"af13906d5050112bc0473a3ef719a10d36708cb8471553d521f8919d30e216b4bb9798f68e0db7413dbf6e5cb3ebc99a142ee280e4830078770f8d9a5b3cbd423c8e3789d1aa1859fadd3aec9b257e691ddae62bb555e7b90517d0a9"}]}, 0xb8}}, 0x400) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c00000010001fff00000000000000cc0000000026213ae1e99009fabda7c736e6f4e5e827bedee148ee25d82db34df40a67c8ccc5cd68e86ad4e9a26b9e2604de8b1360e6ef", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:10 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80000) ioctl$TCXONC(r1, 0x540a, 0x1) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00006c830010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:10 executing program 3: lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'user.', ',{/(-'}, &(0x7f0000000100)=""/208, 0xd0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:10 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xcc, 0x0, 0x1, 0x3, 0x0, 0x0, {0x5, 0x0, 0x4}, [@CTA_SEQ_ADJ_REPLY={0x54, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x81}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x2}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x8000}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x226}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_ORIG={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_NAT_DST={0x18, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}]}, @CTA_MARK_MASK={0x8}]}, 0xcc}, 0x1, 0x0, 0x0, 0x448c4}, 0xc0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 262.978449] FAULT_INJECTION: forcing a failure. [ 262.978449] name failslab, interval 1, probability 0, space 0, times 0 [ 263.006556] CPU: 1 PID: 18651 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 263.014455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.023807] Call Trace: 04:36:10 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newneigh={0x40, 0x1c, 0x200, 0x70bd27, 0x25dfdbfe, {0xa, 0x0, 0x0, r4, 0x2, 0x21, 0xb}, [@NDA_LINK_NETNSID={0x8, 0xa, 0x8000}, @NDA_DST_IPV6={0x14, 0x1, @ipv4={[], [], @multicast1}}, @NDA_VNI={0x8, 0x7, 0x80}]}, 0x40}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r5, r5, 0x0, 0xffff) ioctl$DRM_IOCTL_AGP_ENABLE(r5, 0x40086432, &(0x7f0000000040)=0xe97) [ 263.026399] dump_stack+0x1b2/0x283 [ 263.030030] should_fail.cold+0x10a/0x154 [ 263.034184] should_failslab+0xd6/0x130 [ 263.038171] kmem_cache_alloc+0x28e/0x3c0 [ 263.042325] __kernfs_new_node+0x6f/0x470 [ 263.046481] kernfs_new_node+0x7b/0xe0 [ 263.050372] __kernfs_create_file+0x3d/0x320 [ 263.054802] sysfs_add_file_mode_ns+0x1e1/0x450 [ 263.059495] internal_create_group+0x22b/0x710 [ 263.064092] sysfs_create_groups+0x92/0x127 [ 263.068422] device_add+0x7e5/0x15c0 [ 263.072138] ? device_is_dependent+0x270/0x270 [ 263.076728] netdev_register_kobject+0x181/0x410 [ 263.081487] register_netdevice+0x955/0xe40 [ 263.085838] ? netdev_change_features+0xa0/0xa0 [ 263.090517] br_dev_newlink+0x23/0x100 [ 263.094409] rtnl_newlink+0xf88/0x1830 [ 263.098322] ? __lock_acquire+0x5fc/0x3f20 [ 263.102570] ? br_changelink+0x1570/0x1570 [ 263.106805] ? kmem_cache_free+0x7c/0x2b0 [ 263.110958] ? rtnl_dellink+0x6a0/0x6a0 [ 263.114934] ? trace_hardirqs_on+0x10/0x10 [ 263.119175] ? netlink_deliver_tap+0x60c/0x7d0 [ 263.123758] ? netlink_unicast+0x485/0x610 [ 263.127995] ? netlink_sendmsg+0x62e/0xb80 [ 263.132230] ? ___sys_sendmsg+0x660/0x800 [ 263.136381] ? __sys_sendmsg+0xa3/0x120 [ 263.140358] ? SyS_sendmsg+0x27/0x40 [ 263.144118] ? lock_acquire+0x170/0x3f0 [ 263.148100] ? lock_downgrade+0x740/0x740 [ 263.152254] ? rtnl_dellink+0x6a0/0x6a0 [ 263.156229] rtnetlink_rcv_msg+0x3be/0xb10 [ 263.160468] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 263.164965] ? __netlink_lookup+0x345/0x5d0 [ 263.169280] ? netdev_pick_tx+0x2e0/0x2e0 [ 263.173419] netlink_rcv_skb+0x125/0x390 [ 263.177465] ? memcpy+0x35/0x50 [ 263.180726] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 263.185203] ? netlink_ack+0x9a0/0x9a0 [ 263.189075] netlink_unicast+0x437/0x610 [ 263.193117] ? netlink_sendskb+0xd0/0xd0 [ 263.197160] ? __check_object_size+0x179/0x22c [ 263.201725] netlink_sendmsg+0x62e/0xb80 [ 263.205776] ? nlmsg_notify+0x170/0x170 [ 263.209741] ? kernel_recvmsg+0x210/0x210 [ 263.213882] ? security_socket_sendmsg+0x83/0xb0 [ 263.218625] ? nlmsg_notify+0x170/0x170 [ 263.222601] sock_sendmsg+0xb5/0x100 [ 263.226316] ___sys_sendmsg+0x6c8/0x800 [ 263.230280] ? get_pid_task+0x91/0x130 [ 263.234155] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 263.238913] ? lock_downgrade+0x740/0x740 [ 263.243061] ? __fget+0x1fe/0x360 [ 263.246514] ? lock_acquire+0x170/0x3f0 [ 263.250479] ? lock_downgrade+0x740/0x740 [ 263.254629] ? __fget+0x225/0x360 [ 263.258087] ? __fdget+0x196/0x1f0 [ 263.261608] ? sockfd_lookup_light+0xb2/0x160 [ 263.266092] __sys_sendmsg+0xa3/0x120 [ 263.269900] ? SyS_shutdown+0x160/0x160 [ 263.273864] ? wait_for_completion_io+0x10/0x10 [ 263.278516] ? SyS_read+0x210/0x210 [ 263.282122] ? SyS_clock_settime+0x1a0/0x1a0 [ 263.286510] SyS_sendmsg+0x27/0x40 [ 263.290034] ? __sys_sendmsg+0x120/0x120 [ 263.294101] do_syscall_64+0x1d5/0x640 [ 263.297990] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 263.303173] RIP: 0033:0x45e0f9 [ 263.306356] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 263.314049] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 263.321308] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 263.328569] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 263.335829] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002d [ 263.343088] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 263.368071] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:11 executing program 1 (fault-call:2 fault-nth:46): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 263.392397] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 04:36:11 executing program 0: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=ANY=[@ANYBLOB='@\x00'/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012900b000100010000000000000004000280"], 0x34}}, 0x20008080) getsockopt(0xffffffffffffffff, 0x4cf5, 0x29000004, &(0x7f00000001c0), &(0x7f0000000240)) sendto(0xffffffffffffffff, &(0x7f0000000040)="18cc47d7a4dafdac313f082486b2753d12be221f9e3c166c891f94aba6ea17ebb783de5dbc14c72491a9843fe3577c250aedde41f74d35271282714458bcade398d0c8a541def447cfdb9a1f211f74d71f1b83024f24c69827151b7289c88e0d85c4e10f90dc5253334d635e62fb40b1a3b68c55bf221d65954e96fb34a9009cef65891bf0d0c30b2851107cd82c73497112859df7e60a4ee72f459e6402ae242e21ea0722b277bd91d1d302bf8b98b24251c9e415bac50c29868ab4ac19fdd18b10cdafde7485bfb4340e85643c286dac56af2a373688", 0xd7, 0x4000000, &(0x7f0000000140)=@l2tp={0x2, 0x0, @rand_addr=0x64010102, 0x3}, 0x80) ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f00000001c0)={0x2, 0x5, 0xe70}) ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f00000003c0)={0x1, 0x6, 0xfff}) ioctl$KVM_KVMCLOCK_CTRL(0xffffffffffffffff, 0xaead) r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200)='/dev/nvme-fabrics\x00', 0x15434f84fbd74070, 0x0) recvfrom$netrom(r0, &(0x7f0000000280)=""/90, 0x5a, 0x20, &(0x7f0000000340)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x8}, [@null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default, @default]}, 0x48) [ 263.438779] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. [ 263.451314] FAULT_INJECTION: forcing a failure. [ 263.451314] name failslab, interval 1, probability 0, space 0, times 0 [ 263.464916] CPU: 1 PID: 18681 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 263.472810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.482159] Call Trace: [ 263.484747] dump_stack+0x1b2/0x283 04:36:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="00000059d4ca9c1cd2000000000080000086dc86cbbbbf341773fb"], 0x57}}, 0x0) 04:36:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b000100cf4095b84970143e72e4482a37717e29e2979d5e"], 0x3c}}, 0x0) [ 263.488379] should_fail.cold+0x10a/0x154 [ 263.492543] should_failslab+0xd6/0x130 [ 263.496521] kmem_cache_alloc+0x28e/0x3c0 [ 263.500671] __kernfs_new_node+0x6f/0x470 [ 263.504822] kernfs_new_node+0x7b/0xe0 [ 263.508716] __kernfs_create_file+0x3d/0x320 [ 263.513128] sysfs_add_file_mode_ns+0x1e1/0x450 [ 263.517805] internal_create_group+0x22b/0x710 [ 263.522396] sysfs_create_groups+0x92/0x127 [ 263.526722] device_add+0x7e5/0x15c0 [ 263.530437] ? device_is_dependent+0x270/0x270 [ 263.535026] netdev_register_kobject+0x181/0x410 [ 263.539791] register_netdevice+0x955/0xe40 [ 263.544116] ? netdev_change_features+0xa0/0xa0 [ 263.548778] br_dev_newlink+0x23/0x100 [ 263.552659] rtnl_newlink+0xf88/0x1830 [ 263.556552] ? br_changelink+0x1570/0x1570 [ 263.560766] ? mark_held_locks+0xa6/0xf0 [ 263.564817] ? rtnl_dellink+0x6a0/0x6a0 [ 263.568790] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 263.573800] ? _raw_spin_unlock_irq+0x5a/0x80 [ 263.578320] ? rtnl_dellink+0x6a0/0x6a0 [ 263.582302] rtnetlink_rcv_msg+0x3be/0xb10 [ 263.586541] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 263.591032] ? __netlink_lookup+0x345/0x5d0 [ 263.595346] ? netdev_pick_tx+0x2e0/0x2e0 [ 263.599495] netlink_rcv_skb+0x125/0x390 [ 263.603554] ? memcpy+0x35/0x50 [ 263.606869] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 263.611368] ? netlink_ack+0x9a0/0x9a0 [ 263.615258] netlink_unicast+0x437/0x610 [ 263.619315] ? netlink_sendskb+0xd0/0xd0 [ 263.623364] ? __check_object_size+0x179/0x22c [ 263.627948] netlink_sendmsg+0x62e/0xb80 [ 263.632004] ? nlmsg_notify+0x170/0x170 [ 263.635965] ? kernel_recvmsg+0x210/0x210 [ 263.640112] ? security_socket_sendmsg+0x83/0xb0 [ 263.644855] ? nlmsg_notify+0x170/0x170 [ 263.648824] sock_sendmsg+0xb5/0x100 [ 263.652520] ___sys_sendmsg+0x6c8/0x800 [ 263.656479] ? get_pid_task+0x91/0x130 [ 263.660348] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 263.665097] ? lock_downgrade+0x740/0x740 [ 263.669248] ? __fget+0x1fe/0x360 [ 263.672703] ? lock_acquire+0x170/0x3f0 [ 263.676681] ? lock_downgrade+0x740/0x740 [ 263.680811] ? __fget+0x225/0x360 [ 263.684258] ? __fdget+0x196/0x1f0 [ 263.687796] ? sockfd_lookup_light+0xb2/0x160 [ 263.692293] __sys_sendmsg+0xa3/0x120 [ 263.696083] ? SyS_shutdown+0x160/0x160 [ 263.700066] ? wait_for_completion_io+0x10/0x10 [ 263.704750] ? SyS_read+0x210/0x210 [ 263.708373] ? SyS_clock_settime+0x1a0/0x1a0 [ 263.712776] SyS_sendmsg+0x27/0x40 [ 263.716309] ? __sys_sendmsg+0x120/0x120 [ 263.720353] do_syscall_64+0x1d5/0x640 [ 263.724241] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 263.729427] RIP: 0033:0x45e0f9 [ 263.732604] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 263.740291] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 263.747645] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 263.754927] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 263.762186] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002e [ 263.769444] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 263.782671] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 04:36:11 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000400)={'security\x00'}, &(0x7f0000000480)=0x54) r1 = dup(r0) sendto$inet(r1, &(0x7f00000004c0)="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", 0xfb, 0x40000, &(0x7f00000005c0)={0x2, 0x4e20, @multicast2}, 0x10) sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000e80)=ANY=[@ANYBLOB="5acc318c4f099f87b88da9b7396dede900fb3efcecf42170", @ANYRES16=0x0, @ANYBLOB="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"], 0x2e8}, 0x1, 0x0, 0x0, 0x4010}, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) prctl$PR_CAPBSET_READ(0x17, 0x10) r3 = socket$pppoe(0x18, 0x1, 0x0) ioctl$PPPOEIOCDFWD(r3, 0xb101, 0x0) fstat(r2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) write$FUSE_NOTIFY_POLL(r1, &(0x7f0000000200)={0x18, 0x1, 0x0, {0xffffffff80000000}}, 0x18) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$can_raw(r5, &(0x7f00000001c0)={&(0x7f00000000c0), 0x10, &(0x7f0000000180)={&(0x7f0000000100)=@canfd={{0x2, 0x1, 0x0, 0x1}, 0x13, 0x2, 0x0, 0x0, "fe4dc89014396a8d2c8669604edc5b2818cc9c98e3b17301a04a4a50c0a9583e70aaeee3618bb666069bf1546d4cc05d4e7646396aeec941a8fa024d254dfbfc"}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20000002) 04:36:11 executing program 1 (fault-call:2 fault-nth:47): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:11 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) getsockopt$IP_VS_SO_GET_INFO(r1, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000040)=0xc) 04:36:11 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvme-fabrics\x00', 0x20000, 0x0) mmap$usbmon(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x2010, r3, 0x6d8) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000600)='/dev/cachefiles\x00', 0x50040, 0x0) sendto$phonet(r4, &(0x7f0000000640)="46869aeceae5155549936f4e3b851b0d9bbd6042f28e5457a1a631460daabd14e18e74e75b4ac120738f0ddd0a36f3235f5c1204a56ddbc9281dabf162a9a93e51b45d22ab909e1f5d9758dd04ae90a97269f09485de65450ffecc02561cd72d8cf5cac0bcb7c490157a60ae74", 0x6d, 0x0, &(0x7f00000006c0)={0x23, 0x5, 0x8, 0x2}, 0x10) 04:36:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000580)={0x208, 0x0, 0x300, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0xc0, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x400}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @broadcast}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x9, @local, 0x42d}}}}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x81}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8630}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}]}]}, @TIPC_NLA_SOCK={0x88, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x184}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1f13}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffffd}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xffff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x401}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x13b4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffff1c1f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xb200000}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MEDIA={0x70, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdfc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x14000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x800000}]}]}, 0x208}, 0x1, 0x0, 0x0, 0x4000040}, 0x800008c) 04:36:11 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f0000001d00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=""/212, 0xd4}}], 0x1, 0x0, 0x0) clock_settime(0x5, &(0x7f0000000000)) ioctl$DRM_IOCTL_SG_FREE(0xffffffffffffffff, 0x40106439, &(0x7f0000000180)={0x9f8e}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/nf_conntrack_expect\x00') preadv(r0, &(0x7f00000017c0), 0x103, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = add_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="23e5eb0f5d12a4efb0a8e5a207638c4bb9cd5dc093db981aad024fc7", 0x1c, 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x5) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 263.876702] FAULT_INJECTION: forcing a failure. [ 263.876702] name failslab, interval 1, probability 0, space 0, times 0 [ 263.912812] CPU: 1 PID: 18703 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 263.920726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.930079] Call Trace: [ 263.932674] dump_stack+0x1b2/0x283 [ 263.936305] should_fail.cold+0x10a/0x154 [ 263.940456] should_failslab+0xd6/0x130 [ 263.944434] kmem_cache_alloc+0x28e/0x3c0 [ 263.948587] __kernfs_new_node+0x6f/0x470 [ 263.952736] kernfs_new_node+0x7b/0xe0 [ 263.956621] __kernfs_create_file+0x3d/0x320 [ 263.961031] sysfs_add_file_mode_ns+0x1e1/0x450 [ 263.965711] internal_create_group+0x22b/0x710 [ 263.970304] sysfs_create_groups+0x92/0x127 [ 263.974638] device_add+0x7e5/0x15c0 [ 263.978362] ? device_is_dependent+0x270/0x270 [ 263.982955] netdev_register_kobject+0x181/0x410 [ 263.987715] register_netdevice+0x955/0xe40 [ 263.992038] ? netdev_change_features+0xa0/0xa0 [ 263.996711] br_dev_newlink+0x23/0x100 [ 264.000601] rtnl_newlink+0xf88/0x1830 [ 264.004520] ? __lock_acquire+0x5fc/0x3f20 [ 264.008763] ? br_changelink+0x1570/0x1570 [ 264.012994] ? kmem_cache_free+0x7c/0x2b0 [ 264.017142] ? rtnl_dellink+0x6a0/0x6a0 [ 264.021130] ? trace_hardirqs_on+0x10/0x10 [ 264.025363] ? netlink_deliver_tap+0x60c/0x7d0 [ 264.029946] ? netlink_unicast+0x485/0x610 [ 264.034179] ? netlink_sendmsg+0x62e/0xb80 [ 264.038420] ? ___sys_sendmsg+0x660/0x800 [ 264.042916] ? __sys_sendmsg+0xa3/0x120 [ 264.046915] ? SyS_sendmsg+0x27/0x40 [ 264.050688] ? lock_acquire+0x170/0x3f0 [ 264.054658] ? lock_downgrade+0x740/0x740 [ 264.058811] ? rtnl_dellink+0x6a0/0x6a0 [ 264.062794] rtnetlink_rcv_msg+0x3be/0xb10 [ 264.067063] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 264.071563] ? __netlink_lookup+0x345/0x5d0 [ 264.075906] ? netdev_pick_tx+0x2e0/0x2e0 [ 264.080062] netlink_rcv_skb+0x125/0x390 [ 264.084123] ? memcpy+0x35/0x50 [ 264.087409] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 264.091906] ? netlink_ack+0x9a0/0x9a0 [ 264.095806] netlink_unicast+0x437/0x610 [ 264.099874] ? netlink_sendskb+0xd0/0xd0 [ 264.103938] ? __check_object_size+0x179/0x22c [ 264.108528] netlink_sendmsg+0x62e/0xb80 [ 264.112592] ? nlmsg_notify+0x170/0x170 [ 264.116548] ? kernel_recvmsg+0x210/0x210 [ 264.120686] ? security_socket_sendmsg+0x83/0xb0 [ 264.125476] ? nlmsg_notify+0x170/0x170 [ 264.129443] sock_sendmsg+0xb5/0x100 [ 264.133151] ___sys_sendmsg+0x6c8/0x800 [ 264.137114] ? get_pid_task+0x91/0x130 [ 264.140995] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 264.145733] ? lock_downgrade+0x740/0x740 [ 264.149908] ? __fget+0x1fe/0x360 [ 264.153352] ? lock_acquire+0x170/0x3f0 [ 264.157325] ? lock_downgrade+0x740/0x740 [ 264.161466] ? __fget+0x225/0x360 [ 264.164936] ? __fdget+0x196/0x1f0 [ 264.168470] ? sockfd_lookup_light+0xb2/0x160 [ 264.172957] __sys_sendmsg+0xa3/0x120 [ 264.176778] ? SyS_shutdown+0x160/0x160 [ 264.180784] ? wait_for_completion_io+0x10/0x10 [ 264.185438] ? SyS_read+0x210/0x210 [ 264.189047] ? SyS_clock_settime+0x1a0/0x1a0 [ 264.193449] SyS_sendmsg+0x27/0x40 [ 264.196979] ? __sys_sendmsg+0x120/0x120 [ 264.201023] do_syscall_64+0x1d5/0x640 [ 264.204915] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 264.210099] RIP: 0033:0x45e0f9 [ 264.213268] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 264.220966] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 264.228237] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 264.235497] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 264.242783] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002f [ 264.250042] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:12 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x97e4ec0f4f338abe) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvme-fabrics\x00', 0x101000, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r3, 0x54a0) fstat(r2, &(0x7f0000004140)) 04:36:12 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000000)=@gcm_256={{0x304}, "3a0db318ba0357ff", "9b5f3a74386c85a9adcda3975a9005aac14c3c0fabf3d3551584b5f777efd3fc", "7500bf53", "be169deadc03a598"}, 0x38) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:12 executing program 1 (fault-call:2 fault-nth:48): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:12 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000000)=""/116, &(0x7f0000000080)=0x74) 04:36:12 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c0000001fff200000000003001c2eff0200", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000000)=0x5f) [ 264.380619] FAULT_INJECTION: forcing a failure. [ 264.380619] name failslab, interval 1, probability 0, space 0, times 0 [ 264.419758] CPU: 0 PID: 18733 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 04:36:12 executing program 2: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x8000, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TCSETA(r2, 0x5406, &(0x7f0000000180)={0x800, 0xdee, 0x100, 0x9, 0x1, "68d17a241b7d8d34"}) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000100)={0x1, 0x2, 0x1000, 0x1000, &(0x7f0000000580)="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", 0x0, 0x0, &(0x7f0000000040)}) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000ba4ba3652050743500010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x1e300, 0x0) ioctl$RTC_PLL_GET(r4, 0x80207011, &(0x7f0000000080)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f0000000200)={'syztnl2\x00', &(0x7f00000001c0)={'syztnl2\x00', 0x0, 0x10, 0x8000, 0x0, 0xff, {{0x6, 0x4, 0x3, 0x1a, 0x18, 0x66, 0x0, 0x7, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x37}, @multicast2, {[@ra={0x94, 0x4, 0x1}]}}}}}) 04:36:12 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) read$snddsp(0xffffffffffffffff, &(0x7f0000000100)=""/252, 0xfc) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) signalfd(r2, &(0x7f0000000000)={[0x8]}, 0x8) r3 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x8, 0x10000) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r3, 0x810c5701, &(0x7f0000000340)) [ 264.427678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.437032] Call Trace: [ 264.439626] dump_stack+0x1b2/0x283 [ 264.443263] should_fail.cold+0x10a/0x154 [ 264.447416] should_failslab+0xd6/0x130 [ 264.451393] kmem_cache_alloc+0x28e/0x3c0 [ 264.455544] __kernfs_new_node+0x6f/0x470 [ 264.459700] kernfs_new_node+0x7b/0xe0 [ 264.463592] __kernfs_create_file+0x3d/0x320 [ 264.468005] sysfs_add_file_mode_ns+0x1e1/0x450 [ 264.472684] internal_create_group+0x22b/0x710 [ 264.477279] sysfs_create_groups+0x92/0x127 [ 264.481604] device_add+0x7e5/0x15c0 [ 264.485323] ? device_is_dependent+0x270/0x270 [ 264.489912] netdev_register_kobject+0x181/0x410 [ 264.494675] register_netdevice+0x955/0xe40 [ 264.499003] ? netdev_change_features+0xa0/0xa0 [ 264.503687] br_dev_newlink+0x23/0x100 [ 264.507581] rtnl_newlink+0xf88/0x1830 [ 264.511540] ? br_changelink+0x1570/0x1570 [ 264.515776] ? mark_held_locks+0xa6/0xf0 [ 264.519842] ? rtnl_dellink+0x6a0/0x6a0 [ 264.523823] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 264.528843] ? _raw_spin_unlock_irq+0x5a/0x80 [ 264.533388] ? rtnl_dellink+0x6a0/0x6a0 [ 264.537368] rtnetlink_rcv_msg+0x3be/0xb10 [ 264.541607] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 264.546104] ? __netlink_lookup+0x345/0x5d0 [ 264.550426] ? netdev_pick_tx+0x2e0/0x2e0 [ 264.554570] netlink_rcv_skb+0x125/0x390 [ 264.558621] ? memcpy+0x35/0x50 [ 264.561897] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 264.566393] ? netlink_ack+0x9a0/0x9a0 [ 264.570282] netlink_unicast+0x437/0x610 [ 264.574338] ? netlink_sendskb+0xd0/0xd0 [ 264.578383] ? __check_object_size+0x179/0x22c [ 264.582946] netlink_sendmsg+0x62e/0xb80 [ 264.586990] ? nlmsg_notify+0x170/0x170 [ 264.590965] ? kernel_recvmsg+0x210/0x210 [ 264.595108] ? security_socket_sendmsg+0x83/0xb0 [ 264.599857] ? nlmsg_notify+0x170/0x170 [ 264.603823] sock_sendmsg+0xb5/0x100 [ 264.607528] ___sys_sendmsg+0x6c8/0x800 [ 264.611490] ? get_pid_task+0x91/0x130 [ 264.615372] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 264.620110] ? lock_downgrade+0x740/0x740 [ 264.624242] ? __fget+0x1fe/0x360 [ 264.627681] ? lock_acquire+0x170/0x3f0 [ 264.631643] ? lock_downgrade+0x740/0x740 [ 264.635783] ? __fget+0x225/0x360 [ 264.639219] ? __fdget+0x196/0x1f0 [ 264.642782] ? sockfd_lookup_light+0xb2/0x160 [ 264.647280] __sys_sendmsg+0xa3/0x120 [ 264.651084] ? SyS_shutdown+0x160/0x160 [ 264.655061] ? wait_for_completion_io+0x10/0x10 [ 264.659741] ? SyS_read+0x210/0x210 [ 264.663366] ? SyS_clock_settime+0x1a0/0x1a0 [ 264.667792] SyS_sendmsg+0x27/0x40 [ 264.671328] ? __sys_sendmsg+0x120/0x120 [ 264.675382] do_syscall_64+0x1d5/0x640 04:36:12 executing program 1 (fault-call:2 fault-nth:49): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 264.679262] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 264.684434] RIP: 0033:0x45e0f9 [ 264.687604] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 264.695490] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 264.702746] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 264.710026] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 264.717295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000030 [ 264.724544] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 264.773840] FAULT_INJECTION: forcing a failure. [ 264.773840] name failslab, interval 1, probability 0, space 0, times 0 [ 264.797586] CPU: 0 PID: 18772 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 264.805482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.814829] Call Trace: [ 264.817399] dump_stack+0x1b2/0x283 [ 264.821020] should_fail.cold+0x10a/0x154 [ 264.825163] should_failslab+0xd6/0x130 [ 264.829139] kmem_cache_alloc+0x28e/0x3c0 [ 264.833280] __kernfs_new_node+0x6f/0x470 [ 264.837435] kernfs_new_node+0x7b/0xe0 [ 264.841321] __kernfs_create_file+0x3d/0x320 [ 264.845732] sysfs_add_file_mode_ns+0x1e1/0x450 [ 264.850399] internal_create_group+0x22b/0x710 [ 264.854969] sysfs_create_groups+0x92/0x127 [ 264.859278] device_add+0x7e5/0x15c0 [ 264.863010] ? device_is_dependent+0x270/0x270 [ 264.867583] netdev_register_kobject+0x181/0x410 [ 264.872342] register_netdevice+0x955/0xe40 [ 264.876664] ? netdev_change_features+0xa0/0xa0 [ 264.881335] br_dev_newlink+0x23/0x100 [ 264.885219] rtnl_newlink+0xf88/0x1830 [ 264.889557] ? __lock_acquire+0x5fc/0x3f20 [ 264.893797] ? br_changelink+0x1570/0x1570 [ 264.898027] ? kmem_cache_free+0x7c/0x2b0 [ 264.902157] ? rtnl_dellink+0x6a0/0x6a0 [ 264.906122] ? trace_hardirqs_on+0x10/0x10 [ 264.910372] ? netlink_deliver_tap+0x60c/0x7d0 [ 264.914941] ? netlink_unicast+0x485/0x610 [ 264.919198] ? netlink_sendmsg+0x62e/0xb80 [ 264.923430] ? ___sys_sendmsg+0x660/0x800 [ 264.927558] ? __sys_sendmsg+0xa3/0x120 [ 264.931544] ? SyS_sendmsg+0x27/0x40 [ 264.935260] ? lock_acquire+0x170/0x3f0 [ 264.939216] ? lock_downgrade+0x740/0x740 [ 264.943360] ? rtnl_dellink+0x6a0/0x6a0 [ 264.947325] rtnetlink_rcv_msg+0x3be/0xb10 [ 264.951569] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 264.956079] ? __netlink_lookup+0x345/0x5d0 [ 264.960408] ? netdev_pick_tx+0x2e0/0x2e0 [ 264.964562] netlink_rcv_skb+0x125/0x390 [ 264.968609] ? memcpy+0x35/0x50 [ 264.971870] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 264.976367] ? netlink_ack+0x9a0/0x9a0 [ 264.980238] netlink_unicast+0x437/0x610 [ 264.984290] ? netlink_sendskb+0xd0/0xd0 [ 264.988332] ? __check_object_size+0x179/0x22c [ 264.992912] netlink_sendmsg+0x62e/0xb80 [ 264.996967] ? nlmsg_notify+0x170/0x170 [ 265.000937] ? kernel_recvmsg+0x210/0x210 [ 265.005067] ? security_socket_sendmsg+0x83/0xb0 [ 265.009819] ? nlmsg_notify+0x170/0x170 [ 265.013794] sock_sendmsg+0xb5/0x100 [ 265.017502] ___sys_sendmsg+0x6c8/0x800 [ 265.021504] ? get_pid_task+0x91/0x130 [ 265.025376] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 265.030131] ? lock_downgrade+0x740/0x740 [ 265.034280] ? __fget+0x1fe/0x360 [ 265.037727] ? lock_acquire+0x170/0x3f0 [ 265.041683] ? lock_downgrade+0x740/0x740 [ 265.045820] ? __fget+0x225/0x360 [ 265.049277] ? __fdget+0x196/0x1f0 [ 265.052814] ? sockfd_lookup_light+0xb2/0x160 [ 265.057308] __sys_sendmsg+0xa3/0x120 [ 265.061091] ? SyS_shutdown+0x160/0x160 [ 265.065075] ? wait_for_completion_io+0x10/0x10 [ 265.069742] ? SyS_read+0x210/0x210 [ 265.073369] ? SyS_clock_settime+0x1a0/0x1a0 [ 265.077759] SyS_sendmsg+0x27/0x40 [ 265.081279] ? __sys_sendmsg+0x120/0x120 [ 265.085320] do_syscall_64+0x1d5/0x640 [ 265.089222] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 265.094413] RIP: 0033:0x45e0f9 [ 265.097586] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 265.105280] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 265.112576] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:12 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8, 0x1}, 0xe) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 265.119833] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 265.127093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000031 [ 265.134369] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:13 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0400000000010062726964676500400c000280060006f800000000"], 0x3c}}, 0x0) 04:36:13 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) r3 = fcntl$dupfd(r2, 0x406, r1) setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r3, 0x111, 0x5, 0x1000, 0x4) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) sendmsg$NL80211_CMD_STOP_AP(r4, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x24048804}, 0x20008084) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsa\x00', 0x400000, 0x0) fstat(r2, 0x0) 04:36:13 executing program 1 (fault-call:2 fault-nth:50): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 265.272729] FAULT_INJECTION: forcing a failure. [ 265.272729] name failslab, interval 1, probability 0, space 0, times 0 [ 265.293458] CPU: 1 PID: 18789 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 265.301360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 265.310708] Call Trace: [ 265.313296] dump_stack+0x1b2/0x283 [ 265.316929] should_fail.cold+0x10a/0x154 [ 265.321085] should_failslab+0xd6/0x130 [ 265.325063] kmem_cache_alloc+0x28e/0x3c0 [ 265.329213] __kernfs_new_node+0x6f/0x470 [ 265.333368] kernfs_new_node+0x7b/0xe0 [ 265.337260] __kernfs_create_file+0x3d/0x320 [ 265.341667] sysfs_add_file_mode_ns+0x1e1/0x450 [ 265.346336] internal_create_group+0x22b/0x710 [ 265.350922] sysfs_create_groups+0x92/0x127 [ 265.355252] device_add+0x7e5/0x15c0 [ 265.358970] ? device_is_dependent+0x270/0x270 [ 265.363560] netdev_register_kobject+0x181/0x410 [ 265.368311] register_netdevice+0x955/0xe40 [ 265.372615] ? netdev_change_features+0xa0/0xa0 [ 265.377267] br_dev_newlink+0x23/0x100 [ 265.381143] rtnl_newlink+0xf88/0x1830 [ 265.385057] ? br_changelink+0x1570/0x1570 [ 265.389280] ? mark_held_locks+0xa6/0xf0 [ 265.393326] ? rtnl_dellink+0x6a0/0x6a0 [ 265.397295] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 265.402292] ? _raw_spin_unlock_irq+0x5a/0x80 [ 265.406790] ? rtnl_dellink+0x6a0/0x6a0 [ 265.410753] rtnetlink_rcv_msg+0x3be/0xb10 [ 265.414976] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 265.419451] ? __netlink_lookup+0x345/0x5d0 [ 265.423761] ? netdev_pick_tx+0x2e0/0x2e0 [ 265.427899] netlink_rcv_skb+0x125/0x390 [ 265.431937] ? memcpy+0x35/0x50 [ 265.435208] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 265.439684] ? netlink_ack+0x9a0/0x9a0 [ 265.443570] netlink_unicast+0x437/0x610 [ 265.447621] ? netlink_sendskb+0xd0/0xd0 [ 265.451662] ? __check_object_size+0x179/0x22c [ 265.456244] netlink_sendmsg+0x62e/0xb80 [ 265.460306] ? nlmsg_notify+0x170/0x170 [ 265.464272] ? kernel_recvmsg+0x210/0x210 [ 265.468431] ? security_socket_sendmsg+0x83/0xb0 [ 265.473254] ? nlmsg_notify+0x170/0x170 [ 265.477216] sock_sendmsg+0xb5/0x100 [ 265.480911] ___sys_sendmsg+0x6c8/0x800 [ 265.484874] ? get_pid_task+0x91/0x130 [ 265.488756] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 265.493507] ? lock_downgrade+0x740/0x740 [ 265.497645] ? __fget+0x1fe/0x360 [ 265.501076] ? lock_acquire+0x170/0x3f0 [ 265.505038] ? lock_downgrade+0x740/0x740 [ 265.509177] ? __fget+0x225/0x360 [ 265.512629] ? __fdget+0x196/0x1f0 [ 265.516150] ? sockfd_lookup_light+0xb2/0x160 [ 265.520636] __sys_sendmsg+0xa3/0x120 [ 265.524435] ? SyS_shutdown+0x160/0x160 [ 265.528399] ? wait_for_completion_io+0x10/0x10 [ 265.533051] ? SyS_read+0x210/0x210 [ 265.536658] ? SyS_clock_settime+0x1a0/0x1a0 [ 265.541049] SyS_sendmsg+0x27/0x40 [ 265.544578] ? __sys_sendmsg+0x120/0x120 [ 265.548644] do_syscall_64+0x1d5/0x640 [ 265.552520] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 265.557718] RIP: 0033:0x45e0f9 [ 265.560885] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:13 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f00000000c0)) 04:36:13 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006272696467650000129ad4610600060000000000"], 0x3c}}, 0x0) 04:36:13 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3400de0010001fff00000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="2000004e03200000140012800b00010062726964676500000400028084c111cffcd07d76ec75dabcda35c32e72"], 0x34}}, 0x0) socket(0x23, 0x5, 0x3) 04:36:13 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f00000000c0)={0x0, 0xfb, 0x60, 0x1, 0x40, "aeaa47dc51b57e5caccb2dbf357e3af9", "ff8e5838a55af496380d85e91f6608be4ea79778ad855f86d0ac2c5b44f8926937a28e2788ea13f2e549f334532fe917de76324354518326cafaea342af46fd7f107fb20b68ad38e1ca030"}, 0x60, 0x3) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) fsetxattr$trusted_overlay_origin(r2, &(0x7f0000001140)='trusted.overlay.origin\x00', &(0x7f0000001180)='y\x00', 0x2, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, 0x0) syslog(0x4, &(0x7f0000000140)=""/4096, 0x1000) [ 265.568572] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 265.575821] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 265.583089] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 265.590338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032 [ 265.597593] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:13 executing program 1 (fault-call:2 fault-nth:51): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x4, 0x200441) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 265.703215] FAULT_INJECTION: forcing a failure. [ 265.703215] name failslab, interval 1, probability 0, space 0, times 0 [ 265.738424] CPU: 1 PID: 18815 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 265.746337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 265.755688] Call Trace: [ 265.758275] dump_stack+0x1b2/0x283 [ 265.761911] should_fail.cold+0x10a/0x154 [ 265.766074] should_failslab+0xd6/0x130 [ 265.770056] kmem_cache_alloc+0x28e/0x3c0 [ 265.774301] __kernfs_new_node+0x6f/0x470 [ 265.778482] kernfs_new_node+0x7b/0xe0 [ 265.782375] __kernfs_create_file+0x3d/0x320 [ 265.786791] sysfs_add_file_mode_ns+0x1e1/0x450 [ 265.791467] internal_create_group+0x22b/0x710 [ 265.796063] sysfs_create_groups+0x92/0x127 [ 265.800375] device_add+0x7e5/0x15c0 [ 265.804102] ? device_is_dependent+0x270/0x270 [ 265.808669] netdev_register_kobject+0x181/0x410 [ 265.813407] register_netdevice+0x955/0xe40 [ 265.817712] ? netdev_change_features+0xa0/0xa0 [ 265.822379] br_dev_newlink+0x23/0x100 [ 265.826251] rtnl_newlink+0xf88/0x1830 [ 265.830133] ? __lock_acquire+0x5fc/0x3f20 [ 265.834354] ? br_changelink+0x1570/0x1570 [ 265.838570] ? kmem_cache_free+0x7c/0x2b0 [ 265.842720] ? rtnl_dellink+0x6a0/0x6a0 [ 265.846675] ? trace_hardirqs_on+0x10/0x10 [ 265.850888] ? netlink_deliver_tap+0x60c/0x7d0 [ 265.855467] ? netlink_unicast+0x485/0x610 [ 265.859700] ? netlink_sendmsg+0x62e/0xb80 [ 265.863934] ? ___sys_sendmsg+0x660/0x800 [ 265.868070] ? __sys_sendmsg+0xa3/0x120 [ 265.872032] ? SyS_sendmsg+0x27/0x40 [ 265.875786] ? lock_acquire+0x170/0x3f0 [ 265.879762] ? lock_downgrade+0x740/0x740 [ 265.883908] ? rtnl_dellink+0x6a0/0x6a0 [ 265.888434] rtnetlink_rcv_msg+0x3be/0xb10 [ 265.892667] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 265.897161] ? __netlink_lookup+0x345/0x5d0 [ 265.901474] ? netdev_pick_tx+0x2e0/0x2e0 [ 265.905606] netlink_rcv_skb+0x125/0x390 [ 265.909649] ? memcpy+0x35/0x50 [ 265.912918] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 265.917412] ? netlink_ack+0x9a0/0x9a0 [ 265.921344] netlink_unicast+0x437/0x610 [ 265.925438] ? netlink_sendskb+0xd0/0xd0 [ 265.929489] ? __check_object_size+0x179/0x22c [ 265.934068] netlink_sendmsg+0x62e/0xb80 [ 265.938123] ? nlmsg_notify+0x170/0x170 [ 265.942078] ? kernel_recvmsg+0x210/0x210 [ 265.946209] ? security_socket_sendmsg+0x83/0xb0 [ 265.950944] ? nlmsg_notify+0x170/0x170 [ 265.954901] sock_sendmsg+0xb5/0x100 [ 265.958637] ___sys_sendmsg+0x6c8/0x800 [ 265.962599] ? get_pid_task+0x91/0x130 [ 265.966469] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 265.971208] ? lock_downgrade+0x740/0x740 [ 265.975340] ? __fget+0x1fe/0x360 [ 265.978776] ? lock_acquire+0x170/0x3f0 [ 265.982732] ? lock_downgrade+0x740/0x740 [ 265.986862] ? __fget+0x225/0x360 [ 265.990298] ? __fdget+0x196/0x1f0 [ 265.993821] ? sockfd_lookup_light+0xb2/0x160 [ 265.998297] __sys_sendmsg+0xa3/0x120 [ 266.002082] ? SyS_shutdown+0x160/0x160 [ 266.006055] ? wait_for_completion_io+0x10/0x10 [ 266.010718] ? SyS_read+0x210/0x210 [ 266.014337] ? SyS_clock_settime+0x1a0/0x1a0 [ 266.018731] SyS_sendmsg+0x27/0x40 [ 266.022251] ? __sys_sendmsg+0x120/0x120 [ 266.026301] do_syscall_64+0x1d5/0x640 [ 266.030176] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 266.035969] RIP: 0033:0x45e0f9 [ 266.039166] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 266.046874] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 266.054123] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 266.061389] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 266.068637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000033 [ 266.075887] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:13 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="20000000101142b6e596f0ca6d6a44b68138980000005d4396fc939d799b72000100c2e53a3fdbd1a52b3d5af925d6ff5f74b4342f37a5794e7d3b82ab0ba0286a5b5767730bfefa34cb70546507000000000000009b86ddf6d11715aa39610f2beb330b63d0ff010000af59efe7855a8d467e0b9bfbcc01cfb1dec81666ef98d2af5624136873ff52fd16574d0a0a386dd82944bd976b30a582d272d3a779487a81bca18b91b267d1a1e011fa", @ANYRES32=0x0, @ANYBLOB="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"/436], 0x20}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x20, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xe410}]}]}, 0x20}}, 0x0) sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000280)={&(0x7f0000000040), 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x168, r2, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x78a0}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xe5a}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffffffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_NODE={0xb4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "21411a12517d61fcc9ac391884858a19189c9cf026af85b782fc6315233911"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "99774ef484182598e383f18df024479cd1d693f879a6869571d69ada680a3026e0"}}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_NODE={0x54, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "64269d612048fcdd133c902faa09070c5c2bb6b8294e295beff89f"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x804}, 0x44) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f0000000000)={0x7fffffff, 0x800}) msgctl$MSG_STAT(0xffffffffffffffff, 0xb, &(0x7f00000002c0)=""/3) 04:36:13 executing program 1 (fault-call:2 fault-nth:52): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 266.105476] nla_parse: 4 callbacks suppressed [ 266.105483] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. 04:36:13 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) sendmsg$NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x4b}, @void, @val={0xc, 0x99, {0x36, 0x49}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0x811) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:14 executing program 2: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x44480, 0x0) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x24, 0x3, 0x1, 0x301, 0x0, 0x0, {0x7, 0x0, 0x7}, [@CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x4000000) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = openat$userio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/userio\x00', 0x2000, 0x0) write(r2, &(0x7f00000001c0)="e9442e863b7a6594209591dca750435d4f8626685d887530a0d9bfa3757740b390cbe076ec04ddba2b57dfa6b88d57c05e7afb1c65d12a34564fed8d955052edf17a82c281967563c6bd1475cc01a25d64d26fd14132af987cd79d048997", 0x5e) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 266.185809] FAULT_INJECTION: forcing a failure. [ 266.185809] name failslab, interval 1, probability 0, space 0, times 0 [ 266.205740] CPU: 0 PID: 18829 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 266.213636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 266.222988] Call Trace: [ 266.225582] dump_stack+0x1b2/0x283 [ 266.229224] should_fail.cold+0x10a/0x154 [ 266.233383] should_failslab+0xd6/0x130 [ 266.237369] kmem_cache_alloc+0x28e/0x3c0 [ 266.241522] __kernfs_new_node+0x6f/0x470 [ 266.245674] kernfs_new_node+0x7b/0xe0 [ 266.249571] __kernfs_create_file+0x3d/0x320 [ 266.253987] sysfs_add_file_mode_ns+0x1e1/0x450 [ 266.258664] internal_create_group+0x22b/0x710 [ 266.263255] sysfs_create_groups+0x92/0x127 [ 266.267613] device_add+0x7e5/0x15c0 [ 266.271348] ? device_is_dependent+0x270/0x270 [ 266.275925] netdev_register_kobject+0x181/0x410 [ 266.280687] register_netdevice+0x955/0xe40 [ 266.285011] ? netdev_change_features+0xa0/0xa0 [ 266.290113] br_dev_newlink+0x23/0x100 [ 266.293997] rtnl_newlink+0xf88/0x1830 [ 266.297918] ? br_changelink+0x1570/0x1570 [ 266.302133] ? mark_held_locks+0xa6/0xf0 [ 266.306181] ? rtnl_dellink+0x6a0/0x6a0 [ 266.310145] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 266.315152] ? _raw_spin_unlock_irq+0x5a/0x80 [ 266.319685] ? rtnl_dellink+0x6a0/0x6a0 [ 266.323643] rtnetlink_rcv_msg+0x3be/0xb10 [ 266.327861] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 266.332338] ? __netlink_lookup+0x345/0x5d0 [ 266.336642] ? netdev_pick_tx+0x2e0/0x2e0 [ 266.340780] netlink_rcv_skb+0x125/0x390 [ 266.344830] ? memcpy+0x35/0x50 [ 266.348125] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 266.352600] ? netlink_ack+0x9a0/0x9a0 [ 266.356485] netlink_unicast+0x437/0x610 [ 266.360577] ? netlink_sendskb+0xd0/0xd0 [ 266.364783] ? __check_object_size+0x179/0x22c [ 266.369349] netlink_sendmsg+0x62e/0xb80 [ 266.373394] ? nlmsg_notify+0x170/0x170 [ 266.377359] ? kernel_recvmsg+0x210/0x210 [ 266.381491] ? security_socket_sendmsg+0x83/0xb0 [ 266.386229] ? nlmsg_notify+0x170/0x170 [ 266.390184] sock_sendmsg+0xb5/0x100 [ 266.393879] ___sys_sendmsg+0x6c8/0x800 [ 266.397846] ? get_pid_task+0x91/0x130 [ 266.401742] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 266.406481] ? lock_downgrade+0x740/0x740 [ 266.410647] ? __fget+0x1fe/0x360 [ 266.414085] ? lock_acquire+0x170/0x3f0 [ 266.418060] ? lock_downgrade+0x740/0x740 [ 266.422210] ? __fget+0x225/0x360 [ 266.425702] ? __fdget+0x196/0x1f0 [ 266.429240] ? sockfd_lookup_light+0xb2/0x160 [ 266.433717] __sys_sendmsg+0xa3/0x120 [ 266.437499] ? SyS_shutdown+0x160/0x160 [ 266.441454] ? wait_for_completion_io+0x10/0x10 [ 266.446107] ? SyS_read+0x210/0x210 [ 266.449734] ? SyS_clock_settime+0x1a0/0x1a0 [ 266.454142] SyS_sendmsg+0x27/0x40 [ 266.457661] ? __sys_sendmsg+0x120/0x120 [ 266.461723] do_syscall_64+0x1d5/0x640 [ 266.465605] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 266.470785] RIP: 0033:0x45e0f9 [ 266.473953] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:14 executing program 1 (fault-call:2 fault-nth:53): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 266.481646] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 266.488913] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 266.496169] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 266.503438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000034 [ 266.510687] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:14 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r3, 0x40106614, &(0x7f0000000540)) dup(r4) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f00000000c0)={0x0, 0x3, 0x0, [0x9, 0x81, 0x1, 0x1, 0x2000000], [0xfffffffffffffffb, 0x9, 0x100000001, 0x3612, 0x9, 0xe95a, 0x80000001, 0x9, 0x80, 0x7, 0xca1b, 0x2, 0x4, 0x400, 0x21de, 0x1ff, 0x2, 0x1, 0x9, 0x10000, 0x41b, 0x3, 0x6, 0x6, 0x32, 0x0, 0x80000000, 0x3, 0x8, 0x5, 0x0, 0x1, 0xd3a, 0x6, 0x4, 0x0, 0x9, 0x1, 0xfffffffffffffff8, 0x7fffffff, 0x9, 0x4, 0xfffffffffffffe00, 0x1f, 0x1, 0x4b, 0x10000, 0x7f, 0x4, 0x7fffffff, 0x3ff, 0x800, 0x84, 0x4, 0x4, 0x5, 0x10001, 0x49e, 0x1000, 0x7f, 0x5ac8000000000000, 0x6, 0x9, 0xe4b3, 0x8000, 0x92a, 0xfffffffffffffff7, 0x40, 0x7, 0xb7, 0x8, 0x8, 0xffff, 0x7fff, 0xea26, 0x2, 0x8000, 0xffffffff, 0x447a, 0x6, 0x200, 0x6, 0x9, 0x2, 0x5, 0x3, 0x3, 0x4, 0x4, 0x4, 0x1, 0x3, 0x8, 0x6, 0x7fff, 0x80000000, 0x7, 0x9, 0x3ff, 0x3, 0x401, 0x5, 0x4, 0x7fff, 0x1, 0x9, 0x17, 0x1ba3, 0x72aacf4e, 0x2, 0xffffffffffffffb9, 0x2, 0x7, 0xff, 0x100000001, 0x80000000, 0x4, 0x6, 0x9, 0x8, 0x9]}) ioctl$BTRFS_IOC_RESIZE(r2, 0x50009403, &(0x7f0000000500)={{r4}, {@val={r5}, @max='max'}}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0) fstat(r6, &(0x7f0000004140)) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r6, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 04:36:14 executing program 0: socket$netlink(0x10, 0x3, 0x8) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/bsg\x00', 0x4040, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYRES32=0x0, @ANYBLOB="04000000009a2930de29ff9190f9a2c456f60000001c0012800b0001006272526467650b0a56dc037acbd0bbfbf47609d996fbe9ba9082c10a9b63dffa79af00e7516aacee5941536f1ec33997c8055087e729ce0fc9036b121fa02a7c16cb9a77047fa87d4a93be1f211f7d9ba7a804a6728e751162bd72c3f5e9c6547a3ecac1ba4a836509caca00a95cba2aa6ad0781290086769807cdfabe2a846ee1c8ceefce1caf86b0af6338056dc46451ec0b5ce298207161a8adc33d1e3c440bc91dd88b3290e315296361ed7c21975e9fc0c251f876b62d291d20c92f5a32d34c6ca3647ee9478e8a8d6ccc483d0739e687b6ad7e142e3ec331857f215fda273b34df5198a4a1e5cb88fc6b826ef2cfd1c1720f806c07e3e52a2403ead75e67f3e2d8bcc4ee8c723cb87c8d819a8fb3e0c3c9e64fe21f0e3776c2df15ddfb969cee367f56379344d8ef5750a659328f500ac3596e430b30750dcf6837b29982dccce0d010c3f19749936ab67e2c6f7cb5433def83dd81dd4cbc75dfdd8c05a4ca78819304257e809958c164aa41ff1333a7e4de730f58577c347baebee722bebe89a0d603b3cd9fc05a91a0949a90596657d168b84d574088332a2e0255c1eeab6bc666a3ac842db38831d45a3f163691a1ceaf625845"], 0x3c}, 0x1, 0x0, 0x0, 0xc}, 0x0) 04:36:14 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r3 = socket(0x18, 0x800, 0x1ff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r5, 0x40485404, &(0x7f0000000140)={{0xffffffffffffffff, 0x1, 0x8000, 0x2, 0x7}, 0x0, 0x8}) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x28, 0x0, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'geneve0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4008841) fstat(r2, 0x0) 04:36:14 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f0000000180)={0x10, 0x0, 0x25dfdbff, 0x80}, 0xc) sendmsg$IPSET_CMD_PROTOCOL(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, 0x1, 0x6, 0x101, 0x0, 0x0, {0x3, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x4) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) prctl$PR_GET_FPEMU(0x9, &(0x7f0000000000)) 04:36:14 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff00000000000e000000000000cdbe18f9361b0e5b3be99d8d5a45d720172a84a64060e77e77e14ff5f6e4179b56b3721961bf9ba23fefbbd29cae0cd897", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000340)={'syztnl1\x00', 0x0, 0x2f, 0x8, 0x0, 0x5, 0x1, @ipv4={[], [], @remote}, @mcast1, 0x8, 0x40, 0x9}}) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000003c0)={@private2={0xfc, 0x2, [], 0x1}, @empty, @mcast1, 0x100, 0x7, 0x1, 0x400, 0x9, 0x0, r2}) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) sendmsg$tipc(r3, &(0x7f0000001740)={&(0x7f00000002c0)=@nameseq={0x1e, 0x1, 0x2, {0x0, 0x0, 0x3}}, 0x10, &(0x7f0000001680)=[{&(0x7f0000000440)="36e15119d259b1185e4d890666fd44f2fdbdf4cf883d4d38713c674cb2d57887348891f9cd3a115c6febe7c64ddd45dbf8117a232c5aff9cfa244dab04dcf7e2b7ba774409c77ad207a2eeb951dfb2e67157e8f7c538447b895b4639dddc048f45b491de97e9db8d4a2496652d6c79dd6609b4884417b19141a0dde161ec6614d17afbd63c8d27923bb2391e01db9ce9c923439e66d7ea06418565fb496934515f0e16224d6ee7b32014e21f82f3555e791e385920848f557bdd0aa090e7486270ed3ad766c9559c8af5b34ec83938b416650c", 0xd3}, {&(0x7f0000000540)="4aeac11c", 0x4}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000001580)="beb8fd4bd201e7abc4f708ee0c2df73e6526f4e5a3000e3016ce138fcf13696cdb5433acaa9ccbf1e4c806a829febb24d0aa1a708a20923806843ad900268f49d921baf8a2ccf4453f1871a1d567f0d44433855d73077fe991413244a77ac858904eb82fee580865227af680471f077d2a9dd00400c9fb878a210089fbe3bf4f4ccfc5b1eb3e5180b1f723405a2d27c14e8fd9e91599c3f91bdcc3c48dde0b9eae6db5e203990773b710bebebe27a0436c3b993e667a5f38d00eaada141989b256ea", 0xc2}], 0x4, &(0x7f00000016c0)="19cdb360454d8c95a22a4b09621fa4363fa95a8087a8c872dbc1c9936c33e604e306bb9e7aab1f989c3b73226d25d984cef7da18050a0c448740e6d6cffb19c37837ecafc6da466dea5fc2f8626f0f685e8d6e68de5964d559cdc7863fc30f4d03921f0984b3", 0x66, 0x40095}, 0x84) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000080)) r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x480000, 0x0) ioctl$DRM_IOCTL_GET_STATS(r4, 0x80f86406, &(0x7f0000000240)=""/66) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001780)='/dev/bsg\x00', 0xc0000, 0x0) ioctl$DRM_IOCTL_AGP_ACQUIRE(r5, 0x6430) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x5}, 0x8) connect$ax25(r1, &(0x7f0000000000)={{0x3, @null, 0x1}, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) [ 266.589046] FAULT_INJECTION: forcing a failure. [ 266.589046] name failslab, interval 1, probability 0, space 0, times 0 [ 266.624625] CPU: 0 PID: 18856 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 266.632539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 266.641891] Call Trace: [ 266.644478] dump_stack+0x1b2/0x283 [ 266.648121] should_fail.cold+0x10a/0x154 [ 266.652277] should_failslab+0xd6/0x130 [ 266.656258] kmem_cache_alloc+0x28e/0x3c0 [ 266.660411] __kernfs_new_node+0x6f/0x470 [ 266.664590] kernfs_new_node+0x7b/0xe0 [ 266.668480] __kernfs_create_file+0x3d/0x320 [ 266.672895] sysfs_add_file_mode_ns+0x1e1/0x450 [ 266.677574] internal_create_group+0x22b/0x710 [ 266.682165] sysfs_create_groups+0x92/0x127 [ 266.686495] device_add+0x7e5/0x15c0 [ 266.690215] ? device_is_dependent+0x270/0x270 [ 266.694803] netdev_register_kobject+0x181/0x410 [ 266.699564] register_netdevice+0x955/0xe40 [ 266.703892] ? netdev_change_features+0xa0/0xa0 [ 266.708568] br_dev_newlink+0x23/0x100 [ 266.712462] rtnl_newlink+0xf88/0x1830 [ 266.716377] ? __lock_acquire+0x5fc/0x3f20 [ 266.720624] ? br_changelink+0x1570/0x1570 [ 266.724864] ? kmem_cache_free+0x7c/0x2b0 [ 266.729043] ? rtnl_dellink+0x6a0/0x6a0 [ 266.733024] ? trace_hardirqs_on+0x10/0x10 [ 266.737259] ? netlink_deliver_tap+0x60c/0x7d0 [ 266.741840] ? netlink_unicast+0x485/0x610 [ 266.746081] ? netlink_sendmsg+0x62e/0xb80 [ 266.750320] ? ___sys_sendmsg+0x660/0x800 [ 266.754467] ? __sys_sendmsg+0xa3/0x120 [ 266.758445] ? SyS_sendmsg+0x27/0x40 [ 266.762199] ? lock_acquire+0x170/0x3f0 [ 266.766177] ? lock_downgrade+0x740/0x740 [ 266.770330] ? rtnl_dellink+0x6a0/0x6a0 [ 266.774306] rtnetlink_rcv_msg+0x3be/0xb10 [ 266.778543] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 266.783058] ? __netlink_lookup+0x345/0x5d0 [ 266.787393] ? netdev_pick_tx+0x2e0/0x2e0 [ 266.791542] netlink_rcv_skb+0x125/0x390 [ 266.795616] ? memcpy+0x35/0x50 [ 266.798909] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 266.803387] ? netlink_ack+0x9a0/0x9a0 [ 266.807258] netlink_unicast+0x437/0x610 [ 266.812473] ? netlink_sendskb+0xd0/0xd0 [ 266.816536] ? __check_object_size+0x179/0x22c [ 266.821132] netlink_sendmsg+0x62e/0xb80 [ 266.825178] ? nlmsg_notify+0x170/0x170 [ 266.829150] ? kernel_recvmsg+0x210/0x210 [ 266.833287] ? security_socket_sendmsg+0x83/0xb0 [ 266.838031] ? nlmsg_notify+0x170/0x170 [ 266.841992] sock_sendmsg+0xb5/0x100 [ 266.844799] ax25_connect(): syz-executor.3 uses autobind, please contact jreuter@yaina.de [ 266.845702] ___sys_sendmsg+0x6c8/0x800 [ 266.845715] ? get_pid_task+0x91/0x130 [ 266.845726] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 266.845739] ? lock_downgrade+0x740/0x740 [ 266.845758] ? __fget+0x1fe/0x360 [ 266.874281] ? lock_acquire+0x170/0x3f0 [ 266.878258] ? lock_downgrade+0x740/0x740 [ 266.882413] ? __fget+0x225/0x360 [ 266.885866] ? __fdget+0x196/0x1f0 [ 266.889827] ? sockfd_lookup_light+0xb2/0x160 [ 266.894313] __sys_sendmsg+0xa3/0x120 [ 266.898098] ? SyS_shutdown+0x160/0x160 [ 266.902057] ? wait_for_completion_io+0x10/0x10 [ 266.906719] ? SyS_read+0x210/0x210 [ 266.910334] ? SyS_clock_settime+0x1a0/0x1a0 [ 266.914730] SyS_sendmsg+0x27/0x40 [ 266.918254] ? __sys_sendmsg+0x120/0x120 [ 266.922297] do_syscall_64+0x1d5/0x640 [ 266.926172] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 266.931373] RIP: 0033:0x45e0f9 [ 266.934540] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 266.942256] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 266.949522] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 266.956779] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 266.964029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000035 [ 266.971294] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:14 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="01000000000000006272696400000c00028006003b1b0600"/38], 0x3c}}, 0x0) r1 = add_key$fscrypt_v1(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000100)={0x0, "a9bfed7aeb5965ef00ce1b050924bc4c8b3c42d84242b77f4952576f2dc395a5248dd64a8cff8babb45bf9b27abd231478d90e5181858732e402fbddeced4034"}, 0x48, 0xfffffffffffffffe) keyctl$invalidate(0x15, r1) keyctl$revoke(0x3, r1) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380)='nl80211\x00') sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="11deaaa4bbdedf9c2d95759843b9101c67b20d5a7047315ca6cc1d81a8210c850c7f14744d4c0b8ad6fb779cabe836ba6d74b703d88c1abdc61c6fd571d945a76ada69a0fbcb1875d8cfd05072816c", @ANYRES16=r2, @ANYBLOB="000000800000fbdbdf254c00000008007700e70f00000400ec005019fd94c319d3801a55f0180f77ba000c000000000000009740a63200000000c09f417b4c7903ca485d88ac104f1e5a5c15750700d66e5595bdcebb608eba8e48fdc2399e33ef64fb75a51b4d1802abe7e93ceddd23c6af141864e9a5afc4ee15db767b9631145d80183760ce307c7fdd202b78a7dc3cb069a985e14dd27a93dcfe3a1fd3eefb696adccffa15046b69"], 0x20}}, 0x0) sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000228bd00000100000000008a4591000000088cb000a85aa143a1be", @ANYRES32=0x0, @ANYBLOB="0c0099002000000003000000"], 0x28}, 0x1, 0x0, 0x0, 0x4099}, 0x0) sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x8000) 04:36:14 executing program 1 (fault-call:2 fault-nth:54): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 266.993367] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 267.030867] FAULT_INJECTION: forcing a failure. [ 267.030867] name failslab, interval 1, probability 0, space 0, times 0 [ 267.056099] ax25_connect(): syz-executor.3 uses autobind, please contact jreuter@yaina.de [ 267.075037] CPU: 1 PID: 18884 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 267.082931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 267.092312] Call Trace: [ 267.094957] dump_stack+0x1b2/0x283 [ 267.098594] should_fail.cold+0x10a/0x154 [ 267.102750] should_failslab+0xd6/0x130 [ 267.106729] kmem_cache_alloc+0x28e/0x3c0 [ 267.110882] __kernfs_new_node+0x6f/0x470 [ 267.115039] kernfs_new_node+0x7b/0xe0 [ 267.118958] __kernfs_create_file+0x3d/0x320 [ 267.123375] sysfs_add_file_mode_ns+0x1e1/0x450 [ 267.128045] ? kernfs_create_dir_ns+0x171/0x200 [ 267.132722] internal_create_group+0x22b/0x710 [ 267.137335] sysfs_create_groups+0x92/0x127 [ 267.141662] device_add+0x879/0x15c0 [ 267.145412] ? device_is_dependent+0x270/0x270 [ 267.150003] netdev_register_kobject+0x181/0x410 04:36:14 executing program 5: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00') sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140400000000000000208573c6866e", @ANYRES16=r2, @ANYBLOB="00002abd70000000000001000000"], 0x14}, 0x1, 0x0, 0x0, 0x20048861}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000680)=ANY=[@ANYBLOB="00fa6f59d3007bb64b0bd11289c15efbb4d39e9f82fcfa617bc4c1555bb13c867f92449adce9845a6e39733abfb2a20abf826f8616488f1f20db7bce7fe1d710142ab29a95dae566a44d239f33223165c7815184dfbdee89260ec7f40fb9792172f3487364a88e0d5886013363cb1a34fb22be85a2dea3fe9e7219770bfbca525a958e2dd3665fe6820845b01cdfaa420af63890d57b24e899488c041fcb704d96666f387821945b825d", @ANYRES32=0x0, @ANYBLOB="000100070000aa0100000013460900180067000004299078640101018fac1414aa00000000"]}) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000200)={'ip6tnl0\x00', 0x0, 0x29, 0x8c, 0x1f, 0x0, 0x20, @private0={0xfc, 0x0, [], 0x1}, @empty, 0x40, 0x8000, 0x0, 0x9}}) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r0, &(0x7f0000000380)={&(0x7f0000000140), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x4c, r2, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xae}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xc78}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xbe5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x4c}}, 0x41) r5 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r6, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @remote}, {0xa, 0x0, 0x0, @dev}, r7}}, 0x48) write$RDMA_USER_CM_CMD_QUERY(r6, &(0x7f0000000040)={0x13, 0x10, 0xfa00, {&(0x7f0000000280), r7, 0x2}}, 0x18) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000480)={0x4, 0x8, 0xfa00, {r7, 0xdc1e9713}}, 0x10) semtimedop(0xffffffffffffffff, &(0x7f0000000400)=[{0x4, 0x800, 0x1000}, {0x1, 0x1f, 0x800}], 0x2, &(0x7f0000000440)={0x0, 0x989680}) sendto(r5, &(0x7f0000000000)="b2c416dd287c0f6b39c500dacc3eee953d0c65cc7904f5692110ec3f9782fe5a5e1b9e95493532a80f03beeed8805a846f0ca4c76233e8a07c64963dc3dcc850a51f6326c9bcf0922b8e7372ff7cf918f63f4cad3ff5c0eef317f66e008347697e713d268cc8a6eba8", 0x69, 0x0, &(0x7f00000000c0)=@caif, 0x80) r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r8, 0x0) [ 267.154763] register_netdevice+0x955/0xe40 [ 267.159088] ? netdev_change_features+0xa0/0xa0 [ 267.163766] br_dev_newlink+0x23/0x100 [ 267.167659] rtnl_newlink+0xf88/0x1830 [ 267.171588] ? br_changelink+0x1570/0x1570 [ 267.175822] ? mark_held_locks+0xa6/0xf0 [ 267.179886] ? rtnl_dellink+0x6a0/0x6a0 [ 267.183859] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 267.188877] ? _raw_spin_unlock_irq+0x5a/0x80 [ 267.193423] ? rtnl_dellink+0x6a0/0x6a0 [ 267.197419] rtnetlink_rcv_msg+0x3be/0xb10 [ 267.201640] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 267.206117] ? __netlink_lookup+0x345/0x5d0 [ 267.210421] ? netdev_pick_tx+0x2e0/0x2e0 [ 267.214576] netlink_rcv_skb+0x125/0x390 [ 267.218652] ? memcpy+0x35/0x50 [ 267.221913] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 267.226391] ? netlink_ack+0x9a0/0x9a0 [ 267.230264] netlink_unicast+0x437/0x610 [ 267.234321] ? netlink_sendskb+0xd0/0xd0 [ 267.238382] ? __check_object_size+0x179/0x22c [ 267.242953] netlink_sendmsg+0x62e/0xb80 [ 267.247002] ? nlmsg_notify+0x170/0x170 [ 267.250968] ? kernel_recvmsg+0x210/0x210 [ 267.255123] ? security_socket_sendmsg+0x83/0xb0 [ 267.259871] ? nlmsg_notify+0x170/0x170 [ 267.263835] sock_sendmsg+0xb5/0x100 [ 267.267546] ___sys_sendmsg+0x6c8/0x800 [ 267.271503] ? get_pid_task+0x91/0x130 [ 267.275382] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 267.280137] ? lock_downgrade+0x740/0x740 [ 267.284314] ? __fget+0x1fe/0x360 [ 267.287765] ? lock_acquire+0x170/0x3f0 [ 267.291747] ? lock_downgrade+0x740/0x740 [ 267.295888] ? __fget+0x225/0x360 [ 267.299333] ? __fdget+0x196/0x1f0 [ 267.302856] ? sockfd_lookup_light+0xb2/0x160 [ 267.307334] __sys_sendmsg+0xa3/0x120 [ 267.311148] ? SyS_shutdown+0x160/0x160 [ 267.315123] ? wait_for_completion_io+0x10/0x10 [ 267.319803] ? SyS_read+0x210/0x210 [ 267.323419] ? SyS_clock_settime+0x1a0/0x1a0 [ 267.327819] SyS_sendmsg+0x27/0x40 [ 267.331347] ? __sys_sendmsg+0x120/0x120 [ 267.335401] do_syscall_64+0x1d5/0x640 [ 267.339299] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 267.344487] RIP: 0033:0x45e0f9 [ 267.347678] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 267.355372] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 267.362653] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 267.369913] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 267.377167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000036 [ 267.384483] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:15 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x8) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r4, &(0x7f0000004140)) 04:36:15 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00'/14, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:15 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff000000000000000000000000cc511317e9c43e95a7d44ce0be805ed94ae57c4d7e8e6cbbd7313984416f35460e97a36f04c329755db9f743ce3fd59262f3fbc7b8987201f7950000000000000000000000000000fc0a16c10488451e7819afb55529339035efc3ea", @ANYRES32=0x0, @ANYBLOB="000000000000000009fe12800b00010062726964676500000c0002800600060000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x4068044}, 0x0) io_setup(0x0, &(0x7f0000000040)=0x0) io_destroy(r1) 04:36:15 executing program 1 (fault-call:2 fault-nth:55): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 267.422105] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 267.434170] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:15 executing program 5: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = accept4$netrom(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @bcast}, [@remote, @netrom, @bcast, @bcast, @remote, @netrom, @bcast, @rose]}, &(0x7f00000000c0)=0x48, 0x800) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000200)={0x400, 0x1, &(0x7f0000000100)=[0x5], &(0x7f0000000140)=[0xffff, 0x4, 0x40, 0xfc], &(0x7f0000000180)=[0x9], &(0x7f00000001c0)=[0x8, 0x46, 0x5], 0x0, 0xfffffffffffffff7}) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:15 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_dev$char_raw(&(0x7f0000000000)='/dev/raw/raw#\x00', 0x1, 0x40201) fchdir(r1) write$P9_RLOPEN(0xffffffffffffffff, &(0x7f0000000040)={0x18, 0xd, 0x2, {{0x0, 0x4, 0x6}, 0x8}}, 0x18) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 267.492637] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. 