rcu+0xa80/0xa80 [ 421.338282] ? print_usage_bug+0xc0/0xc0 [ 421.342365] ? find_held_lock+0x36/0x1c0 [ 421.346452] ? lock_downgrade+0x8e0/0x8e0 [ 421.350614] ? mark_held_locks+0xc9/0x160 [ 421.354773] ? __raw_spin_lock_init+0x1c/0x100 [ 421.359361] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 421.364388] ? __lockdep_init_map+0x105/0x590 2018/05/04 05:59:00 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0x7000000, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2018/05/04 05:59:00 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./control\x00') bind$ipx(r0, &(0x7f0000000000)={0x4, 0x8, 0x5, "8b986fb3b4da", 0x5}, 0x10) [ 421.368952] ? __lockdep_init_map+0x105/0x590 [ 421.373458] ? lockdep_init_map+0x9/0x10 [ 421.377529] ? __init_waitqueue_head+0x96/0x140 [ 421.382207] ? init_wait_entry+0x1b0/0x1b0 [ 421.386451] ? lock_release+0xa10/0xa10 [ 421.390437] __lookup_slow+0x1e6/0x540 [ 421.394334] ? vfs_unlink+0x510/0x510 [ 421.398153] ? down_read+0xaf/0x1b0 [ 421.401795] ? lookup_slow+0x49/0x80 [ 421.405522] ? __down_interruptible+0x6e0/0x6e0 [ 421.410197] ? d_lookup+0x219/0x330 [ 421.413840] ? inode_permission+0xb2/0x560 [ 421.418091] lookup_slow+0x57/0x80 [ 421.421646] lookup_one_len_unlocked+0xe5/0xf0 [ 421.426236] ? lookup_slow+0x80/0x80 [ 421.429971] reconnect_path+0x26d/0x6f0 [ 421.433955] exportfs_decode_fh+0x3cd/0x6d0 [ 421.438286] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 421.443924] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 421.449305] ? __fget_light+0x2ef/0x430 [ 421.453292] ? fget_raw+0x20/0x20 [ 421.456771] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 421.461811] ? __check_object_size+0x95/0x5d9 [ 421.466321] ? __might_sleep+0x95/0x190 2018/05/04 05:59:01 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000c26000)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x800000020000000, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0x800000000000852b, 0xffff}, 0x14) sendto$inet(r0, &(0x7f0000000040), 0x7fb8, 0xab, &(0x7f0000000140)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) [ 421.470322] do_handle_open+0x3f8/0x950 [ 421.474315] ? vfs_dentry_acceptable+0x10/0x10 [ 421.478899] ? ksys_write+0x1a6/0x250 [ 421.482710] ? __ia32_sys_read+0xb0/0xb0 [ 421.486790] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 421.491649] __x64_sys_open_by_handle_at+0x76/0xb0 [ 421.496592] do_syscall_64+0x1b1/0x800 [ 421.500486] ? finish_task_switch+0x1ca/0x810 [ 421.504989] ? syscall_return_slowpath+0x5c0/0x5c0 [ 421.509933] ? syscall_return_slowpath+0x30f/0x5c0 [ 421.514877] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe 2018/05/04 05:59:01 executing program 1: r0 = memfd_create(&(0x7f0000001fcd)='wlan0*mime_type-trusted}&wlan0vmnet1.trusted{\\{GPL\x00', 0x0) mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x4, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000007000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x1) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000002ff6)='./control\x00') rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='./control\x00') mkdir(&(0x7f0000000000)='./file0\x00', 0x4) [ 421.520257] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.525113] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 421.530307] RIP: 0033:0x455979 [ 421.533498] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 421.541213] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 421.548486] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 