04:36:15 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) copy_file_range(r1, &(0x7f0000000100)=0x3, r3, &(0x7f0000000140)=0xce, 0x3, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c000049441955ff00000000", @ANYRES32=0x0, @ANYBLOB="00000000070000001c0012800b000100627269646765006323a285800600060000000000"], 0x3c}}, 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) r5 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x7fffffff, 0x3a0340) ioctl$KVM_ENABLE_CAP(r5, 0x4068aea3, &(0x7f0000000040)={0x74, 0x0, [0x3, 0x1f, 0x8, 0xffffffff]}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$sock_void(r6, 0x1, 0x3f, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f0000000680)={0x6, 0x0, [{0x3000, 0x16, &(0x7f00000001c0)=""/22}, {0x1, 0x9f, &(0x7f0000000200)=""/159}, {0x5000, 0xd2, &(0x7f0000000340)=""/210}, {0x2000, 0x67, &(0x7f0000000440)=""/103}, {0x4000, 0x71, &(0x7f00000004c0)=""/113}, {0x10000, 0x58, &(0x7f0000000580)=""/88}]}) [ 267.539422] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 267.571087] FAULT_INJECTION: forcing a failure. [ 267.571087] name failslab, interval 1, probability 0, space 0, times 0 [ 267.586936] CPU: 0 PID: 18914 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 267.594828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 267.604180] Call Trace: [ 267.606777] dump_stack+0x1b2/0x283 [ 267.610412] should_fail.cold+0x10a/0x154 [ 267.614565] should_failslab+0xd6/0x130 [ 267.618573] kmem_cache_alloc+0x28e/0x3c0 [ 267.622725] __kernfs_new_node+0x6f/0x470 [ 267.626879] kernfs_new_node+0x7b/0xe0 [ 267.630800] __kernfs_create_file+0x3d/0x320 [ 267.635218] sysfs_add_file_mode_ns+0x1e1/0x450 [ 267.639899] internal_create_group+0x22b/0x710 [ 267.644478] sysfs_create_groups+0x92/0x127 [ 267.648784] device_add+0x7e5/0x15c0 [ 267.652481] ? device_is_dependent+0x270/0x270 [ 267.657052] netdev_register_kobject+0x181/0x410 [ 267.661909] register_netdevice+0x955/0xe40 [ 267.666235] ? netdev_change_features+0xa0/0xa0 [ 267.670915] br_dev_newlink+0x23/0x100 [ 267.674785] rtnl_newlink+0xf88/0x1830 [ 267.678670] ? br_changelink+0x1570/0x1570 [ 267.682888] ? mark_held_locks+0xa6/0xf0 [ 267.686939] ? rtnl_dellink+0x6a0/0x6a0 [ 267.690894] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 267.695901] ? _raw_spin_unlock_irq+0x5a/0x80 [ 267.700424] ? rtnl_dellink+0x6a0/0x6a0 [ 267.704395] rtnetlink_rcv_msg+0x3be/0xb10 [ 267.708626] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 267.713100] ? __netlink_lookup+0x345/0x5d0 [ 267.717399] ? netdev_pick_tx+0x2e0/0x2e0 [ 267.721530] netlink_rcv_skb+0x125/0x390 [ 267.725574] ? memcpy+0x35/0x50 [ 267.728834] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 267.733315] ? netlink_ack+0x9a0/0x9a0 [ 267.737199] netlink_unicast+0x437/0x610 [ 267.741280] ? netlink_sendskb+0xd0/0xd0 [ 267.745335] ? __check_object_size+0x179/0x22c [ 267.749897] netlink_sendmsg+0x62e/0xb80 [ 267.753941] ? nlmsg_notify+0x170/0x170 [ 267.757983] ? kernel_recvmsg+0x210/0x210 [ 267.762113] ? security_socket_sendmsg+0x83/0xb0 [ 267.766848] ? nlmsg_notify+0x170/0x170 [ 267.770820] sock_sendmsg+0xb5/0x100 [ 267.774524] ___sys_sendmsg+0x6c8/0x800 [ 267.778496] ? get_pid_task+0x91/0x130 [ 267.782364] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 267.787111] ? lock_downgrade+0x740/0x740 [ 267.791251] ? __fget+0x1fe/0x360 [ 267.794685] ? lock_acquire+0x170/0x3f0 [ 267.798652] ? lock_downgrade+0x740/0x740 [ 267.802781] ? __fget+0x225/0x360 [ 267.806216] ? __fdget+0x196/0x1f0 [ 267.809738] ? sockfd_lookup_light+0xb2/0x160 [ 267.814219] __sys_sendmsg+0xa3/0x120 [ 267.818010] ? SyS_shutdown+0x160/0x160 [ 267.821965] ? wait_for_completion_io+0x10/0x10 [ 267.826618] ? SyS_read+0x210/0x210 [ 267.830238] ? SyS_clock_settime+0x1a0/0x1a0 [ 267.834645] SyS_sendmsg+0x27/0x40 [ 267.838172] ? __sys_sendmsg+0x120/0x120 [ 267.842218] do_syscall_64+0x1d5/0x640 [ 267.846091] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 267.851259] RIP: 0033:0x45e0f9 [ 267.854426] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 267.862113] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 267.869362] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 267.876629] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 267.883878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000037 04:36:15 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup3(r0, r0, 0x80000) ioctl$BLKSECDISCARD(r1, 0x127d, &(0x7f0000000000)=0x80) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@getstats={0x1c, 0x5e, 0x17813e5f9812ae0f, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x2}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8010}, 0x0) 04:36:15 executing program 1 (fault-call:2 fault-nth:56): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 267.891130] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:15 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$AUDIT_GET(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x3e8, 0x204, 0x70bd2b, 0x25dfdbfb, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8010}, 0x4d9b143c307d6b27) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:15 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:15 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) getsockname$netlink(r1, &(0x7f0000000080), &(0x7f0000000100)=0xc) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="000500008d678ec3adb06b9825d145737ef1f5a38127de0c31f5b7090000008185f4e187694b4b5ceb08b12f75ef43e010e63eac362489ab8f5f62016a00e84d48fb63bbf9dcda729a0900", @ANYRES32=0x0, @ANYBLOB="00abdca5f484acf75dafaa860000df001354c5781a9cc7f9e5e8b13859328d2049bb13dad69c43472e06"], 0x3c}}, 0x0) [ 268.006567] FAULT_INJECTION: forcing a failure. [ 268.006567] name failslab, interval 1, probability 0, space 0, times 0 [ 268.036557] CPU: 0 PID: 18947 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 268.044471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 268.053853] Call Trace: [ 268.056454] dump_stack+0x1b2/0x283 [ 268.060087] should_fail.cold+0x10a/0x154 [ 268.064251] should_failslab+0xd6/0x130 [ 268.068232] kmem_cache_alloc+0x28e/0x3c0 [ 268.072389] __kernfs_new_node+0x6f/0x470 [ 268.076541] kernfs_new_node+0x7b/0xe0 [ 268.080435] __kernfs_create_file+0x3d/0x320 [ 268.084846] sysfs_add_file_mode_ns+0x1e1/0x450 [ 268.089520] ? kernfs_create_dir_ns+0x171/0x200 [ 268.094195] internal_create_group+0x22b/0x710 [ 268.098800] sysfs_create_groups+0x92/0x127 [ 268.103130] device_add+0x879/0x15c0 [ 268.106849] ? device_is_dependent+0x270/0x270 [ 268.111439] netdev_register_kobject+0x181/0x410 [ 268.116207] register_netdevice+0x955/0xe40 [ 268.120534] ? netdev_change_features+0xa0/0xa0 [ 268.125210] br_dev_newlink+0x23/0x100 [ 268.129103] rtnl_newlink+0xf88/0x1830 [ 268.133018] ? __lock_acquire+0x5fc/0x3f20 [ 268.137269] ? br_changelink+0x1570/0x1570 [ 268.141507] ? kmem_cache_free+0x7c/0x2b0 [ 268.145656] ? rtnl_dellink+0x6a0/0x6a0 [ 268.149634] ? trace_hardirqs_on+0x10/0x10 04:36:15 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) accept4$packet(r2, &(0x7f0000000500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000540)=0x14, 0x80000) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f0000000640)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x60, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x44, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, [], 0x1}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, [], 0x21}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x4001) 04:36:15 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x20000000) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$ASHMEM_SET_NAME(r2, 0x41007701, &(0x7f0000000000)='bridge\x00') sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_STATS_ENABLED={0x5}]}}}]}, 0x3c}}, 0x0) 04:36:15 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0x8, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x4, 0x5633}]}}}]}, 0x3c}}, 0x0) [ 268.153873] ? netlink_deliver_tap+0x60c/0x7d0 [ 268.158457] ? netlink_unicast+0x485/0x610 [ 268.162690] ? netlink_sendmsg+0x62e/0xb80 [ 268.166920] ? ___sys_sendmsg+0x660/0x800 [ 268.171055] ? __sys_sendmsg+0xa3/0x120 [ 268.175019] ? SyS_sendmsg+0x27/0x40 [ 268.178779] ? lock_acquire+0x170/0x3f0 [ 268.182757] ? lock_downgrade+0x740/0x740 [ 268.186908] ? rtnl_dellink+0x6a0/0x6a0 [ 268.190917] rtnetlink_rcv_msg+0x3be/0xb10 [ 268.195156] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 268.199655] ? __netlink_lookup+0x345/0x5d0 04:36:16 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 268.203976] ? netdev_pick_tx+0x2e0/0x2e0 [ 268.208130] netlink_rcv_skb+0x125/0x390 [ 268.212191] ? memcpy+0x35/0x50 [ 268.215473] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 268.219970] ? netlink_ack+0x9a0/0x9a0 [ 268.223854] netlink_unicast+0x437/0x610 [ 268.227900] ? netlink_sendskb+0xd0/0xd0 [ 268.231952] ? __check_object_size+0x179/0x22c [ 268.236528] netlink_sendmsg+0x62e/0xb80 [ 268.240571] ? nlmsg_notify+0x170/0x170 [ 268.244528] ? kernel_recvmsg+0x210/0x210 [ 268.248676] ? security_socket_sendmsg+0x83/0xb0 [ 268.253426] ? nlmsg_notify+0x170/0x170 [ 268.257411] sock_sendmsg+0xb5/0x100 [ 268.261117] ___sys_sendmsg+0x6c8/0x800 [ 268.265081] ? get_pid_task+0x91/0x130 [ 268.268958] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 268.273694] ? lock_downgrade+0x740/0x740 [ 268.277822] ? __fget+0x1fe/0x360 [ 268.281257] ? lock_acquire+0x170/0x3f0 [ 268.285218] ? lock_downgrade+0x740/0x740 [ 268.289372] ? __fget+0x225/0x360 [ 268.292816] ? __fdget+0x196/0x1f0 [ 268.296361] ? sockfd_lookup_light+0xb2/0x160 [ 268.300855] __sys_sendmsg+0xa3/0x120 [ 268.304666] ? SyS_shutdown+0x160/0x160 [ 268.308628] ? wait_for_completion_io+0x10/0x10 [ 268.313303] ? SyS_read+0x210/0x210 [ 268.316918] ? SyS_clock_settime+0x1a0/0x1a0 [ 268.321308] SyS_sendmsg+0x27/0x40 [ 268.324826] ? __sys_sendmsg+0x120/0x120 [ 268.328869] do_syscall_64+0x1d5/0x640 [ 268.332750] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 268.337926] RIP: 0033:0x45e0f9 [ 268.341105] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 268.348807] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 04:36:16 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380)='nl80211\x00') sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="11deaaa4bbdedf9c2d95759843b9101c67b20d5a7047315ca6cc1d81a8210c850c7f14744d4c0b8ad6fb779cabe836ba6d74b703d88c1abdc61c6fd571d945a76ada69a0fbcb1875d8cfd05072816c", @ANYRES16=r1, @ANYBLOB="000000800000fbdbdf254c00000008007700e70f00000400ec005019fd94c319d3801a55f0180f77ba000c000000000000009740a63200000000c09f417b4c7903ca485d88ac104f1e5a5c15750700d66e5595bdcebb608eba8e48fdc2399e33ef64fb75a51b4d1802abe7e93ceddd23c6af141864e9a5afc4ee15db767b9631145d80183760ce307c7fdd202b78a7dc3cb069a985e14dd27a93dcfe3a1fd3eefb696adccffa15046b69"], 0x20}}, 0x0) sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000228bd00000100000000008a4591000000088cb000a85aa143a1be", @ANYRES32=0x0, @ANYBLOB="0c0099002000000003000000"], 0x28}, 0x1, 0x0, 0x0, 0x4099}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r3, 0x110, 0x3) sendmsg$NL80211_CMD_DEL_PMKSA(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r1, 0x100, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x8, 0x73}}}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x10000}]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x8840) [ 268.356055] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 268.363310] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 268.370568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000038 [ 268.377829] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:16 executing program 1 (fault-call:2 fault-nth:57): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:16 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r4) fsetxattr$trusted_overlay_upper(r4, &(0x7f0000000000)='trusted.overlay.upper\x00', &(0x7f00000000c0)={0x0, 0xfb, 0x103, 0x2, 0x7, "8f2bc0da15ab99eafdc31a2a52afc831", "5afe4722f7e2986c1e178a5766b316c2b94251f5f359a7c480a688c1c0f6bfa37e7c3edaa6d92fbf0d01ed31353afe1bcf6400c4955d6e65e7587aa5257f657cc52e38d901087d44e2561cc19aa3b113c616497004836d29dcba3b3db70c00a7d4cce2f69c2d787dfb8a9d758b9f8caee4e16a3be454f17ab8c7ca3e9c76cdfd24b90e7cbc6e6acc61e86d6209a4a327114efd1150ae161f14206e6b226fb96fdd7e4035f1f9eae72e2b0973d5b4e56e157df86904ba809b7764292573385c5ef57705bdff16ca0cfe88a5c3eb41e6ea89a15ff11b0d7cd36514b22b0813a3da66e537f11eeccfa679dbbceff46f"}, 0x103, 0x1) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r5, 0x0) 04:36:16 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080), 0x10) msgrcv(0xffffffffffffffff, &(0x7f0000000100)={0x0, ""/157}, 0xa5, 0x0, 0x800) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x200000, 0x481081) ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000040)={'vxcan1\x00'}) 04:36:16 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r0, r0, 0x0, 0xffff) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000040)=0x2, 0x4) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c22000010001fdf000000370000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x11, 0x0, 0x1, 0x9}, 0x14) [ 268.506431] FAULT_INJECTION: forcing a failure. [ 268.506431] name failslab, interval 1, probability 0, space 0, times 0 [ 268.531310] CPU: 0 PID: 18985 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 268.539253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 268.548606] Call Trace: [ 268.551198] dump_stack+0x1b2/0x283 04:36:16 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x100000, {0x0, 0x0, 0x0, 0x0, 0x8c24d, 0x5080}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 268.554833] should_fail.cold+0x10a/0x154 [ 268.558986] should_failslab+0xd6/0x130 [ 268.562965] kmem_cache_alloc+0x28e/0x3c0 [ 268.567120] __kernfs_new_node+0x6f/0x470 [ 268.571272] kernfs_new_node+0x7b/0xe0 [ 268.575165] __kernfs_create_file+0x3d/0x320 [ 268.579584] sysfs_add_file_mode_ns+0x1e1/0x450 [ 268.584254] ? kernfs_create_dir_ns+0x171/0x200 [ 268.588927] internal_create_group+0x22b/0x710 [ 268.593516] sysfs_create_groups+0x92/0x127 [ 268.597848] device_add+0x879/0x15c0 [ 268.601603] ? device_is_dependent+0x270/0x270 [ 268.606197] netdev_register_kobject+0x181/0x410 [ 268.610947] register_netdevice+0x955/0xe40 [ 268.615250] ? netdev_change_features+0xa0/0xa0 [ 268.619903] br_dev_newlink+0x23/0x100 [ 268.623773] rtnl_newlink+0xf88/0x1830 [ 268.627659] ? br_changelink+0x1570/0x1570 [ 268.631891] ? mark_held_locks+0xa6/0xf0 [ 268.635948] ? rtnl_dellink+0x6a0/0x6a0 [ 268.639912] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 268.644920] ? _raw_spin_unlock_irq+0x5a/0x80 [ 268.649418] ? rtnl_dellink+0x6a0/0x6a0 [ 268.653379] rtnetlink_rcv_msg+0x3be/0xb10 [ 268.657613] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 268.662108] ? __netlink_lookup+0x345/0x5d0 [ 268.666420] ? netdev_pick_tx+0x2e0/0x2e0 [ 268.670558] netlink_rcv_skb+0x125/0x390 [ 268.674600] ? memcpy+0x35/0x50 [ 268.677873] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 268.682350] ? netlink_ack+0x9a0/0x9a0 [ 268.686220] netlink_unicast+0x437/0x610 [ 268.690292] ? netlink_sendskb+0xd0/0xd0 [ 268.694334] ? __check_object_size+0x179/0x22c [ 268.698901] netlink_sendmsg+0x62e/0xb80 [ 268.702944] ? nlmsg_notify+0x170/0x170 [ 268.706921] ? kernel_recvmsg+0x210/0x210 [ 268.711052] ? security_socket_sendmsg+0x83/0xb0 [ 268.715797] ? nlmsg_notify+0x170/0x170 [ 268.719762] sock_sendmsg+0xb5/0x100 [ 268.723457] ___sys_sendmsg+0x6c8/0x800 [ 268.727412] ? get_pid_task+0x91/0x130 [ 268.731297] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 268.736035] ? lock_downgrade+0x740/0x740 [ 268.740187] ? __fget+0x1fe/0x360 [ 268.743636] ? lock_acquire+0x170/0x3f0 [ 268.747610] ? lock_downgrade+0x740/0x740 [ 268.751758] ? __fget+0x225/0x360 [ 268.755192] ? __fdget+0x196/0x1f0 [ 268.758712] ? sockfd_lookup_light+0xb2/0x160 [ 268.763204] __sys_sendmsg+0xa3/0x120 [ 268.767091] ? SyS_shutdown+0x160/0x160 [ 268.771047] ? wait_for_completion_io+0x10/0x10 [ 268.775699] ? SyS_read+0x210/0x210 [ 268.779310] ? SyS_clock_settime+0x1a0/0x1a0 [ 268.783698] SyS_sendmsg+0x27/0x40 [ 268.787230] ? __sys_sendmsg+0x120/0x120 [ 268.791286] do_syscall_64+0x1d5/0x640 [ 268.795158] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 268.801478] RIP: 0033:0x45e0f9 04:36:16 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0xffffffffffffffff, 0x4000, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 268.804660] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 268.812362] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 268.819610] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 268.826857] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 268.834106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000039 [ 268.841408] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:16 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x200, 0x1, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0) 04:36:16 executing program 1 (fault-call:2 fault-nth:58): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:16 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @null, @bpq0='bpq0\x00', 0x81, 'syz1\x00', @null, 0xcb9, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:16 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r1) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x100, 0x0) sendmsg$TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x6c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x101}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xf451}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4dc4}]}, @TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7fffffff}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x890}, 0x4044) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYRESOCT=r1, @ANYRESHEX=r3, @ANYRES16], 0x3c}, 0x1, 0x0, 0x0, 0x10c4}, 0x20048003) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$IPSET_CMD_GET_BYINDEX(r5, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, 0xf, 0x6, 0x5, 0x0, 0x0, {0x2, 0x0, 0x400}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x20000010) 04:36:16 executing program 3: r0 = socket$netlink(0x10, 0x3, 0xe) ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f00000003c0)={0x1, 0x6}) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000440)='/dev/null\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00') write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f00000001c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x2, @private1={0xfc, 0x1, [], 0x1}}, {0xa, 0x4e20, 0xa0, @mcast2, 0x1}, 0xffffffffffffffff, 0x3f}}, 0x48) ioctl$vim2m_VIDIOC_STREAMON(r1, 0x40045612, &(0x7f0000000400)=0x1) sendmsg$NL80211_CMD_TESTMODE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="d4020000", @ANYRES16=r2, @ANYBLOB="010027bd7000fcdbdf252d0000000c009900030000003200000099004500219bf4cc28ceedec9766e7356b4c736eefed1bf8343c6b7391095ef5aa6ab7bef2544a077b468c19a168598a8092f9a8eb1120b3281aae49746c9ac9917a7cf618a863f3257a04c9bedf96db1100c573a443eb9d3844abde2b77b54b37135226c125a63756253ae5c86798eb1980ac08e7aac1ff3699e89e441c88660eff1a7875ded08128530e72d1968df17de41b837548fd66d600000088004500ff292279d573d245245fb745131cfe069ffcfcb30fac5f3a00f709ee398be74aa22fbb6627b55edb7936b656ee9587bb6b0644edde0e365b977909e001e3814db8502099a5b40032bcfaed8f23c4c3ae95d4548b087f052ab2845751f0ff12c3a3cef316565eb03b9ce02463f7fba518b5ebf3cd7d6ffa3ce64df0bb5721ac601aa98d12a3004500a0d805006daf01920155134f5793ec9985a2f7cf3f7a0f7fa667dd129c4e400f15213e6bac6dd5333d50b1d67846181ea8808916306f576cd2f27bd96549f41dfecca622734ff4276a28e24b4845b09c7feb107eb3788ccff3f0ffa1b4c4262b818e832e918613db099a5463a5af3d3d1aceee8f776065333e221a8f8af19f5659397a8db91351fa7e69e299af795595b2c0352bbddaa4c408f91181e6ccc1dac3bbd73f17599d2e075df2f8bb1e39eda772eccc4684ab8000ec0045009c284137d396eb91c4e743f6089cadc4cae526ed365e469af4a3543748c39c82f38baca59bad61427e5b563a24100e81416f044ddf297d1d06c2b7e9e767a9843a011feeefde3437f897ec396cf1bd958b41a1fd003ef382c87e5a0fceef3ff84e2dc5f49f9ef93742c56041963a93c93472631cc552abbc39dfcbf356650a4014f01dcb8d70c8efd50f7f4d194d21757a67689302f48e70a58d18e21479b22f7a1ce8f25a006bce70c10c5e6391ab13bad196394c7683dc8d8e2295b3f5ccfe39bdcf1377daa097148d4eec6c8efc"], 0x2d4}, 0x1, 0x0, 0x0, 0x810}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(r3, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x78, 0x4, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x78}}, 0x8004) 04:36:16 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000000c00028006000600"/36], 0xf}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$FIONCLEX(r2, 0x5450) [ 268.981108] FAULT_INJECTION: forcing a failure. [ 268.981108] name failslab, interval 1, probability 0, space 0, times 0 [ 269.029853] CPU: 0 PID: 19020 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 269.037803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.047161] Call Trace: [ 269.049754] dump_stack+0x1b2/0x283 [ 269.053395] should_fail.cold+0x10a/0x154 [ 269.057544] should_failslab+0xd6/0x130 [ 269.061527] kmem_cache_alloc+0x28e/0x3c0 [ 269.065687] __kernfs_new_node+0x6f/0x470 [ 269.069843] kernfs_new_node+0x7b/0xe0 [ 269.073734] __kernfs_create_file+0x3d/0x320 04:36:16 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newrule={0x58, 0x20, 0x2, 0x70bd2a, 0x25dfdbfb, {0xa, 0x0, 0x0, 0x8, 0x7f, 0x0, 0x0, 0x7, 0x6}, [@FRA_SRC={0x14, 0x2, @private1}, @FRA_SRC={0x14, 0x2, @mcast2}, @FRA_SRC={0x14, 0x2, @private0={0xfc, 0x0, [], 0x1}}]}, 0x58}}, 0x20000840) [ 269.078148] sysfs_add_file_mode_ns+0x1e1/0x450 [ 269.082818] ? kernfs_create_dir_ns+0x171/0x200 [ 269.087495] internal_create_group+0x22b/0x710 [ 269.092085] sysfs_create_groups+0x92/0x127 [ 269.096412] device_add+0x879/0x15c0 [ 269.100132] ? device_is_dependent+0x270/0x270 [ 269.104726] netdev_register_kobject+0x181/0x410 [ 269.109495] register_netdevice+0x955/0xe40 [ 269.113828] ? netdev_change_features+0xa0/0xa0 [ 269.118506] br_dev_newlink+0x23/0x100 [ 269.122400] rtnl_newlink+0xf88/0x1830 [ 269.126327] ? __lock_acquire+0x5fc/0x3f20 [ 269.130572] ? br_changelink+0x1570/0x1570 [ 269.134800] ? kmem_cache_free+0x7c/0x2b0 [ 269.138938] ? rtnl_dellink+0x6a0/0x6a0 [ 269.142892] ? trace_hardirqs_on+0x10/0x10 [ 269.147115] ? netlink_deliver_tap+0x60c/0x7d0 [ 269.151689] ? netlink_unicast+0x485/0x610 [ 269.155916] ? netlink_sendmsg+0x62e/0xb80 [ 269.160146] ? ___sys_sendmsg+0x660/0x800 [ 269.164276] ? __sys_sendmsg+0xa3/0x120 [ 269.168238] ? SyS_sendmsg+0x27/0x40 [ 269.171966] ? lock_acquire+0x170/0x3f0 [ 269.175927] ? lock_downgrade+0x740/0x740 [ 269.180069] ? rtnl_dellink+0x6a0/0x6a0 [ 269.184024] rtnetlink_rcv_msg+0x3be/0xb10 [ 269.188256] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 269.192745] ? __netlink_lookup+0x345/0x5d0 [ 269.197053] ? netdev_pick_tx+0x2e0/0x2e0 [ 269.201211] netlink_rcv_skb+0x125/0x390 [ 269.205253] ? memcpy+0x35/0x50 [ 269.208514] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 269.212989] ? netlink_ack+0x9a0/0x9a0 [ 269.216864] netlink_unicast+0x437/0x610 [ 269.220923] ? netlink_sendskb+0xd0/0xd0 [ 269.224985] ? __check_object_size+0x179/0x22c [ 269.229548] netlink_sendmsg+0x62e/0xb80 [ 269.233596] ? nlmsg_notify+0x170/0x170 [ 269.237572] ? kernel_recvmsg+0x210/0x210 [ 269.241707] ? security_socket_sendmsg+0x83/0xb0 [ 269.246454] ? nlmsg_notify+0x170/0x170 [ 269.250415] sock_sendmsg+0xb5/0x100 [ 269.254123] ___sys_sendmsg+0x6c8/0x800 [ 269.258080] ? get_pid_task+0x91/0x130 [ 269.263165] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 269.267902] ? lock_downgrade+0x740/0x740 [ 269.272035] ? __fget+0x1fe/0x360 [ 269.275499] ? lock_acquire+0x170/0x3f0 [ 269.279476] ? lock_downgrade+0x740/0x740 [ 269.283618] ? __fget+0x225/0x360 [ 269.287057] ? __fdget+0x196/0x1f0 [ 269.290586] ? sockfd_lookup_light+0xb2/0x160 [ 269.295090] __sys_sendmsg+0xa3/0x120 [ 269.298884] ? SyS_shutdown+0x160/0x160 [ 269.302848] ? wait_for_completion_io+0x10/0x10 [ 269.307512] ? SyS_read+0x210/0x210 [ 269.311118] ? SyS_clock_settime+0x1a0/0x1a0 [ 269.315507] SyS_sendmsg+0x27/0x40 [ 269.319026] ? __sys_sendmsg+0x120/0x120 [ 269.323070] do_syscall_64+0x1d5/0x640 04:36:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={r0}) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x20002, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, &(0x7f0000004140)) [ 269.326943] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 269.332112] RIP: 0033:0x45e0f9 [ 269.335281] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 269.342967] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 269.350213] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 269.357463] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 269.364710] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003a [ 269.371979] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:17 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000000)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012e90f0001006272696467651d000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:17 executing program 5: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vmci\x00', 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:17 executing program 1 (fault-call:2 fault-nth:59): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:17 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_S_AUDIO(r1, 0x40345622, &(0x7f0000000000)={0x4, "837b4e3e3b43f7879771f573164181f8ed9f6287e4eae9157d4330edcb3c749d", 0x2}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f00000000c0)={r4, 0xa, "b84834825311c134a827"}, &(0x7f0000000100)=0x12) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x0, 0x0) ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f0000000180)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r6, &(0x7f0000004140)) 04:36:17 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioprio_set$uid(0x0, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newlink={0xac, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40}, [@IFLA_VF_PORTS={0x8c, 0x18, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x6, 0x2, '.\x00'}, @IFLA_PORT_REQUEST={0x5, 0x6, 0xf8}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x30}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x80}, @IFLA_PORT_VF={0x8, 0x1, 0xffffffff}]}, {0xc, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x7, 0x2, '^(\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "737c9274775250ce8ca661e455ca61d9"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x79}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x9}]}, {0x10, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xb, 0x2, 'bridge\x00'}]}, {0x18, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "b6466e1fc4a48484e42139356426f005"}]}]}]}, 0xac}}, 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f00000002c0)={0x3f, 0x0, 0xe965}) accept4$ax25(0xffffffffffffffff, &(0x7f0000000100)={{0x3, @default}, [@rose, @remote, @default, @remote, @netrom, @default, @rose, @default]}, &(0x7f0000000180)=0x48, 0x0) setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, &(0x7f00000001c0)="dc7860d43dd5b28ce09563ae19dde12d96150f9e69d28522b3967b841317ba5cca7038c77ba848e6318e5e613ef75fe704068ab89a218da0599c858efbd8eaa2e117fa0d119f963b9b0e6e18fb4d3ad72c8ffb9448351c77655210d3ec0dd0847ed4f695e1e5010e7689bf82b509e5b4eed1621efcff0830170f41c4b9fcc3abe322e086fff045a1375308bdd30a6104dd5f3a3d1f3438a2dc063ca30bf092066ca1490b713faedaea5e759ed2f794df0bc467e2f8860f8987dbd56f910eab9d614ba9e4d7da867f63308f781b615e91b4d2975e", 0xd4) 04:36:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) clock_gettime(0x0, &(0x7f0000000600)={0x0, 0x0}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl(r3, 0x800, &(0x7f0000002880)="15c348801211107961d198a3") ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205647, &(0x7f0000002840)={0x9e0000, 0x5, 0x7, 0xffffffffffffffff, 0x0, &(0x7f0000002800)={0x9b0953, 0xffff55ec, [], @string=&(0x7f0000000480)=0xfa}}) socket$isdn(0x22, 0x3, 0x23) recvmmsg(r0, &(0x7f0000002740)=[{{&(0x7f0000000180)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000000200)=""/159, 0x9f}, {&(0x7f0000000340)=""/182, 0xb6}], 0x3}}, {{&(0x7f0000000400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000480)}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/221, 0xdd}], 0x3, &(0x7f0000002680)=""/168, 0xa8}, 0x2}], 0x2, 0x18040, &(0x7f00000027c0)={r1, r2+10000000}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x70, 0x10, 0xffffff1f, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xd80d}, [@IFLA_LINKINFO={0x50, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x44, 0x2, 0x0, 0x1, {{0x8}, {0x8}, [@IFLA_GTP_FD0={0x8, 0x1, r6}, @IFLA_GTP_FD0={0x8}, @IFLA_GTP_ROLE={0x8, 0x4, 0x1}, @IFLA_GTP_FD0={0x8}, @IFLA_GTP_FD1={0x8}, @IFLA_GTP_FD0={0x8}]}}}}]}, 0x70}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r7) getsockopt(r7, 0x80000000, 0x7, &(0x7f0000000000)=""/121, &(0x7f0000000080)=0x79) 04:36:17 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ptrace$setopts(0x4206, 0x0, 0x8, 0x1b) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) [ 269.564822] FAULT_INJECTION: forcing a failure. [ 269.564822] name failslab, interval 1, probability 0, space 0, times 0 [ 269.589712] CPU: 1 PID: 19069 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 269.597632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.606986] Call Trace: [ 269.609574] dump_stack+0x1b2/0x283 [ 269.613196] should_fail.cold+0x10a/0x154 [ 269.617345] should_failslab+0xd6/0x130 [ 269.621316] kmem_cache_alloc+0x28e/0x3c0 [ 269.625465] __kernfs_new_node+0x6f/0x470 [ 269.629620] kernfs_new_node+0x7b/0xe0 [ 269.633514] __kernfs_create_file+0x3d/0x320 [ 269.637931] sysfs_add_file_mode_ns+0x1e1/0x450 [ 269.642600] ? kernfs_create_dir_ns+0x171/0x200 [ 269.647278] internal_create_group+0x22b/0x710 [ 269.651874] sysfs_create_groups+0x92/0x127 [ 269.656204] device_add+0x879/0x15c0 [ 269.659921] ? device_is_dependent+0x270/0x270 [ 269.664512] netdev_register_kobject+0x181/0x410 [ 269.669297] register_netdevice+0x955/0xe40 [ 269.673627] ? netdev_change_features+0xa0/0xa0 [ 269.678303] br_dev_newlink+0x23/0x100 [ 269.682197] rtnl_newlink+0xf88/0x1830 [ 269.686142] ? __lock_acquire+0x5fc/0x3f20 [ 269.690389] ? br_changelink+0x1570/0x1570 [ 269.694624] ? kmem_cache_free+0x7c/0x2b0 [ 269.698793] ? rtnl_dellink+0x6a0/0x6a0 [ 269.702781] ? trace_hardirqs_on+0x10/0x10 [ 269.707010] ? netlink_deliver_tap+0x60c/0x7d0 [ 269.711586] ? netlink_unicast+0x485/0x610 [ 269.711918] Unknown ioctl 8838 [ 269.715815] ? netlink_sendmsg+0x62e/0xb80 [ 269.715828] ? ___sys_sendmsg+0x660/0x800 [ 269.715838] ? __sys_sendmsg+0xa3/0x120 [ 269.715847] ? SyS_sendmsg+0x27/0x40 [ 269.715892] ? lock_acquire+0x170/0x3f0 [ 269.715900] ? lock_downgrade+0x740/0x740 [ 269.715914] ? rtnl_dellink+0x6a0/0x6a0 [ 269.715925] rtnetlink_rcv_msg+0x3be/0xb10 [ 269.751384] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 269.755863] ? __netlink_lookup+0x345/0x5d0 [ 269.760175] ? netdev_pick_tx+0x2e0/0x2e0 [ 269.764318] netlink_rcv_skb+0x125/0x390 [ 269.768360] ? memcpy+0x35/0x50 [ 269.771622] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 269.776114] ? netlink_ack+0x9a0/0x9a0 [ 269.779986] netlink_unicast+0x437/0x610 [ 269.784045] ? netlink_sendskb+0xd0/0xd0 [ 269.788094] ? __check_object_size+0x179/0x22c [ 269.792659] netlink_sendmsg+0x62e/0xb80 [ 269.796706] ? nlmsg_notify+0x170/0x170 [ 269.800668] ? kernel_recvmsg+0x210/0x210 [ 269.804820] ? security_socket_sendmsg+0x83/0xb0 [ 269.809569] ? nlmsg_notify+0x170/0x170 [ 269.813526] sock_sendmsg+0xb5/0x100 [ 269.817221] ___sys_sendmsg+0x6c8/0x800 [ 269.821196] ? get_pid_task+0x91/0x130 [ 269.825073] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 269.829812] ? lock_downgrade+0x740/0x740 [ 269.833942] ? __fget+0x1fe/0x360 [ 269.837379] ? lock_acquire+0x170/0x3f0 [ 269.842201] ? lock_downgrade+0x740/0x740 [ 269.846332] ? __fget+0x225/0x360 [ 269.849766] ? __fdget+0x196/0x1f0 [ 269.853294] ? sockfd_lookup_light+0xb2/0x160 [ 269.857799] __sys_sendmsg+0xa3/0x120 [ 269.861591] ? SyS_shutdown+0x160/0x160 [ 269.865556] ? wait_for_completion_io+0x10/0x10 [ 269.870212] ? SyS_read+0x210/0x210 [ 269.873840] ? SyS_clock_settime+0x1a0/0x1a0 [ 269.878228] SyS_sendmsg+0x27/0x40 [ 269.881764] ? __sys_sendmsg+0x120/0x120 [ 269.885813] do_syscall_64+0x1d5/0x640 [ 269.889700] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 269.894876] RIP: 0033:0x45e0f9 [ 269.898059] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 269.905772] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 04:36:17 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x1, 0x40000) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000000)={0x80000000}) [ 269.913024] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 269.920303] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 269.927552] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003b [ 269.934806] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:17 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) fcntl$setpipe(r1, 0x407, 0xa876) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000ab53a52372b962c091c5157779428c931004e85b9869bd221ccfebd20eab158db498937834c4701f408f19b46ec3d9e2ff8212bb099d406aa6e6470879110960342cfea61409b4dcabfb001f1eb74d197f000000134cce7abbfeaf08ea0345886ecd72c77d49d93dee960293f0f9b305fe0d33b5c087fe31e6c6010df2add0730000000000"], 0x3c}}, 0x0) ioctl$CHAR_RAW_ROSET(r2, 0x125d, &(0x7f0000000000)=0x1) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x9}}}, 0x84) 04:36:17 executing program 1 (fault-call:2 fault-nth:60): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:17 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) syz_mount_image$adfs(&(0x7f0000000000)='adfs\x00', &(0x7f0000000040)='./file0\x00', 0x2, 0x5, &(0x7f0000000400)=[{&(0x7f0000000100)="25f9642ecd596acebeb7220f222e2464a3d480e0432b5091ba988df2c2e5936b5ce6c8492c1f291230e75f04c804714d497dfd168cf7d0088c7a59cf1a996f26ef0417b9dd3ffdfa5d41113be915d553e337b4fac046c03977f408d132d714b555df92c71ae6df3b24317f83a4329fed56be6fb4a0a0f0a7c487501be19cc9d911a5378a3dde158002387c3b1028e2ed0e5f74d7c369849bf4f70e010e4b5f55159d742e25fc12cde377e255e5ca1e606f99e6218c6e2e97b858709db6e64c57e54cd523e76c051516a38fc0ea5f59770fc996ad37f6175ec1cfb5c7dc2c55cbb87f9133", 0xe4, 0x3}, {&(0x7f0000000200)="95a17f10051d5824d2b3ae1ccea82535e6ec946037dad39ba0a387ad91f38383aa5d5c5354a1c624af789c86481f27c6193c5e3d95c4cf50749248e7faf8ff769f2d27d7a7053fb754be49bcfa62d5cab9de1ff6886ad95e33a3cee6e42ecf234d8aca9f579cc42381b53c1a656df2998c454e808be2232295d25e92f63551ae9665fa3a49ac6624ec7e69155bf8a47d433540c27f3fa9d2f38cf21f748961edf84206f389ede38af3052e39f5f72d0def539e76534b43b7b18c2708fd22d3e0e00fc359b6cea3ce33c5e28fc6471b3f3850224d1bc509", 0xd7}, {&(0x7f0000000580)="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", 0x1000, 0x1f}, {&(0x7f0000000340)="cf564f53ab651159b4ffc3a4d1ec347bc12640e967487622021d364d6b904cbaef694dc3faa62024a4c42a21bd98b11afd5eb44281cd93cba1cba14436489a1b57b7fe3112aa9fa0bbb97fa35956fe86a231aa8bd41ba7f7340e59beb8959401ffd6550db5ae56e1e602b201814d6c498a93fdfb1412bed30cae608b7987994ebabdee549e50e221617ba53281da682da4cda839e10c93e6e912beb1777ed66bf0f82c", 0xa3, 0x10000}, {&(0x7f0000001580)="329cbe63080c717c912bd4011e5037c2a90f9dc305417e5e55cc40a28cd7718c86af4313c12a1ef37c944752d9036964846b3d9b6a46e707279a3aa45ee5382f4a5d97aae93c02e35f112b0f17fe49146d7bc7d0b09b0c45f5afd58a027fd7aa042967446067284332a05c4f423a82e87f01d42152b1dd57651b4243dce916d17196f12328066cc2ae6cb644755f7e67ce164941ea2a2fa681541c2e6f233cee884307da866be6f2d7757628cdee489b3a40fa46dbe812a7c80a947e2addb54fbcae5922b0aa516d369a190dcaa68204ded9e9128fd1eac90320ffa03dbe3ec7af6d18440765f54a93463e5872b3ac9ec62941d79db92476f3a7ecce9ec0d086ea8fc3327821c8e6eb64fc9ccefe9ae96aa73dd95a37e54b5a87da59f09774e294d139850f03ea74d0f17b96c8520db3ffcb4ee652cb9d10ab560d9053eeed731a3574d574b38af2b23ca59209b8a0fcd4e71415199bae6cd68b1011217d051492035bf5812419e5fd49a092fa4605315b0edb8384150584f030366539ef112e72abaef1177fbe1afc3587bdfc656be791fe77073f0d6598e12cecf9d7342e030c167199b6805094b3d9d8c1a35b0010a43be6d731d6be9157e8cf2a28909319886fbbbc6d1bd179ef3e2d979c602a20df0968498bfd6d4b1457bebed2f5c73f9c8ff4e67044136b9696eca16cdf0274104a8870fc069608f433e6f912f25706f5c5b0e4094845f8929a9f21ddf87e891b7e90c309cd2f7d944246e39e81ff1b37d7f1c86c5732fa5e185be7075123ee692d1ff343fe5789c4b213dc116d848e8d68f9f3b4fa057f1d3f3cf6a2119f65f1f1a164cda07f670abb28030ccdf7d298934a1d218b184097aa8d2e625940ae242fc6613600826fb13eeb2c6a6cd38be09f229caea309811938831069a2539699af471938ff86e5b536dae6a33495b54529a9604341f1c5aa0c3c04f821499b7fd3e62235c3c646438964db407a05043a0c7f473e5a19f132b4381165aa79121b5c900e6d4b72369531810981b3319cb7d02c9050f8bf1cb8cb9c331e505c9556e5d1df10a0eb94c0b3c55bc5a8ce8ab817250edbe3f86d7d6b5bb3e85a8d9246ef0c8bcd1bef0d032718c9fe92473b3774a0406d5a3b6618ae4f10892185def520e981995620361a5db999a54619d25b817227593848ebcf020b8590be0c4ab7cf3f97add871f9260a0edab673978af4b524198696866bcc0657f601a6b7617ad66ca45407d672c772047dc6d63cd5805eb4d664217452602cd4b37e771fd3572f8674684cb4b4d726c8d6fe56156ecb0e84bbccc2f139215ac9e49f43316a9d593ec2fcf2aec750bb1e5e82fd36db9fdac968464fa8c48fe41c5f2246ac6113158f045d43de09226819720177d8ebbec94da88d2c666e6c1def7e6fed9ac39b2ed86b9eb590a149a4c573684c5469abc87f885f61349f6e987568b6c6b973c69fee56e49a7450564c9583437b74150202ac7aa69e95de4b30bfb52929b32744a0be2c3edba64fbdd66d22055061216de90659c5acc2b7cd07fe2578a8bb291de3f26f2def413d1eb6fc1d78e8c4011068b349dff2d00393c62becd335fcb30884782ee6b6131bad12eaf57700c1ee386b9ed8fc8601358a22590ccfe9c4a5029f51f7d4bbab39057409e6210205ad3b50223a6f6ecbd1f4131d6ae89ebb07606c73525c4c2afcf4495dd5b19716cafde7765f4d14324672dee980b8c3ac5a0b663c0068c9be5a027a1086ccf6d18c0036b23da866c5f741a5788314550d729b05e386a813111ca5460393b205a3dfec448f1cad8f7a3bad85a9bd95b1e8d33c92eab54c26a77829d374b6e3bccbf37f45e62db0fd8ba7048f5efb2ebc8e8f7293111ac519d52a10cd3a41685bc66af870310e24fef75e1b590a8b7362e5b8073fc817fab141826b9262c3cd4633734142f2cd52265dbea87969e478057a0bf11cf38164ceffd42bac902a7f1a703428a9c5e688211c2bcafd237317fddeb70e22ed382f1dbd1c9244bbff53e8bc202774c7aa301da67b3c10fa9aa52e4dbd7c7ae7d012e067f2db02eed3de7f28afbc8486f9e8e3b8f6034b405f7c69f990a1698bca672486f9b8765bb057f4982cb9bf3ca022dc1b1f86d72e8ffdecc928bc86ab1b895c1a9c1e0a7c77d92ac3d88020c1af48994d32766f2aa3d7e36f40392a068c0e5c57cbf6cce42cbacc8c88ae06fa3104f4eb365c453296fc8f1ddf080e4943708f07ad0f1e01607207a84c59c03b9e462b884147ff4baa2e031e6199d0dccfc4b59f4003e0cd73d8c7cb918087c828782e51b01be0fa198a86b9f9122f98d667c776b40b3efdad60ed1b7c0e9d969a1ffaac4b04ea61ba533241b4d4e6d504c12f71d902371f29c3781f4ca1157bb3e4f1d48a24916933a80e11d90319e3f49a715ac431382e7282692f5d2530c3c6c2e3e4fab806efc109da33313435b26db0fcff6509ed41b85f3d5732fc3f4288516959111b11832b9a1c9a9bcb0bb7105bcd15219390be509103990479dec11a89552d0fb03b75641594312445f3721dfc7396417cd445dc3bedae6c27af8954a041a2c9a9e04d9cef662697eeea0663fac34eeeb16ccbfe8dcd1c1e15bb4cf2a93586495388a116b5807943513c46e4b257472d884b93fdafd1e20aa529ed8a5f3ff14dc6ad9d6225c19a08246b3c144f20a67a838f96ddd5557a383ff95d49d4f36e7a436a392b6aee7c8e0f1fb75bb3f524bc183f2bc915199d392505f4fa02b98e8c330dc2928ba930268c6a2c75642674401c8655367adb82521bf6e7351af730023e9b1da778fd74217a18b12894c2b70fa748306edc790f5bdafa1b3b8fcc28c9632c6058b53ef56654e97771a50e85ec55d611d613563cc10f93b5e82d024952318d2a637edfc0167f60aed3fbf04709129f0f53e43e44eea8cced5b01b46a998cbd33c145347e4fd6b37af179273a5a400591a4918892e0572a8a283f16e3d5c6e0fbc9ea56f6d8a5c0d6d64ec4d2a553d0007a407959fa6313ec8f7dff8abe9db2ef6ae11e111b34abb5fce7b60ae719abd9582eb249480e1f9c41093b5702bfb526926df3348247893dcdd8dca17e9945caac32123bd64e4bbefe873b376cbc63e959cd337a370a01d5b9afa2fa926c00809b5a573bb1ad5493a4a4b5d68f2017a0dfbd34d59482b4cc4ffd91ab3b413c487e94947983be10b3d122410ebcfa080284a11e2ee342b0fedd6a00a62a00825624d1d48b967bd09c5c637a99a97dbf0ab9e5242f40dbf387505a88c77b8a6000adcdae3de647432671b7e0ebff100160182d176f79235b399d57001a7387ce7593ff9d667a8f183bcc5ad339566cc3302bc02b235eeb0f3be6f55537776685318dcc845b6fb766db5f2b7cd483e0c834150f729d9feed630e90214410793e28f2a578f8b39cbbe00553d897fb4c86748c9bf554a3733148297055829096f8bb4b3608a11493e937be6035f25f4073a5b802dac568d12952f7055cf69bfb74f61982baf3e2060f88c34f8a0efc13f0a63a65cf45f5f1cea69e2c54b2f591fb6f57634376d148edffea1426b0befa57a67b26d102289a2766c66c747fd26fc25d2189e3f5853e937ab0196f98dd937c315e1ce01fb1701a7460182d7bab630d2f6859567774b36c229a2478a8b0516a80778aa42cfb7fff96cbb346ff09248416f3d923c734a733f96c86a7fca7ea0e7262bd2f404ba64068ae1dbdfbf8f2c7d9a4481fded33f1a1f868e83fa7690590e9b06c8d9bdad0663ad6507285e622ef1b19545361466bdb31329e6caecec4c7a4d55ed5df61ed46af797d77e4c0ba590bd9515235a261be3cc2aee82ef0e96a549f0a5662b70a1469c9abd60478c407b49cf986a6b9a0ff24ad70e08e0672a7ba43b73dcb72cc16f473ea0288096c18629258a53d6d7eb92b721e1c4def0e4549626969bab59ecbadd77de3e9a43470279ac4a8e771d56075f4a1feb4ba8ae57f9f4c19766355bff05aa3908bfadab85e6f3809b2a96c944ceab65867dacdd1b2b3b96afbfa0003122633f3c6cc425e269b0c23c58ec7b2cb8efc422cea9b4bc5115bc020b6fa711c01c911aaca01f60cf7005e8b808a0163ee5b74893c4e37367f68b13dc82779f152f1b0ba32ca053eb65ea973e21df7d7f1b73c7296e883084931c3cc85a1a5798932b8e0359c395ba372c4506e7a29120a4db6cd5184eb85cc0474b021b29ca43217e65f94751bf8212365c6191de57495468059e541f91dc40f97259490d1e827c1b1e722e902d111d343779731cc6c32fd6ab75170b4e121e7a2dc7182005031ca4725bd7ac3f9a9ec7bb2f84819b2b137a3d8f0df90f054461b35fa0604d1cac40abe6b0aec7eaa4f8a39d75be1f3e8fb9351ca043d5ebb649868cf93d5771235e6b28691c247e7eb277f8ad9fea554923fe26c47aa1193ac2fad6805341892d6fa68280f6d636450b4130aeda673b3fa56eae28e16d8daf9fb758c28d002e6c6152aba0f44bccce6e0fd748b501b39dd7cb5d0dad27de8f92e6172dc8ab20b61a7cfbbd757c09a86a50d40c4386de409fd37801dc3652d98777fb575050aeeea0c45facf1e2f06c9f1a7a2c2aa058d72bf5065255ecb65aebe3f968058bcc507cc667bd55c12711770dd9170c1038694707face98ed730e7b2a464dde146e9aae12a72aa7c8d33731d443e2fbfc2ff19f8380f27cf6204004f33bd0db2e35d873c1c9df8942deadbedd4d5f92bb241ab52113113c42f36e71afd05ee5054deeb849dbee367cfb660a206e788bf48952e83d5c1ccda25b150a6dc1d5587d523387ce417dc6e44d63b93a082c97a28ba908ab5f30e8e0db07dc71768c9de0116438550c49aed8611e3aca4e22075bbb93f2df0f88bc2f87636e2dafd779d774f2ca348f82f016d8a0cbfbd2925a719ae4e8d916a069c691c5ba75b08b1e13937f5b3c8387629ba658b24f70ab6d8f3666273499432069e98b806bace1cb3fdf73d2cf21a6a63152a0f22a15d8d584a740179624effdea64334e4f57f36e94b363f74a51ce544314af538201f8df0eb93a07733ae5d304892a7243ff6dbd3f2dae5798cad2a20f08669c66950a3824729dee1215d9615583d81008265a7e25374f39274fb33e5d602795fb22ed25a825149a3d50e72c488b7593d1388e8d9f012dd54405084c684112d029f253707390cc6106dc3a8cdc38bf1718ea7879a45edc54ff6c0df8c395c3ab79e724abdc6fca995505402f9a8eaa94c7b38b89887f19ff1b482bad3a9e49eb66cb3fb1df2098e0f0f8fa241941ab9b927c25d3d39efa9b6b5a1d86a01b9d06eb149ae2594348de095564e4e04b46001b020dbb8beba7b8d2e59d8efd28578b57b461f38edda73f3fdcdece84b0e5870957de74064ab1bd13439a6c0782ce84224bab7a4ce543376f4c2df4b72cac174ed952598ded5a0e57202cd8c3611844fc701a1e161649a35deb20cf6859f44a95de9a960474ff5445df7baa98670ae5f92f227aa69e7e4733f5e890a15beb41ec38f1019432c337415808a00f8fcd59e7c4248aad80a0b1563681fe6ca846060c0add81a65c048e3ad6558d6b89e79c64787d339dbf03fd78109850ec3217738bd8dc39f9cb281475333bbd1b0098daf3404f7002db57475b2805cdf84f98a7bd4c23bd0402a857327ecfee617d0ae5a3cf03d86f8ca7a5eaac32fe61a7f81e7d77b27af3bd8badda52f44d55fe86005e4d1959671fde76c85b91bd166096852b2f2e397871a7ebbeb2dce5a7257cd1599ba", 0x1000, 0x6}], 0x2084, &(0x7f0000000480)={[{}, {'\xec]%'}, {'bridge\x00'}, {'bridge\x00'}, {'\\'}, {'('}, {':@:%{'}, {'\x93+@'}, {'bridge\x00'}, {'bridge\x00'}], [{@obj_type={'obj_type', 0x3d, '-,,'}}, {@seclabel='seclabel'}, {@appraise='appraise'}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@measure='measure'}, {@subj_type={'subj_type', 0x3d, 'bridge\x00'}}]}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x80, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) prctl$PR_SET_FPEXC(0xc, 0x100000) fcntl$setpipe(r2, 0x407, 0x7) ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, &(0x7f0000002580)={0x0, 0x8001, 0x0, [0x5ad, 0x0, 0x1, 0x7, 0x2], [0x7f, 0x401, 0x1ff, 0x9, 0x100, 0x20, 0x7f, 0x2, 0xb83b, 0x0, 0x6, 0x3f, 0xfa, 0x6, 0x8, 0x7f, 0xd615, 0xaa2, 0xfffffffffffffff7, 0x41, 0x81, 0x0, 0x9, 0x7ff, 0x0, 0x80000001, 0x8001, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x9, 0x1f, 0x0, 0x81, 0xae1, 0x7666, 0x80, 0xffffffffffff8001, 0x6fb17fc0, 0x1000, 0xfffffffffffffff9, 0x3, 0x7fffffff, 0x4, 0x40, 0x6, 0x3, 0x0, 0x7, 0x3, 0x3f, 0x3, 0x63cf, 0x6, 0xfff, 0x7f, 0x5, 0x81, 0x4, 0x6, 0x1, 0x4, 0x5, 0xecab, 0x66, 0x100000000, 0x3ff, 0x0, 0x7, 0x7fff, 0x2, 0x8, 0x1000, 0x39, 0x200, 0x1, 0x3, 0x7, 0xfffffffffffffffb, 0x5, 0x3f, 0x8001, 0x1d800, 0xb6f, 0x4, 0x40b2, 0x7, 0x7, 0x80, 0x2, 0x9, 0x4, 0x7, 0x8, 0x0, 0x7fff, 0x7fff, 0x100000000, 0x7, 0x4, 0x99, 0x8000, 0xffff, 0x7f, 0x800, 0x8, 0x3, 0x7, 0x3, 0x53, 0xf8a, 0x7f, 0x5cb3, 0x80, 0x8, 0x800, 0x9, 0x6c9b]}) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) preadv(r3, &(0x7f0000003c80)=[{&(0x7f00000029c0)=""/180, 0xb4}, {&(0x7f0000000500)=""/16, 0x10}, {&(0x7f0000002a80)=""/207, 0xcf}, {&(0x7f0000002b80)=""/221, 0xdd}, {&(0x7f0000002c80)=""/4096, 0x1000}], 0x5, 0xfb48, 0xfffffffb) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) accept$alg(r4, 0x0, 0x0) [ 270.004320] Unknown ioctl 8838 04:36:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) accept$inet(r0, 0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) fstat(r2, &(0x7f00000000c0)) 04:36:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup2(r0, r0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000100)={0x8, [0x8, 0x8, 0x0, 0x7fff, 0x4, 0x9, 0x1, 0x401]}, 0x14) sendmsg$TIPC_NL_PEER_REMOVE(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c02e80000", @ANYRES16=0x0, @ANYBLOB="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"], 0x28c}, 0x1, 0x0, 0x0, 0x800}, 0x800) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000008000"], 0x3c}}, 0x0) [ 270.050133] FAULT_INJECTION: forcing a failure. [ 270.050133] name failslab, interval 1, probability 0, space 0, times 0 [ 270.088721] CPU: 1 PID: 19100 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 270.096639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.105990] Call Trace: [ 270.108583] dump_stack+0x1b2/0x283 [ 270.112225] should_fail.cold+0x10a/0x154 [ 270.116382] should_failslab+0xd6/0x130 [ 270.120364] kmem_cache_alloc+0x28e/0x3c0 [ 270.124520] __kernfs_new_node+0x6f/0x470 [ 270.128675] kernfs_new_node+0x7b/0xe0 [ 270.132570] __kernfs_create_file+0x3d/0x320 [ 270.137017] sysfs_add_file_mode_ns+0x1e1/0x450 [ 270.141697] ? kernfs_create_dir_ns+0x171/0x200 [ 270.146373] internal_create_group+0x22b/0x710 [ 270.150958] sysfs_create_groups+0x92/0x127 [ 270.155285] device_add+0x879/0x15c0 [ 270.159013] ? device_is_dependent+0x270/0x270 [ 270.163607] netdev_register_kobject+0x181/0x410 [ 270.168370] register_netdevice+0x955/0xe40 [ 270.172697] ? netdev_change_features+0xa0/0xa0 [ 270.177373] br_dev_newlink+0x23/0x100 [ 270.181267] rtnl_newlink+0xf88/0x1830 [ 270.185192] ? __lock_acquire+0x5fc/0x3f20 [ 270.189444] ? br_changelink+0x1570/0x1570 [ 270.193684] ? kmem_cache_free+0x7c/0x2b0 [ 270.197831] ? rtnl_dellink+0x6a0/0x6a0 [ 270.201811] ? trace_hardirqs_on+0x10/0x10 [ 270.206046] ? netlink_deliver_tap+0x60c/0x7d0 [ 270.210630] ? netlink_unicast+0x485/0x610 [ 270.214866] ? netlink_sendmsg+0x62e/0xb80 [ 270.219105] ? ___sys_sendmsg+0x660/0x800 [ 270.223270] ? __sys_sendmsg+0xa3/0x120 [ 270.227281] ? SyS_sendmsg+0x27/0x40 [ 270.230996] ? lock_acquire+0x170/0x3f0 [ 270.234958] ? lock_downgrade+0x740/0x740 [ 270.239101] ? rtnl_dellink+0x6a0/0x6a0 [ 270.243058] rtnetlink_rcv_msg+0x3be/0xb10 [ 270.247291] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 270.251781] ? __netlink_lookup+0x345/0x5d0 [ 270.256089] ? netdev_pick_tx+0x2e0/0x2e0 [ 270.260263] netlink_rcv_skb+0x125/0x390 [ 270.264317] ? memcpy+0x35/0x50 [ 270.267586] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 270.272067] ? netlink_ack+0x9a0/0x9a0 [ 270.275942] netlink_unicast+0x437/0x610 [ 270.280025] ? netlink_sendskb+0xd0/0xd0 [ 270.284077] ? __check_object_size+0x179/0x22c [ 270.288649] netlink_sendmsg+0x62e/0xb80 [ 270.292694] ? nlmsg_notify+0x170/0x170 [ 270.296661] ? kernel_recvmsg+0x210/0x210 [ 270.301018] ? security_socket_sendmsg+0x83/0xb0 [ 270.305765] ? nlmsg_notify+0x170/0x170 [ 270.309732] sock_sendmsg+0xb5/0x100 [ 270.313439] ___sys_sendmsg+0x6c8/0x800 [ 270.317406] ? get_pid_task+0x91/0x130 [ 270.321291] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 270.326039] ? lock_downgrade+0x740/0x740 [ 270.330179] ? __fget+0x1fe/0x360 [ 270.333625] ? lock_acquire+0x170/0x3f0 [ 270.337590] ? lock_downgrade+0x740/0x740 [ 270.341724] ? __fget+0x225/0x360 [ 270.345170] ? __fdget+0x196/0x1f0 [ 270.348733] ? sockfd_lookup_light+0xb2/0x160 [ 270.353208] __sys_sendmsg+0xa3/0x120 [ 270.357006] ? SyS_shutdown+0x160/0x160 [ 270.360990] ? wait_for_completion_io+0x10/0x10 [ 270.365655] ? SyS_read+0x210/0x210 [ 270.369270] ? SyS_clock_settime+0x1a0/0x1a0 [ 270.373672] SyS_sendmsg+0x27/0x40 [ 270.377215] ? __sys_sendmsg+0x120/0x120 [ 270.381257] do_syscall_64+0x1d5/0x640 [ 270.385142] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 270.390321] RIP: 0033:0x45e0f9 [ 270.393498] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:18 executing program 1 (fault-call:2 fault-nth:61): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 270.401202] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 270.408461] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 270.415720] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 270.422974] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003c [ 270.430296] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:18 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) ioctl$SNAPSHOT_UNFREEZE(r2, 0x3302) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) getsockopt$sock_buf(r3, 0x1, 0x1a, &(0x7f0000000080)=""/99, &(0x7f0000000100)=0x63) fstat(r2, 0x0) setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000000)=[0x2], 0x2) [ 270.490106] FAULT_INJECTION: forcing a failure. [ 270.490106] name failslab, interval 1, probability 0, space 0, times 0 [ 270.517405] CPU: 1 PID: 19135 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 270.525309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.534664] Call Trace: 04:36:18 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x20, 0x10, 0xffffff1f, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x10000}}, 0x20}}, 0x0) 04:36:18 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000000)={[{0x5, 0x0, 0x6, 0x4, 0x4, 0x0, 0x9, 0xff, 0x9, 0xfd, 0xa1, 0x0, 0x4}, {0x5, 0x9dfd, 0x7f, 0x3, 0x0, 0xff, 0xff, 0xe0, 0x2, 0x7b, 0x0, 0x4}, {0x100, 0x1f, 0x80, 0x9, 0x81, 0x4, 0x1f, 0x3f, 0x81, 0x59, 0x10, 0x2, 0x81}], 0x7ff}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 270.537254] dump_stack+0x1b2/0x283 [ 270.540912] should_fail.cold+0x10a/0x154 [ 270.545070] should_failslab+0xd6/0x130 [ 270.549054] kmem_cache_alloc+0x28e/0x3c0 [ 270.553215] __kernfs_new_node+0x6f/0x470 [ 270.557376] kernfs_new_node+0x7b/0xe0 [ 270.561270] __kernfs_create_file+0x3d/0x320 [ 270.565687] sysfs_add_file_mode_ns+0x1e1/0x450 [ 270.570367] ? kernfs_create_dir_ns+0x171/0x200 [ 270.575039] internal_create_group+0x22b/0x710 [ 270.579628] sysfs_create_groups+0x92/0x127 [ 270.583976] device_add+0x879/0x15c0 [ 270.587696] ? device_is_dependent+0x270/0x270 [ 270.592285] netdev_register_kobject+0x181/0x410 [ 270.597047] register_netdevice+0x955/0xe40 [ 270.601377] ? netdev_change_features+0xa0/0xa0 [ 270.606089] br_dev_newlink+0x23/0x100 [ 270.610004] rtnl_newlink+0xf88/0x1830 [ 270.613932] ? br_changelink+0x1570/0x1570 [ 270.618164] ? mark_held_locks+0xa6/0xf0 [ 270.622257] ? rtnl_dellink+0x6a0/0x6a0 [ 270.626235] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 270.631256] ? _raw_spin_unlock_irq+0x5a/0x80 [ 270.635799] ? rtnl_dellink+0x6a0/0x6a0 [ 270.639776] rtnetlink_rcv_msg+0x3be/0xb10 [ 270.644016] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 270.648511] ? __netlink_lookup+0x345/0x5d0 [ 270.652835] ? netdev_pick_tx+0x2e0/0x2e0 [ 270.656991] netlink_rcv_skb+0x125/0x390 [ 270.661061] ? memcpy+0x35/0x50 [ 270.664370] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 270.668953] ? netlink_ack+0x9a0/0x9a0 [ 270.672854] netlink_unicast+0x437/0x610 [ 270.676919] ? netlink_sendskb+0xd0/0xd0 [ 270.681007] ? __check_object_size+0x179/0x22c [ 270.685592] netlink_sendmsg+0x62e/0xb80 [ 270.689645] ? nlmsg_notify+0x170/0x170 [ 270.693615] ? kernel_recvmsg+0x210/0x210 [ 270.697784] ? security_socket_sendmsg+0x83/0xb0 [ 270.702676] ? nlmsg_notify+0x170/0x170 [ 270.706639] sock_sendmsg+0xb5/0x100 [ 270.710343] ___sys_sendmsg+0x6c8/0x800 [ 270.714302] ? get_pid_task+0x91/0x130 [ 270.718171] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 270.722927] ? lock_downgrade+0x740/0x740 [ 270.727073] ? __fget+0x1fe/0x360 [ 270.730524] ? lock_acquire+0x170/0x3f0 [ 270.734580] ? lock_downgrade+0x740/0x740 [ 270.738724] ? __fget+0x225/0x360 [ 270.742160] ? __fdget+0x196/0x1f0 [ 270.745715] ? sockfd_lookup_light+0xb2/0x160 [ 270.750217] __sys_sendmsg+0xa3/0x120 [ 270.754023] ? SyS_shutdown+0x160/0x160 [ 270.757998] ? wait_for_completion_io+0x10/0x10 [ 270.762663] ? SyS_read+0x210/0x210 [ 270.766278] ? SyS_clock_settime+0x1a0/0x1a0 [ 270.770691] SyS_sendmsg+0x27/0x40 [ 270.774229] ? __sys_sendmsg+0x120/0x120 [ 270.778317] do_syscall_64+0x1d5/0x640 [ 270.782206] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 270.787386] RIP: 0033:0x45e0f9 [ 270.790584] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 270.798301] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 270.805568] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 270.812916] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 270.820168] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003d [ 270.827423] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:18 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0}, &(0x7f0000000040)=0x14, 0x80800) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20060}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @erspan={{0xb, 0x1, 'erspan\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x2e}}, @IFLA_GRE_LINK={0x8, 0x1, r1}]}}}]}, 0x44}}, 0xc001) ioctl$VHOST_GET_VRING_BASE(0xffffffffffffffff, 0xc008af12, &(0x7f0000000080)) 04:36:18 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000000000)) 04:36:18 executing program 1 (fault-call:2 fault-nth:62): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:18 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$PPPIOCGL2TPSTATS(r2, 0x80487436, &(0x7f0000000100)="69034b5fd77eae10e1b0c128140f73bc18ef8e0345fed40a301e91e232208d2d26f33288596d78be48d18c61023e4953bb3ed3eb156d8b1e84354dbe111af219bbb102f826a7d267449850cf91bf32a8c6a04aabdd1dac211fbc617fcf7f2aedc39af180dbc497f0cb9ab7531eb801c0fefe99f7c1210e7560623dccdf5809cb10dfc2058642270f73157084cd2a1c94d28bcec656b8c746f442d6ee09b750f95a4c9ba0865fae061516bd9b2b3dbb620bed5f8a3cfc621e106237772c050c63150748f8e7f0f394e956633d417a1f9121cedf91df5615b752") sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00010010001fff000300000000000000000000c10707475a818456451ee806ef211e20a04f9704d035d4b83ee923ee39eb0ad1bf6fc0e494b84b48e7dae1860ce9ced0593352576fb51f4c76f6802d2e8d3acbdf2cd29a679c767588296ecf046ed264ace5085dba57f6b18ee09f02e70e25315ec71e2d178bb474171240a9c13abd05b04daa19e83918830f76d033ebdb7568c18ea272b342e617ee2c41fb1a1675a41d6d6c019a7a6157680214e1647db154189df8c11f6fd30fe7770a4c3f5e18821ac5f3e8d27943c307d05ac50e7ce3a52cb44ee398936dd77f6da5d315117b93", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) [ 270.898072] FAULT_INJECTION: forcing a failure. [ 270.898072] name failslab, interval 1, probability 0, space 0, times 0 [ 270.928567] CPU: 1 PID: 19156 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 270.936474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.945822] Call Trace: [ 270.948411] dump_stack+0x1b2/0x283 [ 270.952045] should_fail.cold+0x10a/0x154 [ 270.956208] should_failslab+0xd6/0x130 [ 270.960186] kmem_cache_alloc+0x28e/0x3c0 [ 270.964337] __kernfs_new_node+0x6f/0x470 [ 270.968516] kernfs_new_node+0x7b/0xe0 [ 270.972410] __kernfs_create_file+0x3d/0x320 [ 270.976826] sysfs_add_file_mode_ns+0x1e1/0x450 [ 270.981494] ? kernfs_create_dir_ns+0x171/0x200 [ 270.986169] internal_create_group+0x22b/0x710 [ 270.990759] sysfs_create_groups+0x92/0x127 [ 270.995090] device_add+0x879/0x15c0 [ 270.998812] ? device_is_dependent+0x270/0x270 [ 271.003403] netdev_register_kobject+0x181/0x410 [ 271.008161] register_netdevice+0x955/0xe40 [ 271.012490] ? netdev_change_features+0xa0/0xa0 [ 271.017170] br_dev_newlink+0x23/0x100 [ 271.021073] rtnl_newlink+0xf88/0x1830 [ 271.024989] ? __lock_acquire+0x5fc/0x3f20 [ 271.029238] ? br_changelink+0x1570/0x1570 [ 271.033482] ? kmem_cache_free+0x7c/0x2b0 [ 271.037632] ? rtnl_dellink+0x6a0/0x6a0 [ 271.041610] ? trace_hardirqs_on+0x10/0x10 04:36:18 executing program 5: r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xc00000000, 0x101002) r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r5, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) r6 = signalfd4(r0, &(0x7f0000000040)={[0x8]}, 0x8, 0x80000) bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0xe, 0x2, 0x2b5, 0x5, 0x142, r1, 0x4, [], r5, r6, 0x0, 0x4, 0x2}, 0x40) recvfrom$unix(r0, &(0x7f00000000c0)=""/94, 0x5e, 0x80000001, 0x0, 0x0) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r9, 0x0) [ 271.045873] ? netlink_deliver_tap+0x60c/0x7d0 [ 271.050455] ? netlink_unicast+0x485/0x610 [ 271.054693] ? netlink_sendmsg+0x62e/0xb80 [ 271.058930] ? ___sys_sendmsg+0x660/0x800 [ 271.063082] ? __sys_sendmsg+0xa3/0x120 [ 271.067057] ? SyS_sendmsg+0x27/0x40 [ 271.070810] ? lock_acquire+0x170/0x3f0 [ 271.074808] ? lock_downgrade+0x740/0x740 [ 271.078962] ? rtnl_dellink+0x6a0/0x6a0 [ 271.082937] rtnetlink_rcv_msg+0x3be/0xb10 [ 271.087175] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 271.091665] ? __netlink_lookup+0x345/0x5d0 [ 271.095984] ? netdev_pick_tx+0x2e0/0x2e0 [ 271.100134] netlink_rcv_skb+0x125/0x390 [ 271.104186] ? memcpy+0x35/0x50 [ 271.107456] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 271.111931] ? netlink_ack+0x9a0/0x9a0 [ 271.115824] netlink_unicast+0x437/0x610 [ 271.119881] ? netlink_sendskb+0xd0/0xd0 [ 271.123924] ? __check_object_size+0x179/0x22c [ 271.128489] netlink_sendmsg+0x62e/0xb80 [ 271.132537] ? nlmsg_notify+0x170/0x170 [ 271.136536] ? kernel_recvmsg+0x210/0x210 [ 271.140685] ? security_socket_sendmsg+0x83/0xb0 [ 271.145437] ? nlmsg_notify+0x170/0x170 [ 271.149391] sock_sendmsg+0xb5/0x100 [ 271.153087] ___sys_sendmsg+0x6c8/0x800 [ 271.157051] ? get_pid_task+0x91/0x130 [ 271.160930] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 271.165670] ? lock_downgrade+0x740/0x740 [ 271.169805] ? __fget+0x1fe/0x360 [ 271.173248] ? lock_acquire+0x170/0x3f0 [ 271.177217] ? lock_downgrade+0x740/0x740 [ 271.181467] ? __fget+0x225/0x360 [ 271.184905] ? __fdget+0x196/0x1f0 [ 271.188461] ? sockfd_lookup_light+0xb2/0x160 [ 271.192960] __sys_sendmsg+0xa3/0x120 [ 271.196757] ? SyS_shutdown+0x160/0x160 [ 271.200729] ? wait_for_completion_io+0x10/0x10 [ 271.205395] ? SyS_read+0x210/0x210 [ 271.209003] ? SyS_clock_settime+0x1a0/0x1a0 [ 271.213401] SyS_sendmsg+0x27/0x40 [ 271.216936] ? __sys_sendmsg+0x120/0x120 [ 271.220997] do_syscall_64+0x1d5/0x640 [ 271.224884] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 271.230056] RIP: 0033:0x45e0f9 [ 271.233228] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 271.240915] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 04:36:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00'/13, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:19 executing program 1 (fault-call:2 fault-nth:63): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 271.248182] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 271.255526] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 271.262900] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003e [ 271.270182] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x3c, 0xe, 0x6, 0x201, 0x0, 0x0, {0xc, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4004000) 04:36:19 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x25dfdbff, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6, 0x6, 0x432c}]}}}]}, 0x3c}}, 0x0) [ 271.314323] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 271.357503] FAULT_INJECTION: forcing a failure. [ 271.357503] name failslab, interval 1, probability 0, space 0, times 0 [ 271.370813] CPU: 1 PID: 19194 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 271.378701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 271.388048] Call Trace: [ 271.390640] dump_stack+0x1b2/0x283 [ 271.394273] should_fail.cold+0x10a/0x154 [ 271.398429] should_failslab+0xd6/0x130 [ 271.402415] kmem_cache_alloc+0x28e/0x3c0 [ 271.406574] __kernfs_new_node+0x6f/0x470 [ 271.410727] kernfs_new_node+0x7b/0xe0 [ 271.414606] __kernfs_create_file+0x3d/0x320 [ 271.418997] sysfs_add_file_mode_ns+0x1e1/0x450 [ 271.423657] ? kernfs_create_dir_ns+0x171/0x200 [ 271.428327] internal_create_group+0x22b/0x710 [ 271.432902] sysfs_create_groups+0x92/0x127 [ 271.437214] device_add+0x879/0x15c0 [ 271.440921] ? device_is_dependent+0x270/0x270 [ 271.445499] netdev_register_kobject+0x181/0x410 [ 271.450247] register_netdevice+0x955/0xe40 [ 271.454555] ? netdev_change_features+0xa0/0xa0 [ 271.459206] br_dev_newlink+0x23/0x100 [ 271.463077] rtnl_newlink+0xf88/0x1830 [ 271.466979] ? __lock_acquire+0x5fc/0x3f20 [ 271.471211] ? br_changelink+0x1570/0x1570 [ 271.475428] ? kmem_cache_free+0x7c/0x2b0 [ 271.479572] ? rtnl_dellink+0x6a0/0x6a0 [ 271.483536] ? trace_hardirqs_on+0x10/0x10 [ 271.487774] ? netlink_deliver_tap+0x60c/0x7d0 [ 271.492368] ? netlink_unicast+0x485/0x610 [ 271.496582] ? netlink_sendmsg+0x62e/0xb80 [ 271.500818] ? ___sys_sendmsg+0x660/0x800 [ 271.504982] ? __sys_sendmsg+0xa3/0x120 [ 271.508947] ? SyS_sendmsg+0x27/0x40 [ 271.512661] ? lock_acquire+0x170/0x3f0 [ 271.516637] ? lock_downgrade+0x740/0x740 [ 271.520769] ? rtnl_dellink+0x6a0/0x6a0 [ 271.524731] rtnetlink_rcv_msg+0x3be/0xb10 [ 271.528956] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 271.533433] ? __netlink_lookup+0x345/0x5d0 [ 271.537744] ? netdev_pick_tx+0x2e0/0x2e0 [ 271.541883] netlink_rcv_skb+0x125/0x390 [ 271.545929] ? memcpy+0x35/0x50 [ 271.549197] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 271.553675] ? netlink_ack+0x9a0/0x9a0 [ 271.557551] netlink_unicast+0x437/0x610 [ 271.561607] ? netlink_sendskb+0xd0/0xd0 [ 271.565657] ? __check_object_size+0x179/0x22c [ 271.570231] netlink_sendmsg+0x62e/0xb80 [ 271.574276] ? nlmsg_notify+0x170/0x170 [ 271.578232] ? kernel_recvmsg+0x210/0x210 [ 271.582363] ? security_socket_sendmsg+0x83/0xb0 [ 271.587109] ? nlmsg_notify+0x170/0x170 [ 271.591073] sock_sendmsg+0xb5/0x100 [ 271.594768] ___sys_sendmsg+0x6c8/0x800 [ 271.598727] ? get_pid_task+0x91/0x130 [ 271.602596] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 271.607343] ? lock_downgrade+0x740/0x740 [ 271.611484] ? __fget+0x1fe/0x360 [ 271.614917] ? lock_acquire+0x170/0x3f0 [ 271.618870] ? lock_downgrade+0x740/0x740 [ 271.622998] ? __fget+0x225/0x360 [ 271.626445] ? __fdget+0x196/0x1f0 [ 271.629978] ? sockfd_lookup_light+0xb2/0x160 [ 271.634455] __sys_sendmsg+0xa3/0x120 [ 271.638245] ? SyS_shutdown+0x160/0x160 [ 271.642223] ? wait_for_completion_io+0x10/0x10 [ 271.646887] ? SyS_read+0x210/0x210 [ 271.650507] ? SyS_clock_settime+0x1a0/0x1a0 [ 271.654909] SyS_sendmsg+0x27/0x40 [ 271.658442] ? __sys_sendmsg+0x120/0x120 [ 271.662481] do_syscall_64+0x1d5/0x640 [ 271.666364] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 271.671544] RIP: 0033:0x45e0f9 [ 271.674733] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 271.682419] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 271.689667] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 271.696949] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 04:36:19 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x44, 0x10, 0x300, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_MAP={0x24, 0xe, {0x2, 0x400, 0x6, 0xfff, 0x7, 0xd8}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x4000044) 04:36:19 executing program 1 (fault-call:2 fault-nth:64): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 271.704211] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003f [ 271.711468] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 271.741551] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 04:36:19 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000090022007d98d7a7f10031603e8841529e0000"], 0x2c}}, 0x0) 04:36:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000e27019b70010001fff0000000001000000", @ANYRES32=0x0, @ANYRES64=r3, @ANYRESHEX=r1], 0x3c}}, 0x0) 04:36:19 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000000)={{0x89, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e21, 0x4, 'rr\x00', 0x0, 0xfffff7fa, 0x70}, {@broadcast, 0x4e21, 0x2000, 0x4000400, 0x2, 0xddca}}, 0x44) r1 = dup(r0) fcntl$lock(r0, 0x24, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fc) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) accept(r4, 0x0, &(0x7f0000000100)) fstat(r2, 0x0) 04:36:19 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x800000000000002, 0xffffffffffffffff, 0xa) r2 = socket(0x10, 0x803, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r5, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f0000000140)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', r5, 0x4, 0x2, 0x7, 0x0, 0x2, @remote, @empty, 0x80, 0x20, 0xd, 0x6}}) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r6, &(0x7f0000000000)) [ 271.821441] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 271.851504] FAULT_INJECTION: forcing a failure. [ 271.851504] name failslab, interval 1, probability 0, space 0, times 0 04:36:19 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="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"], 0x3c}}, 0x0) [ 271.882767] CPU: 1 PID: 19216 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 271.890676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 271.900028] Call Trace: [ 271.902619] dump_stack+0x1b2/0x283 [ 271.906249] should_fail.cold+0x10a/0x154 [ 271.910460] should_failslab+0xd6/0x130 [ 271.914453] kmem_cache_alloc+0x28e/0x3c0 [ 271.918632] __kernfs_new_node+0x6f/0x470 [ 271.922786] kernfs_new_node+0x7b/0xe0 [ 271.926704] __kernfs_create_file+0x3d/0x320 [ 271.931117] sysfs_add_file_mode_ns+0x1e1/0x450 [ 271.935815] ? kernfs_create_dir_ns+0x171/0x200 [ 271.940499] internal_create_group+0x22b/0x710 [ 271.945090] sysfs_create_groups+0x92/0x127 [ 271.949416] device_add+0x879/0x15c0 [ 271.953138] ? device_is_dependent+0x270/0x270 [ 271.957731] netdev_register_kobject+0x181/0x410 [ 271.962529] register_netdevice+0x955/0xe40 [ 271.966863] ? netdev_change_features+0xa0/0xa0 [ 271.971538] br_dev_newlink+0x23/0x100 [ 271.975459] rtnl_newlink+0xf88/0x1830 [ 271.979387] ? br_changelink+0x1570/0x1570 [ 271.983618] ? mark_held_locks+0xa6/0xf0 [ 271.987676] ? rtnl_dellink+0x6a0/0x6a0 [ 271.991655] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 271.996710] ? _raw_spin_unlock_irq+0x5a/0x80 [ 272.001253] ? rtnl_dellink+0x6a0/0x6a0 [ 272.005231] rtnetlink_rcv_msg+0x3be/0xb10 [ 272.009460] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 272.013945] ? __netlink_lookup+0x345/0x5d0 [ 272.018255] ? netdev_pick_tx+0x2e0/0x2e0 [ 272.022386] netlink_rcv_skb+0x125/0x390 [ 272.026428] ? memcpy+0x35/0x50 [ 272.029727] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 272.034216] ? netlink_ack+0x9a0/0x9a0 [ 272.038113] netlink_unicast+0x437/0x610 [ 272.042193] ? netlink_sendskb+0xd0/0xd0 [ 272.046243] ? __check_object_size+0x179/0x22c [ 272.050818] netlink_sendmsg+0x62e/0xb80 [ 272.054886] ? nlmsg_notify+0x170/0x170 [ 272.058854] ? kernel_recvmsg+0x210/0x210 [ 272.062987] ? security_socket_sendmsg+0x83/0xb0 [ 272.067723] ? nlmsg_notify+0x170/0x170 [ 272.071678] sock_sendmsg+0xb5/0x100 [ 272.075389] ___sys_sendmsg+0x6c8/0x800 [ 272.079358] ? get_pid_task+0x91/0x130 [ 272.083227] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 272.087977] ? lock_downgrade+0x740/0x740 [ 272.092119] ? __fget+0x1fe/0x360 [ 272.095561] ? lock_acquire+0x170/0x3f0 [ 272.099528] ? lock_downgrade+0x740/0x740 [ 272.103670] ? __fget+0x225/0x360 [ 272.107126] ? __fdget+0x196/0x1f0 [ 272.110667] ? sockfd_lookup_light+0xb2/0x160 [ 272.115168] __sys_sendmsg+0xa3/0x120 [ 272.118962] ? SyS_shutdown+0x160/0x160 [ 272.122924] ? wait_for_completion_io+0x10/0x10 [ 272.127609] ? SyS_read+0x210/0x210 [ 272.131271] ? SyS_clock_settime+0x1a0/0x1a0 [ 272.135671] SyS_sendmsg+0x27/0x40 [ 272.139200] ? __sys_sendmsg+0x120/0x120 [ 272.143242] do_syscall_64+0x1d5/0x640 [ 272.147116] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 272.152287] RIP: 0033:0x45e0f9 [ 272.155480] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 272.163192] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 272.170454] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:20 executing program 1 (fault-call:2 fault-nth:65): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$SNDCTL_FM_4OP_ENABLE(0xffffffffffffffff, 0x4004510f, &(0x7f0000000100)=0x7) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000b3cc1c0012800b09000000000000006500000c0002980600060000000000d36e68d3f6a0f58953297ce504419a8e0c385b1dce3d93e5daedcdeb0b758de5a4072b8f930ec0c95e298f625a80a66af62bbd850e15741279f237d480e7cbab8941fb2add4512b441a591868870266765eb1a2145549e9602fecc92f3ec0efbb5d5325fa7887d70"], 0x3c}}, 0x0) [ 272.177703] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 272.184962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000040 [ 272.192227] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 272.218495] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 04:36:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f0000000000)={@multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc) [ 272.291444] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 272.305096] IPVS: set_ctl: invalid protocol: 137 172.30.0.6:20001 [ 272.306162] FAULT_INJECTION: forcing a failure. [ 272.306162] name failslab, interval 1, probability 0, space 0, times 0 [ 272.332186] CPU: 0 PID: 19246 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 272.340075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.349420] Call Trace: [ 272.351999] dump_stack+0x1b2/0x283 [ 272.355622] should_fail.cold+0x10a/0x154 [ 272.359763] should_failslab+0xd6/0x130 [ 272.363728] kmem_cache_alloc+0x28e/0x3c0 [ 272.367871] __kernfs_new_node+0x6f/0x470 [ 272.372010] kernfs_new_node+0x7b/0xe0 [ 272.375889] __kernfs_create_file+0x3d/0x320 [ 272.380314] sysfs_add_file_mode_ns+0x1e1/0x450 [ 272.384975] ? kernfs_create_dir_ns+0x171/0x200 [ 272.389659] internal_create_group+0x22b/0x710 [ 272.394230] sysfs_create_groups+0x92/0x127 [ 272.398534] device_add+0x879/0x15c0 [ 272.402228] ? device_is_dependent+0x270/0x270 [ 272.406794] netdev_register_kobject+0x181/0x410 [ 272.411532] register_netdevice+0x955/0xe40 [ 272.415842] ? netdev_change_features+0xa0/0xa0 [ 272.420498] br_dev_newlink+0x23/0x100 [ 272.424367] rtnl_newlink+0xf88/0x1830 [ 272.428251] ? br_changelink+0x1570/0x1570 [ 272.432471] ? mark_held_locks+0xa6/0xf0 [ 272.436515] ? rtnl_dellink+0x6a0/0x6a0 [ 272.440468] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 272.445465] ? _raw_spin_unlock_irq+0x5a/0x80 [ 272.449983] ? rtnl_dellink+0x6a0/0x6a0 [ 272.453935] rtnetlink_rcv_msg+0x3be/0xb10 [ 272.458168] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 272.462642] ? __netlink_lookup+0x345/0x5d0 [ 272.466945] ? netdev_pick_tx+0x2e0/0x2e0 [ 272.471074] netlink_rcv_skb+0x125/0x390 [ 272.475138] ? memcpy+0x35/0x50 [ 272.478414] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 272.482896] ? netlink_ack+0x9a0/0x9a0 [ 272.486778] netlink_unicast+0x437/0x610 [ 272.490831] ? netlink_sendskb+0xd0/0xd0 [ 272.494885] ? __check_object_size+0x179/0x22c [ 272.499448] netlink_sendmsg+0x62e/0xb80 [ 272.503492] ? nlmsg_notify+0x170/0x170 [ 272.507447] ? kernel_recvmsg+0x210/0x210 [ 272.511605] ? security_socket_sendmsg+0x83/0xb0 [ 272.516374] ? nlmsg_notify+0x170/0x170 [ 272.520341] sock_sendmsg+0xb5/0x100 [ 272.524033] ___sys_sendmsg+0x6c8/0x800 [ 272.527991] ? get_pid_task+0x91/0x130 [ 272.531872] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 272.536610] ? lock_downgrade+0x740/0x740 [ 272.540739] ? __fget+0x1fe/0x360 [ 272.544172] ? lock_acquire+0x170/0x3f0 [ 272.548141] ? lock_downgrade+0x740/0x740 [ 272.552273] ? __fget+0x225/0x360 [ 272.555707] ? __fdget+0x196/0x1f0 [ 272.559238] ? sockfd_lookup_light+0xb2/0x160 [ 272.563716] __sys_sendmsg+0xa3/0x120 [ 272.567504] ? SyS_shutdown+0x160/0x160 [ 272.571464] ? wait_for_completion_io+0x10/0x10 [ 272.576130] ? SyS_read+0x210/0x210 [ 272.579737] ? SyS_clock_settime+0x1a0/0x1a0 [ 272.584125] SyS_sendmsg+0x27/0x40 [ 272.587643] ? __sys_sendmsg+0x120/0x120 [ 272.591711] do_syscall_64+0x1d5/0x640 [ 272.595605] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 272.600775] RIP: 0033:0x45e0f9 [ 272.603943] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 272.611628] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 272.618875] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 272.626121] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 272.633369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000041 04:36:20 executing program 2: ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000000)={0x2, 0x9, 0x4, 0x0, 0x0}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f0000000100)=""/247) ioctl$DRM_IOCTL_MODE_MAP_DUMB(0xffffffffffffffff, 0xc01064b3, &(0x7f0000000040)={r0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) getrlimit(0xa, &(0x7f0000000080)) [ 272.640623] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:20 executing program 1 (fault-call:2 fault-nth:66): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:20 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, &(0x7f0000000000), &(0x7f0000000040)=0x4) fstat(r2, 0x0) [ 272.667599] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 04:36:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000100)={0x5, 0x70, 0x5, 0x80, 0x1b, 0x7f, 0x0, 0x6, 0x30000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, @perf_bp={&(0x7f0000000040), 0xf}, 0x41040, 0x6, 0xfffffffb, 0x1, 0x8289, 0x9f29, 0x20}, 0x0, 0x6, 0xffffffffffffffff, 0x19) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c0000001000f6fbfbdfdfee49f5000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000000)={0x5, 0x8001, 0x53, 0x4, 0x4}) [ 272.741321] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 04:36:20 executing program 0: socket$netlink(0x10, 0x3, 0x14) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x2, 0x100) 04:36:20 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r2, 0x28, &(0x7f0000000040)}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x3ff, 0x408000) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) sendmsg$SEG6_CMD_SET_TUNSRC(r4, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd2c, 0x25dfdbfb, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private0={0xfc, 0x0, [], 0x1}}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x587c}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x38]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0xd7}, @SEG6_ATTR_DST={0x14, 0x1, @local}]}, 0x54}}, 0x1) perf_event_open(0x0, 0x0, 0xf, r3, 0x0) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r5, &(0x7f0000004140)) [ 272.797884] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 272.818703] FAULT_INJECTION: forcing a failure. [ 272.818703] name failslab, interval 1, probability 0, space 0, times 0 04:36:20 executing program 0: fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000000)='trusted.overlay.nlink\x00', &(0x7f0000000040)={'L-', 0x80}, 0x16, 0x3) socket$netlink(0x10, 0x3, 0x1) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r2, @ANYBLOB="600000000000000014001200627269646765eedff1b60c1ffbcb1c859c64f48dc50ff4f610881b1c34c3edebffb515fc515a564bcc6b20cc3edc7eec3fa6bbcf60c7daae893b7c7076"], 0x34}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2c0000001400b59500000000010000000afc0001000000000000986b25cf11eb7ef6bdedfae60dc53de4852b481fa829d830491c9c2f", @ANYRES32=r2, @ANYBLOB="1400020000000000ffff"], 0x2c}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0}, &(0x7f0000000100)=0x14) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)={'ip6gre0\x00', 0x0, 0x4, 0x81, 0x81, 0x7, 0x46, @ipv4={[], [], @loopback}, @empty, 0x8, 0x8, 0xaf7, 0x7}}) r5 = socket(0x10, 0x803, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r8, @ANYBLOB="006feeff0000000014e9c963541194bef32d25b50812000c000100627201006765321d719356a468207e1733eac3b79cae8aa0e1b7c3ff358989ce4d272e088a77d07c3e78cc2c0db4d710f356ffb9ae8b9a3f4c658a0936d9c023d3e1ef24e8dab49ae1a74418f23fc8eb3965ad57a2eb5fd4481a04b90a6bbed38253b8d7fa1787b8eb9d6aa002aa627e3020c4a7f0d08853d80ed593c4823ad63d99bd1f8558ccdb379c86ae69c6c7a147a0eb44"], 0x34}}, 0x0) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) recvmsg$can_raw(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000200)=@can={0x1d, 0x0}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000280)=""/233, 0xe9}, {&(0x7f0000000380)=""/87, 0x57}, {&(0x7f0000000400)=""/84, 0x54}, {&(0x7f0000000480)=""/149, 0x95}, {&(0x7f0000000540)=""/127, 0x7f}, {&(0x7f00000005c0)=""/177, 0xb1}, {&(0x7f0000000680)=""/203, 0xcb}, {&(0x7f0000000780)=""/156, 0x9c}, {&(0x7f0000000840)=""/31, 0x1f}], 0x9, &(0x7f0000000940)}, 0x2023) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000b80)={'syztnl2\x00', &(0x7f0000000ac0)={'syztnl0\x00', 0x0, 0x7, 0x80, 0x5, 0x9, {{0x1e, 0x4, 0x1, 0x4, 0x78, 0x65, 0x0, 0xd4, 0x2f, 0x0, @local, @private=0xa010102, {[@lsrr={0x83, 0xf, 0x13, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @rand_addr=0x64010101]}, @timestamp_addr={0x44, 0x24, 0x67, 0x1, 0x0, [{@loopback, 0xfff}, {@multicast1, 0x1}, {@multicast1, 0x4}, {@rand_addr=0x64010100, 0x7fffffff}]}, @generic={0x7, 0x12, "bd29a790100cd65fccbde07ecf5de861"}, @generic={0x83, 0x4, "26b8"}, @lsrr={0x83, 0x1b, 0x8e, [@local, @loopback, @broadcast, @empty, @multicast2, @dev={0xac, 0x14, 0x14, 0x10}]}]}}}}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000000dc0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000bc0)={0x188, 0x0, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0x188}, 0x1, 0x0, 0x0, 0xc000}, 0x4010) [ 272.847502] CPU: 0 PID: 19269 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 272.855413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.864763] Call Trace: [ 272.867379] dump_stack+0x1b2/0x283 [ 272.871015] should_fail.cold+0x10a/0x154 [ 272.875170] should_failslab+0xd6/0x130 [ 272.879152] kmem_cache_alloc+0x28e/0x3c0 [ 272.883309] __kernfs_new_node+0x6f/0x470 [ 272.887465] kernfs_new_node+0x7b/0xe0 [ 272.891357] __kernfs_create_file+0x3d/0x320 [ 272.895775] sysfs_add_file_mode_ns+0x1e1/0x450 [ 272.900460] ? kernfs_create_dir_ns+0x171/0x200 [ 272.905121] internal_create_group+0x22b/0x710 [ 272.909692] sysfs_create_groups+0x92/0x127 [ 272.914053] device_add+0x879/0x15c0 [ 272.917753] ? device_is_dependent+0x270/0x270 [ 272.922320] netdev_register_kobject+0x181/0x410 [ 272.927074] register_netdevice+0x955/0xe40 [ 272.931388] ? netdev_change_features+0xa0/0xa0 [ 272.936063] br_dev_newlink+0x23/0x100 [ 272.939943] rtnl_newlink+0xf88/0x1830 [ 272.943857] ? br_changelink+0x1570/0x1570 [ 272.948086] ? mark_held_locks+0xa6/0xf0 [ 272.952159] ? rtnl_dellink+0x6a0/0x6a0 [ 272.956134] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 272.961154] ? _raw_spin_unlock_irq+0x5a/0x80 [ 272.965690] ? rtnl_dellink+0x6a0/0x6a0 [ 272.969658] rtnetlink_rcv_msg+0x3be/0xb10 [ 272.973880] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 272.978359] ? __netlink_lookup+0x345/0x5d0 [ 272.982662] ? netdev_pick_tx+0x2e0/0x2e0 [ 272.986802] netlink_rcv_skb+0x125/0x390 [ 272.990866] ? memcpy+0x35/0x50 [ 272.994140] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 272.998654] ? netlink_ack+0x9a0/0x9a0 [ 273.002536] netlink_unicast+0x437/0x610 [ 273.006595] ? netlink_sendskb+0xd0/0xd0 [ 273.010644] ? __check_object_size+0x179/0x22c [ 273.015215] netlink_sendmsg+0x62e/0xb80 [ 273.019268] ? nlmsg_notify+0x170/0x170 [ 273.023234] ? kernel_recvmsg+0x210/0x210 [ 273.027380] ? security_socket_sendmsg+0x83/0xb0 [ 273.032119] ? nlmsg_notify+0x170/0x170 [ 273.036125] sock_sendmsg+0xb5/0x100 [ 273.039840] ___sys_sendmsg+0x6c8/0x800 [ 273.043815] ? get_pid_task+0x91/0x130 [ 273.047704] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 273.052453] ? lock_downgrade+0x740/0x740 [ 273.056598] ? __fget+0x1fe/0x360 [ 273.060064] ? lock_acquire+0x170/0x3f0 [ 273.064067] ? lock_downgrade+0x740/0x740 [ 273.068209] ? __fget+0x225/0x360 [ 273.071654] ? __fdget+0x196/0x1f0 [ 273.075181] ? sockfd_lookup_light+0xb2/0x160 [ 273.079658] __sys_sendmsg+0xa3/0x120 [ 273.083447] ? SyS_shutdown+0x160/0x160 [ 273.087415] ? wait_for_completion_io+0x10/0x10 [ 273.092086] ? SyS_read+0x210/0x210 [ 273.095695] ? SyS_clock_settime+0x1a0/0x1a0 [ 273.100104] SyS_sendmsg+0x27/0x40 [ 273.103658] ? __sys_sendmsg+0x120/0x120 [ 273.107718] do_syscall_64+0x1d5/0x640 [ 273.111617] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 273.116801] RIP: 0033:0x45e0f9 [ 273.119984] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 273.127671] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 273.134920] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 273.142172] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 04:36:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, &(0x7f0000000040)=0x6) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:21 executing program 1 (fault-call:2 fault-nth:67): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 273.149424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000042 [ 273.159452] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:21 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsa\x00', 0x6c2800, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$packet_buf(r2, 0x107, 0x5, &(0x7f0000000140)="a007aafd0e333819e5e4ec107f5f6e5b23c76f262355f7846aba367639038c4a41f8461cb8ee8f4966e9bcef28fa651f29157ec2121c95f084da28d3f1865775df0ff14fa99a5faf035b6cce2a13fa577f7962f8b4bd9158fe0d4764fc18a896b1ed91dffe", 0x65) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x20, 0x10, 0xffffff1f}, 0x20}}, 0x0) [ 273.200230] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 273.220739] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x501400, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) [ 273.293036] FAULT_INJECTION: forcing a failure. [ 273.293036] name failslab, interval 1, probability 0, space 0, times 0 [ 273.335462] CPU: 0 PID: 19311 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 273.343368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 273.352724] Call Trace: [ 273.355318] dump_stack+0x1b2/0x283 [ 273.358951] should_fail.cold+0x10a/0x154 [ 273.363106] should_failslab+0xd6/0x130 [ 273.367086] kmem_cache_alloc+0x28e/0x3c0 [ 273.371241] __kernfs_new_node+0x6f/0x470 [ 273.375396] kernfs_new_node+0x7b/0xe0 [ 273.379292] __kernfs_create_file+0x3d/0x320 [ 273.383708] sysfs_add_file_mode_ns+0x1e1/0x450 [ 273.388382] ? kernfs_create_dir_ns+0x171/0x200 [ 273.393058] internal_create_group+0x22b/0x710 [ 273.397649] sysfs_create_groups+0x92/0x127 [ 273.401978] device_add+0x879/0x15c0 [ 273.405696] ? device_is_dependent+0x270/0x270 [ 273.410288] netdev_register_kobject+0x181/0x410 [ 273.415051] register_netdevice+0x955/0xe40 [ 273.419389] ? netdev_change_features+0xa0/0xa0 [ 273.424066] br_dev_newlink+0x23/0x100 [ 273.427958] rtnl_newlink+0xf88/0x1830 [ 273.431877] ? __lock_acquire+0x5fc/0x3f20 [ 273.436123] ? br_changelink+0x1570/0x1570 [ 273.440358] ? kmem_cache_free+0x7c/0x2b0 [ 273.444505] ? rtnl_dellink+0x6a0/0x6a0 [ 273.448480] ? trace_hardirqs_on+0x10/0x10 [ 273.452712] ? netlink_deliver_tap+0x60c/0x7d0 [ 273.457295] ? netlink_unicast+0x485/0x610 [ 273.461526] ? netlink_sendmsg+0x62e/0xb80 [ 273.465764] ? ___sys_sendmsg+0x660/0x800 [ 273.469912] ? __sys_sendmsg+0xa3/0x120 [ 273.473885] ? SyS_sendmsg+0x27/0x40 [ 273.477647] ? lock_acquire+0x170/0x3f0 [ 273.481623] ? lock_downgrade+0x740/0x740 [ 273.485774] ? rtnl_dellink+0x6a0/0x6a0 [ 273.489750] rtnetlink_rcv_msg+0x3be/0xb10 [ 273.493990] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 273.498489] ? __netlink_lookup+0x345/0x5d0 [ 273.502813] ? netdev_pick_tx+0x2e0/0x2e0 [ 273.506966] netlink_rcv_skb+0x125/0x390 [ 273.511025] ? memcpy+0x35/0x50 [ 273.514307] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 273.518803] ? netlink_ack+0x9a0/0x9a0 [ 273.522700] netlink_unicast+0x437/0x610 [ 273.526765] ? netlink_sendskb+0xd0/0xd0 [ 273.530825] ? __check_object_size+0x179/0x22c [ 273.535408] netlink_sendmsg+0x62e/0xb80 [ 273.539472] ? nlmsg_notify+0x170/0x170 [ 273.543445] ? kernel_recvmsg+0x210/0x210 [ 273.547602] ? security_socket_sendmsg+0x83/0xb0 [ 273.552390] ? nlmsg_notify+0x170/0x170 [ 273.556366] sock_sendmsg+0xb5/0x100 [ 273.560081] ___sys_sendmsg+0x6c8/0x800 [ 273.564056] ? get_pid_task+0x91/0x130 [ 273.567943] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 273.572703] ? lock_downgrade+0x740/0x740 [ 273.576883] ? __fget+0x1fe/0x360 [ 273.580340] ? lock_acquire+0x170/0x3f0 [ 273.584315] ? lock_downgrade+0x740/0x740 [ 273.588463] ? __fget+0x225/0x360 [ 273.591919] ? __fdget+0x196/0x1f0 [ 273.595461] ? sockfd_lookup_light+0xb2/0x160 [ 273.599957] __sys_sendmsg+0xa3/0x120 [ 273.603768] ? SyS_shutdown+0x160/0x160 [ 273.607762] ? wait_for_completion_io+0x10/0x10 [ 273.612437] ? SyS_read+0x210/0x210 [ 273.616061] ? SyS_clock_settime+0x1a0/0x1a0 [ 273.620472] SyS_sendmsg+0x27/0x40 [ 273.624013] ? __sys_sendmsg+0x120/0x120 [ 273.628074] do_syscall_64+0x1d5/0x640 [ 273.631968] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 273.637158] RIP: 0033:0x45e0f9 [ 273.640342] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 273.648049] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 273.655343] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 273.662608] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 273.669873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000043 [ 273.677138] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:21 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, &(0x7f0000000080)={0x1, 0x30, [], 0x1, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$FIOCLEX(r1, 0x5451) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0) ioctl$GIO_FONT(r2, 0x4b60, &(0x7f0000000000)) fstat(r2, &(0x7f0000004140)) 04:36:21 executing program 1 (fault-call:2 fault-nth:68): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2040}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MAX_AGE={0x8, 0x3, 0x1c}]}}}]}, 0x3c}}, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) 04:36:21 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1800}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 04:36:21 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x3, 0xc00) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000000)=0x1) 04:36:21 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000080)={'geneve1\x00', {0x2, 0x0, @multicast2}}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000003a712800b00010062726964596500000c040000000000000000000008d7bb01f246405f1df8696ce4962d43c03310c894a7046902a99685be136d3d43d25fe2a17602fbc4c8c78a494103ef336d3bf05989339210408e0ae856316c48d1d6"], 0x3c}}, 0x0) [ 273.867561] FAULT_INJECTION: forcing a failure. [ 273.867561] name failslab, interval 1, probability 0, space 0, times 0 [ 273.902061] CPU: 1 PID: 19338 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 273.909979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 273.919336] Call Trace: [ 273.921930] dump_stack+0x1b2/0x283 [ 273.925572] should_fail.cold+0x10a/0x154 [ 273.929726] should_failslab+0xd6/0x130 [ 273.933707] kmem_cache_alloc+0x28e/0x3c0 [ 273.937891] __kernfs_new_node+0x6f/0x470 [ 273.942049] kernfs_new_node+0x7b/0xe0 [ 273.945945] __kernfs_create_file+0x3d/0x320 [ 273.950358] sysfs_add_file_mode_ns+0x1e1/0x450 [ 273.955029] ? kernfs_create_dir_ns+0x171/0x200 [ 273.959700] internal_create_group+0x22b/0x710 04:36:21 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x62a242, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) r3 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r3, 0x208200) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000061bc0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x0, "e8ac3abdcaaabc"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f0000058780)={0x400, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x7f, "4d88597796304c"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f00000000c0)={r4, 0x0, "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", "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"}) r5 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r6, 0x0) [ 273.964313] sysfs_create_groups+0x92/0x127 [ 273.968637] device_add+0x879/0x15c0 [ 273.972380] ? device_is_dependent+0x270/0x270 [ 273.976988] netdev_register_kobject+0x181/0x410 [ 273.981743] register_netdevice+0x955/0xe40 [ 273.986064] ? netdev_change_features+0xa0/0xa0 [ 273.990739] br_dev_newlink+0x23/0x100 [ 273.994652] rtnl_newlink+0xf88/0x1830 [ 273.998581] ? br_changelink+0x1570/0x1570 [ 274.002815] ? mark_held_locks+0xa6/0xf0 [ 274.006872] ? rtnl_dellink+0x6a0/0x6a0 [ 274.010841] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 274.015864] ? _raw_spin_unlock_irq+0x5a/0x80 [ 274.020415] ? rtnl_dellink+0x6a0/0x6a0 [ 274.024396] rtnetlink_rcv_msg+0x3be/0xb10 [ 274.028632] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 274.033136] ? lock_downgrade+0x740/0x740 [ 274.037289] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 274.042396] netlink_rcv_skb+0x125/0x390 [ 274.046455] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 274.050947] ? netlink_ack+0x9a0/0x9a0 [ 274.054840] netlink_unicast+0x437/0x610 [ 274.058933] ? netlink_sendskb+0xd0/0xd0 [ 274.062999] ? __check_object_size+0x179/0x22c [ 274.067604] netlink_sendmsg+0x62e/0xb80 [ 274.071669] ? nlmsg_notify+0x170/0x170 [ 274.075639] ? kernel_recvmsg+0x210/0x210 [ 274.079789] ? security_socket_sendmsg+0x83/0xb0 [ 274.084544] ? nlmsg_notify+0x170/0x170 [ 274.088515] sock_sendmsg+0xb5/0x100 [ 274.092229] ___sys_sendmsg+0x6c8/0x800 [ 274.096201] ? get_pid_task+0x91/0x130 [ 274.100090] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 274.104846] ? lock_downgrade+0x740/0x740 [ 274.108996] ? __fget+0x1fe/0x360 [ 274.112451] ? lock_acquire+0x170/0x3f0 [ 274.116448] ? lock_downgrade+0x740/0x740 [ 274.120619] ? __fget+0x225/0x360 [ 274.124078] ? __fdget+0x196/0x1f0 [ 274.127616] ? sockfd_lookup_light+0xb2/0x160 [ 274.132107] __sys_sendmsg+0xa3/0x120 [ 274.135902] ? SyS_shutdown+0x160/0x160 [ 274.139873] ? wait_for_completion_io+0x10/0x10 [ 274.144549] ? SyS_read+0x210/0x210 [ 274.148170] ? SyS_clock_settime+0x1a0/0x1a0 [ 274.152600] SyS_sendmsg+0x27/0x40 [ 274.156133] ? __sys_sendmsg+0x120/0x120 [ 274.160191] do_syscall_64+0x1d5/0x640 [ 274.164096] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 274.169282] RIP: 0033:0x45e0f9 [ 274.172462] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 274.180187] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 274.187453] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 274.194715] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 274.201978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000044 [ 274.209242] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:22 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00000000000000000000000098f48b38312cc072306f76f9cf7d3acf80480c20b4df5772b3d440b14c0fad7468ecd9c1cac8ee85189d251e", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) 04:36:22 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r2, 0x28, 0x2, &(0x7f0000000000)=0x8001, 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:22 executing program 1 (fault-call:2 fault-nth:69): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:22 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) sendmsg$RDMA_NLDEV_CMD_DELLINK(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x41000200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x1404, 0x800, 0x70bd26, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4084) 04:36:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001f00"/19, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) [ 274.418235] FAULT_INJECTION: forcing a failure. [ 274.418235] name failslab, interval 1, probability 0, space 0, times 0 [ 274.450275] CPU: 1 PID: 19378 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 274.458174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 274.467526] Call Trace: [ 274.470114] dump_stack+0x1b2/0x283 [ 274.473753] should_fail.cold+0x10a/0x154 [ 274.477902] should_failslab+0xd6/0x130 [ 274.481879] kmem_cache_alloc+0x28e/0x3c0 [ 274.486034] __kernfs_new_node+0x6f/0x470 [ 274.490190] kernfs_new_node+0x7b/0xe0 [ 274.494091] __kernfs_create_file+0x3d/0x320 [ 274.498501] sysfs_add_file_mode_ns+0x1e1/0x450 [ 274.503172] ? kernfs_create_dir_ns+0x171/0x200 [ 274.507843] internal_create_group+0x22b/0x710 [ 274.512451] sysfs_create_groups+0x92/0x127 [ 274.516778] device_add+0x879/0x15c0 [ 274.520499] ? device_is_dependent+0x270/0x270 [ 274.525095] netdev_register_kobject+0x181/0x410 [ 274.529855] register_netdevice+0x955/0xe40 [ 274.534182] ? netdev_change_features+0xa0/0xa0 [ 274.538867] br_dev_newlink+0x23/0x100 [ 274.542763] rtnl_newlink+0xf88/0x1830 [ 274.546678] ? __lock_acquire+0x5fc/0x3f20 [ 274.550923] ? br_changelink+0x1570/0x1570 [ 274.555157] ? kmem_cache_free+0x7c/0x2b0 [ 274.559303] ? rtnl_dellink+0x6a0/0x6a0 [ 274.563279] ? trace_hardirqs_on+0x10/0x10 [ 274.567516] ? netlink_deliver_tap+0x60c/0x7d0 [ 274.572095] ? netlink_unicast+0x485/0x610 [ 274.576335] ? netlink_sendmsg+0x62e/0xb80 [ 274.580571] ? ___sys_sendmsg+0x660/0x800 [ 274.584723] ? __sys_sendmsg+0xa3/0x120 [ 274.588695] ? SyS_sendmsg+0x27/0x40 [ 274.592468] ? lock_acquire+0x170/0x3f0 [ 274.596442] ? lock_downgrade+0x740/0x740 [ 274.600607] ? rtnl_dellink+0x6a0/0x6a0 [ 274.604581] rtnetlink_rcv_msg+0x3be/0xb10 [ 274.608841] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 274.613339] ? __netlink_lookup+0x345/0x5d0 [ 274.617662] ? netdev_pick_tx+0x2e0/0x2e0 [ 274.621811] netlink_rcv_skb+0x125/0x390 [ 274.625870] ? memcpy+0x35/0x50 [ 274.629152] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 274.633648] ? netlink_ack+0x9a0/0x9a0 [ 274.637545] netlink_unicast+0x437/0x610 [ 274.641610] ? netlink_sendskb+0xd0/0xd0 [ 274.645707] ? __check_object_size+0x179/0x22c [ 274.650289] netlink_sendmsg+0x62e/0xb80 [ 274.654356] ? nlmsg_notify+0x170/0x170 [ 274.658329] ? kernel_recvmsg+0x210/0x210 [ 274.662481] ? security_socket_sendmsg+0x83/0xb0 [ 274.667234] ? nlmsg_notify+0x170/0x170 [ 274.671211] sock_sendmsg+0xb5/0x100 [ 274.674927] ___sys_sendmsg+0x6c8/0x800 [ 274.678907] ? get_pid_task+0x91/0x130 [ 274.682799] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 274.687589] ? lock_downgrade+0x740/0x740 [ 274.691738] ? __fget+0x1fe/0x360 [ 274.695189] ? lock_acquire+0x170/0x3f0 [ 274.699183] ? lock_downgrade+0x740/0x740 [ 274.703332] ? __fget+0x225/0x360 [ 274.706785] ? __fdget+0x196/0x1f0 [ 274.710324] ? sockfd_lookup_light+0xb2/0x160 [ 274.714823] __sys_sendmsg+0xa3/0x120 [ 274.718624] ? SyS_shutdown+0x160/0x160 [ 274.722595] ? wait_for_completion_io+0x10/0x10 [ 274.727300] ? SyS_read+0x210/0x210 [ 274.730922] ? SyS_clock_settime+0x1a0/0x1a0 [ 274.735331] SyS_sendmsg+0x27/0x40 [ 274.738879] ? __sys_sendmsg+0x120/0x120 [ 274.742936] do_syscall_64+0x1d5/0x640 [ 274.746913] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 274.752096] RIP: 0033:0x45e0f9 [ 274.755278] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:22 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r2, &(0x7f0000000380)={0x80002002}) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=@can_delroute={0x78, 0x19, 0x10, 0x70bd2d, 0x25dfdbfc, {0x1d, 0x1, 0x6}, [@CGW_MOD_AND={0x15, 0x1, {{{0x1, 0x0, 0x1, 0x1}, 0x3, 0x0, 0x0, 0x0, "067301cd3b368271"}, 0xa}}, @CGW_MOD_SET={0x15, 0x4, {{{0x3}, 0x0, 0x0, 0x0, 0x0, "64339d794db9edcf"}, 0x6}}, @CGW_FILTER={0xc, 0xb, {{}, {0x1, 0x1, 0x0, 0x1}}}, @CGW_LIM_HOPS={0x5, 0xd, 0x2}, @CGW_MOD_OR={0x15, 0x2, {{{0x4, 0x0, 0x0, 0x1}, 0x3, 0x6, 0x0, 0x0, "b3ff31b2fd5643f3"}}}, @CGW_MOD_UID={0x8, 0xe, 0xee01}]}, 0x78}, 0x1, 0x0, 0x0, 0x4}, 0x800) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) sendmsg$nl_netfilter(r5, &(0x7f0000000580)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)={0x1a8, 0xe, 0xb, 0x801, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x8}, [@generic="2e690731bba2d2c7ef5c392329c857ab72ba9f421d1dee3042698329e49e909ca4d501f31022f2f803abab8521a521fe4da872906a939a37dd641dbe8507b50f7546d563720803a1a897dc301423df62f0bbae9941118ae8b80c2af085a8ec9a8c837e398370da02f0bc77f1aa6635ec18060687bc93d4bb7117926b38aa8e65ac51381c287610142240a3dc0ac3e22c76f0b2e79e4f436ff4cf665f31ce08f3bbc8ea796661256aa422f8b5c4f39413e51516a1bcad", @nested={0x4, 0x33}, @typed={0x9, 0x46, 0x0, 0x0, @str=',&:}\x00'}, @generic="a63f7c4997eb60e2997d824bd6030845dface590c9fbfc846f5e4b045e4a0464d45daf7552cf0385e6f71e15836428e3ee3c203e1a8345f24d5433e62c3d1f7dc065ece5cc23026eb9a9d834571e69a781cd760af2676b40ee363712ba30659985780b1158938fdc1b7ded3fb637651d0f5548434b7e2d368b002e33296cf5355a87defbc423b981b2e3358cd3e284a2166e", @typed={0x8, 0xe, 0x0, 0x0, @uid=0xee00}, @generic="a59f38a99b49834140f4f193c9ad7e8f7314babcc68fcb5543c66618839c447caefdf97d15adcb013f49dc8bf4446e6fd76b5b"]}, 0x1a8}, 0x1, 0x0, 0x0, 0xe52565c2d1feb29a}, 0x48000) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000000)={0x2, 0x147, 0x4, 0xfff, 0xff}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000900000000000000000000000000008000", @ANYRESOCT, @ANYRES16=r0, @ANYRESDEC=r1], 0x3c}}, 0x4040000) clock_settime(0x0, &(0x7f0000000080)) setsockopt$CAN_RAW_RECV_OWN_MSGS(0xffffffffffffffff, 0x65, 0x4, &(0x7f0000000040), 0x4) [ 274.763003] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 274.770265] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 274.777528] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 274.784796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000045 [ 274.792066] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:22 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x2, 0x1, 0x101, 0x0, 0x0, {0x3, 0x0, 0x3}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}, @CTA_SYNPROXY={0x14, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}]}, @CTA_SEQ_ADJ_ORIG={0x34, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x7f}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x2d}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xffffffff}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4040850}, 0x20040000) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000000)={0x1, 0x3, [@multicast, @remote, @remote]}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x80, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1002}, [@IFLA_LINKINFO={0x60, 0x12, 0x0, 0x1, @bridge_slave={{0x11, 0x1, 'bridge_slave\x00'}, {0x48, 0x5, 0x0, 0x1, [@IFLA_BRPORT_FLUSH={0x4}, @IFLA_BRPORT_LEARNING={0x5}, @IFLA_BRPORT_NEIGH_SUPPRESS={0x5, 0x20, 0x1}, @IFLA_BRPORT_FAST_LEAVE={0x5, 0x7, 0x1}, @IFLA_BRPORT_MODE={0x5}, @IFLA_BRPORT_UNICAST_FLOOD={0x5}, @IFLA_BRPORT_PROXYARP={0x5, 0xa, 0x1}, @IFLA_BRPORT_ISOLATED={0x5, 0x21, 0x1}, @IFLA_BRPORT_MODE={0x5, 0x4, 0x1}]}}}]}, 0x80}}, 0x0) 04:36:22 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000040)) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002000)='fuse\x00', 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r4, &(0x7f0000004340)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5}, 0x50) write$FUSE_ENTRY(r3, &(0x7f00000000c0)={0x90, 0xfffffffffffffffe, r5, {0x1, 0x0, 0x7fffffff, 0x0, 0x0, 0xfffffff8, {0x1, 0x80, 0x5, 0x6, 0x7, 0x8001, 0x0, 0x0, 0xa, 0xa000, 0xffffffff, 0xffffffffffffffff, 0xee00, 0x5a, 0x400}}}, 0x90) fstat(r2, &(0x7f0000004140)) 04:36:22 executing program 1 (fault-call:2 fault-nth:70): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:22 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff00000000000000000000000002474f5a462967db41fabf8d1c922adee52b57cfac60bde42ac7d191af5cd8837ceffd8b3bbebfb8b953165cf35771177ce7ce67a61d72cc47a05f10ebf51a6782d4d5e1208099cf46290c58371fc0f7645e17ba7108aceff075b831adefb9318f2db611dae92f66fc97990380e6acf5781412665e3ed648a6863d7eeacb7cdc456f4e68f678e0537a9be3d2b0a555b97b54c584b24a7c39d00853f08b6c4c96bd8d05fa989b0740d76fe2259e0ffdc72333b3121cb5cc01792d67c38bce5773f5d160dd95e7", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) ioctl$SNDCTL_DSP_GETCAPS(0xffffffffffffffff, 0x8004500f, &(0x7f0000000000)) 04:36:22 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x116a) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x8441, 0x0) 04:36:22 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x7) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 274.976022] FAULT_INJECTION: forcing a failure. [ 274.976022] name failslab, interval 1, probability 0, space 0, times 0 [ 275.038619] CPU: 1 PID: 19413 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 275.046543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.055890] Call Trace: [ 275.058475] dump_stack+0x1b2/0x283 [ 275.062101] should_fail.cold+0x10a/0x154 [ 275.066262] should_failslab+0xd6/0x130 [ 275.070248] kmem_cache_alloc+0x28e/0x3c0 [ 275.074403] __kernfs_new_node+0x6f/0x470 [ 275.078564] kernfs_new_node+0x7b/0xe0 [ 275.082455] __kernfs_create_file+0x3d/0x320 [ 275.086867] sysfs_add_file_mode_ns+0x1e1/0x450 [ 275.091532] ? kernfs_create_dir_ns+0x171/0x200 [ 275.096203] internal_create_group+0x22b/0x710 [ 275.100785] sysfs_create_groups+0x92/0x127 [ 275.105105] device_add+0x879/0x15c0 [ 275.108819] ? device_is_dependent+0x270/0x270 [ 275.113410] netdev_register_kobject+0x181/0x410 [ 275.118169] register_netdevice+0x955/0xe40 [ 275.122493] ? netdev_change_features+0xa0/0xa0 [ 275.127164] br_dev_newlink+0x23/0x100 [ 275.131061] rtnl_newlink+0xf88/0x1830 [ 275.134975] ? __lock_acquire+0x5fc/0x3f20 [ 275.139216] ? br_changelink+0x1570/0x1570 [ 275.143453] ? kmem_cache_free+0x7c/0x2b0 [ 275.147605] ? rtnl_dellink+0x6a0/0x6a0 [ 275.151580] ? trace_hardirqs_on+0x10/0x10 [ 275.155841] ? netlink_deliver_tap+0x60c/0x7d0 [ 275.160422] ? netlink_unicast+0x485/0x610 [ 275.164651] ? netlink_sendmsg+0x62e/0xb80 [ 275.168887] ? ___sys_sendmsg+0x660/0x800 [ 275.173031] ? __sys_sendmsg+0xa3/0x120 [ 275.177008] ? SyS_sendmsg+0x27/0x40 [ 275.180756] ? lock_acquire+0x170/0x3f0 [ 275.184729] ? lock_downgrade+0x740/0x740 [ 