421.555764] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 421.563042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 421.570319] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000001c [ 421.594451] WARNING: CPU: 0 PID: 27762 at fs/exportfs/expfs.c:96 reconnect_path+0x515/0x6f0 [ 421.602986] Kernel panic - not syncing: panic_on_warn set ... [ 421.602986] [ 421.610379] CPU: 0 PID: 27762 Comm: syz-executor2 Not tainted 4.17.0-rc3+ #31 [ 421.617650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.626996] Call Trace: [ 421.629605] dump_stack+0x1b9/0x294 [ 421.633240] ? dump_stack_print_info.cold.2+0x52/0x52 [ 421.638454] ? reconnect_path+0x4e0/0x6f0 [ 421.642610] panic+0x22f/0x4de [ 421.645805] ? add_taint.cold.5+0x16/0x16 [ 421.649958] ? __warn.cold.8+0x148/0x1b3 [ 421.654028] ? reconnect_path+0x515/0x6f0 [ 421.658180] __warn.cold.8+0x163/0x1b3 [ 421.662074] ? reconnect_path+0x515/0x6f0 [ 421.666234] report_bug+0x252/0x2d0 [ 421.669875] do_error_trap+0x1de/0x490 [ 421.673771] ? lock_downgrade+0x8e0/0x8e0 [ 421.677929] ? math_error+0x420/0x420 [ 421.681736] ? rcu_is_watching+0x85/0x140 [ 421.685891] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 421.691098] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.695963] do_invalid_op+0x1b/0x20 [ 421.699687] invalid_op+0x14/0x20 [ 421.703150] RIP: 0010:reconnect_path+0x515/0x6f0 [ 421.707900] RSP: 0018:ffff8801a6507af0 EFLAGS: 00010246 [ 421.713266] RAX: 0000000000040000 RBX: 0000000000000020 RCX: ffffc9000b50b000 [ 421.720527] RDX: 0000000000040000 RSI: ffffffff8244e935 RDI: ffff8801ceb631a0 [ 421.727784] RBP: ffff8801a6507b40 R08: ffff88018d7c0100 R09: ffff8801a6507748 [ 421.735037] R10: 0000000000000003 R11: 0000000000000000 R12: ffff8801ceb63160 [ 421.742289] R13: ffff8801ceb63160 R14: dffffc0000000000 R15: ffff8801ab6e1020 [ 421.749551] ? reconnect_path+0x515/0x6f0 [ 421.753690] exportfs_decode_fh+0x3cd/0x6d0 [ 421.758005] ? drop_caches_sysctl_handler.cold.0+0x7e/0x7e [ 421.763620] ? find_acceptable_alias.part.5+0x1e0/0x1e0 [ 421.768968] ? __fget_light+0x2ef/0x430 [ 421.772926] ? fget_raw+0x20/0x20 [ 421.776368] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 421.781370] ? __check_object_size+0x95/0x5d9 [ 421.785852] ? __might_sleep+0x95/0x190 [ 421.789815] do_handle_open+0x3f8/0x950 [ 421.793772] ? vfs_dentry_acceptable+0x10/0x10 [ 421.798334] ? ksys_write+0x1a6/0x250 [ 421.802119] ? __ia32_sys_read+0xb0/0xb0 [ 421.806164] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 421.810992] __x64_sys_open_by_handle_at+0x76/0xb0 [ 421.816328] do_syscall_64+0x1b1/0x800 [ 421.820201] ? finish_task_switch+0x1ca/0x810 [ 421.824678] ? syscall_return_slowpath+0x5c0/0x5c0 [ 421.829590] ? syscall_return_slowpath+0x30f/0x5c0 [ 421.834507] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 421.839855] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.844682] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 421.849853] RIP: 0033:0x455979 [ 421.853028] RSP: 002b:00007fd0a5293c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 421.860721] RAX: ffffffffffffffda RBX: 00007fd0a52946d4 RCX: 0000000000455979 [ 421.867971] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 421.875227] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 421.882476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 421.889725] R13: 000000000000045c R14: 00000000006fa940 R15: 000000000000001c [ 421.897431] Dumping ftrace buffer: [ 421.901157] (ftrace buffer empty) [ 421.904851] Kernel Offset: disabled [ 421.908460] Rebooting in 86400 seconds..