275.188879] ? rtnl_dellink+0x6a0/0x6a0 [ 275.192858] rtnetlink_rcv_msg+0x3be/0xb10 [ 275.197126] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 275.201623] ? __netlink_lookup+0x345/0x5d0 [ 275.205950] ? netdev_pick_tx+0x2e0/0x2e0 [ 275.210107] netlink_rcv_skb+0x125/0x390 [ 275.214189] ? memcpy+0x35/0x50 [ 275.217472] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 275.221967] ? netlink_ack+0x9a0/0x9a0 [ 275.225859] netlink_unicast+0x437/0x610 [ 275.229920] ? netlink_sendskb+0xd0/0xd0 [ 275.233977] ? __check_object_size+0x179/0x22c 04:36:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x4, 0x0, 0x0, 0x9, 0x7}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0xb) r2 = signalfd4(r1, &(0x7f0000000040), 0x8, 0x0) r3 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x0, 0x0, 0x2, 0x1, 0x22, 0x0, 0x400000000}, 0x20) r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') sendfile(r3, r4, &(0x7f0000000240)=0x202, 0x4000000000dc) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000035c0)=ANY=[@ANYBLOB="2400dc39", @ANYRES16=0x0, @ANYBLOB="080025bd7000fddbdf252100000008000300be88334f411935d3948acdc2a272f699c50ef22e7d701c1f762449b136866b2d26cd83f892b28779d81eea367b50985120295a59e08033e0f517b5746d519a02048aec6cf76110dd100a77bb316cfe366a667a72da3a138e27a1220955717972376492142b9cfbb9711e0cb2d420087399b33c15f01712e49dc90edfc90cc7d216a6a03556163adff3", @ANYRES32=r5, @ANYBLOB="08007700fbffffff"], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0xc4) sendmsg$NL80211_CMD_SET_KEY(r4, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB, @ANYRES32=r5, @ANYBLOB="94fe9900000000c01300000013000a00243c062bd5b4aabcf6198b9f6e660900200050800500190001000000050009000000000a000400d5dfc8a7c5b200001100070058b8dc68e86dab973bb549fc7c00000000"], 0x70}, 0x1, 0x0, 0x0, 0x4004005}, 0x4000030) sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, 0x0, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x7}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x40800) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x0, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x4}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x1f}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x20040000) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x81040040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, 0x0, 0x0, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x1e, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x4, 0x8, 0x1}}, @link_id={0x65, 0x12, {@random="e1819f314ad6", @device_b, @broadcast}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x8800}, 0x4c810) sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x140, 0x0, 0x304, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_IE={0x16, 0x2a, [@mic={0x8c, 0x10, {0xad3, "7e72bfa23ad3", @short="ef43d140f867920f"}}]}, @NL80211_ATTR_IE={0xf2, 0x2a, [@dsss={0x3, 0x1, 0x34}, @random={0x81, 0xe9, "b8a7ac185c60df2eb65e6c323b7fa6660fb6e035cd99702f0f6d8e1ba8038f8ff4d3e73b79d5d6ce8984c9f442a2cf48710ed47322fe9d6531b877a7ee9a2ce804126b7c599e9a957a5001bca539f182dcbd79f1385bb65818071517d7051b419ec280c16d35e0be885efbbd5078e1a2e152bc84d3ea56d40aa781a4fa623c91fa99f9c683644cd5dad482dba8b5dc99cc43d6190b48a16663f8ef92a28e5cd2301edfb10b28515cd8fcf423d9f0bd14036ac123c267cf857fed8dffacf334e8123c86ce973efa8138ac285f3f2fb017ba1b09703a842af841fb8c9cd4d31b8f80fc29bf0102b7f58f"}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_IE={0x4}, @NL80211_ATTR_TDLS_INITIATOR={0x4}]}, 0x140}, 0x1, 0x0, 0x0, 0x80100}, 0x20004005) [ 275.238558] netlink_sendmsg+0x62e/0xb80 [ 275.242644] ? nlmsg_notify+0x170/0x170 [ 275.246616] ? kernel_recvmsg+0x210/0x210 [ 275.250787] ? security_socket_sendmsg+0x83/0xb0 [ 275.255539] ? nlmsg_notify+0x170/0x170 [ 275.259511] sock_sendmsg+0xb5/0x100 [ 275.263249] ___sys_sendmsg+0x6c8/0x800 [ 275.267223] ? get_pid_task+0x91/0x130 [ 275.271195] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 275.275952] ? lock_downgrade+0x740/0x740 [ 275.280105] ? __fget+0x1fe/0x360 [ 275.283562] ? lock_acquire+0x170/0x3f0 [ 275.287558] ? lock_downgrade+0x740/0x740 [ 275.291703] ? __fget+0x225/0x360 [ 275.295156] ? __fdget+0x196/0x1f0 [ 275.298694] ? sockfd_lookup_light+0xb2/0x160 [ 275.303194] __sys_sendmsg+0xa3/0x120 [ 275.306989] ? SyS_shutdown+0x160/0x160 [ 275.310960] ? wait_for_completion_io+0x10/0x10 [ 275.315635] ? SyS_read+0x210/0x210 [ 275.319257] ? SyS_clock_settime+0x1a0/0x1a0 [ 275.323666] SyS_sendmsg+0x27/0x40 [ 275.327205] ? __sys_sendmsg+0x120/0x120 [ 275.331265] do_syscall_64+0x1d5/0x640 [ 275.335159] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 275.340346] RIP: 0033:0x45e0f9 [ 275.343529] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 275.351234] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 275.358516] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 275.366587] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 275.373852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000046 [ 275.381114] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x400, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f0000000580)={{r2}, "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"}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x74, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x54, 0x12, 0x0, 0x1, @cfhsi={{0xa, 0x1, 'cfhsi\x00'}, {0x44, 0x2, 0x0, 0x1, [@__IFLA_CAIF_HSI_INACTIVITY_TOUT={0x8, 0x1, 0x200}, @__IFLA_CAIF_HSI_AGGREGATION_TOUT={0x8, 0x2, 0x2}, @__IFLA_CAIF_HSI_HEAD_ALIGN={0x8, 0x3, 0x7}, @__IFLA_CAIF_HSI_QLOW_WATERMARK={0x8, 0x6, 0xffffffff}, @__IFLA_CAIF_HSI_INACTIVITY_TOUT={0x8, 0x1, 0x2}, @__IFLA_CAIF_HSI_HEAD_ALIGN={0x8, 0x3, 0x5a46}, @__IFLA_CAIF_HSI_QLOW_WATERMARK={0x8, 0x6, 0xd6b4}, @__IFLA_CAIF_HSI_QLOW_WATERMARK={0x8, 0x6, 0x5eb9}]}}}]}, 0x74}}, 0x0) 04:36:23 executing program 1 (fault-call:2 fault-nth:71): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:23 executing program 3: syz_open_dev$tty1(0xc, 0x4, 0x4) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9080}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8, 0x1c, 0xff}]}}}]}, 0x3c}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x6) sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x60, 0x0, 0x7, 0x3, 0x0, 0x0, {0x5}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_FILTER={0x2c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x5}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3ff}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xffffffffffffffe1}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xffff}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000004}, 0x4040000) [ 275.504600] caif_hsicaif_hsi_newlink: failed to get the cfhsi_ops [ 275.535049] FAULT_INJECTION: forcing a failure. [ 275.535049] name failslab, interval 1, probability 0, space 0, times 0 [ 275.569975] CPU: 1 PID: 19442 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 275.577896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.587245] Call Trace: [ 275.589833] dump_stack+0x1b2/0x283 [ 275.593468] should_fail.cold+0x10a/0x154 [ 275.597621] should_failslab+0xd6/0x130 [ 275.601604] kmem_cache_alloc+0x28e/0x3c0 [ 275.605756] __kernfs_new_node+0x6f/0x470 [ 275.609908] kernfs_new_node+0x7b/0xe0 [ 275.613797] __kernfs_create_file+0x3d/0x320 [ 275.618207] sysfs_add_file_mode_ns+0x1e1/0x450 [ 275.622874] ? kernfs_create_dir_ns+0x171/0x200 [ 275.627543] internal_create_group+0x22b/0x710 [ 275.632127] sysfs_create_groups+0x92/0x127 [ 275.636448] device_add+0x879/0x15c0 [ 275.640189] ? device_is_dependent+0x270/0x270 [ 275.644774] netdev_register_kobject+0x181/0x410 [ 275.649529] register_netdevice+0x955/0xe40 [ 275.653849] ? netdev_change_features+0xa0/0xa0 [ 275.658523] br_dev_newlink+0x23/0x100 [ 275.662410] rtnl_newlink+0xf88/0x1830 [ 275.666367] ? br_changelink+0x1570/0x1570 [ 275.670608] ? mark_held_locks+0xa6/0xf0 [ 275.674671] ? rtnl_dellink+0x6a0/0x6a0 [ 275.678642] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 275.683655] ? _raw_spin_unlock_irq+0x5a/0x80 [ 275.688187] ? rtnl_dellink+0x6a0/0x6a0 [ 275.692160] rtnetlink_rcv_msg+0x3be/0xb10 [ 275.696400] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 275.700894] ? __netlink_lookup+0x345/0x5d0 [ 275.705213] ? netdev_pick_tx+0x2e0/0x2e0 [ 275.709359] netlink_rcv_skb+0x125/0x390 [ 275.713413] ? memcpy+0x35/0x50 [ 275.716711] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 275.721213] ? netlink_ack+0x9a0/0x9a0 [ 275.725105] netlink_unicast+0x437/0x610 [ 275.729172] ? netlink_sendskb+0xd0/0xd0 [ 275.733258] ? __check_object_size+0x179/0x22c [ 275.737837] netlink_sendmsg+0x62e/0xb80 [ 275.741897] ? nlmsg_notify+0x170/0x170 [ 275.745869] ? kernel_recvmsg+0x210/0x210 [ 275.750019] ? security_socket_sendmsg+0x83/0xb0 [ 275.754771] ? nlmsg_notify+0x170/0x170 [ 275.758741] sock_sendmsg+0xb5/0x100 [ 275.762451] ___sys_sendmsg+0x6c8/0x800 [ 275.766429] ? get_pid_task+0x91/0x130 [ 275.770317] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 275.775075] ? lock_downgrade+0x740/0x740 [ 275.779224] ? __fget+0x1fe/0x360 [ 275.782675] ? lock_acquire+0x170/0x3f0 [ 275.786646] ? lock_downgrade+0x740/0x740 [ 275.790794] ? __fget+0x225/0x360 [ 275.794248] ? __fdget+0x196/0x1f0 [ 275.797802] ? sockfd_lookup_light+0xb2/0x160 [ 275.802296] __sys_sendmsg+0xa3/0x120 [ 275.806094] ? SyS_shutdown+0x160/0x160 [ 275.810093] ? wait_for_completion_io+0x10/0x10 [ 275.814768] ? SyS_read+0x210/0x210 [ 275.818391] ? SyS_clock_settime+0x1a0/0x1a0 [ 275.822797] SyS_sendmsg+0x27/0x40 [ 275.826331] ? __sys_sendmsg+0x120/0x120 [ 275.830395] do_syscall_64+0x1d5/0x640 [ 275.834293] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 275.839480] RIP: 0033:0x45e0f9 [ 275.842658] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 275.850345] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 275.857599] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:23 executing program 3: getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000040)=0x30) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$AUDIT_GET_FEATURE(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x10, 0x3fb, 0x300, 0x70bd29, 0x25dfdbff, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x10000000}, 0x4000) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x28, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x44090, 0x40020}, [@IFLA_NET_NS_PID={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x883}, 0x0) 04:36:23 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getpeername$inet(r0, &(0x7f0000000040), &(0x7f00000000c0)=0x10) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:23 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f0000000000)={0x800, 0x10000, 0x4, 0x1000, 0x1, 0x3, 0x7, 0xf40}, &(0x7f0000000040)={0x4, 0xfffffffffffffff8, 0x27e, 0x19f0d04b, 0x5, 0x100, 0x1, 0x7fffffff}, &(0x7f00000000c0)={0x5, 0x4187aba0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x7, 0x6}, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f0000000180)={&(0x7f0000000140)={[0x10001]}, 0x8}) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r0, &(0x7f0000004140)) [ 275.864985] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 275.873014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000047 [ 275.880294] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:23 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@RTM_NEWNSID={0x34, 0x58, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@NETNSA_PID={0x8}, @NETNSA_NSID={0x8}, @NETNSA_NSID={0x8, 0x1, 0x3}, @NETNSA_NSID={0x8}]}, 0x34}}, 0x0) 04:36:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) recvfrom$packet(0xffffffffffffffff, &(0x7f0000000100)=""/119, 0x77, 0x100e0, &(0x7f0000000180)={0x11, 0x6, 0x0, 0x1, 0x27, 0x6, @dev={[], 0x34}}, 0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000a256b880f6f4650afcdd328190abd2036fcfc006d506b47cbd45b9fc76f3d05d14d8f6e8af5a878a863c2d3e9e6197752aa1a4e978fe100bb3e29f2b09bde951b8e0cce5c62a1e2e2c77ea3815c7e2f1fe"], 0x3c}}, 0x0) 04:36:23 executing program 1 (fault-call:2 fault-nth:72): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 276.002108] FAULT_INJECTION: forcing a failure. [ 276.002108] name failslab, interval 1, probability 0, space 0, times 0 [ 276.019591] CPU: 1 PID: 19472 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 276.027490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 276.036843] Call Trace: [ 276.039432] dump_stack+0x1b2/0x283 [ 276.043088] should_fail.cold+0x10a/0x154 [ 276.047255] should_failslab+0xd6/0x130 [ 276.051233] kmem_cache_alloc+0x28e/0x3c0 [ 276.055389] __kernfs_new_node+0x6f/0x470 [ 276.059548] kernfs_new_node+0x7b/0xe0 [ 276.063439] __kernfs_create_file+0x3d/0x320 [ 276.067848] sysfs_add_file_mode_ns+0x1e1/0x450 [ 276.072518] ? kernfs_create_dir_ns+0x171/0x200 [ 276.077190] internal_create_group+0x22b/0x710 [ 276.081780] sysfs_create_groups+0x92/0x127 [ 276.086107] device_add+0x879/0x15c0 [ 276.089827] ? device_is_dependent+0x270/0x270 [ 276.094415] netdev_register_kobject+0x181/0x410 [ 276.099171] register_netdevice+0x955/0xe40 [ 276.103495] ? netdev_change_features+0xa0/0xa0 [ 276.108170] br_dev_newlink+0x23/0x100 [ 276.112063] rtnl_newlink+0xf88/0x1830 [ 276.115998] ? __lock_acquire+0x5fc/0x3f20 [ 276.120239] ? br_changelink+0x1570/0x1570 [ 276.124477] ? kmem_cache_free+0x7c/0x2b0 [ 276.128624] ? rtnl_dellink+0x6a0/0x6a0 [ 276.132611] ? trace_hardirqs_on+0x10/0x10 [ 276.136881] ? netlink_deliver_tap+0x60c/0x7d0 [ 276.141461] ? netlink_unicast+0x485/0x610 [ 276.145699] ? netlink_sendmsg+0x62e/0xb80 [ 276.149942] ? ___sys_sendmsg+0x660/0x800 [ 276.154087] ? __sys_sendmsg+0xa3/0x120 [ 276.158059] ? SyS_sendmsg+0x27/0x40 [ 276.161811] ? lock_acquire+0x170/0x3f0 [ 276.165786] ? lock_downgrade+0x740/0x740 [ 276.169938] ? rtnl_dellink+0x6a0/0x6a0 [ 276.173935] rtnetlink_rcv_msg+0x3be/0xb10 [ 276.178180] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 276.182677] ? __netlink_lookup+0x345/0x5d0 [ 276.187001] ? netdev_pick_tx+0x2e0/0x2e0 [ 276.191156] netlink_rcv_skb+0x125/0x390 [ 276.195217] ? memcpy+0x35/0x50 [ 276.198494] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 276.203030] ? netlink_ack+0x9a0/0x9a0 [ 276.206931] netlink_unicast+0x437/0x610 [ 276.211005] ? netlink_sendskb+0xd0/0xd0 [ 276.215066] ? __check_object_size+0x179/0x22c [ 276.219650] netlink_sendmsg+0x62e/0xb80 [ 276.223714] ? nlmsg_notify+0x170/0x170 [ 276.227695] ? kernel_recvmsg+0x210/0x210 [ 276.231857] ? security_socket_sendmsg+0x83/0xb0 [ 276.236615] ? nlmsg_notify+0x170/0x170 [ 276.240623] sock_sendmsg+0xb5/0x100 [ 276.244370] ___sys_sendmsg+0x6c8/0x800 [ 276.248345] ? get_pid_task+0x91/0x130 04:36:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0) r1 = open(&(0x7f0000000500)='./file0\x00', 0x0, 0x0) r2 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000600), 0x12) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='pstore\x00', 0x0, 0x0) unshare(0x2a000400) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0)='cgroup2\x00', 0x0, 0x0) r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mice\x00', 0x2400) getsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000180), &(0x7f00000001c0)=0x4) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="ba0000000000000000051680eb15010062726964676500000c0002dbaae66d6ce17d6ac52992a29b020cc2f2a2e1378bf6edaed154233201206f8284dbcad027cd3ffd80eea0c23ac747b8f0195ceb3eb0c6f899dd6f0c8cb4ffdc7a7d273c2883157fa38e933071d6ba60bf5f066f790fbd081170292a3058b010ed5493399598bc8c3869105a1ae0e57881aa4a2b540b2d7718bb0f2a918bd0b0dc3e5444fd213e176e0c"], 0x3c}}, 0x0) 04:36:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c04000010000002005e5a698741af16b70000008ac2c20e003d0b0d60947b5466c68110a4ce7c54cbef02abb6021be206261f8ce215b5261580bf8fecf48698f78a07ba4abb7d85bb62d290b784636b9c5b4e9879e3674659ac9046f86747f645a22f9401c03695c451d74cd740628c3c2808606f9a65a618c8c0f51f1149341711a5d02289cffccce964a04feb3e0d72d853941fc1eb2affebe2f2f31ebc9a787034a0f9918528d221aba750233b8f00000034d6ef1ae6f063064f4b2ff69cb6be292f269a914a40ec7834f036ec7fde7c7a345e745a1a43887d302b905299b545ce1658f2a34219e14417cd51d6ed76410a72", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0xf284b3417007679b, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00') sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000380)={0x14, r2, 0x0, 0x70bd2a}, 0x14}, 0x1, 0x0, 0x0, 0x20048861}, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)={0x50, r2, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x7}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7f}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x6}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x4004001) lsetxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.nlink\x00', &(0x7f0000000080)={'U+', 0x1ff}, 0x16, 0x1) 04:36:23 executing program 2: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000012800b00010062726964676500000c0002800600040000000000e0d890343e86c6f7afa75515494cdf04e2d82f1327770aefd2b5bfe0e3782ae15c8fef71a1a424c876e6c731aa320edb7d43aec394542df3908328a5e178a0b54abb8889e341460662e9fad870cdef26c61a82d17158dcf4036a3a18140683c29726be9e9b6de1e8d1b1cde65b6f1ebfac847fb6b90a593821459d738e7eed7e6710c43ba43eb07a4c67e6d76e5e76d928e06989fc917ef6cb17560ffaa81d514c68747498d50fcd279b5c5063979dcb7cdd5cbe3f1bb6081cc0de"], 0x3c}}, 0x0) 04:36:24 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000080)={0x9, 0x2f5, &(0x7f0000000100)="9cb3c120fac33085524e329aab0e741ce2f2a839f3c5977a9189391df25ef496f042162eced0cc5532ffa45baa97b4b26154846b9cad305047866e46d617d32aa9c36eb89eee2a4a2bffd899ccd99bc2aabaedbbdc901e1b5612683ed98e8685a81c79bd7c6505b0e3c22fe3d050abdd10e66d76172abba219c725676942a2e4260b60c23d4982fe5ab2494e48d8765dd4cf6afafa9fba52951ca839fbb373af23fc65e80edf7cc183e26a5a81eaea21e0c0f0bf774323b8fcd170bd19c022698a2fba2e20b6f7973ef6f9683241d4da43785345448eb9175f1a02f7c7c67076e02d", &(0x7f0000000000)="fa6b6070de8c9b37dc18a3f3756d6701bc4770891fcb37912241778ece074f7e8d7280376ee33f", 0xe2, 0x27}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0xffffff1f, 0x70bd28, 0xfffffffe, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bond_slave={{0xf, 0x1, 'bond_slave\x00'}, {0xc, 0x5, 0x0, 0x1, @IFLA_BOND_SLAVE_QUEUE_ID={0x6, 0x5, 0xc2b4}}}}]}, 0x40}}, 0x0) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x68040, 0x0) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r3, 0x8008f511, &(0x7f0000000240)) [ 276.252234] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 276.256994] ? lock_downgrade+0x740/0x740 [ 276.261955] ? __fget+0x1fe/0x360 [ 276.265411] ? lock_acquire+0x170/0x3f0 [ 276.269465] ? lock_downgrade+0x740/0x740 [ 276.273625] ? __fget+0x225/0x360 [ 276.277078] ? __fdget+0x196/0x1f0 [ 276.280619] ? sockfd_lookup_light+0xb2/0x160 [ 276.285115] __sys_sendmsg+0xa3/0x120 [ 276.288913] ? SyS_shutdown+0x160/0x160 [ 276.292947] ? wait_for_completion_io+0x10/0x10 [ 276.297625] ? SyS_read+0x210/0x210 [ 276.301251] ? SyS_clock_settime+0x1a0/0x1a0 [ 276.305661] SyS_sendmsg+0x27/0x40 [ 276.309198] ? __sys_sendmsg+0x120/0x120 [ 276.313250] do_syscall_64+0x1d5/0x640 [ 276.317136] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 276.322451] RIP: 0033:0x45e0f9 [ 276.325619] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 276.333314] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 276.340571] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:24 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x10, 0x803, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r6, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r2, 0x89f9, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000000)={'syztnl1\x00', r6, 0x2f, 0x40, 0x7, 0x5, 0x2, @dev={0xfe, 0x80, [], 0x11}, @private2, 0x8000, 0x8, 0x401, 0x5}}) r7 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r8, &(0x7f0000004140)) 04:36:24 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) [ 276.347845] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 276.355113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000048 [ 276.362375] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 276.390059] nla_parse: 6 callbacks suppressed [ 276.390067] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000005c38000000000000f114b6390062726974676516000c000280b2d95c1624d47036ffffffffffff2a0a5e4d64478441099897b4fed4d6ecd08f5b917c9943e917ce75db66810c810000003e4439587977111f47b11d6e9bbe3f71276dab51ff1a779643e365fe4132a36549df8573f628d1c6515de175"], 0x3c}}, 0x0) 04:36:24 executing program 1 (fault-call:2 fault-nth:73): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:24 executing program 2: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r0, 0x80045301, &(0x7f0000000000)) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x18040, 0x0) ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x64, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6gre={{0xb, 0x1, 'ip6gre\x00'}, {0x34, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x3}, @IFLA_GRE_TTL={0x5, 0x8, 0x8}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e21}, @IFLA_GRE_ERSPAN_DIR={0x5}, @IFLA_GRE_OKEY={0x8, 0x5, 0x9}, @IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}]}}}]}, 0x64}}, 0x0) 04:36:24 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000000)={@private2={0xfc, 0x2, [], 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1={0xfc, 0x1, [], 0x1}, 0x10000, 0xae4a, 0x0, 0x100, 0x10000, 0x80000}) [ 276.470263] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 276.547649] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 276.561596] FAULT_INJECTION: forcing a failure. [ 276.561596] name failslab, interval 1, probability 0, space 0, times 0 [ 276.591885] CPU: 1 PID: 19513 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 276.599795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 276.609151] Call Trace: [ 276.611745] dump_stack+0x1b2/0x283 [ 276.615375] should_fail.cold+0x10a/0x154 [ 276.619528] should_failslab+0xd6/0x130 [ 276.623509] kmem_cache_alloc+0x28e/0x3c0 [ 276.627689] __kernfs_new_node+0x6f/0x470 [ 276.631843] kernfs_new_node+0x7b/0xe0 [ 276.635732] __kernfs_create_file+0x3d/0x320 [ 276.640142] sysfs_add_file_mode_ns+0x1e1/0x450 [ 276.644816] ? kernfs_create_dir_ns+0x171/0x200 [ 276.649517] internal_create_group+0x22b/0x710 [ 276.654109] sysfs_create_groups+0x92/0x127 [ 276.658435] device_add+0x879/0x15c0 [ 276.662157] ? device_is_dependent+0x270/0x270 [ 276.666749] netdev_register_kobject+0x181/0x410 [ 276.671507] register_netdevice+0x955/0xe40 [ 276.675833] ? netdev_change_features+0xa0/0xa0 [ 276.680533] br_dev_newlink+0x23/0x100 [ 276.684429] rtnl_newlink+0xf88/0x1830 [ 276.688353] ? br_changelink+0x1570/0x1570 04:36:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup2(r0, r0) ioctl$DRM_IOCTL_GEM_CLOSE(r1, 0x40086409, &(0x7f0000000500)) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'erspan0\x00', &(0x7f0000000100)={'syztnl0\x00', 0x0, 0x20, 0x7800, 0xfffffb0e, 0x252f, {{0x3f, 0x4, 0x2, 0x5, 0xfc, 0x64, 0x0, 0x4, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x38}, @private=0xa010102, {[@end, @timestamp_prespec={0x44, 0x54, 0xbe, 0x3, 0x2, [{@multicast1, 0x7}, {@broadcast, 0x9d}, {@multicast1, 0x6}, {@loopback, 0x7}, {@local, 0x2}, {@multicast2, 0x4}, {@local, 0x100}, {@multicast1, 0x2}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x400}, {@dev={0xac, 0x14, 0x14, 0x3a}, 0x4}]}, @end, @timestamp_addr={0x44, 0x4c, 0x48, 0x1, 0x3, [{@multicast1, 0x26}, {@private=0xa010102, 0xfff}, {@broadcast, 0x7fff}, {@multicast2, 0xfff}, {@private=0xa010102, 0x6}, {@multicast1, 0x1}, {@rand_addr=0x64010102, 0x8}, {@rand_addr=0x64010102, 0x9}, {@private=0xa010100, 0x9}]}, @timestamp_prespec={0x44, 0x44, 0xcf, 0x3, 0x4, [{@empty, 0x7}, {@multicast2, 0x7}, {@loopback, 0x4}, {@local, 0x2}, {@remote, 0x101}, {@private=0xa010102, 0xfffffffd}, {@rand_addr=0x64010102, 0xffff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4}]}]}}}}}) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000002e00000827bd7000fddbdf2500000000", @ANYRES32=r2, @ANYBLOB="0b00efff0a0001000c00ffff08000b00540e000008000b0005000000080095ba52b7350a3b770a04530b000004000008000b00fbffffff"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x40) read$FUSE(0xffffffffffffffff, &(0x7f0000000640)={0x2020, 0x0, 0x0, 0x0}, 0x2020) syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000280)='./file0\x00', 0x5, 0x2, &(0x7f00000004c0)=[{&(0x7f00000003c0)="ae8df39a74023f849ccb4b91d9570cd2ac2a72f5460ec803d7957f1b055500969400269459aa0bdbdc4ff02c9e2176fe588f58b223c8a6544ff3ec6695d6c6b6c011d6dc18d3997950dedd27a32e5499d089eb7b96ef14fe6dc5cb27f49fed0a6bb80c38d50d06b19ea7f9a02e989277969c387816a7956296bcd275df06e7461ba8674ac5e582737b6448370cb9688d2a4f98c62d20b26d765edccb2c5d7580aed3f7ba8b7c6fe8ecf7991ed25b84b315611551342a1427ced224a48a2a5af43aa15608055c0aaf927e", 0xca, 0x6}, {&(0x7f0000000580)="6961b1bd530ae46ea7fe71303214e412dc0e337a05a3af7f98f2300d6d7cc02369855fc726fa1d33dd849162858f0b96259e552cd53a24bae637bf8bd7db739c77f687f2e2d9706169c7518163b4a988d75af003dbde8c9bed8f08b0786d9de7834f2ce14a98d83b91a838b38ba1caa450cc9feda81eca5b9d563a1be8ee10c6f58797e8f80b1be45c443f0aa4142caee459a2721ea654967f", 0x99, 0x69}], 0xa8000, &(0x7f0000002680)={[{@dmask={'dmask', 0x3d, 0x95e}}, {@errors_continue='errors=continue'}, {@show_sys_files_yes='show_sys_files=yes'}], [{@smackfsfloor={'smackfsfloor'}}, {@subj_role={'subj_role', 0x3d, 'bridge\x00'}}, {@dont_appraise='dont_appraise'}, {@fowner_gt={'fowner>', r3}}, {@context={'context', 0x3d, 'root'}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}]}) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000002cc0)='bond_slave_0\x00', 0x10) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0xffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r5, r5, 0x0, 0xffff) ioctl$TIOCSIG(r5, 0x40045436, 0x23) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000740)='devlink\x00') write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000027c0)={'syz1\x00', {0x78e, 0x903, 0x8000, 0x1ff}, 0x34, [0x9, 0x6, 0x33, 0x7fffffff, 0x4, 0x1, 0x43a, 0x5, 0x1000, 0x2, 0x3, 0x0, 0x200, 0x3, 0x39, 0x5, 0xd8, 0x91, 0x800, 0xffff8001, 0xffffffff, 0x2, 0x0, 0xcb, 0x3, 0x1, 0x1, 0x7, 0x401, 0x6, 0x5, 0xca5, 0x10001, 0xffffffff, 0x1380000, 0x1, 0x7fff, 0x81, 0x81, 0xa795e0a, 0x3, 0xfff, 0x7, 0x80, 0x1f, 0x9, 0x0, 0xffffffff, 0x8, 0x1, 0x101, 0x1ff, 0x8, 0x2, 0x213, 0x51, 0xffff3aa3, 0x1, 0x400, 0x8, 0x6, 0x68cdaa77, 0xfffffff8, 0x6], [0x9, 0x7, 0x2, 0x7ff, 0xc5b, 0x5f, 0x6, 0x1000, 0x1, 0x1, 0xffffff00, 0x0, 0x5, 0x9, 0xffff, 0xfffffffc, 0x18f, 0xd1, 0x80000000, 0x2, 0x3, 0x8001, 0x401, 0x8001, 0x5, 0x7, 0x1, 0x80000000, 0x2, 0x6, 0x1f, 0x0, 0x0, 0x9, 0x2, 0x9, 0xf5, 0xb7, 0x1, 0x0, 0x4, 0xb0, 0x3ff, 0x1, 0x10000, 0x2, 0xfffffffb, 0x5, 0xd5, 0xe1b, 0x985c, 0x3a80, 0x1, 0x2, 0xfffffbff, 0x8, 0x0, 0x11d9, 0x4, 0x0, 0x6000, 0x1, 0x5de, 0x1], [0x1, 0x9, 0x1000, 0x7fff00, 0x9, 0x2, 0x8, 0x0, 0x53fd, 0x80000000, 0x0, 0x200, 0x2, 0x80000001, 0x5, 0x4c04, 0x7, 0xffff, 0x0, 0xff, 0x2, 0x57, 0x1, 0xfffffff9, 0x4, 0x1c00, 0x4, 0x7cbd, 0x1, 0x9, 0x9, 0x7, 0x8001, 0x3, 0x0, 0x7ff, 0x0, 0x4, 0x9, 0x5, 0x99c, 0x101, 0x3, 0x1, 0x4, 0x2, 0x1, 0x3, 0x8, 0x0, 0x6, 0x8, 0x3, 0x1f, 0x6, 0xfffffff8, 0x6, 0x240, 0x3, 0x4, 0x1f, 0x1, 0xdd2, 0x3fa], [0x0, 0x2, 0x5, 0x3cbb, 0x0, 0xf65, 0x8, 0x1ff, 0x9, 0x8, 0x5, 0x4, 0x4, 0x0, 0xffff97b2, 0xfffffffb, 0x2, 0x4, 0x4, 0x8, 0x0, 0xaaf0, 0x1e, 0x3b5f, 0x8, 0x9, 0x6, 0x6, 0x8000, 0x2, 0x1000, 0x2, 0x80000000, 0x9, 0xffffffff, 0x80000001, 0xfff, 0x8, 0x2, 0x3f, 0x101, 0x1ff, 0x20, 0x9, 0x100, 0x20, 0x1f, 0x5, 0x7, 0x1000, 0x8, 0x537d, 0x100, 0x7, 0x1f, 0x80000, 0x0, 0x1ff, 0x3, 0x7ff, 0x0, 0x3, 0x8, 0x10000]}, 0x45c) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)={0x14, r6, 0x1319, 0x0, 0x0, {0x13}}, 0x14}}, 0x0) r7 = accept4$inet(r5, &(0x7f0000002c40), &(0x7f0000002c80)=0x10, 0x40800) fcntl$notify(r7, 0x402, 0x80000000) bind$netrom(0xffffffffffffffff, &(0x7f0000002740)={{0x3, @default, 0x5}, [@default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) [ 276.692586] ? mark_held_locks+0xa6/0xf0 [ 276.696649] ? rtnl_dellink+0x6a0/0x6a0 [ 276.700626] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 276.705646] ? _raw_spin_unlock_irq+0x5a/0x80 [ 276.710184] ? rtnl_dellink+0x6a0/0x6a0 [ 276.714159] rtnetlink_rcv_msg+0x3be/0xb10 [ 276.718399] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 276.722899] ? __netlink_lookup+0x345/0x5d0 [ 276.727219] ? netdev_pick_tx+0x2e0/0x2e0 [ 276.731380] netlink_rcv_skb+0x125/0x390 [ 276.735443] ? memcpy+0x35/0x50 04:36:24 executing program 0: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000009c0)={'syztnl1\x00', &(0x7f0000000940)={'erspan0\x00', 0x0, 0x700, 0xae8bc03b1c2fd401, 0xffffffff, 0x5, {{0x15, 0x4, 0x2, 0x5, 0x54, 0x65, 0x0, 0x7f, 0x2f, 0x0, @broadcast, @multicast2, {[@timestamp_prespec={0x44, 0x1c, 0x23, 0x3, 0x9, [{@broadcast}, {@multicast2, 0x48}, {@dev={0xac, 0x14, 0x14, 0x3e}, 0x1ede}]}, @ssrr={0x89, 0x23, 0x9a, [@multicast2, @multicast1, @private=0xa010101, @empty, @local, @empty, @empty, @rand_addr=0x64010100]}]}}}}}) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) r5 = socket(0x10, 0x803, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r8, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f00000015c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001580)={&(0x7f0000000a00)={0xb7c, 0x0, 0x10, 0x70bd28, 0x25dfdbfb, {}, [{{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0xb7a0}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}]}}, {{0x8}, {0x124, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x715}}}]}}, {{0x8}, {0x1e4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x1f}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0xffff}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x89}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x1f0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0xce0}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x264, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x500}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0xffff}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xb, 0x4, 'random\x00'}}}]}}, {{0x8}, {0x138, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8, 0x4, r0}}}]}}, {{0x8}, {0x1a4, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x7ff}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x10001}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8, 0x4, 0x5}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8, 0x4, r8}}}]}}]}, 0xb7c}, 0x1, 0x0, 0x0, 0x40000d3}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x40000) [ 276.738723] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 276.743222] ? netlink_ack+0x9a0/0x9a0 [ 276.747116] netlink_unicast+0x437/0x610 [ 276.751197] ? netlink_sendskb+0xd0/0xd0 [ 276.755261] ? __check_object_size+0x179/0x22c [ 276.759845] netlink_sendmsg+0x62e/0xb80 [ 276.763914] ? nlmsg_notify+0x170/0x170 [ 276.767891] ? kernel_recvmsg+0x210/0x210 [ 276.772036] ? security_socket_sendmsg+0x83/0xb0 [ 276.776780] ? nlmsg_notify+0x170/0x170 [ 276.780757] sock_sendmsg+0xb5/0x100 [ 276.784458] ___sys_sendmsg+0x6c8/0x800 [ 276.788426] ? get_pid_task+0x91/0x130 [ 276.792316] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 276.797073] ? lock_downgrade+0x740/0x740 [ 276.801227] ? __fget+0x1fe/0x360 [ 276.804684] ? lock_acquire+0x170/0x3f0 [ 276.808659] ? lock_downgrade+0x740/0x740 [ 276.812817] ? __fget+0x225/0x360 [ 276.816277] ? __fdget+0x196/0x1f0 [ 276.819819] ? sockfd_lookup_light+0xb2/0x160 [ 276.824319] __sys_sendmsg+0xa3/0x120 [ 276.828113] ? SyS_shutdown+0x160/0x160 [ 276.832070] ? wait_for_completion_io+0x10/0x10 [ 276.836738] ? SyS_read+0x210/0x210 [ 276.840355] ? SyS_clock_settime+0x1a0/0x1a0 [ 276.844746] SyS_sendmsg+0x27/0x40 [ 276.848307] ? __sys_sendmsg+0x120/0x120 [ 276.852350] do_syscall_64+0x1d5/0x640 [ 276.856234] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 276.861413] RIP: 0033:0x45e0f9 [ 276.864622] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 276.872324] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 276.879583] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:24 executing program 1 (fault-call:2 fault-nth:74): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:24 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x13) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) setsockopt$inet6_opts(r1, 0x29, 0x39, &(0x7f0000000000)=@routing={0x16, 0x4, 0x0, 0x2, 0x0, [@mcast1, @dev={0xfe, 0x80, [], 0x1d}]}, 0x28) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 276.886841] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 276.894098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000049 [ 276.901395] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 276.919352] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 276.974715] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:24 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x0, 0x1}, 0x8, 0x10, 0x0}, 0x78) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x6, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)) ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f0000000040)=0x1) sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0xc4, 0x0, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x98f7, 0x56}}}}, [@NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x10000000, {0x40, 0x7, 0x4, 0x1f}}}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0xc0070000, {0x0, 0x4, 0x6, 0x1f}}}, @NL80211_ATTR_IE={0x84, 0x2a, [@random={0x20, 0x73, "0f03097a2ee20cb3b86342c2a32a50132567b7e825707cb9d02358cc3ee4c3549f87dd3ab66f7084c50c203e6730e7c515b348a2c1ca88c3d8b95b0cbf8c1f3135e99416ba0a6b4e9bfffe2a90a2eb84e71c03363342d6cdb158e44d412929f96cf7054c8e4e33869f0d5f21347c26faa839f4"}, @sec_chan_ofs={0x3e, 0x1, 0x2}, @mesh_id={0x72, 0x6}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4}, 0x4055) write$cgroup_subtree(r1, &(0x7f0000000140), 0xfd45) r2 = fcntl$dupfd(r1, 0x0, r1) write$6lowpan_enable(r2, &(0x7f0000000280)='0', 0x1) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000006964676500000c6fe21213c68afafd1f45c18f000280060006000000"], 0x3c}}, 0x0) syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x3, 0x80) [ 277.020226] FAULT_INJECTION: forcing a failure. [ 277.020226] name failslab, interval 1, probability 0, space 0, times 0 [ 277.061116] CPU: 1 PID: 19559 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 277.069161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 277.078510] Call Trace: [ 277.081104] dump_stack+0x1b2/0x283 [ 277.084765] should_fail.cold+0x10a/0x154 [ 277.088919] should_failslab+0xd6/0x130 [ 277.092915] kmem_cache_alloc+0x28e/0x3c0 [ 277.097086] __kernfs_new_node+0x6f/0x470 [ 277.101265] kernfs_new_node+0x7b/0xe0 [ 277.105160] __kernfs_create_file+0x3d/0x320 [ 277.109576] sysfs_add_file_mode_ns+0x1e1/0x450 [ 277.114246] ? kernfs_create_dir_ns+0x171/0x200 [ 277.118908] internal_create_group+0x22b/0x710 [ 277.123487] sysfs_create_groups+0x92/0x127 [ 277.127809] device_add+0x879/0x15c0 [ 277.131527] ? device_is_dependent+0x270/0x270 [ 277.136131] netdev_register_kobject+0x181/0x410 [ 277.140879] register_netdevice+0x955/0xe40 [ 277.145214] ? netdev_change_features+0xa0/0xa0 [ 277.149874] br_dev_newlink+0x23/0x100 [ 277.153749] rtnl_newlink+0xf88/0x1830 [ 277.157637] ? br_changelink+0x1570/0x1570 [ 277.161850] ? mark_held_locks+0xa6/0xf0 [ 277.165904] ? rtnl_dellink+0x6a0/0x6a0 [ 277.169867] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 277.174872] ? _raw_spin_unlock_irq+0x5a/0x80 [ 277.179407] ? rtnl_dellink+0x6a0/0x6a0 [ 277.183377] rtnetlink_rcv_msg+0x3be/0xb10 [ 277.187604] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 277.192077] ? __netlink_lookup+0x345/0x5d0 [ 277.196377] ? netdev_pick_tx+0x2e0/0x2e0 [ 277.200505] netlink_rcv_skb+0x125/0x390 [ 277.204558] ? memcpy+0x35/0x50 [ 277.207862] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 277.212376] ? netlink_ack+0x9a0/0x9a0 [ 277.216248] netlink_unicast+0x437/0x610 [ 277.220300] ? netlink_sendskb+0xd0/0xd0 [ 277.224383] ? __check_object_size+0x179/0x22c [ 277.228954] netlink_sendmsg+0x62e/0xb80 [ 277.233011] ? nlmsg_notify+0x170/0x170 [ 277.236983] ? kernel_recvmsg+0x210/0x210 [ 277.241158] ? security_socket_sendmsg+0x83/0xb0 [ 277.245900] ? nlmsg_notify+0x170/0x170 [ 277.249864] sock_sendmsg+0xb5/0x100 [ 277.253568] ___sys_sendmsg+0x6c8/0x800 [ 277.257556] ? get_pid_task+0x91/0x130 [ 277.261446] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 277.266195] ? lock_downgrade+0x740/0x740 [ 277.270335] ? __fget+0x1fe/0x360 [ 277.273786] ? lock_acquire+0x170/0x3f0 [ 277.277747] ? lock_downgrade+0x740/0x740 [ 277.281886] ? __fget+0x225/0x360 [ 277.285331] ? __fdget+0x196/0x1f0 [ 277.288860] ? sockfd_lookup_light+0xb2/0x160 [ 277.293344] __sys_sendmsg+0xa3/0x120 [ 277.297137] ? SyS_shutdown+0x160/0x160 [ 277.301107] ? wait_for_completion_io+0x10/0x10 [ 277.305771] ? SyS_read+0x210/0x210 [ 277.309403] ? SyS_clock_settime+0x1a0/0x1a0 [ 277.313792] SyS_sendmsg+0x27/0x40 [ 277.317315] ? __sys_sendmsg+0x120/0x120 [ 277.321365] do_syscall_64+0x1d5/0x640 [ 277.325248] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 277.330433] RIP: 0033:0x45e0f9 [ 277.333639] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 277.341343] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 277.348609] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:25 executing program 3: ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(0xffffffffffffffff, 0x80845663, &(0x7f0000000000)) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 277.355864] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 277.363122] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004a [ 277.370372] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 277.394481] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 277.421012] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 277.439695] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:25 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) fremovexattr(r0, &(0x7f0000000000)=@known='system.posix_acl_default\x00') ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) 04:36:25 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) dup3(0xffffffffffffffff, r0, 0x80000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r1}, 0x8) sendto$packet(r2, &(0x7f00000000c0)="ba8ee484825bb52186a2b43b97c3987769f68df223511eb425f28fb402853e3c740dab3f253ddec1331c93cf15475a359cda86439c08588b9e4b6dc9a0d5a87582c1d8a0a68251b80db5d5696d1783174332c1bedbd986fc5e6d21bf53374144aa8cbc64745f647347bee91997928adff0dcbeebb7daaf9e4e449aacfb35fca58037a5b2d81625c72121e8afda51a0098792b43efe", 0x95, 0x4000800, &(0x7f0000000040)={0x11, 0xc, 0x0, 0x1, 0x5, 0x6, @multicast}, 0x14) perf_event_open(&(0x7f00000006c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x78, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}}, 0x80, &(0x7f0000001640)=[{&(0x7f0000000ac0)="ee", 0x20000ac1}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040000002b24ec10064b6fb14bccedfb718aef932f3889d1fdda5b9134015a860f5878c37ffe36e1165d14d435be5b317c6c8189767d2f97879f07a715bb7c169f46933d9338f4ab0483696f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r4, 0x0) sendmsg$NFT_MSG_GETOBJ_RESET(r4, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10080800}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x84, 0x15, 0xa, 0x301, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x84}, 0x1, 0x0, 0x0, 0x44014}, 0x8004) 04:36:25 executing program 1 (fault-call:2 fault-nth:75): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:25 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00idg\x00'/36], 0x3c}}, 0x0) 04:36:25 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000040)=0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f0000000180)={{0x4, 0x1, 0x80000000, 0x1f, '\x00', 0x9}, 0x0, 0x10, 0xfffffff8, r4, 0x9, 0x0, 'syz1\x00', &(0x7f0000000100)=['[()\xe4@$Q{\xa9\x00', 'bridge\x00', 'batadv_slave_1\x00', '-:\x1e(:$\x00', 'bridge\x00', 'bridge\x00', '\x00', 'batadv_slave_1\x00', '-\\{\x00'], 0x49, [], [0x8, 0x1, 0xffff, 0x8]}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'}) [ 277.567113] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. [ 277.586722] FAULT_INJECTION: forcing a failure. [ 277.586722] name failslab, interval 1, probability 0, space 0, times 0 [ 277.602485] CPU: 1 PID: 19617 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 277.610369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 277.619714] Call Trace: [ 277.622297] dump_stack+0x1b2/0x283 [ 277.625916] should_fail.cold+0x10a/0x154 [ 277.630059] should_failslab+0xd6/0x130 [ 277.634037] kmem_cache_alloc+0x28e/0x3c0 [ 277.638179] __kernfs_new_node+0x6f/0x470 [ 277.642309] kernfs_new_node+0x7b/0xe0 [ 277.646194] __kernfs_create_file+0x3d/0x320 [ 277.650586] sysfs_add_file_mode_ns+0x1e1/0x450 [ 277.655247] ? kernfs_create_dir_ns+0x171/0x200 [ 277.659915] internal_create_group+0x22b/0x710 [ 277.664498] sysfs_create_groups+0x92/0x127 [ 277.668818] device_add+0x879/0x15c0 [ 277.672515] ? device_is_dependent+0x270/0x270 [ 277.677092] netdev_register_kobject+0x181/0x410 [ 277.681847] register_netdevice+0x955/0xe40 [ 277.686164] ? netdev_change_features+0xa0/0xa0 [ 277.690826] br_dev_newlink+0x23/0x100 [ 277.694704] rtnl_newlink+0xf88/0x1830 [ 277.698597] ? br_changelink+0x1570/0x1570 [ 277.702811] ? mark_held_locks+0xa6/0xf0 [ 277.706852] ? rtnl_dellink+0x6a0/0x6a0 [ 277.710807] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 277.715814] ? _raw_spin_unlock_irq+0x5a/0x80 [ 277.720320] ? rtnl_dellink+0x6a0/0x6a0 [ 277.724282] rtnetlink_rcv_msg+0x3be/0xb10 [ 277.728509] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 277.732985] ? __netlink_lookup+0x345/0x5d0 [ 277.737287] ? netdev_pick_tx+0x2e0/0x2e0 [ 277.741415] netlink_rcv_skb+0x125/0x390 [ 277.745463] ? memcpy+0x35/0x50 [ 277.748739] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 277.753233] ? netlink_ack+0x9a0/0x9a0 [ 277.757116] netlink_unicast+0x437/0x610 [ 277.761177] ? netlink_sendskb+0xd0/0xd0 [ 277.765220] ? __check_object_size+0x179/0x22c [ 277.769783] netlink_sendmsg+0x62e/0xb80 [ 277.773838] ? nlmsg_notify+0x170/0x170 [ 277.777800] ? kernel_recvmsg+0x210/0x210 [ 277.781932] ? security_socket_sendmsg+0x83/0xb0 [ 277.786669] ? nlmsg_notify+0x170/0x170 [ 277.790624] sock_sendmsg+0xb5/0x100 [ 277.794328] ___sys_sendmsg+0x6c8/0x800 [ 277.798296] ? get_pid_task+0x91/0x130 [ 277.802167] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 277.806906] ? lock_downgrade+0x740/0x740 [ 277.811050] ? __fget+0x1fe/0x360 [ 277.814509] ? lock_acquire+0x170/0x3f0 [ 277.818472] ? lock_downgrade+0x740/0x740 [ 277.822629] ? __fget+0x225/0x360 [ 277.826082] ? __fdget+0x196/0x1f0 [ 277.829602] ? sockfd_lookup_light+0xb2/0x160 [ 277.834087] __sys_sendmsg+0xa3/0x120 [ 277.837878] ? SyS_shutdown+0x160/0x160 [ 277.841835] ? wait_for_completion_io+0x10/0x10 [ 277.846504] ? SyS_read+0x210/0x210 [ 277.850118] ? SyS_clock_settime+0x1a0/0x1a0 [ 277.854524] SyS_sendmsg+0x27/0x40 [ 277.858059] ? __sys_sendmsg+0x120/0x120 [ 277.862127] do_syscall_64+0x1d5/0x640 04:36:25 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0xd2000, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) ioctl$BLKROGET(r0, 0x125e, &(0x7f0000000080)) r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nvme-fabrics\x00', 0x88180, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="9acec7910b2924700000000000368e000000000000005fd16584d697ae6a54163c7a8a632372e577c2375bf84b8c0519a748d91df2c8142e77d475a82cd9adf60806c4f14b2f419c3e214df4ccf888d0b2c99b7b57b4377c8877ba2218527a5085410de515c475c2ce8f8d63de46c8fa52982a80584dc7ef786463e435faaeae64d11038e0896b2ba778479172bdbff7893400738195da0020f740717062bd30e667a46edbb2bcec9f00b42abb671fcbabc1e4836451e61bfed5917c89b8eedbf248a60c4dc778df637fbe85a73c23a67279e35e3a0ae3acf47676fbebef48d79ea5", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x10) socket$unix(0x1, 0x2, 0x0) keyctl$invalidate(0x15, 0x0) write$khugepaged_scan(0xffffffffffffffff, &(0x7f0000000000)='1000000\x00', 0x8) [ 277.866013] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 277.871200] RIP: 0033:0x45e0f9 [ 277.874377] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 277.882084] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 277.889367] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 277.896623] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 277.903888] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004b [ 277.911166] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:25 executing program 2: socket$netlink(0x10, 0x3, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r0, r0, 0x0, 0xffff) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000040)={{0x7, 0x4}, {0x52, 0x3f}, 0x0, 0x0, 0x3}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0x83) 04:36:25 executing program 1 (fault-call:2 fault-nth:76): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:25 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0xffffffffffffff84}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 04:36:25 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="00000000000000001c001280e289cae5c7098fc567654d4a8e1b02800600060000000000"], 0x3c}}, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x1800804, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f0000000100)='./file0\x00', 0x1000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x2e6}], 0x0, &(0x7f00000023c0)=ANY=[]) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000002000)='/dev/nvram\x00', 0x1, 0x0) ioctl(r1, 0xb961, &(0x7f00000021c0)="3c920181c53a22885bb3f4a69147fcbf6c215ac3c78fa423bb6b117ed39280a0994a093e21b497b19e9fc5256907a2c107b1544725a371e443c4a9a93cfa122063694c71b494c401dd7d41f289d5d64d2814838b2f9895dcb60d9632054ab7b7f72bfb40c3d142caa4dc0c731bbe59ec81bf64ecbd556cbe96babede9f4d88ea85a52aa3c220d76c7d084e5dcdadd9016e9f1623383e0baaaca6d0e7851312a1a5b2bf00cf2f402cb1dde8ab17239e47d57bb46939f2bed3becd00f58d5d1d746f90b702") prctl$PR_SET_UNALIGN(0x6, 0x0) symlinkat(0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0x400, 0x506002) ioctl$CHAR_RAW_HDIO_GETGEO(r2, 0x301, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001680)=[{&(0x7f0000000080)=""/1, 0x1}, {0x0}], 0x2, 0x0, 0x0) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000000)="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", 0x2000, &(0x7f00000069c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000066c0)={0xffdd, 0xfffffffffffffff5, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffff07a, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x100}}}, 0x0, 0x0, 0x0, 0x0}) prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) add_key$fscrypt_v1(&(0x7f0000002040)='logon\x00', &(0x7f0000002080)={'fscrypt:', @desc2='e355a76a11a1be18'}, &(0x7f0000002140)={0x0, "a9704a8186d616f4ebed468f53bbc31fc44d5db589285b90f3c1684a6939242bda095172dabd53320758f2761c40d0232d4c5a1df56ef5732c3cd8f36950a7f8", 0x2f}, 0x48, 0xfffffffffffffffe) r3 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 278.004601] FAULT_INJECTION: forcing a failure. [ 278.004601] name failslab, interval 1, probability 0, space 0, times 0 [ 278.040613] CPU: 1 PID: 19631 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 278.048531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.057883] Call Trace: [ 278.060470] dump_stack+0x1b2/0x283 [ 278.064103] should_fail.cold+0x10a/0x154 [ 278.068277] should_failslab+0xd6/0x130 [ 278.072259] kmem_cache_alloc+0x28e/0x3c0 [ 278.076412] __kernfs_new_node+0x6f/0x470 [ 278.080564] kernfs_new_node+0x7b/0xe0 [ 278.084456] __kernfs_create_file+0x3d/0x320 [ 278.088870] sysfs_add_file_mode_ns+0x1e1/0x450 [ 278.093543] ? kernfs_create_dir_ns+0x171/0x200 [ 278.098215] internal_create_group+0x22b/0x710 [ 278.102805] sysfs_create_groups+0x92/0x127 [ 278.107137] device_add+0x879/0x15c0 [ 278.110859] ? device_is_dependent+0x270/0x270 [ 278.115451] netdev_register_kobject+0x181/0x410 [ 278.120212] register_netdevice+0x955/0xe40 [ 278.124543] ? netdev_change_features+0xa0/0xa0 [ 278.129219] br_dev_newlink+0x23/0x100 [ 278.133116] rtnl_newlink+0xf88/0x1830 [ 278.137032] ? __lock_acquire+0x5fc/0x3f20 [ 278.141280] ? br_changelink+0x1570/0x1570 [ 278.145519] ? kmem_cache_free+0x7c/0x2b0 [ 278.149671] ? rtnl_dellink+0x6a0/0x6a0 04:36:25 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 278.153643] ? trace_hardirqs_on+0x10/0x10 [ 278.157874] ? netlink_deliver_tap+0x60c/0x7d0 [ 278.162454] ? netlink_unicast+0x485/0x610 [ 278.166685] ? netlink_sendmsg+0x62e/0xb80 [ 278.170918] ? ___sys_sendmsg+0x660/0x800 [ 278.175070] ? __sys_sendmsg+0xa3/0x120 [ 278.179034] ? SyS_sendmsg+0x27/0x40 [ 278.182751] ? lock_acquire+0x170/0x3f0 [ 278.186704] ? lock_downgrade+0x740/0x740 [ 278.190832] ? rtnl_dellink+0x6a0/0x6a0 [ 278.194793] rtnetlink_rcv_msg+0x3be/0xb10 [ 278.199018] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 278.203504] ? __netlink_lookup+0x345/0x5d0 [ 278.207819] ? netdev_pick_tx+0x2e0/0x2e0 [ 278.211957] netlink_rcv_skb+0x125/0x390 [ 278.216007] ? memcpy+0x35/0x50 [ 278.219289] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 278.223784] ? netlink_ack+0x9a0/0x9a0 [ 278.227694] netlink_unicast+0x437/0x610 [ 278.231796] ? netlink_sendskb+0xd0/0xd0 [ 278.235837] ? __check_object_size+0x179/0x22c [ 278.240399] netlink_sendmsg+0x62e/0xb80 [ 278.244451] ? nlmsg_notify+0x170/0x170 [ 278.248424] ? kernel_recvmsg+0x210/0x210 [ 278.252582] ? security_socket_sendmsg+0x83/0xb0 [ 278.257328] ? nlmsg_notify+0x170/0x170 [ 278.261286] sock_sendmsg+0xb5/0x100 [ 278.264992] ___sys_sendmsg+0x6c8/0x800 [ 278.268974] ? get_pid_task+0x91/0x130 [ 278.272994] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 278.277795] ? lock_downgrade+0x740/0x740 [ 278.281928] ? __fget+0x1fe/0x360 [ 278.285376] ? lock_acquire+0x170/0x3f0 [ 278.289344] ? lock_downgrade+0x740/0x740 [ 278.293483] ? __fget+0x225/0x360 [ 278.296945] ? __fdget+0x196/0x1f0 [ 278.300479] ? sockfd_lookup_light+0xb2/0x160 [ 278.305000] __sys_sendmsg+0xa3/0x120 [ 278.308790] ? SyS_shutdown+0x160/0x160 [ 278.312745] ? wait_for_completion_io+0x10/0x10 [ 278.317398] ? SyS_read+0x210/0x210 [ 278.321026] ? SyS_clock_settime+0x1a0/0x1a0 [ 278.325426] SyS_sendmsg+0x27/0x40 [ 278.328953] ? __sys_sendmsg+0x120/0x120 [ 278.332994] do_syscall_64+0x1d5/0x640 [ 278.336865] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 278.342031] RIP: 0033:0x45e0f9 [ 278.345208] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 278.352914] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 278.360176] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 278.367454] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 278.374719] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004c [ 278.381978] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0x100, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:26 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 278.414012] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 04:36:26 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) fstat(r2, 0x0) 04:36:26 executing program 0: socket$netlink(0x10, 0x3, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x101080, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="20000000efc5", @ANYRES32=0x0, @ANYBLOB="000000004000000093af9a241bc3c731054684bbb638b7646ba5fab6e2fbdf09f60ababce91cb257372a58571922f044ca578178dcfbafaf00000000788bf9d351b43168a464fd684ea1296baa78bf2373f2401b93c40e"], 0x20}}, 0x0) statfs(&(0x7f0000000200)='./file0\x00', &(0x7f0000001800)=""/90) openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs\x00', 0x288002, 0x0) mknodat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) r1 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) r3 = syz_mount_image$befs(&(0x7f0000000140)='befs\x00', &(0x7f0000000180)='./file0\x00', 0x5, 0x0, &(0x7f00000029c0), 0x9000, &(0x7f0000000540)={[{'/dev/dlm-control\x00'}], [{@uid_lt={'uid<', r2}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@dont_hash='dont_hash'}]}) write$binfmt_aout(r3, &(0x7f0000002ac0)={{0x10b, 0x0, 0x1, 0x1e2, 0x209, 0x80000000, 0x33c, 0x5}, "4c51457e5c595c621adff09e6b8261037ffdac0ac4f44027ef7a46585b72589f96aca0ade6b5e5df9ef7c0a3007298b15b53e4779029e0f0b98023c354845cb2b2a7a534472a3df9896ffe9ecb33fb7e664f812081d1c3f441609873f451b8d1409c77a32eab7686beb093c24d0b274b74cceb3772ccebedc0a5ef0094e4ee2e332790fe8c5b5492c1690d7ab5ea45c7a51702ab2945", [[], [], [], [], [], []]}, 0x6b6) sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1cc}, 0x1, 0x0, 0x0, 0x4040}, 0x400c0c1) 04:36:26 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_LAST_MEMBER_INTVL={0xc, 0x1e, 0x6}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 04:36:26 executing program 1 (fault-call:2 fault-nth:77): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:26 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001b1f1fff000000000000000000ec0af6", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r2, 0xc008551a, &(0x7f0000000080)=ANY=[@ANYBLOB="010100f3490000000000000006000000"]) chmod(&(0x7f0000000040)='./file0\x00', 0xf519d823d98100d3) syz_open_dev$mouse(&(0x7f0000000200)='/dev/input/mouse#\x00', 0xe681, 0x484401) creat(&(0x7f0000000180)='./file0\x00', 0x10a) r3 = creat(&(0x7f0000000140)='./file0\x00', 0xdb) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VHOST_SET_VRING_CALL(r3, 0x4008af21, &(0x7f00000001c0)={0x2}) 04:36:26 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) prctl$PR_CAPBSET_READ(0x17, 0x1a) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') socket$vsock_dgram(0x28, 0x2, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r1, 0x5000943f, &(0x7f0000000680)={{}, 0x0, 0x2, @unused=[0x20, 0x7, 0x1, 0x7], @subvolid=0x38000000}) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) ioctl$sock_inet6_udp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000040)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) sendto$isdn(r6, &(0x7f0000000180)=ANY=[@ANYBLOB="3cbb513b04000000e10b67378cead2ef7903702004b066e44f775108e316c5a03242a6516db8bffd69cc696039aeb81401ebb36253360cbf3c84148c0d542df012b2d468786edea18321da7949a55061f7e912e287ca401e787b"], 0x59, 0x4, &(0x7f0000000140)={0x22, 0x2, 0x5, 0x2, 0x5}, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, r3, 0x0) r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r7, &(0x7f0000004140)) openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x30082, 0x0) 04:36:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b09010062726964676500000c0002800600060000f50000"], 0x3c}}, 0x0) [ 278.577513] FAULT_INJECTION: forcing a failure. [ 278.577513] name failslab, interval 1, probability 0, space 0, times 0 [ 278.615608] CPU: 1 PID: 19671 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 04:36:26 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES32, @ANYRESOCT=r0, @ANYBLOB="0000000000000000200012800f00010062736c61766500000c000580060005000000000008001f0080000000500019800500060088000000140004008172057beea8729c4afebd4f5f0d0c3e08000100050000001400040080d906a791c8d932f818e4dc81d2d4ee14000400c446951ba2cefa817f5de7191a13064000000000"], 0x98}, 0x1, 0x0, 0x0, 0x24004804}, 0x40) r1 = socket$nl_audit(0x10, 0x3, 0x9) connect$netlink(r1, &(0x7f0000000000)=@proc={0x10, 0x0, 0x25dfdbfc, 0x80000000}, 0xc) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000340)=0x7f, 0x4) sendfile(r2, r2, 0x0, 0xffff) sendmsg$NLBL_MGMT_C_ADD(r2, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\b', @ANYRES16=0x0, @ANYBLOB="000826bd7000fcdbdf250100000008000700ac141429080004000100000014000500fe80000000000000000000000000003a"], 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x44) [ 278.623552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.632903] Call Trace: [ 278.635492] dump_stack+0x1b2/0x283 [ 278.639126] should_fail.cold+0x10a/0x154 [ 278.643279] should_failslab+0xd6/0x130 [ 278.647255] kmem_cache_alloc+0x28e/0x3c0 [ 278.651414] __kernfs_new_node+0x6f/0x470 [ 278.655566] kernfs_new_node+0x7b/0xe0 [ 278.659460] __kernfs_create_file+0x3d/0x320 [ 278.663873] sysfs_add_file_mode_ns+0x1e1/0x450 [ 278.668544] ? kernfs_create_dir_ns+0x171/0x200 [ 278.673219] internal_create_group+0x22b/0x710 04:36:26 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='\x00', 0x539a00, 0x108) getsockopt$inet_dccp_buf(r0, 0x21, 0xf, &(0x7f0000000200)=""/139, &(0x7f0000000040)=0x8b) semctl$GETALL(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)=""/197) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS3\x00', 0x8240, 0x0) ioctl$TCSETXF(r1, 0x5434, &(0x7f00000002c0)={0xbfee, 0xb68, [0xef5a, 0x7fff, 0x3, 0x5, 0x9], 0x1}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB='<\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="00000c00028006000605000000000000000080000000000000000000307f44539414641c703ed488baec4389fab1995e54ab2f938b144e8f957d9526dcebba616d7c930a7de7aa638134c41e7a70e01409d76b102d8fcca2a6c0f86aeca79a8d13f6586d367a23c902a5f88132b93d5a"], 0x3c}}, 0x0) [ 278.677812] sysfs_create_groups+0x92/0x127 [ 278.682137] device_add+0x879/0x15c0 [ 278.685857] ? device_is_dependent+0x270/0x270 [ 278.690449] netdev_register_kobject+0x181/0x410 [ 278.695210] register_netdevice+0x955/0xe40 [ 278.699533] ? netdev_change_features+0xa0/0xa0 [ 278.704210] br_dev_newlink+0x23/0x100 [ 278.708101] rtnl_newlink+0xf88/0x1830 [ 278.712026] ? br_changelink+0x1570/0x1570 [ 278.716272] ? mark_held_locks+0xa6/0xf0 [ 278.720336] ? rtnl_dellink+0x6a0/0x6a0 [ 278.724314] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 278.729336] ? _raw_spin_unlock_irq+0x5a/0x80 [ 278.733879] ? rtnl_dellink+0x6a0/0x6a0 [ 278.737851] rtnetlink_rcv_msg+0x3be/0xb10 [ 278.742096] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 278.746595] ? __netlink_lookup+0x345/0x5d0 [ 278.750918] ? netdev_pick_tx+0x2e0/0x2e0 [ 278.755080] netlink_rcv_skb+0x125/0x390 [ 278.759162] ? memcpy+0x35/0x50 [ 278.762439] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 278.766938] ? netlink_ack+0x9a0/0x9a0 [ 278.770836] netlink_unicast+0x437/0x610 04:36:26 executing program 2: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x244401, 0x0) ioctl$VIDIOC_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f0000000100)={0x0, 0x0, [], @bt={0x20, 0x27a45ac5, 0xfffffff9, 0x1, 0x7, 0x5}}) r1 = socket$netlink(0x10, 0x3, 0x0) openat$vmci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vmci\x00', 0x2, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012c00b00010062726924676500000c0002800600060800000000"], 0x3c}}, 0x0) [ 278.774902] ? netlink_sendskb+0xd0/0xd0 [ 278.778976] ? __check_object_size+0x179/0x22c [ 278.783558] netlink_sendmsg+0x62e/0xb80 [ 278.787625] ? nlmsg_notify+0x170/0x170 [ 278.791604] ? kernel_recvmsg+0x210/0x210 [ 278.795760] ? security_socket_sendmsg+0x83/0xb0 [ 278.800516] ? nlmsg_notify+0x170/0x170 [ 278.804491] sock_sendmsg+0xb5/0x100 [ 278.808208] ___sys_sendmsg+0x6c8/0x800 [ 278.812188] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 278.816949] ? cpuacct_charge+0x1ca/0x350 [ 278.821101] ? lock_downgrade+0x740/0x740 [ 278.825252] ? cpuacct_charge+0x1cf/0x350 [ 278.829401] ? __fget+0x1fe/0x360 [ 278.832874] ? lock_acquire+0x170/0x3f0 [ 278.836839] ? lock_downgrade+0x740/0x740 [ 278.840978] ? __fget+0x225/0x360 [ 278.844414] ? __fdget+0x196/0x1f0 [ 278.847938] ? sockfd_lookup_light+0xb2/0x160 [ 278.852414] __sys_sendmsg+0xa3/0x120 [ 278.856204] ? SyS_shutdown+0x160/0x160 [ 278.860179] SyS_sendmsg+0x27/0x40 [ 278.863721] ? __sys_sendmsg+0x120/0x120 [ 278.867785] do_syscall_64+0x1d5/0x640 [ 278.871667] entry_SYSCALL_64_after_hwframe+0x46/0xbb 04:36:26 executing program 0: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000009c0)={'syztnl1\x00', &(0x7f0000000940)={'erspan0\x00', 0x0, 0x700, 0xae8bc03b1c2fd401, 0xffffffff, 0x5, {{0x15, 0x4, 0x2, 0x5, 0x54, 0x65, 0x0, 0x7f, 0x2f, 0x0, @broadcast, @multicast2, {[@timestamp_prespec={0x44, 0x1c, 0x23, 0x3, 0x9, [{@broadcast}, {@multicast2, 0x48}, {@dev={0xac, 0x14, 0x14, 0x3e}, 0x1ede}]}, @ssrr={0x89, 0x23, 0x9a, [@multicast2, @multicast1, @private=0xa010101, @empty, @local, @empty, @empty, @rand_addr=0x64010100]}]}}}}}) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) r5 = socket(0x10, 0x803, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r8, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f00000015c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001580)={&(0x7f0000000a00)={0xb7c, 0x0, 0x10, 0x70bd28, 0x25dfdbfb, {}, [{{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0xb7a0}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}]}}, {{0x8}, {0x124, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x715}}}]}}, {{0x8}, {0x1e4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x1f}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0xffff}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x89}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x1f0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0xce0}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x264, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x500}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0xffff}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xb, 0x4, 'random\x00'}}}]}}, {{0x8}, {0x138, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8, 0x4, r0}}}]}}, {{0x8}, {0x1a4, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x7ff}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x10001}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8, 0x4, 0x5}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8, 0x4, r8}}}]}}]}, 0xb7c}, 0x1, 0x0, 0x0, 0x40000d3}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x40000) [ 278.876854] RIP: 0033:0x45e0f9 [ 278.880036] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 278.887748] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 278.895008] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 278.902270] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 278.909527] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004d [ 278.916793] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:26 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x6) fstat(r2, &(0x7f0000004140)) 04:36:26 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) fstat(r2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) 04:36:26 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0) 04:36:26 executing program 1 (fault-call:2 fault-nth:78): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:26 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) recvmsg$can_raw(r2, &(0x7f0000000700)={&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000100)=""/106, 0x6a}, {&(0x7f0000000180)=""/101, 0x65}, {&(0x7f0000000080)=""/13, 0xd}, {&(0x7f0000000200)=""/190, 0xbe}, {&(0x7f0000000340)=""/73, 0x49}, {&(0x7f00000003c0)=""/86, 0x56}, {&(0x7f00000002c0)=""/59, 0x3b}, {&(0x7f0000000440)=""/251, 0xfb}], 0x8, &(0x7f0000000600)=""/220, 0xdc}, 0x40000000) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 279.074719] FAULT_INJECTION: forcing a failure. [ 279.074719] name failslab, interval 1, probability 0, space 0, times 0 [ 279.089596] CPU: 1 PID: 19719 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 279.097487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 279.106840] Call Trace: [ 279.109426] dump_stack+0x1b2/0x283 [ 279.113054] should_fail.cold+0x10a/0x154 [ 279.117212] should_failslab+0xd6/0x130 [ 279.121190] kmem_cache_alloc+0x28e/0x3c0 [ 279.125345] __kernfs_new_node+0x6f/0x470 [ 279.129495] kernfs_new_node+0x7b/0xe0 [ 279.133386] __kernfs_create_file+0x3d/0x320 [ 279.137800] sysfs_add_file_mode_ns+0x1e1/0x450 [ 279.142466] ? kernfs_create_dir_ns+0x171/0x200 [ 279.147147] internal_create_group+0x22b/0x710 [ 279.151736] sysfs_create_groups+0x92/0x127 [ 279.156062] device_add+0x879/0x15c0 [ 279.159790] ? device_is_dependent+0x270/0x270 [ 279.164380] netdev_register_kobject+0x181/0x410 [ 279.169137] register_netdevice+0x955/0xe40 [ 279.173485] ? netdev_change_features+0xa0/0xa0 [ 279.178145] br_dev_newlink+0x23/0x100 [ 279.182054] rtnl_newlink+0xf88/0x1830 [ 279.185993] ? br_changelink+0x1570/0x1570 [ 279.190216] ? mark_held_locks+0xa6/0xf0 [ 279.194256] ? rtnl_dellink+0x6a0/0x6a0 [ 279.198216] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 279.203225] ? _raw_spin_unlock_irq+0x5a/0x80 [ 279.207723] ? rtnl_dellink+0x6a0/0x6a0 [ 279.211677] rtnetlink_rcv_msg+0x3be/0xb10 [ 279.215906] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 279.220414] ? __netlink_lookup+0x345/0x5d0 [ 279.224725] ? netdev_pick_tx+0x2e0/0x2e0 [ 279.228872] netlink_rcv_skb+0x125/0x390 [ 279.232918] ? memcpy+0x35/0x50 [ 279.236204] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 279.240679] ? netlink_ack+0x9a0/0x9a0 [ 279.244565] netlink_unicast+0x437/0x610 [ 279.248627] ? netlink_sendskb+0xd0/0xd0 [ 279.252679] ? __check_object_size+0x179/0x22c [ 279.257242] netlink_sendmsg+0x62e/0xb80 [ 279.261317] ? nlmsg_notify+0x170/0x170 [ 279.265278] ? kernel_recvmsg+0x210/0x210 [ 279.269418] ? security_socket_sendmsg+0x83/0xb0 [ 279.274154] ? nlmsg_notify+0x170/0x170 [ 279.278115] sock_sendmsg+0xb5/0x100 [ 279.281817] ___sys_sendmsg+0x6c8/0x800 [ 279.285797] ? get_pid_task+0x91/0x130 [ 279.289678] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 279.294419] ? lock_downgrade+0x740/0x740 [ 279.298550] ? __fget+0x1fe/0x360 [ 279.302042] ? lock_acquire+0x170/0x3f0 [ 279.306002] ? lock_downgrade+0x740/0x740 [ 279.310143] ? __fget+0x225/0x360 [ 279.313577] ? __fdget+0x196/0x1f0 [ 279.317105] ? sockfd_lookup_light+0xb2/0x160 [ 279.321619] __sys_sendmsg+0xa3/0x120 [ 279.325411] ? SyS_shutdown+0x160/0x160 [ 279.329374] ? wait_for_completion_io+0x10/0x10 [ 279.334026] ? SyS_read+0x210/0x210 [ 279.337632] ? SyS_clock_settime+0x1a0/0x1a0 [ 279.342021] SyS_sendmsg+0x27/0x40 [ 279.345546] ? __sys_sendmsg+0x120/0x120 [ 279.349599] do_syscall_64+0x1d5/0x640 [ 279.353481] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 279.358657] RIP: 0033:0x45e0f9 [ 279.361825] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:27 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8, 0x1}, 0xe) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:27 executing program 5: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x4000000}, 0x50) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) [ 279.369510] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 279.376759] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 279.384012] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 279.391292] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004e [ 279.398553] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:27 executing program 1 (fault-call:2 fault-nth:79): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:27 executing program 3: syz_genetlink_get_family_id$nl80211(&(0x7f0000000000)='nl80211\x00') r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x5c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1002, 0x648}, [@IFLA_VF_PORTS={0x3c, 0x18, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "3af12520626aeea83ff53cf0b28efafb"}, @IFLA_PORT_PROFILE={0x1d, 0x2, 'bridge\x00f\xaf\x889\xd0?\xdbh+<\xf3\x7f\xe5\x8a\x14\xf2\x92\xf5'}]}]}]}, 0x5c}}, 0x0) 04:36:27 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f0000001d00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=""/212, 0xd4}}], 0x1, 0x0, 0x0) clock_settime(0x5, &(0x7f0000000000)) ioctl$DRM_IOCTL_SG_FREE(0xffffffffffffffff, 0x40106439, &(0x7f0000000180)={0x9f8e}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/nf_conntrack_expect\x00') preadv(r0, &(0x7f00000017c0), 0x103, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = add_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="23e5eb0f5d12a4efb0a8e5a207638c4bb9cd5dc093db981aad024fc7", 0x1c, 0xfffffffffffffffb) keyctl$set_timeout(0xf, r2, 0x5) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:27 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) getsockopt$bt_BT_CHANNEL_POLICY(0xffffffffffffffff, 0x112, 0xa, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x800, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x40800, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e20, 0x6, @loopback, 0x6a6}}, 0x1000, 0x7, 0x401, 0x3, 0x2, 0x2, 0x6}, &(0x7f0000000240)=0x9c) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r3, 0x84, 0x23, &(0x7f0000000280)={r4, 0x800}, 0x8) ioctl$SOUND_PCM_READ_RATE(r2, 0x80045002, &(0x7f0000000100)) ioctl$VIDIOC_LOG_STATUS(r1, 0x5646, 0x0) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r5, 0x0) [ 279.512698] FAULT_INJECTION: forcing a failure. [ 279.512698] name failslab, interval 1, probability 0, space 0, times 0 [ 279.553210] CPU: 1 PID: 19753 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 279.561128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 279.570479] Call Trace: [ 279.573071] dump_stack+0x1b2/0x283 [ 279.576708] should_fail.cold+0x10a/0x154 [ 279.580864] should_failslab+0xd6/0x130 [ 279.584841] kmem_cache_alloc+0x28e/0x3c0 [ 279.588992] __kernfs_new_node+0x6f/0x470 [ 279.593169] kernfs_new_node+0x7b/0xe0 [ 279.597058] __kernfs_create_file+0x3d/0x320 [ 279.601465] sysfs_add_file_mode_ns+0x1e1/0x450 [ 279.606131] ? kernfs_create_dir_ns+0x171/0x200 [ 279.610799] internal_create_group+0x22b/0x710 [ 279.615381] sysfs_create_groups+0x92/0x127 [ 279.619701] device_add+0x879/0x15c0 [ 279.623417] ? device_is_dependent+0x270/0x270 [ 279.628002] netdev_register_kobject+0x181/0x410 [ 279.632756] register_netdevice+0x955/0xe40 [ 279.637100] ? netdev_change_features+0xa0/0xa0 [ 279.641773] br_dev_newlink+0x23/0x100 [ 279.645680] rtnl_newlink+0xf88/0x1830 [ 279.649594] ? __lock_acquire+0x5fc/0x3f20 [ 279.653836] ? br_changelink+0x1570/0x1570 [ 279.658068] ? kmem_cache_free+0x7c/0x2b0 [ 279.662223] ? rtnl_dellink+0x6a0/0x6a0 [ 279.666210] ? trace_hardirqs_on+0x10/0x10 [ 279.670448] ? netlink_deliver_tap+0x60c/0x7d0 [ 279.675021] ? netlink_unicast+0x485/0x610 [ 279.679240] ? netlink_sendmsg+0x62e/0xb80 [ 279.683464] ? ___sys_sendmsg+0x660/0x800 [ 279.687602] ? __sys_sendmsg+0xa3/0x120 [ 279.691554] ? SyS_sendmsg+0x27/0x40 [ 279.695292] ? lock_acquire+0x170/0x3f0 [ 279.699265] ? lock_downgrade+0x740/0x740 [ 279.703415] ? rtnl_dellink+0x6a0/0x6a0 [ 279.707401] rtnetlink_rcv_msg+0x3be/0xb10 [ 279.711635] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 279.716112] ? __netlink_lookup+0x345/0x5d0 [ 279.720441] ? netdev_pick_tx+0x2e0/0x2e0 [ 279.724590] netlink_rcv_skb+0x125/0x390 [ 279.728640] ? memcpy+0x35/0x50 [ 279.731900] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 279.736374] ? netlink_ack+0x9a0/0x9a0 [ 279.740260] netlink_unicast+0x437/0x610 [ 279.744316] ? netlink_sendskb+0xd0/0xd0 [ 279.748367] ? __check_object_size+0x179/0x22c [ 279.752930] netlink_sendmsg+0x62e/0xb80 [ 279.756986] ? nlmsg_notify+0x170/0x170 [ 279.760950] ? kernel_recvmsg+0x210/0x210 [ 279.765080] ? security_socket_sendmsg+0x83/0xb0 [ 279.769816] ? nlmsg_notify+0x170/0x170 [ 279.773779] sock_sendmsg+0xb5/0x100 [ 279.777497] ___sys_sendmsg+0x6c8/0x800 [ 279.781453] ? get_pid_task+0x91/0x130 [ 279.785333] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 279.790070] ? lock_downgrade+0x740/0x740 [ 279.794207] ? __fget+0x1fe/0x360 [ 279.797642] ? lock_acquire+0x170/0x3f0 [ 279.801598] ? lock_downgrade+0x740/0x740 [ 279.805745] ? __fget+0x225/0x360 [ 279.809178] ? __fdget+0x196/0x1f0 [ 279.812705] ? sockfd_lookup_light+0xb2/0x160 [ 279.817271] __sys_sendmsg+0xa3/0x120 [ 279.821051] ? SyS_shutdown+0x160/0x160 [ 279.825008] ? wait_for_completion_io+0x10/0x10 [ 279.829660] ? SyS_read+0x210/0x210 [ 279.833268] ? SyS_clock_settime+0x1a0/0x1a0 [ 279.837666] SyS_sendmsg+0x27/0x40 [ 279.841183] ? __sys_sendmsg+0x120/0x120 [ 279.845226] do_syscall_64+0x1d5/0x640 [ 279.849100] entry_SYSCALL_64_after_hwframe+0x46/0xbb 04:36:27 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$NFNL_MSG_ACCT_GET(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x30, 0x1, 0x7, 0x5, 0x0, 0x0, {0x2}, [@NFACCT_FLAGS={0x8}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000080}, 0x200008c1) fstat(r2, &(0x7f0000000140)) 04:36:27 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) mincore(&(0x7f0000ffc000/0x2000)=nil, 0x2000, &(0x7f0000000100)=""/93) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r1) setsockopt(r1, 0xe0, 0x6f, &(0x7f0000000180)="2e9374fda6d919c2e53bac8ecd2faa6e768f96c762b08c00e1876b2f69f4ff68acc20183ef30c2bb2b997d79a94307f0aba1b1e067409a9aa60ba78297358570532717ee0a69c81a5c7d39bf8659d19f09b257aa2d91b9f13620d657bf01add35121cfa05cc2c573c1b50f5c2e704b0f4fdc217d6f07c9aeb823b2c53b9c1c1686940789ba6f529ef94ab928343267c08c556f1b27318645cf686043b6f81d017daae38342c4db0e18d129a271da6e141855271f4bc6bedfb483704d31d8909db31a744934c1d9e7ccef1dc93f80ab60136f6284ab9a8fa574", 0xd9) [ 279.854268] RIP: 0033:0x45e0f9 [ 279.857434] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 279.865119] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 279.872366] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 279.879621] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 279.886886] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004f [ 279.894159] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:27 executing program 1 (fault-call:2 fault-nth:80): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:27 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) r3 = fcntl$dupfd(r1, 0x0, r1) mkdirat(r3, &(0x7f0000000000)='./file0\x00', 0x60) 04:36:27 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mbind(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000240)=0x2, 0x7d, 0x2) ioctl$IMGETVERSION(r3, 0x80044942, &(0x7f0000000080)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)) r4 = dup(r0) r5 = inotify_init1(0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f00000000c0)={0x0, r4, 0x3, 0x80, 0x2, 0x5}) sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x44, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="971e9f17a480"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9cb630d4b62e"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="a40442db7ebc"}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x8805) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r4, 0xc008551c, &(0x7f0000000100)=ANY=[@ANYBLOB="010400000c0000ddb334ee162afacb30e4020000"]) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) ioctl$SOUND_PCM_READ_RATE(r6, 0x80045002, &(0x7f0000000040)) fstat(r6, 0x0) 04:36:27 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/wireless\x00') ioctl$VIDIOC_ENUMOUTPUT(r1, 0xc0485630, &(0x7f0000000040)={0x6, "5d4519e78d10cb7bdef7c85974bfbcfbe833f9f88ad8e04572ee4f8637d20e42", 0x1, 0x4, 0x9, 0xff06ff, 0xc}) [ 280.014234] FAULT_INJECTION: forcing a failure. [ 280.014234] name failslab, interval 1, probability 0, space 0, times 0 [ 280.029936] CPU: 1 PID: 19778 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 280.037826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.047174] Call Trace: [ 280.049764] dump_stack+0x1b2/0x283 [ 280.053396] should_fail.cold+0x10a/0x154 [ 280.057549] should_failslab+0xd6/0x130 [ 280.061525] kmem_cache_alloc+0x28e/0x3c0 [ 280.065677] __kernfs_new_node+0x6f/0x470 [ 280.069832] kernfs_new_node+0x7b/0xe0 [ 280.073724] __kernfs_create_file+0x3d/0x320 [ 280.078143] sysfs_add_file_mode_ns+0x1e1/0x450 [ 280.082838] ? kernfs_create_dir_ns+0x171/0x200 [ 280.087526] internal_create_group+0x22b/0x710 [ 280.092116] sysfs_create_groups+0x92/0x127 [ 280.096444] device_add+0x879/0x15c0 [ 280.100160] ? device_is_dependent+0x270/0x270 [ 280.104748] netdev_register_kobject+0x181/0x410 [ 280.109536] register_netdevice+0x955/0xe40 [ 280.113861] ? netdev_change_features+0xa0/0xa0 [ 280.118532] br_dev_newlink+0x23/0x100 [ 280.122428] rtnl_newlink+0xf88/0x1830 [ 280.126356] ? br_changelink+0x1570/0x1570 [ 280.130581] ? mark_held_locks+0xa6/0xf0 [ 280.134633] ? rtnl_dellink+0x6a0/0x6a0 [ 280.138637] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 280.143635] ? _raw_spin_unlock_irq+0x5a/0x80 [ 280.148132] ? rtnl_dellink+0x6a0/0x6a0 [ 280.152088] rtnetlink_rcv_msg+0x3be/0xb10 [ 280.156315] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 280.160800] ? __netlink_lookup+0x345/0x5d0 [ 280.165101] ? netdev_pick_tx+0x2e0/0x2e0 [ 280.169231] netlink_rcv_skb+0x125/0x390 [ 280.173274] ? memcpy+0x35/0x50 [ 280.176550] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 280.181054] ? netlink_ack+0x9a0/0x9a0 [ 280.184935] netlink_unicast+0x437/0x610 [ 280.188993] ? netlink_sendskb+0xd0/0xd0 [ 280.193052] ? __check_object_size+0x179/0x22c [ 280.197639] netlink_sendmsg+0x62e/0xb80 [ 280.201681] ? nlmsg_notify+0x170/0x170 [ 280.205637] ? kernel_recvmsg+0x210/0x210 [ 280.209785] ? security_socket_sendmsg+0x83/0xb0 [ 280.214529] ? nlmsg_notify+0x170/0x170 [ 280.218491] sock_sendmsg+0xb5/0x100 [ 280.222186] ___sys_sendmsg+0x6c8/0x800 [ 280.226142] ? get_pid_task+0x91/0x130 [ 280.230011] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 280.234766] ? lock_downgrade+0x740/0x740 [ 280.238905] ? __fget+0x1fe/0x360 [ 280.242358] ? lock_acquire+0x170/0x3f0 [ 280.246312] ? lock_downgrade+0x740/0x740 [ 280.250448] ? __fget+0x225/0x360 [ 280.253900] ? __fdget+0x196/0x1f0 [ 280.257434] ? sockfd_lookup_light+0xb2/0x160 [ 280.261916] __sys_sendmsg+0xa3/0x120 [ 280.265697] ? SyS_shutdown+0x160/0x160 [ 280.269652] ? wait_for_completion_io+0x10/0x10 [ 280.274318] ? SyS_read+0x210/0x210 [ 280.277952] ? SyS_clock_settime+0x1a0/0x1a0 [ 280.282343] SyS_sendmsg+0x27/0x40 [ 280.285885] ? __sys_sendmsg+0x120/0x120 [ 280.289928] do_syscall_64+0x1d5/0x640 [ 280.293808] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 280.298987] RIP: 0033:0x45e0f9 [ 280.302156] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 280.309844] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 280.317100] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 280.324359] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 280.331622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000050 [ 280.338869] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:28 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0x6224, 0x200, 0x7) r3 = dup2(r1, r2) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0) ioctl$vim2m_VIDIOC_EXPBUF(r4, 0xc0405610, &(0x7f0000000100)={0x3, 0x20007ffc, 0xf65, 0x800, r3}) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280)='/dev/hwrng\x00', 0x44880, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r6, 0xc06c4124, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) sendfile(r5, r5, 0x0, 0xffff) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x7f}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r5, 0x84, 0x6d, &(0x7f0000000180)=ANY=[@ANYRES32=r7, @ANYBLOB="9b0000009155cc5adc3bb375e11a099a331f73fe5129175d66af0081e7d2e52e7216b047f1851ee13cc6fb6d566f2919b4433219e6d7a6ca4774222b3bb85e32768551ac024b30c35663209af1a295901c418c75d9acfe5e60d0f3ced4317663ef78bfa4421d08baa1bd4f3ffa6ac5131ff8620f75fa0ab2a7d94722716bd49394652d33d60f054d45f849322836da0bca9556aa6e8aaf241cf4c79a79eebb"], &(0x7f0000000240)=0xa3) fstat(r2, 0x0) 04:36:28 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) close(r4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e20, @multicast2}}, 0x5, 0x2, 0x401, 0x1, 0x46, 0x2, 0x1f}, &(0x7f0000000000)=0x9c) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KDDELIO(r7, 0x4b35, 0x5) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000040)={r5, 0x4, 0x10}, 0xc) fstat(r2, &(0x7f0000004140)) 04:36:28 executing program 1 (fault-call:2 fault-nth:81): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:28 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000)=0xf9, &(0x7f0000000040)=0x1) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c1c0cf3b6001fff09000000000000feffffff00", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0x0, 0x0) getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f0000000100)=""/55, &(0x7f0000000140)=0x37) 04:36:28 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mbind(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000240)=0x2, 0x7d, 0x2) ioctl$IMGETVERSION(r3, 0x80044942, &(0x7f0000000080)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)) r4 = dup(r0) r5 = inotify_init1(0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f00000000c0)={0x0, r4, 0x3, 0x80, 0x2, 0x5}) sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x44, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="971e9f17a480"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9cb630d4b62e"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="a40442db7ebc"}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x8805) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r4, 0xc008551c, &(0x7f0000000100)=ANY=[@ANYBLOB="010400000c0000ddb334ee162afacb30e4020000"]) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) ioctl$SOUND_PCM_READ_RATE(r6, 0x80045002, &(0x7f0000000040)) fstat(r6, 0x0) 04:36:28 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:28 executing program 3: socket$netlink(0x10, 0x3, 0x13) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x25dfdbff, {}, [@IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x3}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x4}, @IFLA_BROADCAST={0xa, 0x2, @broadcast}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8000}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) [ 280.517317] FAULT_INJECTION: forcing a failure. [ 280.517317] name failslab, interval 1, probability 0, space 0, times 0 [ 280.572058] CPU: 1 PID: 19814 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 280.579969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.589322] Call Trace: [ 280.591911] dump_stack+0x1b2/0x283 [ 280.595542] should_fail.cold+0x10a/0x154 [ 280.599694] should_failslab+0xd6/0x130 [ 280.603676] kmem_cache_alloc+0x28e/0x3c0 [ 280.607846] __kernfs_new_node+0x6f/0x470 [ 280.611999] kernfs_create_dir_ns+0x8c/0x200 [ 280.616414] internal_create_group+0xe9/0x710 04:36:28 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x1c, r2, 0x300, 0x70bd29, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x2) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x70, &(0x7f0000000100)={r3}, &(0x7f0000000180)=0x8) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000240)=""/5) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={r3, 0x1}, 0x8) [ 280.620916] dpm_sysfs_add+0x21/0x1c0 [ 280.624719] device_add+0x977/0x15c0 [ 280.628468] ? device_is_dependent+0x270/0x270 [ 280.633053] netdev_register_kobject+0x181/0x410 [ 280.637800] register_netdevice+0x955/0xe40 [ 280.642113] ? netdev_change_features+0xa0/0xa0 [ 280.646778] br_dev_newlink+0x23/0x100 [ 280.650662] rtnl_newlink+0xf88/0x1830 [ 280.654564] ? __lock_acquire+0x5fc/0x3f20 [ 280.658803] ? br_changelink+0x1570/0x1570 [ 280.663020] ? kmem_cache_free+0x7c/0x2b0 [ 280.667148] ? rtnl_dellink+0x6a0/0x6a0 [ 280.671101] ? trace_hardirqs_on+0x10/0x10 [ 280.675350] ? netlink_deliver_tap+0x60c/0x7d0 [ 280.679945] ? netlink_unicast+0x485/0x610 [ 280.684163] ? netlink_sendmsg+0x62e/0xb80 [ 280.688382] ? ___sys_sendmsg+0x660/0x800 [ 280.692520] ? __sys_sendmsg+0xa3/0x120 [ 280.696487] ? SyS_sendmsg+0x27/0x40 [ 280.700201] ? lock_acquire+0x170/0x3f0 [ 280.704153] ? lock_downgrade+0x740/0x740 [ 280.708291] ? rtnl_dellink+0x6a0/0x6a0 [ 280.712275] rtnetlink_rcv_msg+0x3be/0xb10 [ 280.716492] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 280.720969] ? __netlink_lookup+0x345/0x5d0 [ 280.725273] ? netdev_pick_tx+0x2e0/0x2e0 [ 280.729404] netlink_rcv_skb+0x125/0x390 [ 280.733445] ? memcpy+0x35/0x50 [ 280.736705] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 280.741182] ? netlink_ack+0x9a0/0x9a0 [ 280.745056] netlink_unicast+0x437/0x610 [ 280.749110] ? netlink_sendskb+0xd0/0xd0 [ 280.753166] ? __check_object_size+0x179/0x22c [ 280.757735] netlink_sendmsg+0x62e/0xb80 [ 280.761779] ? nlmsg_notify+0x170/0x170 [ 280.765752] ? kernel_recvmsg+0x210/0x210 [ 280.769886] ? security_socket_sendmsg+0x83/0xb0 [ 280.774633] ? nlmsg_notify+0x170/0x170 [ 280.778608] sock_sendmsg+0xb5/0x100 [ 280.782315] ___sys_sendmsg+0x6c8/0x800 [ 280.786292] ? get_pid_task+0x91/0x130 [ 280.790169] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 280.794915] ? lock_downgrade+0x740/0x740 [ 280.799045] ? __fget+0x1fe/0x360 [ 280.802488] ? lock_acquire+0x170/0x3f0 [ 280.806453] ? lock_downgrade+0x740/0x740 [ 280.810600] ? __fget+0x225/0x360 [ 280.814046] ? __fdget+0x196/0x1f0 [ 280.817576] ? sockfd_lookup_light+0xb2/0x160 [ 280.822079] __sys_sendmsg+0xa3/0x120 [ 280.825863] ? SyS_shutdown+0x160/0x160 [ 280.829818] ? wait_for_completion_io+0x10/0x10 [ 280.834475] ? SyS_read+0x210/0x210 [ 280.838090] ? SyS_clock_settime+0x1a0/0x1a0 [ 280.842480] SyS_sendmsg+0x27/0x40 [ 280.846011] ? __sys_sendmsg+0x120/0x120 [ 280.850054] do_syscall_64+0x1d5/0x640 [ 280.853942] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 280.859121] RIP: 0033:0x45e0f9 [ 280.862310] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:28 executing program 1 (fault-call:2 fault-nth:82): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 280.870016] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 280.877272] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 280.884535] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 280.891792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000051 [ 280.899093] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 280.947728] FAULT_INJECTION: forcing a failure. [ 280.947728] name failslab, interval 1, probability 0, space 0, times 0 [ 280.961639] CPU: 1 PID: 19849 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 280.969541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.978894] Call Trace: [ 280.981483] dump_stack+0x1b2/0x283 [ 280.985120] should_fail.cold+0x10a/0x154 [ 280.989274] should_failslab+0xd6/0x130 [ 280.993272] kmem_cache_alloc+0x28e/0x3c0 04:36:28 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mbind(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000240)=0x2, 0x7d, 0x2) ioctl$IMGETVERSION(r3, 0x80044942, &(0x7f0000000080)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)) r4 = dup(r0) r5 = inotify_init1(0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f00000000c0)={0x0, r4, 0x3, 0x80, 0x2, 0x5}) sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x44, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="971e9f17a480"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9cb630d4b62e"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="a40442db7ebc"}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x8805) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r4, 0xc008551c, &(0x7f0000000100)=ANY=[@ANYBLOB="010400000c0000ddb334ee162afacb30e4020000"]) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) ioctl$SOUND_PCM_READ_RATE(r6, 0x80045002, &(0x7f0000000040)) fstat(r6, 0x0) [ 280.997441] __kernfs_new_node+0x6f/0x470 [ 281.001621] kernfs_new_node+0x7b/0xe0 [ 281.005513] __kernfs_create_file+0x3d/0x320 [ 281.009914] sysfs_add_file_mode_ns+0x1e1/0x450 [ 281.014584] sysfs_merge_group+0xdc/0x200 [ 281.018739] dpm_sysfs_add+0x122/0x1c0 [ 281.022660] device_add+0x977/0x15c0 [ 281.026385] ? device_is_dependent+0x270/0x270 [ 281.030967] netdev_register_kobject+0x181/0x410 [ 281.035706] register_netdevice+0x955/0xe40 [ 281.040011] ? netdev_change_features+0xa0/0xa0 [ 281.044677] br_dev_newlink+0x23/0x100 [ 281.048561] rtnl_newlink+0xf88/0x1830 [ 281.052456] ? br_changelink+0x1570/0x1570 [ 281.056671] ? mark_held_locks+0xa6/0xf0 [ 281.060729] ? rtnl_dellink+0x6a0/0x6a0 [ 281.064715] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 281.069726] ? _raw_spin_unlock_irq+0x5a/0x80 [ 281.074270] ? rtnl_dellink+0x6a0/0x6a0 [ 281.078243] rtnetlink_rcv_msg+0x3be/0xb10 [ 281.082484] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 281.087016] ? __netlink_lookup+0x345/0x5d0 [ 281.091368] ? netdev_pick_tx+0x2e0/0x2e0 [ 281.095511] netlink_rcv_skb+0x125/0x390 [ 281.099583] ? memcpy+0x35/0x50 [ 281.102863] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 281.107341] ? netlink_ack+0x9a0/0x9a0 [ 281.111213] netlink_unicast+0x437/0x610 [ 281.115353] ? netlink_sendskb+0xd0/0xd0 [ 281.119402] ? __check_object_size+0x179/0x22c [ 281.123975] netlink_sendmsg+0x62e/0xb80 [ 281.128027] ? nlmsg_notify+0x170/0x170 [ 281.131988] ? kernel_recvmsg+0x210/0x210 [ 281.136130] ? security_socket_sendmsg+0x83/0xb0 [ 281.140873] ? nlmsg_notify+0x170/0x170 [ 281.144840] sock_sendmsg+0xb5/0x100 [ 281.148544] ___sys_sendmsg+0x6c8/0x800 [ 281.152518] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 281.157256] ? check_preemption_disabled+0x35/0x240 [ 281.162267] ? check_preemption_disabled+0x35/0x240 [ 281.167267] ? finish_task_switch+0x178/0x610 [ 281.171767] ? __fget+0x1fe/0x360 [ 281.175220] ? lock_acquire+0x170/0x3f0 [ 281.179182] ? lock_downgrade+0x740/0x740 [ 281.183349] ? __fget+0x225/0x360 [ 281.186811] ? __fdget+0x196/0x1f0 [ 281.190333] ? sockfd_lookup_light+0xb2/0x160 [ 281.194820] __sys_sendmsg+0xa3/0x120 [ 281.198613] ? SyS_shutdown+0x160/0x160 [ 281.202589] SyS_sendmsg+0x27/0x40 [ 281.206112] ? __sys_sendmsg+0x120/0x120 [ 281.210153] do_syscall_64+0x1d5/0x640 [ 281.214043] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 281.219241] RIP: 0033:0x45e0f9 [ 281.222409] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 281.230094] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 281.237344] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:29 executing program 1 (fault-call:2 fault-nth:83): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 281.244617] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 281.251994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000052 [ 281.259287] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:29 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = accept(r0, &(0x7f0000000000)=@qipcrtr, &(0x7f00000000c0)=0x80) accept4(r2, 0x0, &(0x7f0000000100), 0x800) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$USBDEVFS_RELEASEINTERFACE(r1, 0x80045510, &(0x7f0000000140)=0x10001) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r2, 0x942e, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r3 = syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x7, 0x4, &(0x7f0000000480)=[{&(0x7f0000000200)="2875252b1ef20e4ca5eeef1c61885dafa6b85fc26a1bccbea5c1e252f5cca9005bda23d4683128a20ded2289f190253e538a0926e54daf54fe1c5796927220bc97b7e33182b7", 0x46, 0x6}, {&(0x7f0000000280)="acce8309529a03ff7948c32445c8c3f573f630f938057317081189d438746c6674fa13d4d45d15c7ad99897e7fe46b5ed7598bc8e72ef47b76a47a83e25f51436cfa38ff952bcff279d3f22b8fdb77cd912080c687607b250ba8ec5560f4bde18a", 0x61, 0x3f}, {&(0x7f0000000300)="3e716268568d13cf21ebd6f6e946efda347846bd19ad64e636a174ff2ec462caab3e9525b41db122ecb2fdcbc88119cfb426a98c21af470cd59513643cd71236e416e22be808e5e4bdbefa64b08b046601db9d1a9051e5748e1f48462b656d39e77f7fb8059f9654a92e17cfb114a90730b5e3873e4cdfc157548ea41618deae017a55daabcbc0ee858669e749d3a5835055f2a33e70968445c6025ae023c4e464c6", 0xa2, 0x10000}, {&(0x7f00000003c0)="fdc97dceb9c3ec26cfa369626ad41537636cc554fdbfe63c6232d7b167bb21b42297ec2672a202af8fcd61c91aa98a589e8e1d5dd1271c9feeaad6a3c3578e0b56f1d40d396eebfb901acafc9490b585d3ec6f2e9ec5bd390eb2ec386086894353e1abf646911a4523d39d350aa1ff835b06f8079836ebfd7a1fecd854c798052acb0d84d69d", 0x86}], 0x80, &(0x7f0000000500)={[{@lockproto_nolock='lockproto=lock_nolock'}, {@statfs_quantum={'statfs_quantum', 0x3d, 0xfffffffffffff8b3}}, {@meta='meta'}, {@ignore_local_fs='ignore_local_fs'}, {@meta='meta'}, {@suiddir='suiddir'}, {@suiddir='suiddir'}, {@errors_withdraw='errors=withdraw'}, {@spectator='spectator'}, {@spectator='spectator'}], [{@obj_type={'obj_type', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@fowner_lt={'fowner<'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@hash='hash'}, {@fowner_lt={'fowner<', 0xee01}}, {@subj_type={'subj_type', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}]}) fstat(r3, &(0x7f0000004140)) 04:36:29 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mISDNtimer\x00', 0x103440, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap$binder(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x8001) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) fstat(r4, 0x0) [ 281.318949] FAULT_INJECTION: forcing a failure. [ 281.318949] name failslab, interval 1, probability 0, space 0, times 0 [ 281.346582] CPU: 1 PID: 19860 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 281.354477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.363824] Call Trace: [ 281.366414] dump_stack+0x1b2/0x283 [ 281.370053] should_fail.cold+0x10a/0x154 [ 281.374214] should_failslab+0xd6/0x130 [ 281.378224] kmem_cache_alloc+0x28e/0x3c0 [ 281.382399] __kernfs_new_node+0x6f/0x470 [ 281.386551] kernfs_new_node+0x7b/0xe0 [ 281.390444] __kernfs_create_file+0x3d/0x320 [ 281.394899] sysfs_add_file_mode_ns+0x1e1/0x450 [ 281.399568] ? kernfs_create_dir_ns+0x171/0x200 [ 281.404245] internal_create_group+0x22b/0x710 [ 281.408835] sysfs_create_groups+0x92/0x127 [ 281.413166] device_add+0x879/0x15c0 [ 281.416884] ? device_is_dependent+0x270/0x270 [ 281.421479] netdev_register_kobject+0x181/0x410 [ 281.426243] register_netdevice+0x955/0xe40 [ 281.430567] ? netdev_change_features+0xa0/0xa0 [ 281.435254] br_dev_newlink+0x23/0x100 [ 281.439145] rtnl_newlink+0xf88/0x1830 [ 281.443088] ? __lock_acquire+0x5fc/0x3f20 [ 281.447339] ? br_changelink+0x1570/0x1570 [ 281.451577] ? kmem_cache_free+0x7c/0x2b0 [ 281.455725] ? rtnl_dellink+0x6a0/0x6a0 [ 281.459698] ? trace_hardirqs_on+0x10/0x10 [ 281.463933] ? netlink_deliver_tap+0x60c/0x7d0 04:36:29 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000000c0)={{0x5, 0x3, 0x4c, 0x7, 'syz0\x00', 0x3}, 0x0, [0x2, 0x1ffc000000, 0x20, 0x0, 0x3, 0x0, 0x0, 0xffff, 0x4, 0x8, 0x800, 0x800000000000, 0xc9, 0x4d, 0x8, 0x0, 0xdf8, 0xffffffffffffff77, 0x8, 0x6, 0x48c2, 0x2aa02f83, 0x100000001, 0x5, 0x8, 0x9, 0x6ae3, 0x1, 0x80000001, 0x7, 0x9, 0x1, 0x5, 0x18, 0x56f, 0x4, 0xffff, 0x6, 0x9c, 0x7b, 0x1, 0xfff, 0x0, 0x2, 0x6, 0xfffffffffffffff9, 0x409, 0x37, 0x4, 0x0, 0x8, 0x5, 0x1f8c000000, 0x4, 0x0, 0x3, 0x8, 0x40, 0x8, 0x3, 0x100000001, 0x6, 0x1, 0x20, 0x8, 0x80000000, 0x20, 0x0, 0x9, 0x5, 0x7, 0x100, 0x2a3e, 0x6, 0x3, 0x4, 0x401, 0x0, 0x1, 0x4e, 0x7, 0x9, 0x400, 0x0, 0xf4, 0x7, 0x1f5, 0x1, 0x1, 0x3, 0x1, 0x9, 0x2, 0x10000, 0x7, 0xbd, 0x5, 0x7, 0x3f, 0xfff, 0x7, 0xffff, 0x2, 0x8001, 0x3, 0x7824, 0x4, 0x9, 0xff, 0x10001, 0x80ad, 0x7fff, 0x80000001, 0x5, 0x238, 0x9, 0x6, 0x18000000, 0x0, 0x3ffc00000000000, 0xfffffffffffffff8, 0x6, 0x630, 0x10000, 0x6, 0x4, 0x5, 0xfffffffffffffff8]}) 04:36:29 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) prctl$PR_GET_UNALIGN(0x5, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\t\x00\x00\b', @ANYRES32=0x0], &(0x7f000095dffc)=0x8) r3 = socket(0x10, 0x803, 0x5) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c0000001400b59500000000000000000afc00e0de6c8342c3372cfaffffffffffffffbf926d20a97318ad11fc2c635888a96737475f5c87", @ANYRES32=r4, @ANYRES64=r3], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1e0527bd3000fddbdf25020000000c000182080003000300000004000180140001800800030000000000086c568e9851142df5000180140002006970365f76746930000000000000000008000100", @ANYRES32=r4, @ANYBLOB="140002006261746164765f736c6176655f300000"], 0x6c}, 0x1, 0x0, 0x0, 0x891}, 0x1) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000200)='cubic\x00', 0x6) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000002700)=ANY=[@ANYRESDEC, @ANYBLOB="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"], &(0x7f0000000080)=0x1008) setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000140)={0x0, 0x4}, 0x8) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x70, &(0x7f0000000100)={r2}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={r2, 0xffffffff, 0x6, 0x3}, &(0x7f0000000040)=0x10) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffff) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000580)={0x2, 0x0, [0x7, 0x9a, 0x5, 0x8000, 0x9, 0xfffffffffffffffb, 0xfff, 0x7fffffff]}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb408}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x3}]}}}]}, 0x3c}}, 0x0) [ 281.468511] ? netlink_unicast+0x485/0x610 [ 281.472749] ? netlink_sendmsg+0x62e/0xb80 [ 281.476999] ? ___sys_sendmsg+0x660/0x800 [ 281.481159] ? __sys_sendmsg+0xa3/0x120 [ 281.485136] ? SyS_sendmsg+0x27/0x40 [ 281.488902] ? lock_acquire+0x170/0x3f0 [ 281.492880] ? lock_downgrade+0x740/0x740 [ 281.497031] ? rtnl_dellink+0x6a0/0x6a0 [ 281.501010] rtnetlink_rcv_msg+0x3be/0xb10 [ 281.505251] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 281.509748] ? __netlink_lookup+0x345/0x5d0 [ 281.514082] ? netdev_pick_tx+0x2e0/0x2e0 [ 281.518234] netlink_rcv_skb+0x125/0x390 [ 281.522323] ? memcpy+0x35/0x50 [ 281.525607] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 281.530107] ? netlink_ack+0x9a0/0x9a0 [ 281.534016] netlink_unicast+0x437/0x610 [ 281.538110] ? netlink_sendskb+0xd0/0xd0 [ 281.542174] ? __check_object_size+0x179/0x22c [ 281.546770] netlink_sendmsg+0x62e/0xb80 [ 281.550865] ? nlmsg_notify+0x170/0x170 [ 281.554843] ? kernel_recvmsg+0x210/0x210 [ 281.558998] ? security_socket_sendmsg+0x83/0xb0 [ 281.563766] ? nlmsg_notify+0x170/0x170 [ 281.567745] sock_sendmsg+0xb5/0x100 [ 281.571473] ___sys_sendmsg+0x6c8/0x800 [ 281.575448] ? get_pid_task+0x91/0x130 [ 281.579335] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 281.584092] ? lock_downgrade+0x740/0x740 [ 281.588232] ? __fget+0x1fe/0x360 [ 281.591671] ? lock_acquire+0x170/0x3f0 [ 281.595643] ? lock_downgrade+0x740/0x740 [ 281.599785] ? __fget+0x225/0x360 [ 281.603260] ? __fdget+0x196/0x1f0 [ 281.606787] ? sockfd_lookup_light+0xb2/0x160 [ 281.611284] __sys_sendmsg+0xa3/0x120 [ 281.615078] ? SyS_shutdown+0x160/0x160 [ 281.619054] ? wait_for_completion_io+0x10/0x10 [ 281.623734] ? SyS_read+0x210/0x210 [ 281.627366] ? SyS_clock_settime+0x1a0/0x1a0 [ 281.631780] SyS_sendmsg+0x27/0x40 [ 281.635315] ? __sys_sendmsg+0x120/0x120 [ 281.639374] do_syscall_64+0x1d5/0x640 [ 281.643258] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 281.648438] RIP: 0033:0x45e0f9 [ 281.651637] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 281.659324] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 281.666579] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 281.673836] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 281.681100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000053 [ 281.688358] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:29 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x70bd25, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) 04:36:29 executing program 1 (fault-call:2 fault-nth:84): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:29 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendfile(r1, r3, 0x0, 0x4) ioctl$VIDIOC_DBG_G_REGISTER(r2, 0xc0385650, &(0x7f0000000000)={{0x4, @name="df936eab7c43f27be46a9273c17b9500ff3a0a42c9f4de2e65db8fbffdd576c1"}, 0x8, 0x3, 0x8}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r6, 0x0) 04:36:29 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000010401fff00"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)) 04:36:29 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) pkey_alloc(0x0, 0x1) write$P9_RLERROR(r1, &(0x7f0000000000)={0xb, 0x7, 0x2, {0x2, ':)'}}, 0xb) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) fstat(0xffffffffffffffff, &(0x7f0000004140)) [ 281.786821] FAULT_INJECTION: forcing a failure. [ 281.786821] name failslab, interval 1, probability 0, space 0, times 0 [ 281.805347] CPU: 1 PID: 19893 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 281.813244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.822593] Call Trace: [ 281.825188] dump_stack+0x1b2/0x283 [ 281.828821] should_fail.cold+0x10a/0x154 [ 281.832977] should_failslab+0xd6/0x130 [ 281.837051] kmem_cache_alloc+0x28e/0x3c0 [ 281.841210] __kernfs_new_node+0x6f/0x470 [ 281.845366] kernfs_new_node+0x7b/0xe0 [ 281.849261] __kernfs_create_file+0x3d/0x320 [ 281.853673] sysfs_add_file_mode_ns+0x1e1/0x450 [ 281.858349] sysfs_merge_group+0xdc/0x200 [ 281.862504] dpm_sysfs_add+0x122/0x1c0 [ 281.866397] device_add+0x977/0x15c0 [ 281.870115] ? device_is_dependent+0x270/0x270 [ 281.874710] netdev_register_kobject+0x181/0x410 [ 281.879476] register_netdevice+0x955/0xe40 [ 281.883803] ? netdev_change_features+0xa0/0xa0 [ 281.888477] br_dev_newlink+0x23/0x100 [ 281.892400] rtnl_newlink+0xf88/0x1830 [ 281.896319] ? __lock_acquire+0x5fc/0x3f20 [ 281.900596] ? br_changelink+0x1570/0x1570 [ 281.904839] ? kmem_cache_free+0x7c/0x2b0 [ 281.909019] ? rtnl_dellink+0x6a0/0x6a0 [ 281.913017] ? trace_hardirqs_on+0x10/0x10 [ 281.917284] ? netlink_deliver_tap+0x60c/0x7d0 [ 281.921865] ? netlink_unicast+0x485/0x610 [ 281.926099] ? netlink_sendmsg+0x62e/0xb80 [ 281.930335] ? ___sys_sendmsg+0x660/0x800 04:36:29 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) bind$tipc(r1, &(0x7f0000000000)=@name={0x1e, 0x2, 0x3, {{0x42, 0x4}, 0x1}}, 0x10) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00') sendmsg$NL80211_CMD_NEW_MPATH(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r2, 0x0, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x24000001) [ 281.934482] ? __sys_sendmsg+0xa3/0x120 [ 281.938453] ? SyS_sendmsg+0x27/0x40 [ 281.942206] ? lock_acquire+0x170/0x3f0 [ 281.946185] ? lock_downgrade+0x740/0x740 [ 281.950339] ? rtnl_dellink+0x6a0/0x6a0 [ 281.954319] rtnetlink_rcv_msg+0x3be/0xb10 [ 281.958567] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 281.963063] ? __netlink_lookup+0x345/0x5d0 [ 281.967383] ? netdev_pick_tx+0x2e0/0x2e0 [ 281.971526] netlink_rcv_skb+0x125/0x390 [ 281.975592] ? memcpy+0x35/0x50 [ 281.978870] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 281.983367] ? netlink_ack+0x9a0/0x9a0 [ 281.987264] netlink_unicast+0x437/0x610 [ 281.991331] ? netlink_sendskb+0xd0/0xd0 [ 281.995395] ? __check_object_size+0x179/0x22c [ 281.999978] netlink_sendmsg+0x62e/0xb80 [ 282.004042] ? nlmsg_notify+0x170/0x170 [ 282.008015] ? kernel_recvmsg+0x210/0x210 [ 282.012195] ? security_socket_sendmsg+0x83/0xb0 [ 282.016942] ? nlmsg_notify+0x170/0x170 [ 282.020915] sock_sendmsg+0xb5/0x100 [ 282.024621] ___sys_sendmsg+0x6c8/0x800 [ 282.028591] ? get_pid_task+0x91/0x130 [ 282.032472] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 282.037219] ? lock_downgrade+0x740/0x740 [ 282.041360] ? __fget+0x1fe/0x360 [ 282.044804] ? lock_acquire+0x170/0x3f0 [ 282.048776] ? lock_downgrade+0x740/0x740 [ 282.052917] ? __fget+0x225/0x360 [ 282.056363] ? __fdget+0x196/0x1f0 [ 282.059904] ? sockfd_lookup_light+0xb2/0x160 [ 282.064405] __sys_sendmsg+0xa3/0x120 [ 282.068236] ? SyS_shutdown+0x160/0x160 [ 282.072191] ? wait_for_completion_io+0x10/0x10 [ 282.076857] ? SyS_read+0x210/0x210 [ 282.080512] ? SyS_clock_settime+0x1a0/0x1a0 [ 282.084904] SyS_sendmsg+0x27/0x40 [ 282.088441] ? __sys_sendmsg+0x120/0x120 [ 282.092490] do_syscall_64+0x1d5/0x640 [ 282.096384] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 282.101564] RIP: 0033:0x45e0f9 [ 282.104744] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 282.112444] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 282.119694] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 282.127034] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 04:36:29 executing program 1 (fault-call:2 fault-nth:85): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 282.134327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000054 [ 282.141586] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:30 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={0xffffffffffffffff, 0xc0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=0x7, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x3, 0x5}, 0x0, 0x0, &(0x7f0000000080)={0x4, 0xf, 0x5a8a, 0x4}, &(0x7f0000000100)=0xfffffffffffffffa, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=0x2}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=r1, 0x4) 04:36:30 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff0000000000000000000000009b070122acb909e655120d2e5ff39430a0b4e4e86d8216b4f5e587288d9bcd1a2d4874917a2b5cf02086f59744a0d46dfe1fd93d0daf22a27aa94c293b68815a87e533f0af730382edee30ee6dffd3c9c0e687f3057aa7cd4c1df28ee03c1216adb57cc245895694f3d919dae85fdeee6e3799a2", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800600060000000000"], 0x3c}}, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x400) r2 = socket$key(0xf, 0x3, 0x2) connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e22, @empty}, 0x0, 0x3, 0x0, 0x2}}, 0x2e) 04:36:30 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) eventfd(0x8) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) [ 282.247456] FAULT_INJECTION: forcing a failure. [ 282.247456] name failslab, interval 1, probability 0, space 0, times 0 [ 282.275582] CPU: 1 PID: 19924 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 282.283477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.292830] Call Trace: [ 282.295421] dump_stack+0x1b2/0x283 [ 282.299062] should_fail.cold+0x10a/0x154 [ 282.303230] should_failslab+0xd6/0x130 [ 282.307198] kmem_cache_alloc+0x28e/0x3c0 [ 282.311355] __kernfs_new_node+0x6f/0x470 [ 282.315502] kernfs_new_node+0x7b/0xe0 [ 282.319373] __kernfs_create_file+0x3d/0x320 [ 282.323775] sysfs_add_file_mode_ns+0x1e1/0x450 [ 282.328449] sysfs_merge_group+0xdc/0x200 [ 282.332593] dpm_sysfs_add+0x122/0x1c0 [ 282.336480] device_add+0x977/0x15c0 [ 282.340176] ? device_is_dependent+0x270/0x270 [ 282.344773] netdev_register_kobject+0x181/0x410 [ 282.349520] register_netdevice+0x955/0xe40 [ 282.353826] ? netdev_change_features+0xa0/0xa0 [ 282.358475] br_dev_newlink+0x23/0x100 [ 282.362341] rtnl_newlink+0xf88/0x1830 [ 282.366255] ? __lock_acquire+0x5fc/0x3f20 [ 282.370493] ? br_changelink+0x1570/0x1570 [ 282.374708] ? kmem_cache_free+0x7c/0x2b0 [ 282.378833] ? rtnl_dellink+0x6a0/0x6a0 [ 282.382784] ? trace_hardirqs_on+0x10/0x10 [ 282.388056] ? netlink_deliver_tap+0x60c/0x7d0 [ 282.392623] ? netlink_unicast+0x485/0x610 [ 282.396838] ? netlink_sendmsg+0x62e/0xb80 [ 282.401053] ? ___sys_sendmsg+0x660/0x800 [ 282.405218] ? __sys_sendmsg+0xa3/0x120 [ 282.409179] ? SyS_sendmsg+0x27/0x40 [ 282.412929] ? lock_acquire+0x170/0x3f0 [ 282.416885] ? lock_downgrade+0x740/0x740 [ 282.421012] ? rtnl_dellink+0x6a0/0x6a0 [ 282.424974] rtnetlink_rcv_msg+0x3be/0xb10 [ 282.429197] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 282.433671] ? __netlink_lookup+0x345/0x5d0 [ 282.437969] ? netdev_pick_tx+0x2e0/0x2e0 [ 282.442095] netlink_rcv_skb+0x125/0x390 [ 282.446143] ? memcpy+0x35/0x50 [ 282.449411] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 282.453884] ? netlink_ack+0x9a0/0x9a0 [ 282.457789] netlink_unicast+0x437/0x610 [ 282.461830] ? netlink_sendskb+0xd0/0xd0 [ 282.465880] ? __check_object_size+0x179/0x22c [ 282.470470] netlink_sendmsg+0x62e/0xb80 [ 282.474512] ? nlmsg_notify+0x170/0x170 [ 282.478465] ? kernel_recvmsg+0x210/0x210 [ 282.482592] ? security_socket_sendmsg+0x83/0xb0 [ 282.487325] ? nlmsg_notify+0x170/0x170 [ 282.491274] sock_sendmsg+0xb5/0x100 [ 282.494964] ___sys_sendmsg+0x6c8/0x800 [ 282.498917] ? get_pid_task+0x91/0x130 [ 282.502780] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 282.507516] ? lock_downgrade+0x740/0x740 [ 282.511645] ? __fget+0x1fe/0x360 [ 282.515093] ? lock_acquire+0x170/0x3f0 [ 282.519057] ? lock_downgrade+0x740/0x740 [ 282.523186] ? __fget+0x225/0x360 [ 282.526633] ? __fdget+0x196/0x1f0 [ 282.530184] ? sockfd_lookup_light+0xb2/0x160 [ 282.534658] __sys_sendmsg+0xa3/0x120 [ 282.538438] ? SyS_shutdown+0x160/0x160 [ 282.542405] ? wait_for_completion_io+0x10/0x10 [ 282.547088] ? SyS_read+0x210/0x210 [ 282.550704] ? SyS_clock_settime+0x1a0/0x1a0 [ 282.555112] SyS_sendmsg+0x27/0x40 [ 282.558644] ? __sys_sendmsg+0x120/0x120 [ 282.562683] do_syscall_64+0x1d5/0x640 [ 282.566568] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 282.571747] RIP: 0033:0x45e0f9 [ 282.574913] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 282.582597] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 282.589845] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 04:36:30 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x40, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) r1 = socket$pptp(0x18, 0x1, 0x2) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, &(0x7f0000004140)) [ 282.597093] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 282.604347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000055 [ 282.611616] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 282.639095] nla_parse: 3 callbacks suppressed 04:36:30 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000003e00000427bdc0ebcdc26b7dec5f9b70"], 0x14}}, 0x0) 04:36:30 executing program 1 (fault-call:2 fault-nth:86): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 282.639102] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 282.658058] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. 04:36:30 executing program 5: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/pfkey\x00', 0x1a002, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280)='ethtool\x00') r2 = socket(0x10, 0x803, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r5, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="84000000", @ANYRES16=r1, @ANYBLOB="02002cbd7000fcdbdf2503000000050003000900000044000180080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="140002006d61636e6c616e30000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468305f746f5f62726964676500050002000400000005000500010000001400018008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB], 0x84}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r6 = syz_mount_image$qnx6(&(0x7f0000000000)='qnx6\x00', &(0x7f0000000040)='./file0\x00', 0x8, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="cf622d1ff07158a02a0604ada50973bb27a390983a28bdee4a53038a27ae476074f5352f24ce6b19fd52d3a54d63c86b68e00ac5b36ef76e5f92cb76cfac74dcec7161e6e12eb44872a854980d2a6c1141a582c9cc84e23b79e04b3c25afa57749d3dccff88a8f337a50c4706258f2b16b2b2bfec1dad5853d9a1a4b6934aa5eea845e52fb91dca6785a5ebd7289abc91cb80848a7f46c7ce753bf66c27b86bd6c24531fa7759848d85612654073d4790cbc079e83e79ed30ddbc3bcdbcdb9503cf57d55226b325e2e301c4db7", 0xcd, 0x3}], 0x1000, &(0x7f0000000380)=ANY=[@ANYBLOB='/proc/sys/net/ipv4/vs/sync_retries\x00,/proc/sys/net/ipv4/vs/sync_retr,/proc/sys/net/ipv4/vs/sync_retries\x00,-,,/proc/sys/net/ipv4/vs/sync_retries\x00,/proc/sys/net/ipv4/vs/sync_retries\x00,%-,pcr=00000000000000000035,fsuuid=34\x001545c-afa0-dd13-5020-5e4cR1db,seclabel,uid<\x00\x00\x00\x00', @ANYRESDEC, @ANYBLOB=',fowner=', @ANYRESDEC=0x0, @ANYRESHEX]) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f00000005c0)='geneve1\x00') syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000340)='NLBL_UNLBL\x00') r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r8, 0x0) 04:36:30 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) prctl$PR_GET_UNALIGN(0x5, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\t\x00\x00\b', @ANYRES32=0x0], &(0x7f000095dffc)=0x8) r3 = socket(0x10, 0x803, 0x5) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c0000001400b59500000000000000000afc00e0de6c8342c3372cfaffffffffffffffbf926d20a97318ad11fc2c635888a96737475f5c87", @ANYRES32=r4, @ANYRES64=r3], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1e0527bd3000fddbdf25020000000c000182080003000300000004000180140001800800030000000000086c568e9851142df5000180140002006970365f76746930000000000000000008000100", @ANYRES32=r4, @ANYBLOB="140002006261746164765f736c6176655f300000"], 0x6c}, 0x1, 0x0, 0x0, 0x891}, 0x1) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000200)='cubic\x00', 0x6) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000002700)=ANY=[@ANYRESDEC, @ANYBLOB="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"], &(0x7f0000000080)=0x1008) setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000140)={0x0, 0x4}, 0x8) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x70, &(0x7f0000000100)={r2}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={r2, 0xffffffff, 0x6, 0x3}, &(0x7f0000000040)=0x10) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffff) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000580)={0x2, 0x0, [0x7, 0x9a, 0x5, 0x8000, 0x9, 0xfffffffffffffffb, 0xfff, 0x7fffffff]}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb408}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x3}]}}}]}, 0x3c}}, 0x0) 04:36:30 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x4, 0x0, 0x0, 0x9, 0x7}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0xb) r3 = signalfd4(r2, &(0x7f0000000040), 0x8, 0x0) r4 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x0, 0x0, 0x2, 0x1, 0x22, 0x0, 0x400000000}, 0x20) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') sendfile(r4, r5, &(0x7f0000000240)=0x202, 0x4000000000dc) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000035c0)=ANY=[@ANYBLOB="2400dc39", @ANYRES16=0x0, @ANYBLOB="080025bd7000fddbdf252100000008000300be88334f411935d3948acdc2a272f699c50ef22e7d701c1f762449b136866b2d26cd83f892b28779d81eea367b50985120295a59e08033e0f517b5746d519a02048aec6cf76110dd100a77bb316cfe366a667a72da3a138e27a1220955717972376492142b9cfbb9711e0cb2d420087399b33c15f01712e49dc90edfc90cc7d216a6a03556163adff3", @ANYRES32=r6, @ANYBLOB="08007700fbffffff"], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0xc4) sendmsg$NL80211_CMD_SET_KEY(r5, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB, @ANYRES32=r6, @ANYBLOB="94fe9900000000c01300000013000a00243c062bd5b4aabcf6198b9f6e660900200050800500190001000000050009000000000a000400d5dfc8a7c5b200001100070058b8dc68e86dab973bb549fc7c00000000"], 0x70}, 0x1, 0x0, 0x0, 0x4004005}, 0x4000030) sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, 0x0, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x7}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x40800) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'wg2\x00', 0x0}) sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f0000000700)={0x184, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x48000}, 0x80) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r3, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x0, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x4}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x1f}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x20040000) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x81040040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, 0x0, 0x0, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x1e, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x4, 0x8, 0x1}}, @link_id={0x65, 0x12, {@random="e1819f314ad6", @device_b, @broadcast}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x8800}, 0x4c810) sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x1b8, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x29, 0x22}}}}, [@NL80211_ATTR_TESTDATA={0x77, 0x45, "f98e0dd92859023957433ad6ee58387048aeb6ff3e6ff9362e07181b78cb83828f21f3994705de4058e74d1d2836962acac1ea8843eff1b4e8683be0eb04cc22adb4f6f22e83bf00de17937a2b056a05d3b213e3b8766c45269d6c49be2ea6b2746bc95ade3243141605a1ece867833e37dd78"}, @NL80211_ATTR_TESTDATA={0x46, 0x45, "8ad1d060d07fa1b2f5292df869616f9e155577fab564022ef68626f6c8d355296cff579fdd508cf00c2fa35ae5b586985276aaa3d04451ec09992270944faf9345fe"}, @NL80211_ATTR_TESTDATA={0xcd, 0x45, "ec7a11f1ec7a6934f76ca2ec83bc0fcf9c6fcc22dcf0ec41e4ed0eb409692224e79954b44a6d71cdb64fbb04fe2637f4416cb5cc33fe51bd0407c8b07ebb85aa53b7988a10826f1b262c1f4dfc2ba1befd6f8632fac79c98fd87f38b179b58dda709282843660c1218f03b2d85ee5aead35619f41e91b3aed0fd173e18b5b7ff0a8e429f855c3902aae1921bd9571a9a46fce366f72de08c70c9a1cbcae9bb2d7f27fc96d54cedbe9ce7fe17ba12502ff084be5730903a8c10b89098e74fb5bc655502869cac61ab62"}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x4054}, 0x40004) sendfile(r1, r1, 0x0, 0xffff) ioctl$TCSBRK(r1, 0x5409, 0x4) 04:36:30 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000000200000000010627e54e4a9f059e955ef6d4c7507fd37a19c70cab2b97fa5fe6f3aec9f75cb8b4531833ba8cb6cef86c5c89af", @ANYRES32=r1, @ANYRESOCT=r2], 0x3c}}, 0x0) [ 282.716643] FAULT_INJECTION: forcing a failure. [ 282.716643] name failslab, interval 1, probability 0, space 0, times 0 [ 282.788498] CPU: 1 PID: 19948 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 282.796431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.805781] Call Trace: [ 282.808369] dump_stack+0x1b2/0x283 [ 282.812001] should_fail.cold+0x10a/0x154 [ 282.816155] should_failslab+0xd6/0x130 [ 282.820139] kmem_cache_alloc+0x28e/0x3c0 [ 282.824295] __kernfs_new_node+0x6f/0x470 [ 282.828446] kernfs_new_node+0x7b/0xe0 [ 282.832375] __kernfs_create_file+0x3d/0x320 [ 282.836789] sysfs_add_file_mode_ns+0x1e1/0x450 [ 282.841470] sysfs_merge_group+0xdc/0x200 [ 282.845627] dpm_sysfs_add+0x122/0x1c0 [ 282.849517] device_add+0x977/0x15c0 [ 282.853235] ? device_is_dependent+0x270/0x270 [ 282.857825] netdev_register_kobject+0x181/0x410 [ 282.862590] register_netdevice+0x955/0xe40 [ 282.866916] ? netdev_change_features+0xa0/0xa0 [ 282.871597] br_dev_newlink+0x23/0x100 [ 282.875491] rtnl_newlink+0xf88/0x1830 [ 282.879408] ? __lock_acquire+0x5fc/0x3f20 [ 282.883653] ? br_changelink+0x1570/0x1570 [ 282.887890] ? kmem_cache_free+0x7c/0x2b0 [ 282.892041] ? rtnl_dellink+0x6a0/0x6a0 [ 282.896014] ? trace_hardirqs_on+0x10/0x10 [ 282.900247] ? netlink_deliver_tap+0x60c/0x7d0 [ 282.904828] ? netlink_unicast+0x485/0x610 [ 282.909059] ? netlink_sendmsg+0x62e/0xb80 [ 282.913296] ? ___sys_sendmsg+0x660/0x800 [ 282.917450] ? __sys_sendmsg+0xa3/0x120 [ 282.921427] ? SyS_sendmsg+0x27/0x40 [ 282.925185] ? lock_acquire+0x170/0x3f0 [ 282.929154] ? lock_downgrade+0x740/0x740 [ 282.933307] ? rtnl_dellink+0x6a0/0x6a0 [ 282.937287] rtnetlink_rcv_msg+0x3be/0xb10 [ 282.941526] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 282.946030] ? __netlink_lookup+0x345/0x5d0 [ 282.950374] ? netdev_pick_tx+0x2e0/0x2e0 [ 282.954546] netlink_rcv_skb+0x125/0x390 [ 282.958615] ? memcpy+0x35/0x50 [ 282.961895] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 282.966395] ? netlink_ack+0x9a0/0x9a0 [ 282.970292] netlink_unicast+0x437/0x610 [ 282.974355] ? netlink_sendskb+0xd0/0xd0 [ 282.978417] ? __check_object_size+0x179/0x22c [ 282.983004] netlink_sendmsg+0x62e/0xb80 [ 282.987070] ? nlmsg_notify+0x170/0x170 [ 282.991045] ? kernel_recvmsg+0x210/0x210 [ 282.995195] ? security_socket_sendmsg+0x83/0xb0 [ 282.999951] ? nlmsg_notify+0x170/0x170 [ 283.003926] sock_sendmsg+0xb5/0x100 [ 283.007640] ___sys_sendmsg+0x6c8/0x800 [ 283.011620] ? get_pid_task+0x91/0x130 [ 283.015511] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 283.020283] ? lock_downgrade+0x740/0x740 [ 283.024439] ? __fget+0x1fe/0x360 [ 283.027897] ? lock_acquire+0x170/0x3f0 [ 283.031872] ? lock_downgrade+0x740/0x740 [ 283.036026] ? __fget+0x225/0x360 04:36:30 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x8d, 0x10, 0xffffff1f, 0xfffffffd, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:30 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_LEAVE_MESH(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x0, 0x10, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x28, 0x10, 0xffffff1b, 0x0, 0x0, {}, [@IFLA_OPERSTATE={0x5, 0x10, 0x20}]}, 0x28}}, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) [ 283.039496] ? __fdget+0x196/0x1f0 [ 283.043047] ? sockfd_lookup_light+0xb2/0x160 [ 283.047544] __sys_sendmsg+0xa3/0x120 [ 283.051350] ? SyS_shutdown+0x160/0x160 [ 283.055325] ? wait_for_completion_io+0x10/0x10 [ 283.059995] ? SyS_read+0x210/0x210 [ 283.063613] ? SyS_clock_settime+0x1a0/0x1a0 [ 283.068013] SyS_sendmsg+0x27/0x40 [ 283.071574] ? __sys_sendmsg+0x120/0x120 [ 283.075616] do_syscall_64+0x1d5/0x640 [ 283.079496] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 283.084676] RIP: 0033:0x45e0f9 [ 283.087909] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 283.095608] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 283.102861] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 283.110205] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 283.117500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000056 [ 283.124766] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:30 executing program 1 (fault-call:2 fault-nth:87): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 283.150701] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 04:36:31 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x4, 0x0, 0x0, 0x9, 0x7}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0xb) r3 = signalfd4(r2, &(0x7f0000000040), 0x8, 0x0) r4 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x0, 0x0, 0x2, 0x1, 0x22, 0x0, 0x400000000}, 0x20) r5 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') sendfile(r4, r5, &(0x7f0000000240)=0x202, 0x4000000000dc) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000035c0)=ANY=[@ANYBLOB="2400dc39", @ANYRES16=0x0, @ANYBLOB="080025bd7000fddbdf252100000008000300be88334f411935d3948acdc2a272f699c50ef22e7d701c1f762449b136866b2d26cd83f892b28779d81eea367b50985120295a59e08033e0f517b5746d519a02048aec6cf76110dd100a77bb316cfe366a667a72da3a138e27a1220955717972376492142b9cfbb9711e0cb2d420087399b33c15f01712e49dc90edfc90cc7d216a6a03556163adff3", @ANYRES32=r6, @ANYBLOB="08007700fbffffff"], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0xc4) sendmsg$NL80211_CMD_SET_KEY(r5, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB, @ANYRES32=r6, @ANYBLOB="94fe9900000000c01300000013000a00243c062bd5b4aabcf6198b9f6e660900200050800500190001000000050009000000000a000400d5dfc8a7c5b200001100070058b8dc68e86dab973bb549fc7c00000000"], 0x70}, 0x1, 0x0, 0x0, 0x4004005}, 0x4000030) sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, 0x0, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x7}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x40800) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'wg2\x00', 0x0}) sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f0000000700)={0x184, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x48000}, 0x80) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r3, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x0, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x4}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x1f}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x20040000) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x81040040}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, 0x0, 0x0, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x1e, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x4, 0x8, 0x1}}, @link_id={0x65, 0x12, {@random="e1819f314ad6", @device_b, @broadcast}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x8800}, 0x4c810) sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x1b8, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x29, 0x22}}}}, [@NL80211_ATTR_TESTDATA={0x77, 0x45, "f98e0dd92859023957433ad6ee58387048aeb6ff3e6ff9362e07181b78cb83828f21f3994705de4058e74d1d2836962acac1ea8843eff1b4e8683be0eb04cc22adb4f6f22e83bf00de17937a2b056a05d3b213e3b8766c45269d6c49be2ea6b2746bc95ade3243141605a1ece867833e37dd78"}, @NL80211_ATTR_TESTDATA={0x46, 0x45, "8ad1d060d07fa1b2f5292df869616f9e155577fab564022ef68626f6c8d355296cff579fdd508cf00c2fa35ae5b586985276aaa3d04451ec09992270944faf9345fe"}, @NL80211_ATTR_TESTDATA={0xcd, 0x45, "ec7a11f1ec7a6934f76ca2ec83bc0fcf9c6fcc22dcf0ec41e4ed0eb409692224e79954b44a6d71cdb64fbb04fe2637f4416cb5cc33fe51bd0407c8b07ebb85aa53b7988a10826f1b262c1f4dfc2ba1befd6f8632fac79c98fd87f38b179b58dda709282843660c1218f03b2d85ee5aead35619f41e91b3aed0fd173e18b5b7ff0a8e429f855c3902aae1921bd9571a9a46fce366f72de08c70c9a1cbcae9bb2d7f27fc96d54cedbe9ce7fe17ba12502ff084be5730903a8c10b89098e74fb5bc655502869cac61ab62"}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x4054}, 0x40004) sendfile(r1, r1, 0x0, 0xffff) ioctl$TCSBRK(r1, 0x5409, 0x4) 04:36:31 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$snddsp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xc, 0x80010, r1, 0xf000) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 283.242356] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 283.260881] FAULT_INJECTION: forcing a failure. [ 283.260881] name failslab, interval 1, probability 0, space 0, times 0 [ 283.272811] CPU: 1 PID: 20002 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 283.280730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.290081] Call Trace: [ 283.292712] dump_stack+0x1b2/0x283 [ 283.296363] should_fail.cold+0x10a/0x154 [ 283.300514] should_failslab+0xd6/0x130 [ 283.304508] kmem_cache_alloc+0x28e/0x3c0 [ 283.308671] __kernfs_new_node+0x6f/0x470 [ 283.312823] kernfs_new_node+0x7b/0xe0 [ 283.316713] __kernfs_create_file+0x3d/0x320 [ 283.321125] sysfs_add_file_mode_ns+0x1e1/0x450 [ 283.325804] sysfs_merge_group+0xdc/0x200 [ 283.329959] dpm_sysfs_add+0x122/0x1c0 [ 283.333880] device_add+0x977/0x15c0 [ 283.337601] ? device_is_dependent+0x270/0x270 [ 283.342191] netdev_register_kobject+0x181/0x410 [ 283.346984] register_netdevice+0x955/0xe40 [ 283.351367] ? netdev_change_features+0xa0/0xa0 [ 283.356043] br_dev_newlink+0x23/0x100 [ 283.359932] rtnl_newlink+0xf88/0x1830 [ 283.363883] ? br_changelink+0x1570/0x1570 [ 283.368122] ? rtnl_dellink+0x6a0/0x6a0 [ 283.372102] ? _raw_spin_unlock_irq+0x50/0x80 [ 283.376600] ? _raw_spin_unlock_irq+0x5a/0x80 [ 283.381148] ? rtnl_dellink+0x6a0/0x6a0 [ 283.385127] rtnetlink_rcv_msg+0x3be/0xb10 [ 283.389356] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 283.393849] ? __netlink_lookup+0x345/0x5d0 [ 283.398206] ? netdev_pick_tx+0x2e0/0x2e0 [ 283.402346] netlink_rcv_skb+0x125/0x390 [ 283.406388] ? memcpy+0x35/0x50 [ 283.409653] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 283.414159] ? netlink_ack+0x9a0/0x9a0 [ 283.418052] netlink_unicast+0x437/0x610 [ 283.422107] ? netlink_sendskb+0xd0/0xd0 [ 283.426158] ? __check_object_size+0x179/0x22c [ 283.430744] netlink_sendmsg+0x62e/0xb80 [ 283.434829] ? nlmsg_notify+0x170/0x170 [ 283.438824] ? kernel_recvmsg+0x210/0x210 [ 283.442964] ? security_socket_sendmsg+0x83/0xb0 [ 283.447702] ? nlmsg_notify+0x170/0x170 [ 283.451667] sock_sendmsg+0xb5/0x100 [ 283.455382] ___sys_sendmsg+0x6c8/0x800 [ 283.459352] ? get_pid_task+0x91/0x130 [ 283.463218] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 283.467956] ? lock_downgrade+0x740/0x740 [ 283.472090] ? __fget+0x1fe/0x360 [ 283.475534] ? lock_acquire+0x170/0x3f0 [ 283.479562] ? lock_downgrade+0x740/0x740 [ 283.483715] ? __fget+0x225/0x360 [ 283.487159] ? __fdget+0x196/0x1f0 [ 283.490687] ? sockfd_lookup_light+0xb2/0x160 [ 283.495182] __sys_sendmsg+0xa3/0x120 [ 283.498976] ? SyS_shutdown+0x160/0x160 [ 283.502940] ? wait_for_completion_io+0x10/0x10 [ 283.507604] ? SyS_read+0x210/0x210 [ 283.511222] ? SyS_clock_settime+0x1a0/0x1a0 [ 283.515627] SyS_sendmsg+0x27/0x40 [ 283.519157] ? __sys_sendmsg+0x120/0x120 [ 283.523220] do_syscall_64+0x1d5/0x640 [ 283.527094] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 283.532273] RIP: 0033:0x45e0f9 [ 283.535460] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 04:36:31 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) bpf$ITER_CREATE(0x21, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}], 0x18}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000340)={0x2, &(0x7f0000000080)=[{0x15}, {0x6}]}) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDCTL_SYNTH_INFO(r3, 0xc08c5102, &(0x7f0000000180)={"dd1db584f0bd6f491eb1450ecf86240228bdd415b8a331a9f54c2b7b8de0", 0xfa82, 0x0, 0x1, 0xfffffff8, 0x5, 0x4, 0x7f, 0x1, [0x7, 0x10001, 0x1e12, 0x3, 0x2, 0x0, 0x7f000, 0x0, 0x6, 0x7f, 0x5, 0x9, 0xfffffc01, 0xfff, 0x3, 0xa6, 0x8, 0x80, 0x100]}) r4 = socket(0x10, 0x803, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r7, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x20, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0xffffffffffffffb9}}, 0x0) [ 283.543159] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 283.550409] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 283.557665] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 283.564928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000057 [ 283.572219] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:31 executing program 1 (fault-call:2 fault-nth:88): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:31 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) write$eventfd(0xffffffffffffffff, &(0x7f0000000080)=0x2, 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYRES32], 0x3c}}, 0x0) 04:36:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r4 = syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f00000000c0)='./file0\x00', 0x6, 0x3, &(0x7f0000000200)=[{&(0x7f0000000100)="ef906c7295fe7e12af8faa7f8963e91c78b5659d19364635203aa353f6f5dfad500c7107d4e6be5df0450daed41459d170d0b0f3c8732c78d9d9dfa087cc7a3d0581dd", 0x43, 0x4}, {&(0x7f0000000180), 0x0, 0x30}, {&(0x7f00000001c0)="3d4c2db6c52c684c6b005135f304416e2fa4ff30c10c5469bfb0c4a65e59a6239849b02dd32ad868c8de87e42033080314d10b50b6", 0x35, 0x9}], 0x10, &(0x7f0000000280)={[{@jqfmt_vfsold='jqfmt=vfsold'}, {@noattrs='noattrs'}, {@grpjquota='grpjquota'}, {@balloc_border='block-allocator=border'}, {@expose_privroot='expose_privroot'}], [{@smackfsroot={'smackfsroot', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@smackfshat={'smackfshat', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@measure='measure'}, {@fsname={'fsname', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@subj_user={'subj_user', 0x3d, '$\xd4()\xb0&:'}}, {@pcr={'pcr', 0x3d, 0x3a}}, {@obj_user={'obj_user', 0x3d, 'oom_score_adj\x00'}}]}) dup(r4) sendfile(r3, r3, 0x0, 0xffff) ioctl$IOCTL_VMCI_SET_NOTIFY(r3, 0x7cb, &(0x7f0000000000)={0x6, 0x4, 0xffffffff}) 04:36:31 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x70, &(0x7f0000000100)={r4}, &(0x7f0000000180)=0x8) sendmmsg$inet_sctp(r1, &(0x7f0000000800)=[{&(0x7f0000000000)=@in={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10, &(0x7f0000000140)=[{&(0x7f00000000c0)="7fbbd3e10af777468e4f34214946f3dd3627f3374d1775564f2ed7cdba8242a2e33f78c9fa13042879c541359dc7737bd8af0a7b94fac80a5dcd589d5fa072ba1b4990d53111419d773efb2fd0a3984315fd19faba91525e8138bdfdae4f06d349b30186db5facfe3a235873", 0x6c}, {&(0x7f0000000040)="557b94fba1", 0x5}], 0x2, &(0x7f0000000180)=[@dstaddrv6={0x20, 0x84, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @sndrcv={0x30, 0x84, 0x1, {0x693, 0x5, 0x109, 0x4, 0xffffffff, 0x5fad, 0x7, 0x19, r4}}, @prinfo={0x18, 0x84, 0x5, {0x10, 0x3ff}}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x1}}, @authinfo={0x18, 0x84, 0x6, {0x2}}, @dstaddrv4={0x18, 0x84, 0x7, @rand_addr=0x64010100}, @sndinfo={0x20, 0x84, 0x2, {0x5, 0x8002, 0x8, 0x401}}, @dstaddrv6={0x20, 0x84, 0x8, @private0={0xfc, 0x0, [], 0x1}}], 0xf0, 0x8000}, {&(0x7f0000000280)=@in={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000000700)=[{&(0x7f00000002c0)="1c8ab51b7f3240936b95106511b6e21562cce7a56a089607408452f760d08659131289dcf4f574da0da93dd635b6d3948ce26741342dac28af2de41f6aa397c5cf706fca9c98524efc52eded3d475db105da92f48ec3e24c7a21a748ac50e8ee1e3985d4c4c9eea4b77e47553109b07e994d482b12a9f81f70c18ed763b44e854021defea006ce3454089985c3037bda6bbba99d262d79", 0x97}, {&(0x7f0000000380)="f612ebd95816c569b0f0d7ccc4195295d6d902a4c9a9e8a23f09dc3130033d71f3394530826f2691f308ed58410a5c06edc0de1be446c657b196a947d3a2ec7e375f1e4e9305d9629ffa02a1a821e8e92fbc26dc55fe76fc17dbace0ede811b5c1860451ba789ffec852501e1071830c238a6515a5eb5ba92332577d86f2852485e3db94fedd8d29a500", 0x8a}, {&(0x7f0000000440)="82ac763b76b61d7e73a44a8e0b8baa7d0b8ee6e9965848dc785a7802b97dc896c1ad6879067bb3b5f82f5a72febd1f02e5a7f00364f879adfebffd421590769b6d48ed9c4718ce6b5c465954617e5b15ca6400db38ff82d9d0642430ff0c39a6788e", 0x62}, {&(0x7f00000004c0)}, {&(0x7f0000000500)="8ea3426919c3889ae1e005a08e3f4f2d48c627eb90e7cc9c25f675b0d60a340ed21854d1577c8ec897839215089140d4c7cb96f973dc4c8391c0095b5e4ddba809a45496428a1bebd0e5b6b291c512f3f7c961decbc6bd3ea1afd21286b8ee1074cad86bd1b872d4287e06", 0x6b}, {&(0x7f0000000580)="601023bfe498c39b089258ab3e671789b1d9b0c75f0dee2143f2b7d7337bac2497cf2c2268c40a6258d3096a22bab32da1f369697dd2c30bfa99b957a698532fa7259883adf0e61212e6822cf37e6103d174fd3641c70a790a3c39af1a9800f3dd4ad283e576f231fdb26d7ab756151bda8f0fcba6a2ad1e267edcf29be5fd189f277f6fcf364956f2352374a2d711efd31666b3cc65652db86156a672edae9ad1173bff120c06b116d79634cef3ded59d013322591c7a53c91917479ebe5c26f2222c0b9e2995216a327f15cae8471241bf6d1413c20b1cd46c", 0xda}, {&(0x7f0000000680)="e1bf139b61e92b8352374859503fd87f3c759541ed5fb273ff05f940f8dd2ba5e4fd5f1104d5de7ac8429d7d8b26be54dfef1da309f9c6ffed75f5cb0bd0ca9e77ac470c21ff41bb67fb46634e4fbd", 0x4f}], 0x7, &(0x7f0000000780)=[@dstaddrv4={0x18, 0x84, 0x7, @multicast1}, @dstaddrv6={0x20, 0x84, 0x8, @ipv4={[], [], @empty}}, @dstaddrv6={0x20, 0x84, 0x8, @mcast1}, @dstaddrv4={0x18, 0x84, 0x7, @multicast2}], 0x70, 0x200400d4}], 0x2, 0x40004) fstat(r2, 0x0) [ 283.692018] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 283.722867] FAULT_INJECTION: forcing a failure. [ 283.722867] name failslab, interval 1, probability 0, space 0, times 0 04:36:31 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, &(0x7f0000004140)) [ 283.753120] CPU: 1 PID: 20027 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 283.761069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.770422] Call Trace: [ 283.773013] dump_stack+0x1b2/0x283 [ 283.776641] should_fail.cold+0x10a/0x154 [ 283.780783] should_failslab+0xd6/0x130 [ 283.784761] __kmalloc+0x2c1/0x400 [ 283.788329] ? kobject_get_path+0xb5/0x230 [ 283.790261] REISERFS warning (device loop2): super-6504 reiserfs_getopt: the option "grpjquota" requires an argument [ 283.790261] [ 283.792562] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 283.792575] kobject_get_path+0xb5/0x230 [ 283.792590] kobject_uevent_env+0x230/0xf40 [ 283.792603] ? wait_for_completion_io+0x10/0x10 [ 283.792621] device_add+0xa47/0x15c0 [ 283.826905] ? device_is_dependent+0x270/0x270 [ 283.831494] netdev_register_kobject+0x181/0x410 [ 283.836258] register_netdevice+0x955/0xe40 [ 283.840587] ? netdev_change_features+0xa0/0xa0 [ 283.845264] br_dev_newlink+0x23/0x100 [ 283.849168] rtnl_newlink+0xf88/0x1830 [ 283.853102] ? br_changelink+0x1570/0x1570 [ 283.857351] ? mark_held_locks+0xa6/0xf0 [ 283.861419] ? rtnl_dellink+0x6a0/0x6a0 [ 283.865385] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 283.870389] ? _raw_spin_unlock_irq+0x5a/0x80 [ 283.874889] ? rtnl_dellink+0x6a0/0x6a0 [ 283.878844] rtnetlink_rcv_msg+0x3be/0xb10 [ 283.883079] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 283.887560] ? __netlink_lookup+0x345/0x5d0 [ 283.891872] ? netdev_pick_tx+0x2e0/0x2e0 [ 283.896012] netlink_rcv_skb+0x125/0x390 [ 283.900053] ? memcpy+0x35/0x50 [ 283.903322] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 283.907823] ? netlink_ack+0x9a0/0x9a0 [ 283.911698] netlink_unicast+0x437/0x610 [ 283.915745] ? netlink_sendskb+0xd0/0xd0 [ 283.919798] ? __check_object_size+0x179/0x22c [ 283.924401] netlink_sendmsg+0x62e/0xb80 [ 283.928463] ? nlmsg_notify+0x170/0x170 [ 283.932431] ? kernel_recvmsg+0x210/0x210 [ 283.936573] ? security_socket_sendmsg+0x83/0xb0 [ 283.941310] ? nlmsg_notify+0x170/0x170 [ 283.945266] sock_sendmsg+0xb5/0x100 [ 283.948989] ___sys_sendmsg+0x6c8/0x800 [ 283.952953] ? get_pid_task+0x91/0x130 [ 283.956822] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 283.961579] ? lock_downgrade+0x740/0x740 [ 283.965723] ? __fget+0x1fe/0x360 [ 283.969157] ? lock_acquire+0x170/0x3f0 [ 283.973112] ? lock_downgrade+0x740/0x740 [ 283.977253] ? __fget+0x225/0x360 [ 283.980700] ? __fdget+0x196/0x1f0 [ 283.984234] ? sockfd_lookup_light+0xb2/0x160 [ 283.988712] __sys_sendmsg+0xa3/0x120 [ 283.992494] ? SyS_shutdown+0x160/0x160 [ 283.996449] ? wait_for_completion_io+0x10/0x10 [ 284.001104] ? SyS_read+0x210/0x210 [ 284.004711] ? SyS_clock_settime+0x1a0/0x1a0 [ 284.009118] SyS_sendmsg+0x27/0x40 [ 284.012639] ? __sys_sendmsg+0x120/0x120 [ 284.016685] do_syscall_64+0x1d5/0x640 [ 284.020618] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 284.025797] RIP: 0033:0x45e0f9 [ 284.028972] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 284.036673] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 284.043926] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 284.051182] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 284.058430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000058 [ 284.065679] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 284.086881] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. 04:36:31 executing program 3: ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000000)) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 284.132552] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 04:36:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r4 = syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f00000000c0)='./file0\x00', 0x6, 0x3, &(0x7f0000000200)=[{&(0x7f0000000100)="ef906c7295fe7e12af8faa7f8963e91c78b5659d19364635203aa353f6f5dfad500c7107d4e6be5df0450daed41459d170d0b0f3c8732c78d9d9dfa087cc7a3d0581dd", 0x43, 0x4}, {&(0x7f0000000180), 0x0, 0x30}, {&(0x7f00000001c0)="3d4c2db6c52c684c6b005135f304416e2fa4ff30c10c5469bfb0c4a65e59a6239849b02dd32ad868c8de87e42033080314d10b50b6", 0x35, 0x9}], 0x10, &(0x7f0000000280)={[{@jqfmt_vfsold='jqfmt=vfsold'}, {@noattrs='noattrs'}, {@grpjquota='grpjquota'}, {@balloc_border='block-allocator=border'}, {@expose_privroot='expose_privroot'}], [{@smackfsroot={'smackfsroot', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@smackfshat={'smackfshat', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@measure='measure'}, {@fsname={'fsname', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@subj_user={'subj_user', 0x3d, '$\xd4()\xb0&:'}}, {@pcr={'pcr', 0x3d, 0x3a}}, {@obj_user={'obj_user', 0x3d, 'oom_score_adj\x00'}}]}) dup(r4) sendfile(r3, r3, 0x0, 0xffff) ioctl$IOCTL_VMCI_SET_NOTIFY(r3, 0x7cb, &(0x7f0000000000)={0x6, 0x4, 0xffffffff}) 04:36:32 executing program 1 (fault-call:2 fault-nth:89): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:32 executing program 3: r0 = socket$rxrpc(0x21, 0x2, 0x2) bind$rxrpc(r0, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x24) connect$rxrpc(r0, &(0x7f0000000080)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @remote}}, 0x24) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0xb0, 0x4) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) 04:36:32 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) getsockopt$SO_COOKIE(r3, 0x1, 0x39, &(0x7f0000000040), &(0x7f00000000c0)=0x8) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, r4, 0x202, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfffffff7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000000}, 0x0) sendmsg$IPVS_CMD_SET_DEST(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xf4, r4, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x22}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@remote}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x3}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@broadcast}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x6a}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@empty}]}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private1={0xfc, 0x1, [], 0x1}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x32, 0xc}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@private=0xa010102}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0xab92a7d029c8e7ff}}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x4040800}, 0x20000040) ioctl$CHAR_RAW_FRASET(r3, 0x1264, &(0x7f0000000000)=0x10000) [ 284.295170] FAULT_INJECTION: forcing a failure. [ 284.295170] name failslab, interval 1, probability 0, space 0, times 0 [ 284.311292] CPU: 1 PID: 20077 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 284.319183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.328529] Call Trace: [ 284.331122] dump_stack+0x1b2/0x283 [ 284.334756] should_fail.cold+0x10a/0x154 [ 284.338911] should_failslab+0xd6/0x130 [ 284.342892] kmem_cache_alloc_node+0x263/0x410 [ 284.347465] __alloc_skb+0x5c/0x510 [ 284.351135] kobject_uevent_env+0x882/0xf40 [ 284.355457] device_add+0xa47/0x15c0 [ 284.359153] ? device_is_dependent+0x270/0x270 [ 284.363734] netdev_register_kobject+0x181/0x410 [ 284.368483] register_netdevice+0x955/0xe40 [ 284.372788] ? netdev_change_features+0xa0/0xa0 [ 284.377440] br_dev_newlink+0x23/0x100 [ 284.381310] rtnl_newlink+0xf88/0x1830 [ 284.385212] ? __lock_acquire+0x5fc/0x3f20 [ 284.389431] ? br_changelink+0x1570/0x1570 [ 284.393656] ? kmem_cache_free+0x7c/0x2b0 [ 284.397791] ? rtnl_dellink+0x6a0/0x6a0 [ 284.401770] ? trace_hardirqs_on+0x10/0x10 [ 284.405984] ? netlink_deliver_tap+0x60c/0x7d0 [ 284.410557] ? netlink_unicast+0x485/0x610 [ 284.414773] ? netlink_sendmsg+0x62e/0xb80 [ 284.419005] ? ___sys_sendmsg+0x660/0x800 [ 284.423132] ? __sys_sendmsg+0xa3/0x120 [ 284.427099] ? SyS_sendmsg+0x27/0x40 [ 284.430828] ? lock_acquire+0x170/0x3f0 [ 284.434792] ? lock_downgrade+0x740/0x740 [ 284.438933] ? rtnl_dellink+0x6a0/0x6a0 [ 284.442893] rtnetlink_rcv_msg+0x3be/0xb10 [ 284.447115] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 284.451591] ? lock_downgrade+0x740/0x740 [ 284.455731] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 284.460815] netlink_rcv_skb+0x125/0x390 [ 284.464859] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 284.469353] ? netlink_ack+0x9a0/0x9a0 [ 284.473227] netlink_unicast+0x437/0x610 [ 284.477270] ? netlink_sendskb+0xd0/0xd0 [ 284.481315] ? __check_object_size+0x179/0x22c [ 284.485892] netlink_sendmsg+0x62e/0xb80 [ 284.489954] ? nlmsg_notify+0x170/0x170 [ 284.493925] ? kernel_recvmsg+0x210/0x210 [ 284.498067] ? security_socket_sendmsg+0x83/0xb0 [ 284.502813] ? nlmsg_notify+0x170/0x170 [ 284.506767] sock_sendmsg+0xb5/0x100 [ 284.510464] ___sys_sendmsg+0x6c8/0x800 [ 284.514419] ? get_pid_task+0x91/0x130 [ 284.518288] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 284.523028] ? lock_downgrade+0x740/0x740 [ 284.527171] ? __fget+0x1fe/0x360 [ 284.530614] ? lock_acquire+0x170/0x3f0 [ 284.534569] ? lock_downgrade+0x740/0x740 [ 284.538699] ? __fget+0x225/0x360 [ 284.542146] ? __fdget+0x196/0x1f0 [ 284.545679] ? sockfd_lookup_light+0xb2/0x160 [ 284.550164] __sys_sendmsg+0xa3/0x120 [ 284.553949] ? SyS_shutdown+0x160/0x160 [ 284.557929] ? wait_for_completion_io+0x10/0x10 [ 284.562607] ? SyS_read+0x210/0x210 [ 284.566229] ? SyS_clock_settime+0x1a0/0x1a0 [ 284.570619] SyS_sendmsg+0x27/0x40 [ 284.574137] ? __sys_sendmsg+0x120/0x120 [ 284.578187] do_syscall_64+0x1d5/0x640 [ 284.582067] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 284.587244] RIP: 0033:0x45e0f9 [ 284.590423] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 284.598127] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 284.605383] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 284.612659] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 284.619910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000059 [ 284.627159] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c 04:36:32 executing program 0: ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000000)) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0) [ 284.662649] REISERFS warning (device loop2): super-6504 reiserfs_getopt: the option "grpjquota" requires an argument [ 284.662649] 04:36:32 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_genetlink_get_family_id$net_dm(&(0x7f0000000000)='NET_DM\x00') r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:32 executing program 1 (fault-call:2 fault-nth:90): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:32 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000080)={0x2, 0x20, [0xffffffffffffffe0, 0x3f, 0xe6, 0x7], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0]}) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) [ 284.770067] FAULT_INJECTION: forcing a failure. [ 284.770067] name failslab, interval 1, probability 0, space 0, times 0 [ 284.791610] CPU: 0 PID: 20104 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 284.799509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.808864] Call Trace: [ 284.811456] dump_stack+0x1b2/0x283 [ 284.815092] should_fail.cold+0x10a/0x154 04:36:32 executing program 3 (fault-call:5 fault-nth:0): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:32 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 284.819247] should_failslab+0xd6/0x130 [ 284.823229] kmem_cache_alloc_node+0x263/0x410 [ 284.827818] __alloc_skb+0x5c/0x510 [ 284.831450] kobject_uevent_env+0x882/0xf40 [ 284.835775] device_add+0xa47/0x15c0 [ 284.839498] ? device_is_dependent+0x270/0x270 [ 284.844080] netdev_register_kobject+0x181/0x410 [ 284.848849] register_netdevice+0x955/0xe40 [ 284.853156] ? netdev_change_features+0xa0/0xa0 [ 284.857811] br_dev_newlink+0x23/0x100 [ 284.861682] rtnl_newlink+0xf88/0x1830 [ 284.865563] ? __lock_acquire+0x5fc/0x3f20 [ 284.869794] ? br_changelink+0x1570/0x1570 [ 284.874028] ? kmem_cache_free+0x7c/0x2b0 [ 284.878192] ? rtnl_dellink+0x6a0/0x6a0 [ 284.882165] ? trace_hardirqs_on+0x10/0x10 [ 284.886398] ? netlink_deliver_tap+0x60c/0x7d0 [ 284.890992] ? netlink_unicast+0x485/0x610 [ 284.895220] ? netlink_sendmsg+0x62e/0xb80 [ 284.899451] ? ___sys_sendmsg+0x660/0x800 [ 284.903580] ? __sys_sendmsg+0xa3/0x120 [ 284.907547] ? SyS_sendmsg+0x27/0x40 [ 284.911274] ? lock_acquire+0x170/0x3f0 [ 284.915236] ? lock_downgrade+0x740/0x740 [ 284.919421] ? rtnl_dellink+0x6a0/0x6a0 [ 284.923384] rtnetlink_rcv_msg+0x3be/0xb10 [ 284.925494] FAULT_INJECTION: forcing a failure. [ 284.925494] name failslab, interval 1, probability 0, space 0, times 0 [ 284.927615] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 284.943358] ? __netlink_lookup+0x345/0x5d0 [ 284.947685] ? netdev_pick_tx+0x2e0/0x2e0 [ 284.951841] netlink_rcv_skb+0x125/0x390 [ 284.955929] ? memcpy+0x35/0x50 [ 284.959205] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 284.963695] ? netlink_ack+0x9a0/0x9a0 [ 284.967584] netlink_unicast+0x437/0x610 [ 284.971641] ? netlink_sendskb+0xd0/0xd0 [ 284.975699] ? __check_object_size+0x179/0x22c [ 284.980279] netlink_sendmsg+0x62e/0xb80 [ 284.984339] ? nlmsg_notify+0x170/0x170 [ 284.988393] ? kernel_recvmsg+0x210/0x210 [ 284.992560] ? security_socket_sendmsg+0x83/0xb0 [ 284.997307] ? nlmsg_notify+0x170/0x170 [ 285.001272] sock_sendmsg+0xb5/0x100 [ 285.004996] ___sys_sendmsg+0x6c8/0x800 [ 285.008963] ? get_pid_task+0x91/0x130 [ 285.012842] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 285.017608] ? lock_downgrade+0x740/0x740 [ 285.021781] ? __fget+0x1fe/0x360 [ 285.025232] ? lock_acquire+0x170/0x3f0 [ 285.029205] ? lock_downgrade+0x740/0x740 [ 285.033353] ? __fget+0x225/0x360 [ 285.036818] ? __fdget+0x196/0x1f0 [ 285.040352] ? sockfd_lookup_light+0xb2/0x160 [ 285.044859] __sys_sendmsg+0xa3/0x120 [ 285.048652] ? SyS_shutdown+0x160/0x160 [ 285.052617] ? wait_for_completion_io+0x10/0x10 [ 285.057283] ? SyS_read+0x210/0x210 [ 285.060897] ? SyS_clock_settime+0x1a0/0x1a0 [ 285.065297] SyS_sendmsg+0x27/0x40 [ 285.068854] ? __sys_sendmsg+0x120/0x120 [ 285.072908] do_syscall_64+0x1d5/0x640 [ 285.076814] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 285.081996] RIP: 0033:0x45e0f9 [ 285.085177] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 285.092897] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 285.100160] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 285.107422] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 285.114685] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000005a [ 285.121941] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 285.129233] CPU: 1 PID: 20117 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 285.137125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.146475] Call Trace: [ 285.149060] dump_stack+0x1b2/0x283 [ 285.152696] should_fail.cold+0x10a/0x154 [ 285.156849] should_failslab+0xd6/0x130 [ 285.160828] __kmalloc_track_caller+0x2bc/0x400 [ 285.165498] ? strndup_user+0x5b/0xf0 [ 285.169303] memdup_user+0x22/0xa0 [ 285.172841] strndup_user+0x5b/0xf0 [ 285.176470] ? copy_mnt_ns+0xa30/0xa30 [ 285.180360] SyS_mount+0x39/0x120 [ 285.183816] ? copy_mnt_ns+0xa30/0xa30 [ 285.187703] do_syscall_64+0x1d5/0x640 [ 285.191596] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 285.196786] RIP: 0033:0x45e0f9 [ 285.199975] RSP: 002b:00007f4d7861ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.207686] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 285.214954] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 04:36:33 executing program 3 (fault-call:5 fault-nth:1): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 285.222220] RBP: 00007f4d7861aca0 R08: 0000000020000280 R09: 0000000000000000 [ 285.229487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.236755] R13: 00007fff680eeecf R14: 00007f4d7861b9c0 R15: 000000000119c0dc 04:36:33 executing program 0: sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000380)={0x3bc, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_MLSLVLLST={0x174, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x53c2d271}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7fa3632d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x62ecdc6d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3b75b2c0}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcf}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b4843f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xfb82e63}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a69f308}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5a3621e4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4d31dc34}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x22}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x9236718}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x368ded1b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x51}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x655a100d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5816141d}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2ee86425}]}, {0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78885994}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x74420bdd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf25de47}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x35bedfc3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x12}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x99}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2b}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1523f4df}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x9666487}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x76f6f01}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2ef28e36}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78f12363}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x626870d5}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x7c, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ce66667}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x74}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6a}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7fffffff}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78b76f96}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x22}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x51369908}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x69461294}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7e5eeca9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x35c7366e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bf3bfaf}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}, {0x5}, {0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x15c, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x139de130}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf97f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1829}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x36c95a39}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x222f}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x70540c8a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe71b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4e0a}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc123}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5515}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cdd87f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3e14}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x767b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4729363}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4ff4beeb}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x64f5d818}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5786efbd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6b8eafa0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x962f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x42b86ee7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2d5a46fc}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1a4db9a3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8a9e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x266e29c8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1abc6624}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x373d8f62}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2ad6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x232c6ebb}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1762e89c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2ec7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x527384ba}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x17562ba4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5442d874}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x152aea11}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x39647798}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf27c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1f8fccfa}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x262cc0bf}]}]}]}, 0x3bc}, 0x1, 0x0, 0x0, 0x50}, 0x1) fcntl$setown(0xffffffffffffffff, 0x8, 0x0) r0 = creat(&(0x7f0000000280)='./bus\x00', 0x0) ftruncate(r0, 0x208200) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, 0x0) ioctl$CHAR_RAW_ZEROOUT(0xffffffffffffffff, 0x127f, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$alg(r0, &(0x7f00000001c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) ioctl$CHAR_RAW_GETSIZE(0xffffffffffffffff, 0x1260, 0x0) pivot_root(&(0x7f0000000340)='./file0\x00', &(0x7f0000000080)='./file0\x00') fsync(0xffffffffffffffff) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x402c5342, &(0x7f0000000740)={0x2, 0x7, 0x63, {0x0, 0x200}, 0x1400, 0x4}) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000011c0)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x13}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8, 0x1, 'sit\x00'}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FWMARK={0x8}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @IFLA_IPTUN_FLAGS={0x6}]}}}, @IFLA_MASTER={0x8}]}, 0x50}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0xfffffffe, 0x0, 0x40000}, 0x0) inotify_init1(0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000180), 0x8) 04:36:33 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') r4 = syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f00000000c0)='./file0\x00', 0x6, 0x3, &(0x7f0000000200)=[{&(0x7f0000000100)="ef906c7295fe7e12af8faa7f8963e91c78b5659d19364635203aa353f6f5dfad500c7107d4e6be5df0450daed41459d170d0b0f3c8732c78d9d9dfa087cc7a3d0581dd", 0x43, 0x4}, {&(0x7f0000000180), 0x0, 0x30}, {&(0x7f00000001c0)="3d4c2db6c52c684c6b005135f304416e2fa4ff30c10c5469bfb0c4a65e59a6239849b02dd32ad868c8de87e42033080314d10b50b6", 0x35, 0x9}], 0x10, &(0x7f0000000280)={[{@jqfmt_vfsold='jqfmt=vfsold'}, {@noattrs='noattrs'}, {@grpjquota='grpjquota'}, {@balloc_border='block-allocator=border'}, {@expose_privroot='expose_privroot'}], [{@smackfsroot={'smackfsroot', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@smackfshat={'smackfshat', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@measure='measure'}, {@fsname={'fsname', 0x3d, '/proc/sys/net/ipv4/vs/sync_retries\x00'}}, {@subj_user={'subj_user', 0x3d, '$\xd4()\xb0&:'}}, {@pcr={'pcr', 0x3d, 0x3a}}, {@obj_user={'obj_user', 0x3d, 'oom_score_adj\x00'}}]}) dup(r4) sendfile(r3, r3, 0x0, 0xffff) ioctl$IOCTL_VMCI_SET_NOTIFY(r3, 0x7cb, &(0x7f0000000000)={0x6, 0x4, 0xffffffff}) 04:36:33 executing program 1 (fault-call:2 fault-nth:91): perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 285.341264] FAULT_INJECTION: forcing a failure. [ 285.341264] name failslab, interval 1, probability 0, space 0, times 0 [ 285.376196] FAULT_INJECTION: forcing a failure. [ 285.376196] name failslab, interval 1, probability 0, space 0, times 0 [ 285.387344] CPU: 1 PID: 20137 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 285.395274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.404619] Call Trace: [ 285.407204] dump_stack+0x1b2/0x283 [ 285.410834] should_fail.cold+0x10a/0x154 [ 285.415002] should_failslab+0xd6/0x130 [ 285.418971] kmem_cache_alloc_trace+0x29a/0x3d0 [ 285.423636] ? copy_mnt_ns+0xa30/0xa30 [ 285.427519] copy_mount_options+0x59/0x2f0 [ 285.431807] ? copy_mnt_ns+0xa30/0xa30 [ 285.435692] SyS_mount+0x84/0x120 [ 285.439143] ? copy_mnt_ns+0xa30/0xa30 [ 285.443027] do_syscall_64+0x1d5/0x640 [ 285.446935] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 285.452113] RIP: 0033:0x45e0f9 [ 285.455315] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.463029] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 285.470290] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 285.477557] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 285.484822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 04:36:33 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x40000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400000) fstat(r4, &(0x7f0000000000)) [ 285.492093] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 285.510646] CPU: 0 PID: 20140 Comm: syz-executor.1 Not tainted 4.14.211-syzkaller #0 [ 285.518540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.527891] Call Trace: [ 285.530479] dump_stack+0x1b2/0x283 [ 285.534109] should_fail.cold+0x10a/0x154 [ 285.538262] should_failslab+0xd6/0x130 04:36:33 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000040)='SMC_PNETID\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x14, r3, 0x701}, 0x14}}, 0x0) sendmsg$SMC_PNETID_FLUSH(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x78, r3, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x24, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6erspan0\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x8081}, 0x20000000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r5, 0x0) ioctl$PPPIOCGFLAGS1(r5, 0x8004745a, &(0x7f0000000180)) [ 285.542265] kmem_cache_alloc_node+0x263/0x410 [ 285.546853] __alloc_skb+0x5c/0x510 [ 285.550486] kobject_uevent_env+0x882/0xf40 [ 285.554816] device_add+0xa47/0x15c0 [ 285.558531] ? device_is_dependent+0x270/0x270 [ 285.563116] netdev_register_kobject+0x181/0x410 [ 285.567876] register_netdevice+0x955/0xe40 [ 285.572242] ? netdev_change_features+0xa0/0xa0 [ 285.576915] br_dev_newlink+0x23/0x100 [ 285.580789] rtnl_newlink+0xf88/0x1830 [ 285.584707] ? __lock_acquire+0x5fc/0x3f20 [ 285.588925] ? br_changelink+0x1570/0x1570 [ 285.593144] ? kmem_cache_free+0x7c/0x2b0 [ 285.597293] ? rtnl_dellink+0x6a0/0x6a0 [ 285.601259] ? trace_hardirqs_on+0x10/0x10 [ 285.605474] ? netlink_deliver_tap+0x60c/0x7d0 [ 285.610033] ? netlink_unicast+0x485/0x610 [ 285.614248] ? netlink_sendmsg+0x62e/0xb80 [ 285.618483] ? ___sys_sendmsg+0x660/0x800 [ 285.622619] ? __sys_sendmsg+0xa3/0x120 [ 285.626571] ? SyS_sendmsg+0x27/0x40 [ 285.630289] ? lock_acquire+0x170/0x3f0 [ 285.634244] ? lock_downgrade+0x740/0x740 [ 285.638373] ? rtnl_dellink+0x6a0/0x6a0 [ 285.642349] rtnetlink_rcv_msg+0x3be/0xb10 [ 285.646566] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 285.651060] ? __netlink_lookup+0x345/0x5d0 [ 285.655361] ? netdev_pick_tx+0x2e0/0x2e0 [ 285.659503] netlink_rcv_skb+0x125/0x390 [ 285.663567] ? memcpy+0x35/0x50 [ 285.666852] ? rtnl_calcit.isra.0+0x3a0/0x3a0 [ 285.671342] ? netlink_ack+0x9a0/0x9a0 [ 285.675224] netlink_unicast+0x437/0x610 [ 285.679293] ? netlink_sendskb+0xd0/0xd0 [ 285.683335] ? __check_object_size+0x179/0x22c [ 285.687898] netlink_sendmsg+0x62e/0xb80 [ 285.691939] ? nlmsg_notify+0x170/0x170 [ 285.695904] ? kernel_recvmsg+0x210/0x210 [ 285.700035] ? security_socket_sendmsg+0x83/0xb0 [ 285.704786] ? nlmsg_notify+0x170/0x170 [ 285.708752] sock_sendmsg+0xb5/0x100 [ 285.712471] ___sys_sendmsg+0x6c8/0x800 [ 285.716431] ? get_pid_task+0x91/0x130 [ 285.720307] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 285.725059] ? lock_downgrade+0x740/0x740 [ 285.729207] ? __fget+0x1fe/0x360 [ 285.732640] ? lock_acquire+0x170/0x3f0 [ 285.736597] ? lock_downgrade+0x740/0x740 [ 285.740738] ? __fget+0x225/0x360 [ 285.744194] ? __fdget+0x196/0x1f0 [ 285.747736] ? sockfd_lookup_light+0xb2/0x160 [ 285.752226] __sys_sendmsg+0xa3/0x120 [ 285.756007] ? SyS_shutdown+0x160/0x160 [ 285.759982] ? wait_for_completion_io+0x10/0x10 [ 285.764634] ? SyS_read+0x210/0x210 [ 285.768241] ? SyS_clock_settime+0x1a0/0x1a0 [ 285.772733] SyS_sendmsg+0x27/0x40 [ 285.776251] ? __sys_sendmsg+0x120/0x120 [ 285.780292] do_syscall_64+0x1d5/0x640 [ 285.784163] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 285.789333] RIP: 0033:0x45e0f9 04:36:33 executing program 3 (fault-call:5 fault-nth:2): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 285.792519] RSP: 002b:00007faa0295dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 285.800207] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000045e0f9 [ 285.807487] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 285.814743] RBP: 00007faa0295dca0 R08: 0000000000000000 R09: 0000000000000000 [ 285.822002] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000005b [ 285.829248] R13: 00007ffdd3f5b71f R14: 00007faa0295e9c0 R15: 000000000119bf8c [ 285.873394] REISERFS warning (device loop2): super-6504 reiserfs_getopt: the option "grpjquota" requires an argument [ 285.873394] [ 285.992014] FAULT_INJECTION: forcing a failure. [ 285.992014] name failslab, interval 1, probability 0, space 0, times 0 [ 286.029818] CPU: 1 PID: 20165 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 286.037727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.047077] Call Trace: [ 286.049665] dump_stack+0x1b2/0x283 [ 286.053294] should_fail.cold+0x10a/0x154 [ 286.057451] should_failslab+0xd6/0x130 [ 286.061434] kmem_cache_alloc+0x28e/0x3c0 [ 286.065583] getname_flags+0xc8/0x550 [ 286.069384] user_path_at_empty+0x2a/0x50 [ 286.073561] do_mount+0x118/0x2a00 [ 286.077110] ? copy_mount_string+0x40/0x40 [ 286.081366] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 286.086384] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 286.091221] ? copy_mnt_ns+0xa30/0xa30 [ 286.095109] ? copy_mount_options+0x1fa/0x2f0 [ 286.099601] ? copy_mnt_ns+0xa30/0xa30 [ 286.103513] SyS_mount+0xa8/0x120 [ 286.106964] ? copy_mnt_ns+0xa30/0xa30 [ 286.110857] do_syscall_64+0x1d5/0x640 [ 286.114755] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 286.119940] RIP: 0033:0x45e0f9 [ 286.123125] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.130838] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 286.138101] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 286.145363] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 286.152657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 286.159946] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 04:36:34 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x40801, 0x0) ioctl$TIOCGPKT(r3, 0x80045438, &(0x7f0000000040)) 04:36:34 executing program 2: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="776f726b6469723d2e2f66696c6530246c6f7765726469693d2e2f1e696c65302c755d7065726469723d2e2f62f5732c00f05a52e9c80a96429b92ae3efb2c106604b0aa567899380ea90af58b99f7d61a2b7f539599c67ca28c88cd8eebb980120bf25aedfabfdaa161329760d6a4e2b846d4fd702364bff6ff9d7ac7e699776180c871"]) mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000200)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@index_off='index=off'}]}) 04:36:34 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x508200, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) ioctl$TIOCMIWAIT(r1, 0x545c, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r5, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x1, 0xc, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000040)={@private2, @local, @empty, 0x3f, 0xb5, 0x27a0, 0x0, 0xce37, 0xa0210, r5}) 04:36:34 executing program 0: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) pivot_root(&(0x7f0000000180)='./file0\x00', &(0x7f00000004c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setxattr(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@known='com.apple.FinderInfo\x00', &(0x7f00000002c0)=']-/@-,^#(\x00', 0xa, 0x3) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="5d08030000000000f40003006970766c610bd4c7c9d6a3df6b106e310000adeddf0300000000000000140012800b0001"], 0x48}}, 0x0) open(0x0, 0x0, 0x0) renameat2(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0xffffffffffffffff, 0x0, 0x2) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(0x0) quotactl(0x9, &(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000280)) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000380)={r2, 0x9, 0x8, 0x7}) write$P9_RLOCK(r4, &(0x7f00000003c0)={0x8, 0x35, 0x1}, 0x8) dup(r3) connect$unix(r3, &(0x7f0000000300)=@abs={0x1, 0x0, 0x4e20}, 0x6e) 04:36:34 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000000)=[0x200, 0x8, 0x10000, 0x4e, 0x643d, 0x5, 0xffffff8c], 0x7, 0x80800, 0x0, 0xffffffffffffffff}) r3 = socket(0x10, 0x803, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r6, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380)='nl80211\x00') sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYRESDEC, @ANYRES16=r8, @ANYBLOB="000000800000fbdbdf254c00000008007700e70f00000400ec005019fd94c319d3801a55f0180f77ba000c000000000000009740a63200000000c09f417b4c7903ca485d88ac104f1e5a5c15750700d66e5595bdcebb608eba8e48fdc2399e33ef64fb75a51b4d1802abe7e93ceddd23c6af141864e9a5afc4ee15db767b9631145d80183760ce307c7fdd202b78a7dc3cb069a985e14dd27a93dcfe3a1fd3eefb696adccffa15046b69"], 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="000228bd00000100000000008a4591000000088cb000a85aa143a1be", @ANYRES32=0x0, @ANYBLOB="0c0099002000000003000000"], 0x28}, 0x1, 0x0, 0x0, 0x4099}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000002c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r7, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x48, r8, 0x20, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x4, 0xe}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x3}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x40}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x6}, @NL80211_ATTR_BANDS={0x8}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x20000000) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000140)={'syztnl0\x00', &(0x7f00000000c0)={'ip6gre0\x00', r6, 0x2f, 0x40, 0x7f, 0x5, 0x2, @remote, @private1={0xfc, 0x1, [], 0x1}, 0x8, 0x20, 0xffff, 0x1}}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r10, 0x0) [ 286.279433] overlayfs: unrecognized mount option "u]perdir=./bõs" or missing value 04:36:34 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000000)=0x200000000) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) 04:36:34 executing program 3 (fault-call:5 fault-nth:3): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:34 executing program 2: sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x218}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001880)=ANY=[@ANYBLOB="02010006100600000000000800130000ffff400000d2a82be90000e592c300fcffff390000ff0f00000000e00073000000000000000000000035000000000000000000000e02ff00000000030006000000000002000004000000bb0000e00000000000030005000000000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f0000000180), 0x400000000000002, 0x0) [ 286.370242] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 286.407902] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 04:36:34 executing program 0: sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x78) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="d8000000180081064e81f782db4cb904021d080000007c09e8fe55a10a0015000200142603000e1208000b0000000001a800160008000600e558f030035c3b61c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e04adcdf63951f215ce3bb9ad809d5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000cc0)}, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r1) r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) recvmsg(r2, 0x0, 0x2020) r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000580)=r3) timerfd_gettime(0xffffffffffffffff, &(0x7f0000000040)) recvmsg(0xffffffffffffffff, 0x0, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000840)) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000005c0)) [ 286.483994] FAULT_INJECTION: forcing a failure. [ 286.483994] name failslab, interval 1, probability 0, space 0, times 0 [ 286.529016] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 286.531120] CPU: 1 PID: 20206 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 286.545415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.554763] Call Trace: [ 286.557350] dump_stack+0x1b2/0x283 [ 286.560980] should_fail.cold+0x10a/0x154 [ 286.565122] should_failslab+0xd6/0x130 [ 286.569092] kmem_cache_alloc+0x28e/0x3c0 [ 286.573232] alloc_vfsmnt+0x23/0x7f0 [ 286.576937] ? _raw_read_unlock+0x29/0x40 [ 286.581076] vfs_kern_mount.part.0+0x27/0x470 [ 286.585564] do_mount+0xe53/0x2a00 [ 286.589100] ? do_raw_spin_unlock+0x164/0x220 [ 286.593588] ? copy_mount_string+0x40/0x40 [ 286.597813] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 286.602848] ? copy_mnt_ns+0xa30/0xa30 [ 286.606727] ? copy_mount_options+0x1fa/0x2f0 [ 286.611212] ? copy_mnt_ns+0xa30/0xa30 [ 286.615090] SyS_mount+0xa8/0x120 [ 286.618540] ? copy_mnt_ns+0xa30/0xa30 [ 286.622430] do_syscall_64+0x1d5/0x640 04:36:34 executing program 1: setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, &(0x7f0000000080)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}], 0x10) r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) perf_event_open(0x0, 0x0, 0x4, r0, 0x1) r1 = socket$netlink(0x10, 0x3, 0xc) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="0000e7094f0500000000000000000008002000cc365cf358d3c4457bd944dacc46f69c23d636227929c10d0ecb13b64a87f00ef4a0cadb7e830149a16e77b384569214212627e833b1ffe9fe2759797aa897a4a47618c9edcd1c96b6a632e9981ba1", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}, 0x1, 0x0, 0x0, 0x44001}, 0x8894) [ 286.626323] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 286.631500] RIP: 0033:0x45e0f9 [ 286.634675] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.642373] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 286.649630] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 286.656888] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 286.664152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 286.671416] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:34 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$inet_opts(r1, 0x0, 0x9, &(0x7f0000000c00)=""/225, &(0x7f0000000180)=0xe1) r2 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000bf0000000f00000001000000000000000000000000200000002000002000000029c4645f29c4645f0100ffff53ef01000100000029c4645f000000000000000001000000000000000b0000000004", 0x5a, 0x400}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010d00)="ed4100000004000029c4645f29c4645f29c4645f000000000000040002000000000000000500000025", 0x29, 0x1800}, {&(0x7f0000011100)="ed4100000004000029c4645f29c4645f29c4645f000000000000020002000000000000", 0x23, 0x4000}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c6530", 0x39, 0x9400}, {0x0, 0x0, 0x3fc00}], 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="00b886be87e465fd991d03761791e6217dd62d39e7c7e3fc8914fabcde513aee30f8b825f5d9bd27039bda0b7f055ab5bc5aaa8c862655a7ff35b0b43fda262852c200"/76]) socketpair(0x3, 0x4, 0x5, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NL80211_CMD_GET_SURVEY(r4, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000540)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4010) getsockopt$bt_hci(r3, 0x0, 0x2, &(0x7f0000000300)=""/220, &(0x7f0000000280)=0xdc) write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x0) r5 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchdir(r5) sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000f00)={&(0x7f00000006c0)=ANY=[@ANYBLOB="80030000", @ANYRES16=0x0, @ANYBLOB="000125bd7000ffdbdf250000000008000100", @ANYRES32=0x0, @ANYBLOB="a0000280400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000000000008000600", @ANYRES32=0x0, @ANYBLOB="5c000100240001006270665f686173685f66756e6300000000010000000000000000000000000000050003000b0000002c00040001004003141f000001ff28f70700000002000740010000000000804000000000790ee203f702000008000100", @ANYRES32=0x0, @ANYBLOB="c80002804c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e670000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e00000008000400beae000008000600", @ANYRES32=0x0, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="ebb2bebf9060deb5400002803c00010024000100ea0338a40c2d356803cd686d9035f9757365725f6c696e6b75705f656e61626c6564000000000000000000000000000500030006000aa21b3e040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="500002804c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e670000000008000100", @ANYRES32=0x0, @ANYBLOB="400002803c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="780002803c00010024000100757365725f6c696e6b75705f656e61626c656400000000000000000000000000050003000600000004000400080006", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f6367756e7400000000000400000008000100"/54, @ANYRES32=0x0, @ANYBLOB="7800028038000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000050003000300000008000400000000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYBLOB="04000280"], 0x380}, 0x1, 0x0, 0x0, 0x4004010}, 0x40) fcntl$getownex(r2, 0x10, 0x0) unlinkat(r2, &(0x7f0000000100)='./file0\x00', 0x200) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0xa20000, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000b00)={@in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x0, 0x0, 0xc, 0x0, "b03be5c3da3e8369936bd026dea436046f417ab1949ab0b84ca30e56f2b234cc3a5e7a57d20acf57c743eec99a862e44a6c4e6fe15d2699d22104b0146b308b902cfbb07d9255e5c41580a7dcc1c2e80"}, 0xd8) 04:36:34 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000000)) 04:36:34 executing program 1: ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000000000)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="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"/265], 0x44}}, 0x0) 04:36:34 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000000)={0x4, 0x24, [0xfffffc01, 0x8, 0x7, 0x0, 0x5, 0x101, 0x38bf, 0x5, 0x6]}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) 04:36:34 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:34 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x9) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/key-users\x00', 0x0, 0x0) getsockopt$EBT_SO_GET_INIT_ENTRIES(r1, 0x0, 0x83, &(0x7f00000004c0)={'broute\x00', 0x0, 0x4, 0x0, [], 0x7, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f0000000480)}, &(0x7f0000000580)=0x78) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) sendmsg$AUDIT_USER_TTY(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0x94, 0x464, 0x0, 0x70bd22, 0x25dfdbfc, "2bf9357fa9bdd9b48877cf588043d336203177a7b3e7566e1ae31089010100000000000053c0a269c93383267c93b5ecd5dc6818eec95457a8ac762fc86b1d805ebddd9ad4e6b8f43ee67b6b2b26df4fdec1634acbc87502f5de8d1f386ed2d493f9fce36b82f6ec9393a42660e609b092428ad0879473f198ddef7c39ff886cd0e498", [""]}, 0x94}, 0x1, 0x0, 0x0, 0xc800}, 0x40004) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x28, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_TXQLEN={0x8, 0xd, 0x80}]}, 0x28}}, 0x40c0) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f0000000000)={0x10001, 0x81, 0x3, 0x8001}, 0x10) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x24, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x43}, @void, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0xd0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000340), &(0x7f0000000380)=0xc) 04:36:34 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r2, &(0x7f00000000c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000040)={0xffffffffffffffff}, 0x2, {0xa, 0x4e23, 0x3, @local, 0x800}}}, 0x38) write$RDMA_USER_CM_CMD_LEAVE_MCAST(r3, &(0x7f0000000100)={0x11, 0x10, 0xfa00, {&(0x7f0000000000), r4}}, 0x18) 04:36:34 executing program 1: symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00') perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000026c0)='/proc/self/net/pfkey\x00', 0x101000, 0x0) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000002700)={0x1000}, 0x4) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff000001000000000040000006", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) msgctl$MSG_STAT(0x0, 0xb, &(0x7f00000005c0)=""/4096) 04:36:34 executing program 3 (fault-call:5 fault-nth:4): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:34 executing program 0: getresgid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f0000002300)) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000001c0)={0x0, "4dcdf6ea3ff6b80c17ffaa4fd23997dc"}) 04:36:34 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_GET_SUPPORTED_CPUID(r1, 0xc008ae05, &(0x7f0000000000)=""/93) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) [ 287.091041] FAULT_INJECTION: forcing a failure. [ 287.091041] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 287.102879] CPU: 0 PID: 20272 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 287.110757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.120102] Call Trace: [ 287.122687] dump_stack+0x1b2/0x283 [ 287.126324] should_fail.cold+0x10a/0x154 [ 287.130471] __alloc_pages_nodemask+0x22c/0x2720 [ 287.135254] ? __lock_acquire+0x5fc/0x3f20 [ 287.139489] ? is_bpf_text_address+0xb8/0x150 [ 287.143983] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 287.148824] ? __kernel_text_address+0x9/0x30 [ 287.153316] ? trace_hardirqs_on+0x10/0x10 [ 287.157584] ? __save_stack_trace+0xa0/0x160 [ 287.162006] ? depot_save_stack+0x10d/0x3e3 [ 287.166334] ? kasan_kmalloc+0x139/0x160 [ 287.170391] ? kasan_kmalloc+0xeb/0x160 [ 287.174389] cache_grow_begin+0x8f/0x420 [ 287.178454] cache_alloc_refill+0x273/0x350 [ 287.182777] kmem_cache_alloc+0x333/0x3c0 [ 287.186958] getname_flags+0xc8/0x550 04:36:35 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0xc521, 0x0) r1 = dup(r0) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x400001, 0x0) ioctl$VIDIOC_STREAMON(r2, 0x40045612, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x1000000400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r4) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffff) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380)='nl80211\x00') sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="11deaaa4bbdedf9c2d95759843b9101c67b20d5a7047315ca6cc1d81a8210c850c7f14744d4c0b8ad6fb779cabe836ba6d74b703d88c1abdc61c6fd571d945a76ada69a0fbcb1875d8cfd05072816c", @ANYRES16=r5, @ANYBLOB="000000800000fbdbdf254c00000008007700e70f00000400ec005019fd94c319d3801a55f0180f77ba000c000000000000009740a63200000000c09f417b4c7903ca485d88ac104f1e5a5c15750700d66e5595bdcebb608eba8e48fdc2399e33ef64fb75a51b4d1802abe7e93ceddd23c6af141864e9a5afc4ee15db767b9631145d80183760ce307c7fdd202b78a7dc3cb069a985e14dd27a93dcfe3a1fd3eefb696adccffa15046b69"], 0x20}}, 0x0) sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000228bd00000100000000008a4591000000088cb000a85aa143a1be", @ANYRES32=0x0, @ANYBLOB="0c009900200000000300000022ead7fd86a0582f5606da227e7f543bebdc732923d21ad3814191e166a1c8663e2bad044b31f8624974c9041d290ea3b1411502c26ac1ed3121b9f27b03e56affa56c819ca60d2d58a03395d4e0f3e4acd69cbaa3febe6855b95225d842d69391fb2906e6df6bf9576e4b04c5c1199ff89a773f83987162aa98357e5645b827f36bf93579437d2ebd85da7c16677347cd882661d1fd6b73bbc2bea1"], 0x28}, 0x1, 0x0, 0x0, 0x4099}, 0x0) sendmsg$NL80211_CMD_EXTERNAL_AUTH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, r5, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x6, 0x5f}}}}, [@NL80211_ATTR_PMKID={0x14, 0x55, "6896c5d3bb037d56159c252c6710b158"}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000840) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/attr/current\x00', 0x2, 0x0) openat$mice(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/mice\x00', 0x44000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r6) fstat(r3, &(0x7f0000000200)) [ 287.190756] ? cache_alloc_refill+0x2fa/0x350 [ 287.195251] user_path_at_empty+0x2a/0x50 [ 287.199428] do_mount+0x118/0x2a00 [ 287.202966] ? do_raw_spin_unlock+0x164/0x220 [ 287.207467] ? copy_mount_string+0x40/0x40 [ 287.211700] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 287.216716] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 287.221556] ? copy_mnt_ns+0xa30/0xa30 [ 287.225457] ? copy_mount_options+0x1fa/0x2f0 [ 287.229953] ? copy_mnt_ns+0xa30/0xa30 [ 287.233857] SyS_mount+0xa8/0x120 [ 287.237305] ? copy_mnt_ns+0xa30/0xa30 [ 287.241188] do_syscall_64+0x1d5/0x640 [ 287.245080] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 287.250267] RIP: 0033:0x45e0f9 [ 287.253449] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 287.261156] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 287.268447] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 287.275712] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 287.282998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 287.290264] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 287.322099] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue 04:36:35 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000000c0)={'syz0\x00', {0x9, 0x3, 0x1f, 0x8001}, 0x1a, [0x56, 0x80000001, 0x5, 0x4015b898, 0xf44, 0x3, 0x20, 0x7fff, 0x8, 0x2, 0x73, 0x8, 0x8000, 0x0, 0x8000, 0x0, 0x40, 0xfffffffa, 0x0, 0x60000000, 0x4, 0x6, 0x6, 0x3, 0x3, 0x75, 0x100, 0xa53, 0xfff, 0x2, 0x6, 0xa039, 0x6, 0x5d, 0x7, 0x7, 0x8, 0xb4d5, 0xffff, 0x9, 0x8, 0x9, 0x80000000, 0x81, 0xfff, 0x982, 0x3, 0xffff, 0xf32b4e0, 0x9, 0x3, 0x469, 0x3f, 0x1, 0x8, 0x6, 0x9, 0x10001, 0x4, 0x9, 0x1, 0xc64, 0x9, 0x7fff], [0x1, 0x3, 0x9, 0xfffffffe, 0x800, 0xffffffd9, 0x3, 0x4, 0x1ff, 0x7ff, 0x4, 0xffff, 0x7ff, 0x1ff, 0xacf, 0x7ff, 0x1f, 0x3, 0x9, 0x3, 0x2, 0x101, 0xfffff000, 0x6, 0xfff, 0x7, 0x5, 0x0, 0x1, 0xfffffffb, 0xcb9, 0x10001, 0x80000001, 0x8, 0x7, 0x8, 0x5, 0x5, 0xe5, 0x80000001, 0x7f, 0x6, 0x0, 0xffff7fff, 0x6, 0x1, 0x20, 0x0, 0x4, 0x73, 0x3, 0xe24f, 0x800, 0x5, 0x14a, 0x400, 0x0, 0xd97d, 0x5, 0xfffffffd, 0x80000001, 0x6, 0xb1, 0xffffffff], [0x4, 0x0, 0xffffff80, 0x200, 0x80000000, 0x9, 0x7, 0x3ff, 0xf28, 0x8, 0x5, 0x7, 0x1f, 0x80000001, 0x7f, 0x3, 0xfffffbff, 0x2, 0x4, 0x1f, 0x7fff, 0x4, 0x2, 0x1, 0x70, 0x7fffffff, 0x7f, 0x3, 0x2, 0xb0b, 0x0, 0x1, 0x101, 0x20, 0x8, 0x1, 0x9, 0x0, 0x2, 0x1000, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x2, 0x80000001, 0x4, 0x0, 0x4c6, 0x90000000, 0x40, 0x7, 0x4c1b, 0xbe7, 0x1, 0x100, 0x3f, 0x2, 0x9, 0x10000, 0xd, 0x4, 0x6, 0x100], [0x800, 0x1, 0x8001, 0x1, 0x8000, 0x800, 0x8, 0xfffffffc, 0xfffffff7, 0x3c9, 0x71, 0x0, 0x9, 0x2, 0x7, 0x7, 0x1f, 0x7, 0x10000, 0x1, 0x3, 0xc49, 0x4, 0xa83d, 0xffffffa7, 0x9, 0xffffffff, 0x7, 0x1fe00000, 0x7, 0xfffffc00, 0x4, 0x7fff, 0x6, 0x8000, 0x4, 0x0, 0xd42e, 0x9, 0x720, 0x0, 0x9, 0x6, 0x0, 0x1, 0x4, 0xd0c, 0x7f, 0xfffffffb, 0xed2, 0xee75, 0x7, 0x8, 0x2, 0x1, 0x9, 0x9, 0x800, 0x5, 0x1, 0x1, 0x8, 0x4]}, 0x45c) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:35 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x8, 0x5, 0x52, 0x1, 0x0, 0x1ad485c7, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffff8, 0x0, @perf_bp={&(0x7f00000002c0)}, 0x2006, 0x3ff, 0x9, 0x0, 0x100000001, 0x0, 0x20}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x1) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r0, 0x9) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="3801000010001307000000000000000000000000000000000000000000000000fe8000000000000000000000000000000000e700"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000e000000200000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fb9700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004d7632879f9ba60d900000000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000280)=0x2) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@volatile={0x10, 0x0, 0x0, 0x9, 0x4}]}, {0x0, [0x30, 0xe, 0x30, 0x61, 0x61, 0x61, 0x5f, 0x30]}}, &(0x7f0000000380)=""/239, 0x2e, 0xef}, 0x20) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) ppoll(&(0x7f0000000480)=[{r1, 0x842e}, {r4, 0x1000}, {r3, 0x290}, {r0, 0x5582}, {r5, 0x2204}, {r3}, {r3, 0x1080}, {r6, 0x20}], 0x8, &(0x7f00000004c0), &(0x7f0000000500)={[0x3]}, 0x8) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) 04:36:35 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRESOCT, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) 04:36:35 executing program 3 (fault-call:5 fault-nth:5): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:35 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SIOCRSSCAUSE(0xffffffffffffffff, 0x89e1, &(0x7f0000000000)=0x1f) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x80, 0x0) ioctl$SNDCTL_DSP_GETOSPACE(r2, 0x8010500c, &(0x7f00000000c0)) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, &(0x7f0000004140)) 04:36:35 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$packet_int(r1, 0x107, 0x7, &(0x7f0000000000)=0x4, 0x4) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(r4, 0x40184152, &(0x7f0000001240)={0x0, &(0x7f0000000040)=[&(0x7f0000000000), &(0x7f00000000c0)="02221a0fc0b4cdb202c45c7afc1ef88f61b45d04dbcdb60e83d58ec76fb82e556b06bcd9be7349b0b5a158cd1b7dc8680b5737f51fcb1f3eeff920877d857e3dfb166bd1e68b9daafe781e823f7b2474b58ade2fe0c03ec4768bb47cfb094e47fe15993fc2050d7e7e41ac040e6acb3969a27c98acbb24c867b7bc7f201d77765e0dba091e62c06a0e147b765456bca37ab4c696a2684069e85409255bafaffea6f92c1805c464a9593d9472f754bee1290c941c988b61d4a37423f17adc0297d579906683023b45a9d100fd7dc58cf475dea00c32a496297c45e10479555ae2d6cc6f00eb25e88acf721a044c0d176f284b9f4fd628bded30", &(0x7f00000001c0)="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", &(0x7f00000011c0)="6869a0f10402ac1d31c518067a4ee238bd0a40771d730a98c47f5f2d0b4fce615193329c45f4cd5a57768243d22090a521d9a1232bb859655865aaea6f4a84cd9d70cedb08947fb48239bf14f636344d53fdbc2fd3401ace3501b83f16d241e187"], 0x1}) 04:36:35 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000247023800b000100627269646765000014ff000000000000000000000600060000000000"], 0x44}}, 0x0) [ 287.559677] FAULT_INJECTION: forcing a failure. [ 287.559677] name fail_page_alloc, interval 1, probability 0, space 0, times 0 04:36:35 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_mount_image$romfs(&(0x7f0000000100)='romfs\x00', &(0x7f0000000140)='./file0\x00', 0x79d, 0xa, &(0x7f0000000780)=[{&(0x7f0000000180)="582dc198465e738f248fd89035f437eb9b594b7553d262771d01eef62eded07db599f7908efd4cf701dfeee736e659d80ec6696a19e89cc77b05f937dd79a45ddad08049371d13e6202c560aeda6ed6ab2558ebefbdbd616a5e9e031c5604a3b1072541a78eb8eea51df05afb0b70eadf2291e4b77c0434d0a7c6308a2a5f2ed8d0e3f477f11d17d9ccadc5038c295a30f67a1b2b14e471f6a2d7e13e51357c9d5d678c4a092a033dd83", 0xaa, 0xffff}, {&(0x7f0000000240)="f66894b4df38e4e69444c2517cf58589745a87a9d2a2d51e05542eb9fd0b88513d36531604096f5f0b4a6d19755d6a482f6e5ea5f3c9f20a8026973c226539a4ca9e1ff605dcfec2dface017a4a187ecc3e188357b01647b69b0d77b3b73e257cf6ddc39bebd0205d910ea464e42a42da74eb57b0d7629adc1cf0074e46e6f8f735b8dd0a37286f9f0a5c446d0eb09fe5132a1733453b6c6c22f93c9c53256", 0x9f, 0x8}, {&(0x7f0000000300)="130ae8d8f8d0180957d540e5468449f35a780bad6a3e2ad73c9ed63ebcee0fe989d84047895ae6ce67d639bb85acb899383de8c5da1fa17785ac5d977b07edd7fb2ded1ed1cca39658fbe34acb774c4066ae747946963e633f74e0b297", 0x5d, 0x8}, {&(0x7f0000000380)="99dde66c9066b7fde2e29718f6ef260c61355b15ba04e8a165d67834f46850a19a22865763fed4800974a6a92b48002f752672dab5cff31adea829c16763d85b2f2cbbd6e87264de95562b5330fb7f0e7f203173d788a402f75a775c89c78565c9d67d6da19e21611afba7ea64df84cf45a28a32ee0bb58e551b27ffa8906fa0b206cb5352a8cada6590c3f0d9e78cfbbbe818e965093ad2", 0x98, 0xff}, {&(0x7f0000000440)="3e22f3f3ef4d3bc1139da636a340dd10e46b7154cc281348bea14be250a7ea7de7f3c3cecd2cd48ab4efefd8700f27a16168ad38d1ef22584c27bd936f1a626a37f972f8cfe37aab6128192e051b940c3b7ff82417f7bf20e11d35219774d5c382a7b0b759edcc41823b9d9bf49d6ea646cf108bdbde78402fed137bfe92cbfe4ec369540184f973e373431044a1", 0x8e, 0x5}, {&(0x7f0000000500)="b023c828dfd3283e2e14863efb49537a6f86ba1185", 0x15, 0x3}, {&(0x7f0000000540)="8a5d75dfdaf893758e1039c4404160fc16b6fc4be22baccafd4c7b8e1cb31fc6e206bfded475781e05164a702af1e8ba00f47b1d7a143349e5190928b706dcd56c04f71c46ead06b6dc1b3b8936c125f8a9fd528eac208522b116ae238387dcab2044ac35c2a7580d19fab0fb32a245f27109ffc1bde8f5634cbf8a320", 0x7d, 0x100}, {&(0x7f00000005c0)="a52e2676e8c916d46d724c72ac8a0491958ca0de83559fae2c2f6a4f78d51c67f3c1bf3b2417de14642444d6cd65fd3e436ad577ae2d45de13ee59e34f8e98aaba516cc576dc3c26c98d1536e7c4976424f9c9265164c46deb9fc64816b199ff0060ba6e71fe6372dfdad48beadc607b9b156945829db774abc5a23bbd342c077079a7cb998ea691917cea1bc42ddcbdda2a8d84005fd0a177bb11d1bbe4ed470224fef2b5cb2fb7d6a61e4505935fdee91fc8305f4b9f9f185b", 0xba, 0xff}, {&(0x7f0000000680)="4c7ce283e63298ab5477", 0xa, 0x4}, {&(0x7f00000006c0)="bd33c7138d44d26128792ae21d80aeb4d9ef48010ffa3754a26b2577251c6a357f2fdef8cdae92151c558a70f9b655dd5b6744d3ae2bb5a80b1e1c8e4a691f005d74c4d1bc865bb17ce75cdaba437b1865e4572ded4e225e3ec610dd7a9167f5df64f4eff8d09699a3f67945fce5b5b7c85517c3c607b227b17b63235eaa4044358603dd87323b4d08d7e6f0b04cb65c956cc62ea5e411bf17f92b4461", 0x9d, 0x5}], 0x10010, &(0x7f0000000880)={[{'.}'}, {'/proc/sys/net/ipv4/vs/sync_retries\x00'}, {'/)}'}], [{@smackfshat={'smackfshat', 0x3d, ',-@'}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@fowner_gt={'fowner>', 0xee01}}, {@fowner_lt={'fowner<'}}, {@appraise_type='appraise_type=imasig'}]}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) [ 287.620840] CPU: 0 PID: 20308 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 287.628762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.638111] Call Trace: [ 287.640696] dump_stack+0x1b2/0x283 [ 287.644320] should_fail.cold+0x10a/0x154 [ 287.648460] __alloc_pages_nodemask+0x22c/0x2720 [ 287.653205] ? trace_hardirqs_on+0x10/0x10 [ 287.657434] ? pcpu_alloc+0xbe0/0xf50 [ 287.661231] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 287.666075] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 287.671517] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 287.676527] alloc_pages_current+0x155/0x260 [ 287.680925] ? __lockdep_init_map+0x100/0x560 [ 287.685409] get_zeroed_page+0x19/0x50 [ 287.689285] mount_fs+0x1c7/0x2a0 [ 287.692749] vfs_kern_mount.part.0+0x5b/0x470 [ 287.697236] do_mount+0xe53/0x2a00 [ 287.700773] ? copy_mount_string+0x40/0x40 [ 287.705007] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 287.710012] ? copy_mnt_ns+0xa30/0xa30 [ 287.713890] ? copy_mount_options+0x1fa/0x2f0 [ 287.718462] ? copy_mnt_ns+0xa30/0xa30 [ 287.722340] SyS_mount+0xa8/0x120 [ 287.725794] ? copy_mnt_ns+0xa30/0xa30 [ 287.729683] do_syscall_64+0x1d5/0x640 [ 287.733573] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 287.738751] RIP: 0033:0x45e0f9 [ 287.741942] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 287.749640] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 287.756912] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 287.764193] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 287.771468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 287.778724] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 287.801807] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 287.826872] nla_parse: 3 callbacks suppressed [ 287.826879] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 287.837098] romfs: VFS: Can't find a romfs filesystem on dev loop5. 04:36:35 executing program 3 (fault-call:5 fault-nth:6): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 287.914500] print_req_error: I/O error, dev loop5, sector 2 [ 287.920289] Buffer I/O error on dev loop5, logical block 1, async page read [ 287.929044] print_req_error: I/O error, dev loop5, sector 4 [ 287.935082] Buffer I/O error on dev loop5, logical block 2, async page read [ 287.942744] print_req_error: I/O error, dev loop5, sector 6 [ 287.948550] Buffer I/O error on dev loop5, logical block 3, async page read [ 287.974141] FAULT_INJECTION: forcing a failure. [ 287.974141] name failslab, interval 1, probability 0, space 0, times 0 [ 288.000973] CPU: 1 PID: 20337 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 288.008872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.018222] Call Trace: [ 288.020819] dump_stack+0x1b2/0x283 [ 288.024479] should_fail.cold+0x10a/0x154 [ 288.028635] should_failslab+0xd6/0x130 [ 288.032614] kmem_cache_alloc_trace+0x29a/0x3d0 [ 288.037287] v9fs_mount+0x54/0x860 [ 288.040829] ? alloc_pages_current+0x15d/0x260 [ 288.045410] ? __lockdep_init_map+0x100/0x560 [ 288.049905] mount_fs+0x92/0x2a0 [ 288.053269] vfs_kern_mount.part.0+0x5b/0x470 [ 288.057765] do_mount+0xe53/0x2a00 [ 288.061308] ? copy_mount_string+0x40/0x40 [ 288.065559] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 288.070595] ? copy_mnt_ns+0xa30/0xa30 [ 288.074480] ? copy_mount_options+0x1fa/0x2f0 [ 288.078969] ? copy_mnt_ns+0xa30/0xa30 [ 288.082853] SyS_mount+0xa8/0x120 [ 288.086313] ? copy_mnt_ns+0xa30/0xa30 [ 288.090197] do_syscall_64+0x1d5/0x640 [ 288.094088] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 288.099270] RIP: 0033:0x45e0f9 [ 288.102451] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 288.110240] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 288.117504] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 288.124790] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 288.132063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 288.139333] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 288.378913] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 288.397515] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 288.423400] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 288.430099] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 288.455848] device bridge_slave_1 left promiscuous mode [ 288.461696] bridge0: port 2(bridge_slave_1) entered disabled state [ 288.497716] device bridge_slave_0 left promiscuous mode [ 288.504168] bridge0: port 1(bridge_slave_0) entered disabled state [ 288.537433] device veth1_macvtap left promiscuous mode [ 288.543044] device veth0_macvtap left promiscuous mode [ 288.563366] device veth1_vlan left promiscuous mode [ 288.568997] device veth0_vlan left promiscuous mode [ 288.905084] device hsr_slave_1 left promiscuous mode [ 288.920155] device hsr_slave_0 left promiscuous mode [ 288.946943] team0 (unregistering): Port device team_slave_1 removed [ 288.962861] team0 (unregistering): Port device team_slave_0 removed [ 288.980186] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 288.992205] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 289.045600] bond0 (unregistering): Released all slaves [ 291.261572] IPVS: ftp: loaded support on port[0] = 21 [ 291.373478] chnl_net:caif_netlink_parms(): no params data found [ 291.427533] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.434437] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.441299] device bridge_slave_0 entered promiscuous mode [ 291.448965] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.455863] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.462761] device bridge_slave_1 entered promiscuous mode [ 291.482747] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 291.492962] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 291.514066] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 291.521138] team0: Port device team_slave_0 added [ 291.526790] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 291.534189] team0: Port device team_slave_1 added [ 291.549929] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 291.556239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 291.581659] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 291.592650] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 291.598945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 291.624259] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 291.635182] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 291.642464] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 291.664530] device hsr_slave_0 entered promiscuous mode [ 291.670135] device hsr_slave_1 entered promiscuous mode [ 291.676333] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 291.683254] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 291.754931] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.761300] bridge0: port 2(bridge_slave_1) entered forwarding state [ 291.767961] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.774356] bridge0: port 1(bridge_slave_0) entered forwarding state [ 291.803479] Bluetooth: hci3 command 0x0406 tx timeout [ 291.805339] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 291.808772] Bluetooth: hci0 command 0x0406 tx timeout [ 291.816217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 291.826453] Bluetooth: hci2 command 0x0406 tx timeout [ 291.829165] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 291.831725] Bluetooth: hci4 command 0x0406 tx timeout [ 291.841239] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 291.850121] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.857085] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.867762] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 291.874507] 8021q: adding VLAN 0 to HW filter on device team0 [ 291.882694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 291.890523] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.896909] bridge0: port 1(bridge_slave_0) entered forwarding state [ 291.913892] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 291.921441] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.927874] bridge0: port 2(bridge_slave_1) entered forwarding state [ 291.936084] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 291.944641] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 291.953177] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 291.968182] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 291.978310] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 291.988765] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 291.998072] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 292.006819] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 292.014967] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 292.026815] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 292.035352] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 292.041998] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 292.054754] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 292.107901] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 292.117497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 292.148756] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 292.156084] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 292.162563] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 292.172493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 292.180088] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 292.187309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 292.196363] device veth0_vlan entered promiscuous mode [ 292.207347] device veth1_vlan entered promiscuous mode [ 292.213091] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 292.221805] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 292.232662] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 292.241926] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 292.249307] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 292.256878] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 292.267281] device veth0_macvtap entered promiscuous mode [ 292.274025] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 292.282098] device veth1_macvtap entered promiscuous mode [ 292.290904] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 292.300474] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 292.309385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 292.319540] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.328710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 292.338999] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.348155] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 292.357932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.367131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 292.377133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.386350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 292.396367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.407194] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 292.415075] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 292.422132] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 292.430623] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 292.439952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 292.450114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.459440] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 292.469196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.478352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 292.488164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.497504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 292.507263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.516447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 292.526393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 292.536793] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready [ 292.544112] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 292.550941] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 292.559018] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 04:36:40 executing program 0: r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x8, 0x5, 0x52, 0x1, 0x0, 0x1ad485c7, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffff8, 0x0, @perf_bp={&(0x7f00000002c0)}, 0x2006, 0x3ff, 0x9, 0x0, 0x100000001, 0x0, 0x20}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x1) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r0, 0x9) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="3801000010001307000000000000000000000000000000000000000000000000fe8000000000000000000000000000000000e700"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000e000000200000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fb9700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004d7632879f9ba60d900000000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000280)=0x2) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@volatile={0x10, 0x0, 0x0, 0x9, 0x4}]}, {0x0, [0x30, 0xe, 0x30, 0x61, 0x61, 0x61, 0x5f, 0x30]}}, &(0x7f0000000380)=""/239, 0x2e, 0xef}, 0x20) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) ppoll(&(0x7f0000000480)=[{r1, 0x842e}, {r4, 0x1000}, {r3, 0x290}, {r0, 0x5582}, {r5, 0x2204}, {r3}, {r3, 0x1080}, {r6, 0x20}], 0x8, &(0x7f00000004c0), &(0x7f0000000500)={[0x3]}, 0x8) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) 04:36:40 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000080)) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="44d9222627130d818800000010001dff0000002100000000000000009ccbc9eb6822e9d38a312f7c6587b700a25832e477cc9eeb33eb4fe150cdaf329aefacfbb81fc2e0ef04b0808207bcdfe1a4b3ea82cb69158948f5d48103b625be312e520fc31fc05627ed7b9ff1437d3be34db755f3bed7658d322d15fd762374211c772bdbe1fb955888b94a5d75d59bd87d999ade3085aeeb02240769f1603d55d991256fb91bd9bde7a28300", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) 04:36:40 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x8, 0x5, 0x52, 0x1, 0x0, 0x1ad485c7, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffff8, 0x0, @perf_bp={&(0x7f00000002c0)}, 0x2006, 0x3ff, 0x9, 0x0, 0x100000001, 0x0, 0x20}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x1) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r0, 0x9) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="3801000010001307000000000000000000000000000000000000000000000000fe8000000000000000000000000000000000e700"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000e000000200000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fb9700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004d7632879f9ba60d900000000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000280)=0x2) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@volatile={0x10, 0x0, 0x0, 0x9, 0x4}]}, {0x0, [0x30, 0xe, 0x30, 0x61, 0x61, 0x61, 0x5f, 0x30]}}, &(0x7f0000000380)=""/239, 0x2e, 0xef}, 0x20) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) ppoll(&(0x7f0000000480)=[{r1, 0x842e}, {r4, 0x1000}, {r3, 0x290}, {r0, 0x5582}, {r5, 0x2204}, {r3}, {r3, 0x1080}, {r6, 0x20}], 0x8, &(0x7f00000004c0), &(0x7f0000000500)={[0x3]}, 0x8) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) 04:36:40 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$OSF_MSG_ADD(r1, &(0x7f0000000800)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x710, 0x0, 0x5, 0x801, 0x0, 0x0, {0x7, 0x0, 0xa}, [{{0x254, 0x1, {{0x3, 0x3}, 0x2, 0x0, 0xd3a, 0xffe, 0x22, 'syz0\x00', "5f05136e21a81a2fadc45209ecfab82ad3b9f1e1d731462630da67a9652ce654", "1dd4f7a0526d219bf0855d4b311305938f184e20e13695bed4089b31b0ae5be8", [{0xffff, 0x2, {0x1, 0x5}}, {0x0, 0x5, {0x2, 0xffffffff}}, {0x4, 0x6, {0x1, 0x38}}, {0x6771, 0xff, {0x0, 0x6}}, {0x6, 0x101, {0x2, 0x9}}, {0x4, 0x6, {0x1, 0x5}}, {0x4, 0x5, {0x0, 0x5f}}, {0x8001, 0x3ff, {0x1, 0xffffbef7}}, {0x7, 0x8, {0x2, 0x5}}, {0x80, 0x800, {0x2, 0x1851}}, {0x9, 0x96c1, {0x1, 0x2}}, {0x7fff, 0xfffc, {0x0, 0xfffffff7}}, {0x0, 0x7, {0x0, 0xff}}, {0x0, 0x3, {0x0, 0xff}}, {0x400, 0x5, {0x1, 0x4fc3e0ee}}, {0x7fff, 0xbd82, {0x2, 0x5}}, {0x0, 0x7fff, {0x1}}, {0x403, 0x5, {0x0, 0x7fff}}, {0x384, 0x4, {0x3, 0x350}}, {0x8000, 0x6, {0x1, 0xffff8eab}}, {0x3, 0x0, {0x1, 0xffffffff}}, {0x372, 0xfffa, {0x0, 0x8}}, {0x2, 0x7ff, {0x0, 0x2}}, {0x0, 0x8000, {0x1, 0x80000001}}, {0x527d, 0x8, {0x2, 0x3f}}, {0x8, 0x3, {0x2, 0x3}}, {0x5, 0x8, {0x2, 0x20}}, {0x3, 0x8, {0x1, 0x1}}, {0x100, 0x2, {0x1, 0x3}}, {0x401, 0x72, {0x2, 0xffffffb4}}, {0x1, 0x7f, {0x3, 0x100}}, {0x7fff, 0x3ff, {0x1, 0x5}}, {0x40, 0x613, {0x0, 0xf78}}, {0xcda, 0x3f16, {0x2}}, {0x0, 0xe68, {0x3, 0x65}}, {0x4, 0x502, {0x3, 0x1}}, {0x5, 0x5ac8, {0x3, 0x5}}, {0x40, 0x8, {0x1, 0xdf8}}, {0x8000, 0x75, {0x2, 0x7}}, {0xbde, 0x4, {0x1, 0x99c7}}]}}}, {{0x254, 0x1, {{0x2, 0x1}, 0x1, 0x0, 0x2, 0x401, 0x20, 'syz0\x00', "3a9f725e8065e69df7e7e57d7046672bf8c613bd05c61910848bd63fbece4692", "72d126d01c1e685522a25aafe0701426d8afdbc2eba160cbf82a4dfabba033c8", [{0x2, 0x401, {0x0, 0x81}}, {0x400, 0x800, {0x0, 0xd1}}, {0x101, 0x9f6, {0x3, 0x7fffffff}}, {0x101, 0x5, {0x2, 0x40}}, {0x7f0, 0x7, {0x3, 0x5}}, {0xd68e, 0x5, {0x0, 0xff}}, {0x2, 0x3c5d, {0x0, 0x3ff}}, {0x7ff, 0x4, {0x1}}, {0x7, 0x0, {0x0, 0x2}}, {0x6, 0x20, {0x1, 0x5}}, {0xff, 0x80, {0x2, 0xffffffff}}, {0x5f2, 0xfec, {0x2, 0x81}}, {0x8, 0x5, {0x0, 0xffff95a3}}, {0x2, 0x2, {0x0, 0x1}}, {0xffff, 0x0, {0x0, 0x3}}, {0xff, 0x5, {0x2}}, {0x1000, 0x2, {0x2, 0x8}}, {0x5f9b, 0x4, {0x0, 0x8}}, {0x8, 0x8001, {0x2, 0x8003}}, {0x4, 0x20, {0x0, 0x4}}, {0x8000, 0x3, {0x1, 0x5}}, {0x2, 0x1, {0x1, 0x6}}, {0xff, 0x3ff, {0x1, 0x100}}, {0x7fff, 0x4, {0x3}}, {0x4, 0x1, {0x2, 0x7fff}}, {0x401, 0x1423, {0x0, 0x3}}, {0x1000, 0x20, {0x1, 0xbec}}, {0x6, 0x40, {0x0, 0x7}}, {0x2, 0x8, {0x1, 0xfffffff9}}, {0x0, 0x4, {0x3, 0x2}}, {0x0, 0x14, {0x1, 0xc8f3}}, {0xaf, 0x80, {0x1, 0x7}}, {0x6, 0x8, {0x2, 0x101}}, {0x401, 0x100, {0x1, 0x5cb3}}, {0x401, 0x4, {0x0, 0xffffffc1}}, {0xffff, 0x7f, {0x2, 0x7}}, {0x101, 0x8, {0x0, 0x7}}, {0x3, 0x401, {0x2, 0x7f}}, {0x2, 0x4, {0x2, 0x5}}, {0x7, 0x6, {0x1, 0x21}}]}}}, {{0x254, 0x1, {{0x1, 0x7}, 0x1f, 0x80, 0x4, 0x34, 0x26, 'syz0\x00', "916aaa68829aebee261c98ce91da22eabf8e528613c91429b9f8fe4ea88eb80b", "ab7c8ad36e4f1f68664f08f996d05f7c8242dc9067870d65dc73ba6fc9898855", [{0x568, 0x2f, {0x3, 0x3f}}, {0xff, 0x4c3, {0x0, 0x8}}, {0xffff, 0xfffe, {0x2, 0x3e3b}}, {0x3, 0x100, {0x2, 0x3}}, {0x0, 0x6, {0x3, 0x7}}, {0x7ff, 0x5f3a, {0x0, 0x3f}}, {0x0, 0x1ff, {0x0, 0x3}}, {0xfff7, 0x7fff, {0x1, 0x2}}, {0x7, 0x100, {0x1, 0xd6}}, {0x8, 0xfffd, {0x0, 0x6}}, {0xffff, 0x7fff, {0x0, 0x68dcd978}}, {0x800, 0x7, {0x0, 0x9}}, {0xd955, 0x7fff, {0x3, 0xffffff01}}, {0x200, 0x7, {0x3, 0x9}}, {0x3, 0x1ff, {0x3, 0x70000}}, {0xcb5, 0x50, {0x1, 0xfff}}, {0x81, 0x400, {0x3, 0x1}}, {0x401, 0x1f, {0x2, 0x6}}, {0x3ff, 0x8000, {0x1}}, {0x401, 0x5400, {0x0, 0x1}}, {0x0, 0xe23, {0x2, 0x5}}, {0x4, 0x0, {0x2, 0x8001}}, {0x3f, 0x3, {0x3, 0x6}}, {0x200, 0x0, {0x0, 0xf467}}, {0x3f, 0x7, {0x5, 0x5}}, {0x8, 0x0, {0x3, 0x7}}, {0x4, 0x0, {0x0, 0xffffffff}}, {0x9252, 0xfcc, {0x1, 0x4}}, {0x545d, 0x6f11, {0x3, 0x1000000}}, {0x20, 0x3, {0x2, 0x3ff}}, {0x1000, 0xec00, {0x3, 0x1000}}, {0x3, 0x3, {0x0, 0x8}}, {0x947, 0x1f, {0x1, 0x7f}}, {0x1000, 0x800, {0x1, 0x40}}, {0x3f, 0x6, {0x0, 0x8}}, {0x4000, 0xfffc, {0x2, 0x7}}, {0x3, 0x5, {0x1, 0x20}}, {0xfff, 0x7, {0x2, 0xa1}}, {0x5, 0x3, {0x3, 0x1}}, {0x4, 0x8, {0x0, 0x80000}}]}}}]}, 0x710}}, 0x1) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) 04:36:40 executing program 3 (fault-call:5 fault-nth:7): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:40 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x2c, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r6, @ANYBLOB="0000000080000000000000000000332740f801800000"], 0x34}}, 0x0) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="190000001400b59500000000000000000afc0000", @ANYRES32=r6, @ANYBLOB="1400020000000000ffff00000000"], 0x2c}}, 0x0) sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="40000dac", @ANYRES16=0x0, @ANYBLOB="00042abd7000fedbdf25090000003400018008000100", @ANYRES32=0x0, @ANYBLOB="080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300030000002c00018008000300030000000800030001000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="08000300020000006800018008000100", @ANYRES32=0x0, @ANYBLOB="080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="140002006e657464657673696d300000000000001400020076657468305f746f5f626f6e64000000140002007663616e30000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="0c00018008000300010000003000018008000300060000000800030002000000140002007465616d5f736c6176655f300000000008000100", @ANYRES32=r2, @ANYBLOB="0c0001800800030004000000040001806c00018008000300020000001400020076657468305f746f5f7465616d000000140002006772657461703000000000000000000008000300000000001400020065727370616e30000000000000000000140002006272696467655f736c6176655f31000008000100", @ANYRES32=0x0, @ANYBLOB="1c00018008000100", @ANYRES32=r6, @ANYBLOB="08000300030000000800030000000000"], 0x1b0}, 0x1, 0x0, 0x0, 0x40000}, 0x44000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$VIDIOC_G_INPUT(r8, 0x80045626, &(0x7f0000000000)) r9 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r9, &(0x7f0000004140)) 04:36:40 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x10001, 0x0) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x9188800}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x7, 0x1, 0x3, 0x0, 0x0, {0x0, 0x0, 0x1}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x68a5888db362201b}, 0x891) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, 0x0) [ 292.700805] FAULT_INJECTION: forcing a failure. [ 292.700805] name failslab, interval 1, probability 0, space 0, times 0 [ 292.704673] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 292.715062] CPU: 0 PID: 20599 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 292.728718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 292.738071] Call Trace: [ 292.740660] dump_stack+0x1b2/0x283 [ 292.744292] should_fail.cold+0x10a/0x154 [ 292.748452] should_failslab+0xd6/0x130 [ 292.752435] __kmalloc_track_caller+0x2bc/0x400 [ 292.757107] ? v9fs_session_init+0x98/0x1540 [ 292.761518] ? trace_hardirqs_on+0x10/0x10 [ 292.765752] kstrdup+0x36/0x70 [ 292.768948] v9fs_session_init+0x98/0x1540 [ 292.773185] ? pcpu_alloc+0xbe0/0xf50 [ 292.776990] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 292.781836] ? v9fs_show_options+0x6b0/0x6b0 [ 292.786251] ? v9fs_mount+0x54/0x860 [ 292.789979] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 292.795428] ? rcu_read_lock_sched_held+0x16c/0x1d0 04:36:40 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, 0x0) [ 292.800446] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 292.805293] v9fs_mount+0x73/0x860 [ 292.808921] ? alloc_pages_current+0x15d/0x260 [ 292.813502] ? __lockdep_init_map+0x100/0x560 [ 292.818000] mount_fs+0x92/0x2a0 [ 292.821371] vfs_kern_mount.part.0+0x5b/0x470 [ 292.825869] do_mount+0xe53/0x2a00 [ 292.828305] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.0'. [ 292.829415] ? copy_mount_string+0x40/0x40 [ 292.829428] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 292.829439] ? copy_mnt_ns+0xa30/0xa30 [ 292.829451] ? copy_mount_options+0x1fa/0x2f0 [ 292.829461] ? copy_mnt_ns+0xa30/0xa30 [ 292.829479] SyS_mount+0xa8/0x120 [ 292.862970] ? copy_mnt_ns+0xa30/0xa30 [ 292.866862] do_syscall_64+0x1d5/0x640 [ 292.870762] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 292.875949] RIP: 0033:0x45e0f9 [ 292.879135] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 292.886844] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 292.894115] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 04:36:40 executing program 5: socket$inet_icmp_raw(0x2, 0x3, 0x1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, 0x0) 04:36:40 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x8, 0x5, 0x52, 0x1, 0x0, 0x1ad485c7, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffff8, 0x0, @perf_bp={&(0x7f00000002c0)}, 0x2006, 0x3ff, 0x9, 0x0, 0x100000001, 0x0, 0x20}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x1) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r0, 0x9) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="3801000010001307000000000000000000000000000000000000000000000000fe8000000000000000000000000000000000e700"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000e000000200000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fb9700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004d7632879f9ba60d900000000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000280)=0x2) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@volatile={0x10, 0x0, 0x0, 0x9, 0x4}]}, {0x0, [0x30, 0xe, 0x30, 0x61, 0x61, 0x61, 0x5f, 0x30]}}, &(0x7f0000000380)=""/239, 0x2e, 0xef}, 0x20) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) ppoll(&(0x7f0000000480)=[{r1, 0x842e}, {r4, 0x1000}, {r3, 0x290}, {r0, 0x5582}, {r5, 0x2204}, {r3}, {r3, 0x1080}, {r6, 0x20}], 0x8, &(0x7f00000004c0), &(0x7f0000000500)={[0x3]}, 0x8) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 292.901418] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 292.908683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 292.915959] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 292.940512] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. 04:36:40 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xb158, 0x101000) perf_event_open(0x0, 0x0, 0x0, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff000000000000030000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) 04:36:40 executing program 0: setuid(0xee00) openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) read$FUSE(r1, &(0x7f0000000680)={0x2020, 0x0, 0x0, 0x0}, 0x2020) ioprio_get$uid(0x3, r2) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mq_getsetattr(r1, &(0x7f0000000100)={0xb, 0x3, 0x4, 0x8}, &(0x7f0000000140)) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0) openat$mice(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/mice\x00', 0x210002) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r5, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4002400}, 0xc, &(0x7f0000000440)={&(0x7f00000001c0)={0x248, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x3a}, {0x6, 0x11, 0x14}, {0x8, 0x15, 0x7c}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x9}, {0x8, 0x15, 0xec22}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x81}, {0x8, 0x15, 0x200}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x5}, {0x8, 0x15, 0x10000}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x200e45c2}, {0x6}, {0x8, 0x15, 0x1}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x2de}, {0x8, 0x15, 0x10000}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x2}}, {0x8}, {0x6, 0x11, 0x1}, {0x8, 0x15, 0x4}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x37f}, {0x6, 0x11, 0xb55}, {0x8, 0x15, 0x9}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0xfffc}, {0x8, 0x15, 0x3}}]}, 0x248}, 0x1, 0x0, 0x0, 0x40041}, 0x800) r6 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) openat$random(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x400000, 0x0) ioctl$RNDCLEARPOOL(r6, 0x5206, 0x0) [ 292.958076] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.4'. [ 292.995568] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 293.012387] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. 04:36:40 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x8, 0x5, 0x52, 0x1, 0x0, 0x1ad485c7, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffff8, 0x0, @perf_bp={&(0x7f00000002c0)}, 0x2006, 0x3ff, 0x9, 0x0, 0x100000001, 0x0, 0x20}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x1) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r0, 0x9) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="3801000010001307000000000000000000000000000000000000000000000000fe8000000000000000000000000000000000e700"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000e000000200000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fb9700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004d7632879f9ba60d900000000000000000000048000200656362286369706865725f6e756c6c2900"/240], 0x138}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r3, r3, 0x0, 0xffff) ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000280)=0x2) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@volatile={0x10, 0x0, 0x0, 0x9, 0x4}]}, {0x0, [0x30, 0xe, 0x30, 0x61, 0x61, 0x61, 0x5f, 0x30]}}, &(0x7f0000000380)=""/239, 0x2e, 0xef}, 0x20) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) ppoll(&(0x7f0000000480)=[{r1, 0x842e}, {r4, 0x1000}, {r3, 0x290}, {r0, 0x5582}, {r5, 0x2204}, {r3}, {r3, 0x1080}, {r6, 0x20}], 0x8, &(0x7f00000004c0), &(0x7f0000000500)={[0x3]}, 0x8) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) 04:36:40 executing program 3 (fault-call:5 fault-nth:8): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:40 executing program 5: sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001440)) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000027c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000880)}], 0x1}, 0x0) r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0x19, 0x4, 0x200000004, 0x400, 0x0, 0x1}, 0x40) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0xfffffffffffffce8}, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)) r1 = perf_event_open(&(0x7f00000012c0)={0x4, 0x70, 0x6, 0x6, 0xf2, 0x4, 0x0, 0x9, 0x9020, 0x443a21008aee63ee, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x0, 0x71e9}, 0x0, 0x0, 0x6, 0x7, 0x925, 0x1, 0x81}, 0xffffffffffffffff, 0x4, r0, 0x2) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f0000001340)) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{0x0}], 0x1}, 0xc4) close(0xffffffffffffffff) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0xa) sendmsg(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f0000001200)=@hci={0x1f, 0x2}, 0x80, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x180}, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000580)='ip6_vti0\x00') ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f2, &(0x7f0000000580)='ip6_vti0\x00') [ 293.074109] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.4'. [ 293.118252] FAULT_INJECTION: forcing a failure. [ 293.118252] name failslab, interval 1, probability 0, space 0, times 0 [ 293.145533] CPU: 0 PID: 20638 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 293.153439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.162805] Call Trace: [ 293.165405] dump_stack+0x1b2/0x283 [ 293.169050] should_fail.cold+0x10a/0x154 [ 293.173207] should_failslab+0xd6/0x130 [ 293.177187] __kmalloc_track_caller+0x2bc/0x400 [ 293.181860] ? v9fs_session_init+0xd1/0x1540 [ 293.186273] kstrdup+0x36/0x70 [ 293.189501] v9fs_session_init+0xd1/0x1540 [ 293.193731] ? pcpu_alloc+0xbe0/0xf50 [ 293.197538] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 293.202393] ? v9fs_show_options+0x6b0/0x6b0 [ 293.206805] ? v9fs_mount+0x54/0x860 [ 293.210521] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 293.215973] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 293.220994] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 293.225837] v9fs_mount+0x73/0x860 [ 293.229377] ? alloc_pages_current+0x15d/0x260 [ 293.230811] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 293.233954] ? __lockdep_init_map+0x100/0x560 [ 293.233966] mount_fs+0x92/0x2a0 [ 293.233982] vfs_kern_mount.part.0+0x5b/0x470 [ 293.233995] do_mount+0xe53/0x2a00 [ 293.234013] ? copy_mount_string+0x40/0x40 [ 293.262671] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 293.267692] ? copy_mnt_ns+0xa30/0xa30 [ 293.271586] ? copy_mount_options+0x1fa/0x2f0 [ 293.276083] ? copy_mnt_ns+0xa30/0xa30 [ 293.279969] SyS_mount+0xa8/0x120 [ 293.283405] ? copy_mnt_ns+0xa30/0xa30 [ 293.287273] do_syscall_64+0x1d5/0x640 [ 293.291153] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 293.296333] RIP: 0033:0x45e0f9 [ 293.299506] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 293.307192] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 04:36:41 executing program 1: ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x7, '\x00', {0x3}, 0x3}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 293.314449] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 293.321706] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 293.328959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 [ 293.336219] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 293.351277] Bluetooth: hci1 command 0x0409 tx timeout 04:36:41 executing program 3 (fault-call:5 fault-nth:9): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:41 executing program 2: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffffffffffe32, 0x0, 0x1, 0x0, 0x0, 0x20004855}, 0x48801) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080)='ip6tnl0\x00') bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x0, 0x55, 0x9e, &(0x7f00000000c0)="5f8e30dbdafb24175a95268fb5a1072eaff37183f72e200f21e0895568bbf982548815f349d0578ec8b306f6d41138e266fd3d0a81bb646c422ae05326eb531f08afc2d6f220e3dd9c11de17d86ec3731f89ee69dc", &(0x7f0000000140)=""/158, 0x40, 0x0, 0xc5, 0x1000, &(0x7f0000000200)="5cee7d08778d42dfb9ba0e056da6a153103f506c03d2874c2bd7b1f715b2bba598c03993202a56ffabd8a83dbce71a12c9dc5ea1a77f26a7e0761adef501548ab846b4b508408b9ffe04801fec18bd90f2cf58d651ae1d368117101d1cdbf35782c7f2cfedfdc787999dabe99d4f5c1be6358206c0f0a927c1a8b20805e6fa8bb6779c858d66e1fbbc23bfee809aa85c44951d938f9155b78b8bc4d5284ba40d29a5c2bac06e0a964486dab14a3e7625be00e7eaf68c46e3d6e81232dbc303e8253b87925b", &(0x7f0000000500)="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", 0x0, 0x4}, 0x48) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00') 04:36:41 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="280000001000"/20, @ANYRES32=0x0, @ANYBLOB="040002000000000008c2d00000000010"], 0x28}, 0x1, 0x0, 0x0, 0x20114}, 0x4000091) ioctl$KIOCSOUND(0xffffffffffffffff, 0x4b2f, 0x8) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000340)=ANY=[@ANYBLOB="27b062f67160a90ca7a2a6f20296d255ce241b3363982fa29fec8fab8098601aaeb721a0b9075faa92a7d463e1c940a1d0be0bb5facfd0906b282e99c923cc24bdef641acd3b4557aff60269041241cf4e9cecd564fedbc36d6f6ffc1b9424877fe22a6c29bee9d7501d70289eda8863d6599d0a5196b1252bf540511b0da4e786540a88957a8c87af745dd02313d1dd94fb967522a1605338cda9770f0ebf67eff416c9bdab64e9462465259efa9171d270c6f914b9463147c202b743ae08163fca08e656e501022682a7ddff0000000000ef41a8089846f4b96127cbe482450ddbc17076e87b1b4edea398d92e77a55e5c35a8e37bda484973ca58c849654b678c212f160a11e905fe72b3b6197b7f472e1a76918cc4faac4f9039b49e5ad0212d48f96600"/309]) ioctl$SOUND_MIXER_READ_CAPS(0xffffffffffffffff, 0x80044dfc, &(0x7f0000000100)) sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) ioctl$SNDCTL_SEQ_NRMIDIS(0xffffffffffffffff, 0x8004510b, &(0x7f0000000200)) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000300)='tls\x00', 0x4) ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x8a0, 0x5}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyprintk\x00', 0x21c941, 0x0) ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f00000004c0)) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000680)={@in={{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x0, 0x0, 0x2e, 0x0, "aee4fc53475ced3b9166d1ac3df0be9ee7acd277fae07ea116ddabdf3e984b3f951b1dad65537ef63e7d26be60973e79a4f7dcdf079e493891e8819887dce9b4e26986fb2d5abec6aefdfab81f3b71b3"}, 0xd8) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="280000001000000400"/20, @ANYRES32=0x0, @ANYBLOB="050211000000000008001b00a9000000"], 0x28}}, 0x0) ioctl$BLKIOOPT(0xffffffffffffffff, 0x1279, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8) fstat(0xffffffffffffffff, &(0x7f0000000280)) 04:36:41 executing program 1: r0 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rt_sigqueueinfo(r0, 0xd, &(0x7f0000000200)={0x39, 0x7ff, 0x8001}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x60, 0x2, 0x2, 0x201, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x4}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0xff}, @CTA_EXPECT_MASK={0x3c, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x48080}, 0x807) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/net/pfkey\x00', 0x80000, 0x0) ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f00000002c0)) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0xc00, 0x0) ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000001c0)={0x6, 0x2, 0x4}) ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000380)={0x9d0000, 0xe9, 0x3, r2, 0x0, &(0x7f0000000280)={0xa30901, 0x6, [], @value=0x6}}) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b01010062726964676500001400028005002b000000e1117c03060000000000"], 0x44}}, 0x0) 04:36:41 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x200074, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000400)=[{0x6, 0x40, 0x0, 0xe1}]}, 0x10) setresgid(0x0, 0xee00, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="000000001236f44c6af8b142b5747f5ef40237c4cee812ec3b3558c73d9600"/45], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x10}, 0x78) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001540)={0xffffffffffffffff, 0xc0, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0xb7, &(0x7f000000cf3d)=""/183, 0x0, 0xc, [0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r1}, 0x78) setreuid(0x0, 0x0) setuid(0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100), 0x8) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="50000200000000000000030000000000000000000000800100000400000000000000ff7f0000fbffffff060000000000000008000000000001000200000000000000000000000100000040d9aa000000000001000080000052b21555000007000000040000000101000006000000dcbc7ab632f3d0e8bb78500a1096d635", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ad38cc136806c0e80100000000000000547a5e884978fb431030d674dfb80b475e0383a26848b08ac93c647a6f5705c758fd6c761cfd8ed8a98d7faaad163e0c45d09972e5efe3479f6cad1ec742131b7fa87e1dcc32877235d354d933a23e70e87522ec00"/111, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES64, @ANYRES32=0x0, @ANYBLOB="040000004a0000000000000003000000aca60000050000bac6aa39ad68abb7786031429681e714452669a7fabbc61a22e36a91a75e88fde33ab4eb9ac495dedd318fc726abc8c2597b289b7bd28e1c4698dcaad99239a2a57ee3566efa74d93b5b64d9d0696061c858b0a82407dacc29f797ec5ab64641ecdaa48d7770c60e277a3c8b776d0a723ee8631629c16becfcaddb473b2576c7bd786570845780b1477b55fa32eddb83cde4a609c1a7bcb0746529b85dcba9de89d26a15e73cd2336a138a5eb682d62e8fab8e993bf80ce9743dd4b5fc0c101dd565dd6a2cccba3ce5314c2e470a913b420e965e8ce3912e5806fef5815021611212bf14088c6e40", @ANYRES32=0x0, @ANYRES32], 0x350) connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r0, &(0x7f00000012c0)="20048a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='sessionid\x00') [ 293.446742] FAULT_INJECTION: forcing a failure. [ 293.446742] name failslab, interval 1, probability 0, space 0, times 0 [ 293.485278] CPU: 0 PID: 20664 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 293.493194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.502561] Call Trace: [ 293.505158] dump_stack+0x1b2/0x283 [ 293.508794] should_fail.cold+0x10a/0x154 [ 293.512946] should_failslab+0xd6/0x130 [ 293.516923] kmem_cache_alloc_trace+0x29a/0x3d0 [ 293.521643] p9_client_create+0x9c/0x12c0 [ 293.521657] ? fs_reclaim_release+0xd0/0x110 [ 293.521672] ? p9_client_flush+0x4c0/0x4c0 [ 293.521686] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 293.539886] ? rcu_read_lock_sched_held+0x16c/0x1d0 04:36:41 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fc) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$EVIOCGKEY(r4, 0x80404518, &(0x7f0000000000)=""/34) [ 293.544904] ? __lockdep_init_map+0x100/0x560 [ 293.549403] ? __raw_spin_lock_init+0x28/0x100 [ 293.553990] v9fs_session_init+0x1c5/0x1540 [ 293.558328] ? pcpu_alloc+0xbe0/0xf50 [ 293.562135] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 293.566981] ? v9fs_show_options+0x6b0/0x6b0 [ 293.571393] ? v9fs_mount+0x54/0x860 [ 293.575110] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 293.580563] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 293.585580] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 293.590419] v9fs_mount+0x73/0x860 [ 293.593955] ? alloc_pages_current+0x15d/0x260 [ 293.598529] ? __lockdep_init_map+0x100/0x560 [ 293.603026] mount_fs+0x92/0x2a0 [ 293.606391] vfs_kern_mount.part.0+0x5b/0x470 [ 293.610883] do_mount+0xe53/0x2a00 [ 293.614422] ? copy_mount_string+0x40/0x40 [ 293.618651] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 293.623660] ? copy_mnt_ns+0xa30/0xa30 [ 293.627543] ? copy_mount_options+0x1fa/0x2f0 [ 293.632050] ? copy_mnt_ns+0xa30/0xa30 [ 293.635936] SyS_mount+0xa8/0x120 [ 293.639382] ? copy_mnt_ns+0xa30/0xa30 [ 293.643285] do_syscall_64+0x1d5/0x640 [ 293.647177] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 293.652358] RIP: 0033:0x45e0f9 [ 293.655540] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 293.663249] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 293.670510] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 293.678118] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 293.685379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000009 [ 293.692661] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 293.720275] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 04:36:41 executing program 1: perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x20, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6006}}, 0x20}}, 0x4001081) [ 293.789843] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 04:36:41 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000040)=0x28, 0x4) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x1, 0x0) perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_config_ext={0x80000001, 0x1}, 0x400, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)) r1 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x401, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$BLKPG(r1, 0x40140921, &(0x7f0000001200)={0x0, 0x1f, 0x0, 0x0}) 04:36:41 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) socket(0x10, 0x4, 0x3) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) socket(0x10, 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010090c90000000000000500000008000300", @ANYRES32=r5], 0x24}}, 0x0) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff830500000080000000", @ANYRES32=r1], 0x4}}, 0x0) sendfile(r2, r1, 0x0, 0x100000002) 04:36:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000004c40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000480)="b417ae57c9ca1e40d2d20a689bf386d34cc00bba89963006379f11419010cfc2f7bcd2d94fa28058920c48ed48cb4ee9e906a268adbb49eee80000000000000036a4912304053707938f4d5596191efb04da41fb0908000825608fd3c36c4dbe5dd378bc589a836cff65e30e5d8c04", 0xfffffffffffffd08) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x2, 0x1, 0x0, 0x6}, 0x0) clone(0x20040103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_sctp_SCTP_RECVNXTINFO(0xffffffffffffffff, 0x84, 0x21, &(0x7f00000000c0)=0x1, 0x4) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000001c00)='/dev/zero\x00', 0x0, 0x0) readv(r5, &(0x7f0000000ac0)=[{0x0}, {0x0}, {&(0x7f0000000380)=""/74, 0x19f18e4}], 0x3) mq_timedreceive(0xffffffffffffffff, &(0x7f00000002c0)=""/247, 0xf7, 0x1, 0x0) mmap$perf(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2010, 0xffffffffffffffff, 0x5) writev(r4, &(0x7f0000000180)=[{&(0x7f0000000080)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) r6 = socket$nl_sock_diag(0x10, 0x3, 0x4) writev(r6, &(0x7f0000000200)=[{&(0x7f0000000100)="3900e4ffff0600000001000000450400ad0002000000000500000000000000ec13a82b6600000000000000000000b43e4ae1530556e8fc6bbe5df5182d30ef45", 0x40}, {&(0x7f0000000400)="ecd5aa2fb92d05263c5f1a665170d1589ca59d47012bc64405f5277f461e9226bf98da14a43ba3885fa56df7825f55d75a8b10502314777fceea949ae88afe9943695c000ceb", 0x46}], 0x2) 04:36:41 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) 04:36:41 executing program 1: nanosleep(&(0x7f0000000000)={0x77359400}, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 293.969182] md: invalid raid superblock magic on mtdblock0 [ 293.988429] md: mtdblock0 does not have a valid v0.0 superblock, not importing! [ 294.005226] md: md_import_device returned -22 04:36:41 executing program 3 (fault-call:5 fault-nth:10): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:41 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r0, r0, 0x0, 0xffff) fanotify_mark(0xffffffffffffffff, 0x80, 0x40000023, r0, &(0x7f0000000000)='./file0\x00') r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r3, &(0x7f0000004140)) 04:36:41 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000040)=0x28, 0x4) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x1, 0x0) perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_config_ext={0x80000001, 0x1}, 0x400, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)) r1 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x401, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$BLKPG(r1, 0x40140921, &(0x7f0000001200)={0x0, 0x1f, 0x0, 0x0}) [ 294.032436] audit: type=1804 audit(1607488601.833:10): pid=20718 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir148805793/syzkaller.9ZEhd0/474/cgroup.controllers" dev="sda1" ino=16447 res=1 04:36:41 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="28000000100001080000000000005c5400000000", @ANYRES32=0x0, @ANYBLOB="000000a0ebfaf00008001b"], 0x28}}, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0) sendmsg$AUDIT_USER_AVC(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)={0xd0, 0x453, 0x100, 0x0, 0x25dfdbfc, "82b6fc2f8370d42cddd76f9965f9aa1d6f635ab614afbe8ab81eab352bd727ec8fb025de9eed0d089ba27c4ab5088177cc4a2782e5c6cf7c7de8d9a98c58b311498a724e41ef08c779ee3c59cb5c743631e463fc692c9fbb1b7615adf49e357295feabf3d1f8b57a532dcb029d701de3b1aefab8079400847836c46f6f98a6f68161d7eb83336a686527743641367331b326ae6a09e6482a24930fd51584c04f170678413ff64cbb81c7a7ad95b5069fa8b0145b946edd95dc8c50fe18", ["", "", "", "", "", "", "", ""]}, 0xd0}, 0x1, 0x0, 0x0, 0x4000}, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0x14}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc01cf509, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200)) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, 0x0, 0x20008041) link(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000700)='./file1\x00') setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f00000003c0)='reno\x00', 0x5) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0xfffffef2, &(0x7f00000001c0)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$IPCTNL_MSG_CT_GET_DYING(r3, &(0x7f0000000340)={&(0x7f0000000040), 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x14, 0x6, 0x1, 0x201, 0x0, 0x0, {0xc, 0x0, 0x2}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xd614deba6ffd2d65}, 0x20000000) [ 294.141118] md: invalid raid superblock magic on mtdblock0 [ 294.154942] FAULT_INJECTION: forcing a failure. [ 294.154942] name failslab, interval 1, probability 0, space 0, times 0 [ 294.167027] md: mtdblock0 does not have a valid v0.0 superblock, not importing! [ 294.186198] md: md_import_device returned -22 [ 294.187904] CPU: 1 PID: 20737 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 294.198606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.207956] Call Trace: [ 294.210544] dump_stack+0x1b2/0x283 [ 294.214177] should_fail.cold+0x10a/0x154 [ 294.218334] should_failslab+0xd6/0x130 [ 294.222312] kmem_cache_alloc_trace+0x29a/0x3d0 [ 294.226986] p9_idpool_create+0x3c/0x120 [ 294.231048] p9_client_create+0x1d4/0x12c0 [ 294.235286] ? fs_reclaim_release+0xd0/0x110 04:36:42 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000040)=0x28, 0x4) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x1, 0x0) perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_config_ext={0x80000001, 0x1}, 0x400, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)) r1 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x401, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$BLKPG(r1, 0x40140921, &(0x7f0000001200)={0x0, 0x1f, 0x0, 0x0}) [ 294.239698] ? p9_client_flush+0x4c0/0x4c0 [ 294.243941] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 294.249393] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 294.254411] ? __lockdep_init_map+0x100/0x560 [ 294.258905] ? __raw_spin_lock_init+0x28/0x100 [ 294.260932] md: invalid raid superblock magic on mtdblock0 [ 294.263491] v9fs_session_init+0x1c5/0x1540 [ 294.263504] ? pcpu_alloc+0xbe0/0xf50 [ 294.263519] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 294.263530] ? v9fs_show_options+0x6b0/0x6b0 [ 294.263543] ? v9fs_mount+0x54/0x860 [ 294.263554] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 294.263563] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 294.263575] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 294.263587] v9fs_mount+0x73/0x860 [ 294.269482] md: mtdblock0 does not have a valid v0.0 superblock, not importing! [ 294.273539] ? alloc_pages_current+0x15d/0x260 [ 294.273549] ? __lockdep_init_map+0x100/0x560 [ 294.273561] mount_fs+0x92/0x2a0 [ 294.273576] vfs_kern_mount.part.0+0x5b/0x470 [ 294.273588] do_mount+0xe53/0x2a00 04:36:42 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 294.273605] ? copy_mount_string+0x40/0x40 [ 294.273615] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 294.273626] ? copy_mnt_ns+0xa30/0xa30 [ 294.273637] ? copy_mount_options+0x1fa/0x2f0 [ 294.273647] ? copy_mnt_ns+0xa30/0xa30 [ 294.273659] SyS_mount+0xa8/0x120 [ 294.273668] ? copy_mnt_ns+0xa30/0xa30 [ 294.273679] do_syscall_64+0x1d5/0x640 [ 294.273696] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 294.273704] RIP: 0033:0x45e0f9 [ 294.273710] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 04:36:42 executing program 3 (fault-call:5 fault-nth:11): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 294.273726] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 294.273732] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 294.273738] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 294.273743] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000a [ 294.273749] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 294.327896] bridge0: port 3(team0) entered disabled state [ 294.333584] md: md_import_device returned -22 [ 294.337016] bridge0: port 2(bridge_slave_1) entered disabled state [ 294.442972] bridge0: port 1(bridge_slave_0) entered disabled state [ 294.521190] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 294.568996] FAULT_INJECTION: forcing a failure. [ 294.568996] name failslab, interval 1, probability 0, space 0, times 0 [ 294.590641] CPU: 0 PID: 20760 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 294.598526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.607880] Call Trace: [ 294.610491] dump_stack+0x1b2/0x283 [ 294.614110] should_fail.cold+0x10a/0x154 [ 294.618247] should_failslab+0xd6/0x130 [ 294.622201] __kmalloc_track_caller+0x2bc/0x400 [ 294.626854] ? p9_client_create+0x2e3/0x12c0 [ 294.631246] kstrdup+0x36/0x70 [ 294.634429] p9_client_create+0x2e3/0x12c0 [ 294.638675] ? p9_client_flush+0x4c0/0x4c0 [ 294.642905] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 294.648335] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 294.653340] ? __lockdep_init_map+0x100/0x560 [ 294.657855] ? __raw_spin_lock_init+0x28/0x100 [ 294.662420] v9fs_session_init+0x1c5/0x1540 [ 294.666729] ? pcpu_alloc+0xbe0/0xf50 [ 294.670523] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 294.675347] ? v9fs_show_options+0x6b0/0x6b0 [ 294.679737] ? v9fs_mount+0x54/0x860 [ 294.683464] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 294.688907] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 294.693929] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 294.698757] v9fs_mount+0x73/0x860 [ 294.702276] ? alloc_pages_current+0x15d/0x260 [ 294.706846] ? __lockdep_init_map+0x100/0x560 [ 294.711339] mount_fs+0x92/0x2a0 [ 294.714713] vfs_kern_mount.part.0+0x5b/0x470 [ 294.719213] do_mount+0xe53/0x2a00 [ 294.722754] ? retint_kernel+0x2d/0x2d [ 294.726635] ? copy_mount_string+0x40/0x40 [ 294.730872] ? __sanitizer_cov_trace_pc+0x34/0x50 [ 294.735707] ? copy_mount_options+0x1fa/0x2f0 [ 294.740184] ? copy_mnt_ns+0xa30/0xa30 [ 294.744055] SyS_mount+0xa8/0x120 [ 294.747501] ? copy_mnt_ns+0xa30/0xa30 [ 294.751379] do_syscall_64+0x1d5/0x640 [ 294.755258] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 294.760445] RIP: 0033:0x45e0f9 [ 294.763613] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 294.771303] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 294.778554] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 294.785824] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 294.793087] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b [ 294.800348] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 [ 294.903120] batman_adv: batadv0: Interface deactivated: batadv_slave_1 04:36:42 executing program 2: r0 = socket(0x10, 0x3, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x204081, 0x0) ioctl$sock_x25_SIOCDELRT(r1, 0x890c, &(0x7f00000000c0)={@remote={[], 0x0}, 0xf, 'team_slave_1\x00'}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000700)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x1c, 0x2, 0x0, 0x1, {{0x8}, {0x8}, [@IFLA_GTP_PDP_HASHSIZE={0x8, 0x3, 0xffffff7f}]}}}}]}, 0x48}}, 0x0) [ 295.028506] device team0 left promiscuous mode [ 295.034409] device team_slave_0 left promiscuous mode [ 295.039891] device team_slave_1 left promiscuous mode [ 295.046795] bridge0: port 3(team0) entered disabled state [ 295.055768] device bridge_slave_0 left promiscuous mode [ 295.061295] bridge0: port 1(bridge_slave_0) entered disabled state [ 295.069129] device bridge_slave_1 left promiscuous mode 04:36:42 executing program 5: prctl$PR_SET_SECUREBITS(0x1c, 0x9) r0 = creat(&(0x7f0000000280)='./file0\x00', 0x1) write$binfmt_script(0xffffffffffffffff, 0x0, 0x191) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000000)) setxattr$security_capability(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='security.capability\x00', &(0x7f0000000240)=@v2, 0x14, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) [ 295.076224] bridge0: port 2(bridge_slave_1) entered disabled state [ 295.084712] bond0: Releasing backup interface bond_slave_0 [ 295.092032] bond0: Releasing backup interface bond_slave_1 [ 295.100709] team0: Port device team_slave_0 removed [ 295.107288] team0: Port device team_slave_1 removed [ 295.112437] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 295.120913] batman_adv: batadv0: Removing interface: batadv_slave_1 04:36:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000717a1df39ea99d3412800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) 04:36:42 executing program 3 (fault-call:5 fault-nth:12): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:42 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f00000000c0)) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000000)=0x1) r3 = msgget$private(0x0, 0x400) msgctl$MSG_STAT(r3, 0xb, &(0x7f0000000040)=""/64) r4 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r4, 0xc0305615, &(0x7f0000000180)={0x0, {0x3, 0xffffffc1}}) 04:36:43 executing program 2: r0 = open(&(0x7f0000000180)='./bus\x00', 0x1fb842, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe2(0x0, 0x0) mbind(&(0x7f0000ff5000/0xa000)=nil, 0xa000, 0x3, &(0x7f0000000000)=0x1, 0xfffffffffffffffa, 0x4) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/diskstats\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010046) ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000040)={0x9, 0x8, 0x7ff, 0x4, 0x4e, "b3fd5ae0403bbefde69bdbc13c416e85234523", 0x858, 0x7}) [ 295.199970] FAULT_INJECTION: forcing a failure. [ 295.199970] name failslab, interval 1, probability 0, space 0, times 0 [ 295.211653] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. 04:36:43 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 295.251976] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 295.264898] CPU: 0 PID: 20781 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 295.272792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.282143] Call Trace: [ 295.284762] dump_stack+0x1b2/0x283 [ 295.288396] should_fail.cold+0x10a/0x154 [ 295.292551] should_failslab+0xd6/0x130 [ 295.296531] __kmalloc+0x2c1/0x400 [ 295.300073] ? match_strdup+0x58/0xa0 [ 295.303881] ? p9_client_create+0x400/0x12c0 [ 295.308293] match_strdup+0x58/0xa0 [ 295.311942] p9_client_create+0x41b/0x12c0 [ 295.316185] ? p9_client_flush+0x4c0/0x4c0 [ 295.320426] ? __lockdep_init_map+0x100/0x560 [ 295.324923] ? __raw_spin_lock_init+0x28/0x100 [ 295.329541] v9fs_session_init+0x1c5/0x1540 [ 295.333864] ? pcpu_alloc+0xbe0/0xf50 [ 295.337671] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 295.342516] ? v9fs_show_options+0x6b0/0x6b0 [ 295.346931] ? v9fs_mount+0x54/0x860 [ 295.350651] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 295.356113] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 295.361139] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 295.365987] v9fs_mount+0x73/0x860 [ 295.369528] ? alloc_pages_current+0x15d/0x260 [ 295.374113] ? __lockdep_init_map+0x100/0x560 [ 295.378614] mount_fs+0x92/0x2a0 [ 295.382010] vfs_kern_mount.part.0+0x5b/0x470 [ 295.386514] do_mount+0xe53/0x2a00 [ 295.390050] ? copy_mount_string+0x40/0x40 [ 295.394269] ? rcu_read_lock_sched_held+0x16c/0x1d0 04:36:43 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 295.399270] ? copy_mnt_ns+0xa30/0xa30 [ 295.403159] ? copy_mount_options+0x1fa/0x2f0 [ 295.407659] ? copy_mnt_ns+0xa30/0xa30 [ 295.411529] SyS_mount+0xa8/0x120 [ 295.414970] ? copy_mnt_ns+0xa30/0xa30 [ 295.418842] do_syscall_64+0x1d5/0x640 [ 295.422714] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 295.427886] RIP: 0033:0x45e0f9 [ 295.431053] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 295.438747] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 04:36:43 executing program 3 (fault-call:5 fault-nth:13): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:43 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x10, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=ANY=[@ANYBLOB="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"/529, @ANYRESHEX, @ANYBLOB="40000000ffffff3d70820e40fd220a2251672c1bfe3f84ff00080000000000000066736300010000080002"], 0x38}, 0x1, 0x0, 0x0, 0x20c1}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000840)=ANY=[@ANYBLOB="5c3500fd000000000f00000000000000000000009cef57b912667f21b6a87500cf4196ccc6bfd363b1ae3ba98d97b17ade534c512fa831d98443f8bee4e1fd6caef2c5c035487ef40df291375f70ed69d3b02881f5a1e4e3f1f0bc7b412a46f4f75d52", @ANYRES32=0x0, @ANYBLOB="0400000000000000990000000a000100629583617369630000002c00020028000280080001007e0000001c0002801800010000000400000000000c000100000000000000b4dceb311eb500f656bd4b7a049631e7fb46b52f110e5b9ca76aa9e9457d52fc0f0c0aee80b330666e5250a68d1a59bd0133b14b0760568e"], 0x5c}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000200)={'ip6_vti0\x00', &(0x7f0000000080)={'ip6tnl0\x00', 0x0, 0x2f, 0x5, 0x6, 0x0, 0x3, @private2={0xfc, 0x2, [], 0x1}, @rand_addr=' \x01\x00', 0x700, 0x8000, 0x9, 0x400}}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000000480)={'ip6_vti0\x00', &(0x7f0000000400)={'ip6gre0\x00', r1, 0x4, 0x5, 0x3f, 0x2, 0x41, @dev={0xfe, 0x80, [], 0x28}, @private2, 0x7, 0x80, 0x800, 0x8000}}) r2 = socket$packet(0x11, 0x2, 0x300) openat$autofs(0xffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x430040, 0x0) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000280)=@req={0x9, 0x1, 0x200, 0x7ff}, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) r6 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8936, &(0x7f0000000240)={@private2, 0x80, r3}) ioctl$KDSKBMODE(0xffffffffffffffff, 0x4b45, &(0x7f0000000680)=0x4) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x54, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc, 0x1, 'macvlan\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}, @IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x54}}, 0x0) [ 295.446017] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 295.453284] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 295.460564] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000c [ 295.467812] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 295.483339] Bluetooth: hci1 command 0x041b tx timeout 04:36:43 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7ffffffffff8, 0x693d6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x24, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r3, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10) r5 = syz_open_dev$sg(&(0x7f00000003c0)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0) writev(r5, &(0x7f0000000180)=[{0x0}], 0x1) sendmsg$nl_netfilter(0xffffffffffffffff, 0x0, 0x0) socket$inet6_icmp(0xa, 0x2, 0x3a) sendto$inet(r4, 0x0, 0xfffffffffffffff8, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(r4, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x9000000) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r6) 04:36:43 executing program 1: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_DEL_INTERFACE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x28, r1, 0x0, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4ca, 0xc}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x24040000}, 0x8480) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x14) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) [ 295.826813] FAULT_INJECTION: forcing a failure. [ 295.826813] name failslab, interval 1, probability 0, space 0, times 0 [ 295.868287] CPU: 0 PID: 20827 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 295.876201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.885554] Call Trace: [ 295.888144] dump_stack+0x1b2/0x283 [ 295.891778] should_fail.cold+0x10a/0x154 [ 295.895936] should_failslab+0xd6/0x130 [ 295.899915] __kmalloc_track_caller+0x2bc/0x400 [ 295.904585] ? p9_client_create+0x2e3/0x12c0 [ 295.909000] kstrdup+0x36/0x70 [ 295.912196] p9_client_create+0x2e3/0x12c0 [ 295.916436] ? p9_client_flush+0x4c0/0x4c0 [ 295.920674] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 295.926125] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 295.931132] ? __lockdep_init_map+0x100/0x560 [ 295.935621] ? __raw_spin_lock_init+0x28/0x100 [ 295.940199] v9fs_session_init+0x1c5/0x1540 [ 295.944509] ? pcpu_alloc+0xbe0/0xf50 [ 295.948303] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 295.953134] ? v9fs_show_options+0x6b0/0x6b0 [ 295.957655] ? v9fs_mount+0x54/0x860 [ 295.961361] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 295.966794] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 295.971799] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 295.976684] v9fs_mount+0x73/0x860 [ 295.980216] ? alloc_pages_current+0x15d/0x260 [ 295.984805] ? __lockdep_init_map+0x100/0x560 [ 295.989304] mount_fs+0x92/0x2a0 [ 295.992670] vfs_kern_mount.part.0+0x5b/0x470 [ 295.997161] do_mount+0xe53/0x2a00 [ 296.000694] ? do_raw_spin_unlock+0x164/0x220 [ 296.005294] ? copy_mount_string+0x40/0x40 [ 296.009522] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 296.014547] ? copy_mnt_ns+0xa30/0xa30 [ 296.018435] ? copy_mount_options+0x1fa/0x2f0 [ 296.022920] ? copy_mnt_ns+0xa30/0xa30 [ 296.026799] SyS_mount+0xa8/0x120 [ 296.030243] ? copy_mnt_ns+0xa30/0xa30 [ 296.034124] do_syscall_64+0x1d5/0x640 [ 296.038010] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 296.043204] RIP: 0033:0x45e0f9 [ 296.046382] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 296.054103] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 296.061363] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 04:36:43 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) fcntl$getownex(r0, 0x10, &(0x7f00000001c0)={0x0, 0x0}) sendmsg$nl_netfilter(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)={0x1fc, 0x0, 0x1, 0x3, 0x70bd2c, 0x25dfdbfb, {}, [@typed={0x14, 0x61, 0x0, 0x0, @ipv6=@empty}, @nested={0x187, 0x47, 0x0, 0x1, [@generic="39691b9d3758b9d632bb85a1af2dc0ab2a57991eba1927ad5afd03207e54fdaa4246853d969ef7978795cb048258e5e78d1b418185c5750f7c848f0c9afc7bf7a6c13b79caca58002a3c944ff3605e9e8d0aad1d95876dc7de33b35bf5920bc724a1498d782f8b942bce4e5908d985dccb697590f47b282eb52cb2dbdccb7c7a58e0958fcd17822d5d6c9bdfe0", @typed={0x8, 0x77, 0x0, 0x0, @uid}, @generic="52e68e6479880da2d67268d8b866d314356fc055811fa5d9ba8b9814bcec3c0c1f25685c4169957ec976d5213e99d91c6124cdfbf3bc0012cd6a554200cdc8e5cedfda8c6f030173b5cb3d04e1b8ee5f9816a3f9e0a1d7389fc99e37e22d7348cf86194fe33e396861695a666d5630262397e6c5be60ff6909e8825444b6c31ad4279b7bc3344705611a67d15c78a09f39c7d8f15afb254aad81a49f5b432a20a1f7e3c3355103208f066050894e65c08da17e31066baff1bbdc09d80ccfcbda7bb9cbc1522bd304e958825e3d66464204e90b3f94053acde949", @typed={0x8, 0x46, 0x0, 0x0, @pid=r1}, @typed={0x8, 0x7f, 0x0, 0x0, @fd=r0}, @generic="e466f1b9"]}, @generic="24c71dd46b473c62a08574cf21cfe8cab2848a7382bafa7a8a66e50fd7f5be554d2dbe7aa0a14718f6333551bfd15462eda2aa75e296b77bef8660280cb8deb00c1b714bd8178ca419"]}, 0x1fc}, 0x1, 0x0, 0x0, 0x4040010}, 0x1) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r0, 0x8008f512, &(0x7f0000000140)) sendfile(r2, r2, 0x0, 0xffff) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f00000005c0)={0xc0c, r3, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x3d0, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x134, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2b, 0x2, [{0x4, 0x7}, {0x1, 0x4}, {0x4, 0x8}, {0x2, 0x9}, {0x7, 0x5}, {0x5, 0x5}, {0x6, 0x4}, {0x2, 0x9}, {0x0, 0x6}, {0x4, 0x7}, {0x1, 0x5}, {0x1, 0x2}, {0x7, 0xa}, {0x1, 0x3}, {0x7, 0x3}, {0x2, 0x1}, {0x6, 0x3}, {0x0, 0x3}, {0x6}, {0x6, 0x1}, {0x1, 0x4}, {0x4, 0x5}, {0x0, 0x5}, {0x2, 0x1}, {0x6, 0x5}, {0x1, 0x8}, {0x1, 0x9}, {0x0, 0x3}, {0x6, 0x9}, {0x0, 0x1}, {0x2, 0x4}, {0x0, 0x5}, {0x1, 0x5}, {0x3, 0x8}, {0x0, 0x6}, {0x1}, {0x0, 0x7}, {0x2, 0x5}, {0x6, 0x6}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x51, 0x2, [{0x5, 0x7}, {0x4, 0x4}, {0x5, 0x7}, {0x3}, {0x2, 0x8}, {0x2, 0xa}, {0x5, 0x7}, {}, {0x0, 0x9}, {0x2, 0x4}, {0x4, 0x5}, {0x4, 0x9}, {0x7, 0x5}, {0x6, 0x8}, {0x7, 0x3}, {0x2, 0x9}, {0x5, 0x9}, {0x3, 0xa}, {0x2, 0x1}, {0x6, 0x2}, {0x0, 0x2}, {0x6, 0x2}, {0x7, 0xa}, {0x0, 0x6}, {}, {0x3, 0x9}, {0x3, 0x9}, {0x0, 0x1}, {0x5, 0x2}, {0x1}, {0x3, 0x2}, {0x6, 0x5}, {0x4, 0x7}, {0x0, 0x7}, {0x4, 0x3}, {0x4, 0x5}, {0x2, 0x8}, {0x3, 0x2}, {0x6, 0x1}, {0x1}, {0x5, 0x5}, {0x1, 0x6}, {0x2, 0x7}, {0x5, 0x9}, {0x4, 0x6}, {0x6, 0x6}, {0x6, 0x8}, {0x6, 0x2}, {0x0, 0x4}, {0x3}, {0x0, 0x5}, {0x4, 0x7}, {0x0, 0x6}, {0x6, 0x8}, {0x7, 0x6}, {0x1, 0x6}, {0x1, 0x9}, {0x7, 0x2}, {0x4, 0x8}, {0x5, 0x6}, {0x2, 0x4}, {0x6, 0x5}, {0x3, 0x9}, {0x6, 0xa}, {0x1, 0x9}, {0x4, 0x6}, {0x1, 0x3}, {0x3, 0x8}, {0x7, 0x8}, {0x2, 0x8}, {0x5, 0x7}, {0x5, 0xa}, {0x0, 0x4}, {0x0, 0xa}, {0x0, 0x8}, {0x4, 0x5}, {0x5, 0x3}]}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x36, 0x6, 0x36, 0x2, 0x30, 0x16, 0x4, 0xc, 0xc, 0x5, 0x35, 0x9, 0x2, 0x1b, 0x6, 0x16, 0x1, 0x48, 0x5, 0x30, 0xc, 0x48, 0x24, 0x78, 0x1b, 0x3a, 0x9, 0x0, 0x36, 0x16, 0x2, 0x5e5d1aae440e84b2]}, @NL80211_TXRATE_HT={0x1e, 0x2, [{0x3, 0xa}, {0x1, 0x3}, {0x0, 0x6}, {0x0, 0x2}, {0x7}, {0x3, 0x3}, {}, {0x6, 0x9}, {0x4, 0x4}, {0x0, 0x9}, {0x4}, {0x2, 0x2}, {0x4, 0x6}, {0x2, 0x3}, {0x6, 0x9}, {0x6, 0x5}, {0x0, 0x2}, {0x7, 0x1}, {0x0, 0x8}, {0x4, 0x7}, {0x2, 0x6}, {0x0, 0x7}, {0x2, 0x4}, {0x3, 0x4}, {0x3}, {0x0, 0x4}]}, @NL80211_TXRATE_LEGACY={0xb, 0x1, [0x48, 0x0, 0x6, 0x6c, 0x1b, 0x66c8d81af7aef32a, 0x31]}, @NL80211_TXRATE_HT={0x14, 0x2, [{0x0, 0x1}, {0x5, 0x9}, {0x2, 0x2}, {0x1, 0x6}, {0x1, 0x6}, {0x5, 0x6}, {0x3}, {0x4, 0x3}, {0x7, 0x1}, {0x4, 0x8}, {0x2, 0x1}, {0x6, 0x7}, {0x7, 0x3}, {0x0, 0x8}, {0x1, 0x2}, {0x1, 0x3}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3ff, 0x3, 0x4, 0x3, 0x20, 0x2, 0x5dbc, 0x8]}}, @NL80211_TXRATE_HT={0x28, 0x2, [{0x6, 0xa}, {0x0, 0x8}, {0x0, 0x2}, {0x5, 0x5}, {0x7}, {0x3, 0x8}, {0x4, 0x5}, {0x1}, {0x6, 0xa}, {0x1, 0x1}, {0x4, 0x7}, {0x2, 0x2}, {0x3, 0x1}, {0x1, 0x5}, {0x5, 0x8}, {}, {0x6, 0xa}, {0x2, 0x6}, {0x6, 0x1}, {0x6, 0x8}, {0x2}, {0x3}, {0x1, 0x7}, {0x0, 0x9}, {0x6, 0x5}, {0x6, 0x6}, {0x3, 0x8}, {0x3, 0x9}, {0x7, 0x7}, {0x7, 0x2}, {0x3, 0x3}, {0x0, 0x7}, {0x0, 0x1}, {0x7, 0xa}, {0x4, 0x9}, {0x1, 0x9}]}]}, @NL80211_BAND_60GHZ={0x30, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xb, 0x1, [0xb, 0x0, 0x48, 0x5, 0x1b, 0x12, 0x36]}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x6, 0x60, 0x0, 0x24, 0x9, 0x5, 0x6, 0x30, 0x4, 0x3, 0x5776c8493559e428, 0x3, 0x12, 0x1b, 0x6c, 0x12, 0x4, 0x9, 0x18, 0x6c, 0x60, 0x4, 0x12, 0xc, 0x48, 0x24, 0x9]}]}, @NL80211_BAND_60GHZ={0x130, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x3a, 0x2, [{0x7, 0x8}, {0x7, 0x9}, {0x6, 0x5}, {0x1, 0x1}, {0x7, 0x6}, {0x0, 0x8}, {0x2, 0x6}, {0x5, 0x6}, {0x5, 0x2}, {0x1}, {0x3, 0x3}, {0x6, 0x2}, {0x1, 0x9}, {0x0, 0x2}, {0x7, 0x2}, {0x1, 0x9}, {0x0, 0x8}, {0x4, 0x2}, {0x1, 0x7}, {0x4}, {0x5, 0x6}, {0x4, 0x3}, {0x1, 0x8}, {0x2, 0x6}, {0x4, 0x8}, {0x5, 0x3}, {0x2, 0x5}, {0x6, 0x7}, {0x4, 0x9}, {0x5, 0x8}, {0x1, 0x4}, {}, {0x6}, {0x4}, {0x5, 0x4}, {0x4, 0x3}, {0x4, 0x5}, {0x6, 0x2}, {0x7, 0x2}, {0x7, 0xa}, {0x0, 0x9}, {0x4, 0x1}, {0x2}, {0x1, 0x9}, {0x6}, {0x1, 0x5}, {0x1, 0x9}, {0x7, 0x8}, {0x3, 0xa}, {0x6, 0x5}, {0x6, 0x6}, {0x1, 0x7}, {0x3, 0x5}, {0x1, 0x9}]}, @NL80211_TXRATE_HT={0x2c, 0x2, [{0x6, 0x5}, {0x1, 0x9}, {0x0, 0x2}, {0x2, 0x5}, {0x3, 0x1}, {0x2, 0x3}, {0x4, 0xa}, {0x3, 0xa}, {0x0, 0x5}, {0x0, 0x3}, {0x4, 0x2}, {0x6, 0x2}, {0x1, 0xa}, {0x5, 0x4}, {0x1, 0x5}, {0x2, 0x2}, {0x3, 0x2}, {0x5, 0x4}, {0x7, 0x4}, {0x1, 0x9}, {0x5, 0x2}, {0x7, 0x8}, {0x4, 0x1}, {0x5}, {0x5, 0x5}, {0x6, 0x7}, {0x0, 0x6}, {0x6, 0x2}, {0x1, 0x2}, {0x1, 0x4}, {0x0, 0x2}, {0x3, 0x7}, {0x2, 0x7}, {0x1, 0xa}, {0x1, 0x4}, {0x1, 0x5}, {0x0, 0x7}, {0x1}, {0x2, 0x8}, {0x3, 0x5}]}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x48, 0x1, 0xb, 0x1, 0x30, 0x24, 0xc, 0x60, 0x18, 0x24, 0x38]}, @NL80211_TXRATE_HT={0x4c, 0x2, [{0x7, 0x6}, {0x0, 0x5}, {0x3, 0x1}, {0x2}, {0x4, 0x2}, {0x1, 0x1}, {0x2, 0x7}, {0x7, 0x5}, {0x1, 0x2}, {0x2, 0xa}, {0x1, 0x5}, {0x1, 0x5}, {0x7, 0x4}, {0x2, 0x1}, {0x3, 0x8}, {0x2, 0x1}, {0x2, 0x7}, {0x0, 0x1}, {0x7, 0xa}, {0x7, 0x1}, {0x7, 0x8}, {0x0, 0x8}, {0x3, 0x7}, {0x1, 0x8}, {0x1, 0x1}, {0x7}, {0x4, 0x5}, {0x4, 0x1}, {0x2, 0x9}, {0x5, 0x9}, {0x7}, {0x2, 0x8}, {0x6, 0x2}, {0x6, 0xa}, {0x7, 0x3}, {0x1, 0x1}, {0x3, 0x3}, {0x4, 0x9}, {0x0, 0x1}, {0x7, 0x4}, {0x0, 0x7}, {0x5, 0x1}, {0x5, 0x1}, {0x6, 0x2}, {0x3, 0x2}, {0x1, 0x2}, {0x0, 0x9}, {0x2, 0x7}, {0x1, 0x5}, {0x1, 0x1}, {0x5, 0x3}, {0x1, 0x5}, {0x0, 0x8}, {0x4}, {0x4, 0xa}, {0x0, 0x8}, {0x1, 0xa}, {0x4, 0x7}, {0x3, 0x8}, {0x4, 0x2}, {0x3, 0x3}, {0x6, 0xa}, {0x2, 0x9}, {0x2, 0x2}, {0x3, 0x6}, {0x5, 0x6}, {0x1, 0x1}, {0x7, 0x4}, {0x4, 0x8}, {0x5, 0x8}, {0x0, 0x9}, {0x3, 0x7}]}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x30, 0x1b, 0x6c, 0x3e, 0x60, 0x16, 0x2, 0x4, 0x1, 0x36, 0x48, 0x60, 0x60, 0x24, 0x30, 0x1, 0x18, 0x6c, 0x0, 0xc, 0x30, 0xc]}, @NL80211_TXRATE_HT={0x1f, 0x2, [{0x7, 0x3}, {0x6, 0x6}, {0x1, 0x9}, {0x4, 0x3}, {0x4, 0x8}, {0x5, 0x6}, {0x1, 0x9}, {0x3, 0x1}, {0x1, 0x5}, {0x7, 0x9}, {0x1, 0x2}, {0x3, 0x8}, {0x0, 0x9}, {0x5, 0x8}, {0x1, 0x5}, {0x1, 0x2}, {0x0, 0x5}, {0x6, 0x8}, {0x7}, {0x4, 0x5}, {0x4}, {0x7, 0x7}, {0x2, 0xa}, {0x1, 0x2}, {0x0, 0x4}, {0x1, 0x7}, {0x6, 0x3}]}, @NL80211_TXRATE_HT={0x12, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x4}, {0x7, 0x9}, {0x4}, {0x1, 0xa}, {0x3, 0x4}, {0x1, 0x6}, {0x2, 0x2}, {0x0, 0x4}, {0x2, 0x2}, {0x7, 0xa}, {0x7, 0x8}, {0x1, 0x7}]}, @NL80211_TXRATE_HT={0x17, 0x2, [{0x6, 0x5}, {0x4, 0x8}, {0x2, 0x2}, {0x7, 0x2}, {0x5, 0xa}, {0x6, 0x3}, {}, {0x1}, {0x3, 0x8}, {0x0, 0x1}, {0x5, 0x5}, {0x0, 0x8}, {0x4, 0x4}, {0x1, 0x2}, {0x2, 0x5}, {0x7, 0x5}, {0x2, 0x4}, {0x1, 0x3}, {0x4}]}]}, @NL80211_BAND_2GHZ={0x1c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x4, 0x12, 0xb, 0x2, 0x1, 0xc, 0x2, 0x30, 0x24, 0x5, 0x48]}]}, @NL80211_BAND_60GHZ={0x4c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x19, 0x1, [0xc, 0x48, 0x6, 0x30, 0x6, 0x5, 0x5, 0x30, 0x4, 0x24, 0x1b, 0x30, 0x5, 0x1, 0x3, 0x60, 0x1b, 0x30, 0x30, 0x3, 0x3]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0x8}, {0x4, 0x1}, {0x1, 0x8}, {0x0, 0x5}, {0x7, 0x5}]}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x48, 0x30, 0x36, 0x6, 0x30, 0x6c, 0x18, 0x24, 0x3, 0x5, 0x2, 0x1, 0x12, 0x5, 0x36, 0x4, 0xc, 0x60, 0x4e3135eab6516803, 0x60, 0x1, 0x9, 0x6c, 0x3, 0x30, 0x12]}]}, @NL80211_BAND_60GHZ={0x34, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x18, 0x1, [0x60, 0x48, 0x1, 0x5, 0x1b, 0xb, 0x2, 0x3, 0x12, 0x36, 0x1, 0x36, 0x6, 0x30, 0xc, 0x6c, 0x24, 0xc, 0x1, 0x36]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x24ef3a5649e87de5}]}, @NL80211_BAND_60GHZ={0x38, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x17, 0x1, [0x4, 0x36, 0xc, 0x18, 0x48, 0x12, 0x6c, 0x4, 0x16, 0x3, 0x1b, 0x24, 0x3, 0x12, 0x5, 0x6, 0x16, 0x3, 0x36]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x0, 0x6, 0x4, 0x0, 0x4, 0x4, 0x1f]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_5GHZ={0x20, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x1a, 0x2, [{0x3, 0xa}, {0x2, 0x2}, {0x1, 0x2}, {0x1, 0x3}, {0x3, 0x4}, {0x2}, {0x4, 0x9}, {0x1, 0x8}, {0x4, 0x4}, {0x1, 0x4}, {0x6, 0x13}, {0x5, 0x7}, {0x0, 0x9}, {0x7, 0x5}, {0x7, 0xa}, {0x4, 0x2}, {0x2, 0xa}, {0x1}, {0x2, 0x4}, {0x2, 0x8}, {0x0, 0x2}, {0x0, 0x8}]}]}, @NL80211_BAND_6GHZ={0x44, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x100, 0xf268, 0x8000, 0x0, 0x0, 0x1, 0x3]}}, @NL80211_TXRATE_HT={0x5, 0x2, [{0x1, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x1, 0x100, 0x0, 0x3, 0x101, 0xfff, 0x7]}}]}]}, @NL80211_ATTR_TX_RATES={0x1c0, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x24, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0xf, 0x2, [{0x7, 0x8}, {0x2, 0x1}, {0x0, 0x1}, {0x1, 0x9}, {0x5, 0x1}, {0x6, 0x1}, {0x6, 0xa}, {0x1, 0x2}, {0x3, 0x6}, {0x0, 0x3}, {0x3, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x3}]}, @NL80211_BAND_2GHZ={0xb4, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x1e, 0x2, [{0x4, 0xa}, {0x4, 0x3}, {0x1, 0x6}, {0x6, 0x3}, {0x2}, {0x3, 0x1}, {0x0, 0x6}, {0x2, 0x5}, {0x4, 0x9}, {0x0, 0x4}, {0x5, 0x3}, {0x5, 0x7}, {0x6, 0x2}, {0x4, 0x9}, {0x3, 0x2}, {0x2, 0xa}, {0x3, 0xa}, {0x1, 0x2}, {0x3, 0x7}, {0x6, 0x7}, {0x7, 0x2}, {0x4, 0xa}, {0x6, 0x6}, {0x2, 0x4}, {0x0, 0x5}, {0x0, 0x1}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x800, 0xda63, 0x1, 0x8001, 0x7, 0x1, 0x9]}}, @NL80211_TXRATE_HT={0x1c, 0x2, [{}, {0x0, 0x7}, {0x3, 0x1}, {0x0, 0x7}, {0x7}, {0x1, 0x1}, {0x1, 0x9}, {0x7, 0x3}, {0x3, 0x1}, {0x1, 0xa}, {0x0, 0x6}, {0x6, 0x5}, {0x6, 0x9}, {0x3, 0x8}, {0x3, 0x8}, {0x6, 0x6}, {0x5}, {0x0, 0x5}, {}, {0x2, 0x5}, {0x4, 0x5}, {0x0, 0x7}, {0x6, 0x1}, {0x2, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x30, 0xc, 0x18, 0x36, 0x9, 0x18, 0x4, 0x36, 0x9, 0x5, 0x6, 0x12, 0x36, 0x24, 0x9, 0xe2711e13bcd89ea3, 0x66, 0x60, 0x5, 0x24, 0x12, 0xbf89725472ea14c9, 0xb]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x9, 0x16, 0x52, 0x1b, 0x0, 0xc]}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x1b, 0x16, 0xb, 0x48, 0x3, 0x60, 0x1, 0x16, 0x5, 0x12, 0x60, 0xc, 0x12, 0x16, 0x3, 0xb, 0xc, 0x6, 0x24, 0x4, 0xb, 0x6, 0x6c, 0x6, 0x1b, 0x16]}, @NL80211_TXRATE_HT={0xf, 0x2, [{0x0, 0x5}, {0x4, 0x8}, {0x4, 0x1}, {0x6}, {0x4, 0x5}, {0x5, 0x3}, {0x2, 0x7}, {0x4, 0xa}, {0x2, 0x4}, {0x3, 0x6}, {0x7, 0x4}]}]}, @NL80211_BAND_5GHZ={0x68, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0xd3, 0x7, 0xf9f, 0x11, 0x2, 0x4, 0x80]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xff81, 0x7, 0x3, 0xff, 0x7, 0x100, 0x6, 0x78]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x6a, 0xfff9, 0xdb, 0xfffa, 0xab, 0x2, 0xde4e]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5e0, 0x9, 0x3ff, 0x7, 0x1, 0x3ff, 0x2, 0x80]}}, @NL80211_TXRATE_LEGACY={0xb, 0x1, [0x5, 0x48, 0x30, 0x4, 0x6, 0x6df3422fe83c6d21, 0x4]}]}, @NL80211_BAND_2GHZ={0x70, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x17, 0x0, 0x18, 0x2, 0x48, 0x48, 0xb, 0x48, 0x16, 0x9, 0x6, 0x24, 0xb, 0x1, 0x9, 0x9, 0x1, 0x9, 0x2]}, @NL80211_TXRATE_HT={0x49, 0x2, [{0x6, 0x9}, {0x4, 0x2}, {0x4, 0x5}, {0x0, 0x4}, {0x6, 0x6}, {0x7, 0x6}, {0x5, 0x9}, {0x3, 0x2}, {0x6, 0xa}, {0x1, 0x3}, {0x0, 0x9}, {}, {0x4, 0xa}, {0x4, 0x3}, {0x5, 0x6}, {0x6, 0xa}, {0x1, 0x7}, {0x7, 0x4}, {0x3, 0x1}, {0x1, 0x5}, {0x4, 0x1}, {0x4, 0x3}, {0x0, 0x6}, {0x3, 0x7}, {0x7, 0x3}, {0x2, 0x1}, {0x0, 0x7}, {0x2, 0x4}, {0x5, 0x6}, {0x0, 0x1}, {0x2, 0xa}, {0x2}, {0x0, 0x8}, {0x6, 0x4}, {0x3, 0x1}, {0x7}, {0x7}, {0x3, 0xa}, {0x2}, {0x4, 0x4}, {0x7, 0x6}, {0x0, 0xa}, {0x4, 0xa}, {0x7, 0x8}, {0x3, 0x1}, {0x1, 0x6}, {0x2, 0x9}, {0x1, 0x1}, {0x3, 0xa}, {0x7, 0x9}, {0x0, 0x9}, {0x3, 0x4}, {0x1, 0x3}, {0x6, 0x5}, {0x6, 0x2}, {0x1, 0x9}, {0x7}, {0x6, 0x5}, {0x2, 0x5}, {0x2, 0x7}, {0x0, 0x3}, {0x5, 0x1}, {}, {0x0, 0xa}, {0x6, 0x7}, {0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5, 0x1}]}]}]}, @NL80211_ATTR_TX_RATES={0x37c, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x5c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x60, 0x48]}, @NL80211_TXRATE_HT={0x4b, 0x2, [{0x1, 0x5}, {0x2, 0x2}, {0x7, 0x8}, {}, {0x3, 0x8}, {0x6, 0x8}, {0x1, 0xa}, {0x2, 0x5}, {0x1, 0x1}, {0x7, 0x5}, {0x3, 0x3}, {0x2, 0xa}, {0x0, 0x8}, {0x6, 0x1}, {0x2, 0x2}, {}, {0x7, 0x8}, {0x5, 0x8}, {0x4, 0xa}, {0x1, 0x4}, {0x1, 0x8}, {0x6, 0x3}, {0x6, 0x7}, {0x7, 0x4}, {0x5}, {0x7, 0x3}, {0x3, 0x6}, {0x7, 0xa}, {0x6, 0x4}, {0x1, 0x2}, {0x3, 0x3}, {0x5, 0x9}, {0x0, 0x8}, {0x1, 0x6}, {0x6, 0xd}, {0x3, 0x9}, {0x1, 0x3}, {0x5, 0x4}, {0x0, 0x4}, {0x4, 0x5}, {0x0, 0x6}, {0x0, 0x3}, {0x0, 0x3}, {0x7, 0x9}, {0x3, 0x5}, {0x3, 0x4}, {0x6, 0x7}, {0x6, 0x5}, {0x0, 0x8}, {0x3, 0x1}, {0x4, 0x7}, {0x2, 0x1}, {0x4, 0x2}, {0x3, 0x4}, {0x4, 0x8}, {0x5, 0x7}, {0x1, 0x8}, {0x1, 0x4}, {0x7, 0x8}, {0x0, 0x9}, {0x1}, {0x7, 0x1}, {0x5, 0x2}, {0x3, 0x9}, {0x1, 0x6}, {0x5}, {0x6}, {0x5, 0x6}, {0x6, 0x9}, {0x3, 0x8}, {0x6, 0x2}]}]}, @NL80211_BAND_60GHZ={0x18, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x160, 0x3, 0x7fff, 0x3, 0x7, 0x200, 0x3e, 0x9]}}]}, @NL80211_BAND_5GHZ={0xb0, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x400, 0x1, 0x0, 0x30, 0x1f, 0x6, 0xb4f0, 0x4]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x4b3ae48949a4997f, 0xc, 0x2, 0x60, 0x9, 0xc, 0x5, 0xc, 0x6, 0x30, 0x6, 0x60]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x3, 0x3}, {0x4, 0x4}, {0x1, 0x4}, {0x1, 0x7}, {0x3, 0xa}, {0x7, 0x6}, {0x0, 0x2}, {0x6, 0x3}, {0x3, 0x2}, {0x0, 0x6}, {0x2, 0x9}, {0x5, 0x4}, {0x2, 0x7}, {0x4, 0x3}, {0x2, 0x8}, {0x5, 0x8}, {0x3, 0x6}, {0x2, 0xa}, {0x0, 0x9}, {0x4, 0x5}, {0x1, 0x5}, {0x0, 0x9}, {0x0, 0x9}, {0x2, 0x6}, {0x3, 0x1}, {0x7, 0x2}, {0x3, 0x6}, {0x4, 0x8}, {0x6, 0x5}, {0x4, 0x1}]}, @NL80211_TXRATE_HT={0x3e, 0x2, [{0x0, 0xa}, {0x3, 0x1}, {0x4}, {0x5, 0x9}, {0x1, 0x3}, {0x4, 0x7}, {0x0, 0x1}, {0x0, 0x5}, {0x3, 0x4}, {0x7, 0xa}, {0x1, 0x5}, {0x6}, {0x3, 0x2}, {0x2, 0x9}, {0x1, 0x8}, {0x0, 0x7}, {0x3}, {0x3, 0x9}, {0x0, 0x9}, {0x4, 0xa}, {0x5, 0x2}, {0x1, 0x1}, {0x0, 0x7}, {0x6}, {0x6, 0x3}, {0x6, 0x3}, {0x0, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x1, 0x2}, {0x0, 0x9}, {0x3, 0x2}, {0x5, 0x6}, {0x3, 0x5}, {0x7, 0x6}, {0x2, 0x2}, {0x4, 0x2}, {}, {0x0, 0x5}, {0x5, 0x5}, {0x6, 0x4}, {0x0, 0x4}, {0x0, 0xa}, {0x5, 0x4}, {0x6}, {0x3, 0x1}, {0x4, 0x7}, {0x1, 0x5}, {0x5, 0x3}, {0x6, 0x6}, {0x7, 0x6}, {0x1, 0x2}, {0x0, 0x6}, {0x2, 0x2}, {0x1, 0x2}, {0x5, 0x7}, {0x4, 0x6}, {0x0, 0x9}]}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x2, 0x12, 0x2, 0xd8, 0x3, 0x9]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_5GHZ={0x50, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x49, 0x2, [{0x7, 0x1}, {0x0, 0x8}, {0x1, 0x3}, {0x5}, {0x1, 0x7}, {0x7, 0x6}, {0x0, 0x7}, {0x0, 0x1d}, {0x0, 0x4}, {0x5, 0x8}, {0x3, 0x3}, {0x6, 0x1}, {0x4, 0x4}, {0x2, 0xa}, {0x1, 0x9}, {0x2, 0xa}, {0x2, 0x5}, {0x7, 0x9}, {0x4, 0x6}, {0x7, 0x3}, {0x2, 0x5}, {0x1, 0x8}, {0x0, 0x1}, {0x1, 0x3}, {0x2, 0x5}, {0x7, 0x2}, {0x3, 0x2}, {0x2, 0x3}, {0x5, 0x7}, {0x0, 0x5}, {0x0, 0x6}, {0x3, 0x9}, {0x3, 0x2}, {0x0, 0x7}, {0x4, 0x6}, {0x1, 0x3}, {0x3, 0x2}, {0x1}, {0x3, 0x2}, {0x7, 0x8}, {0x7, 0x5}, {0x0, 0x3}, {0x1, 0x7}, {0x2, 0x3}, {0x7, 0x4}, {0x6, 0x5}, {0x5, 0x9}, {0x2, 0x8}, {0x4, 0x4}, {0x4, 0x9}, {0x3, 0x2}, {0x1, 0x1}, {0x7, 0x9}, {0x2, 0x6}, {0x1, 0x5}, {0x1, 0x9}, {0x3, 0x8}, {0x3, 0x5}, {0x5, 0x1}, {0x5, 0x6}, {0x1, 0x5}, {0x4, 0xa}, {0x1, 0x2}, {0x7, 0xa}, {0x7, 0x4}, {0x4, 0x4}, {0x4, 0x9}, {0x7, 0x9}, {0x1, 0x2}]}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x9, 0x1, [0xd1dc022dd0a8815d, 0xc, 0x36, 0x16, 0x16]}]}, @NL80211_BAND_2GHZ={0xe8, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4e1d, 0x2, 0x2, 0xa3, 0xffff, 0xfff, 0x2, 0x7]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0xfc5, 0x8, 0xd640, 0xfd8, 0x9, 0x1ff, 0x4]}}, @NL80211_TXRATE_HT={0x43, 0x2, [{0x3, 0x5}, {0x0, 0xa}, {0x6, 0x3}, {0x5, 0x4}, {0x2, 0x6}, {0x6, 0x8}, {}, {0x5, 0x4}, {0x6}, {0x5, 0x3}, {0x0, 0x1}, {0x1, 0x3}, {0x3, 0x6}, {0x0, 0x2}, {0x5, 0x9}, {0x4, 0x7}, {0x4, 0x1}, {0x7}, {0x2, 0x9}, {0x6, 0x9}, {0x4, 0x3}, {0x0, 0x6}, {0x2}, {0x6, 0x8}, {0x1, 0x5}, {0x1, 0x8}, {0x5}, {0x0, 0x6}, {0x1, 0x3}, {0x3, 0x3}, {0x4, 0x7}, {0x7, 0x7}, {0x7, 0x7}, {0x7, 0x6}, {0x6, 0x9}, {0x6, 0x5}, {0x1, 0x8}, {0x3, 0x6}, {0x0, 0x4}, {0x0, 0x6}, {0x3, 0x8}, {0x2}, {0x2, 0x4}, {0x3, 0x2}, {0x3, 0x4}, {0x6, 0x9}, {0x0, 0x4}, {0x2, 0x8}, {0x1, 0x9}, {0x6, 0x5}, {0x5, 0x9}, {0x5, 0x2}, {0x1}, {0x5, 0xa}, {0x6, 0x8}, {0x1, 0x5}, {0x6, 0x3}, {0x0, 0x4}, {0x3, 0x9}, {0x1, 0x1}, {0x1, 0x1}, {0x4, 0xa}, {0x7, 0xa}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x1, 0x5}, {0x7, 0xa}, {}, {0x3}, {0x2, 0x2}, {0x0, 0x2}, {0x3, 0x5}, {0x3, 0x9}, {0x1}, {0x4, 0xa}, {0x7, 0x2}, {0x0, 0x8}, {0x1, 0xa}, {0x7, 0x2}, {0x4, 0x5}, {0x6, 0x8}, {0x7, 0x3}, {0x7, 0x1}, {0x1, 0x2}, {0x0, 0x8}, {0x2, 0x3}, {0x0, 0x4}, {0x4, 0x5}, {0x7, 0xa}, {0x1, 0x3}, {0x1, 0x9}, {0x5, 0x5}, {0x4, 0x3}, {0x1, 0x9}, {}, {0x3, 0x7}, {0x0, 0x5}, {0x2, 0x6}, {0x7, 0x7}, {0x7}, {0x1, 0x9}, {0x4, 0x4}, {0x6, 0x7}, {0x3, 0x4}, {0x6, 0x4}, {0x3, 0xa}, {0x1, 0x4}, {0x4, 0x4}, {0x5, 0x3}, {0x4, 0x1}, {0x4}, {0x7, 0x1}, {0x0, 0x5}, {0x4, 0x9}, {0x5, 0x1}, {0x1, 0x3}, {0x3, 0x8}, {0x4, 0x8}, {0x1, 0x2}, {0x1, 0x5}, {0x0, 0x6}, {0x3, 0x4}, {0x5, 0x4}, {0x1, 0x3}, {0x0, 0x4}, {0x7, 0x1}, {0x7, 0x6}, {0x2, 0x5}, {0x1, 0x9}, {0x1, 0x9}, {0x0, 0x7}, {0x1, 0x3}, {0x2, 0x5}, {}, {0x7, 0x3}, {0x2, 0x3}, {0x5, 0x5}, {0x7, 0x4}, {}, {0x5}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0xb8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x1, 0x37, 0x7, 0xddcd, 0x1, 0x8, 0x7]}}, @NL80211_TXRATE_HT={0x35, 0x2, [{0x1, 0x9}, {0x0, 0x4}, {0x2}, {0x5, 0x4}, {0x1, 0x2}, {0x0, 0xa}, {0x6, 0x2}, {0x1, 0x8}, {0x5, 0x3}, {0x0, 0x8}, {0x5, 0x9}, {0x7}, {0x5, 0x2}, {}, {0x7, 0x3}, {0x7, 0x2}, {0x2, 0x6}, {0x5, 0x8}, {0x3, 0x3}, {0x1, 0x3}, {0x5, 0x2}, {0x4, 0x4}, {0x1, 0x5}, {0x4, 0x6}, {0x6, 0x9}, {0x0, 0xa}, {0x3, 0x5}, {0x2, 0x2}, {0x2, 0x3}, {0x4, 0x1}, {0x1, 0x3}, {0x6}, {0x1, 0x8}, {0x3, 0x8}, {0x2, 0x4}, {0x4, 0x5}, {0x3, 0x8}, {0x1, 0x3}, {0x7, 0x9}, {0x1, 0x1}, {0x5, 0x2}, {0x7, 0x7}, {0x0, 0x4}, {0x6, 0x6}, {0x7, 0x8}, {0x3, 0xa}, {0x0, 0x3}, {0x4, 0x9}, {0x7}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x800, 0x8f, 0x879, 0x9, 0x5, 0x7f, 0x200, 0x3]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x2c, 0x2, [{0x3, 0x1}, {0x3, 0x8}, {}, {0x4, 0x8}, {0x3, 0x7}, {0x3, 0x5}, {0x7, 0xa}, {0x7, 0x1}, {0x1, 0x9}, {0x5, 0x7}, {0x0, 0x8}, {0x5, 0x2}, {}, {0x7, 0x9}, {0x6, 0x6}, {0x3, 0x6}, {0x0, 0x8}, {0x2, 0x9}, {0x1, 0x7}, {0x3, 0x9}, {0x6, 0x2}, {0x3, 0x8}, {0x1, 0x5}, {0x2, 0x3}, {0x0, 0x1}, {0x6, 0x2}, {0x7, 0x4}, {0x0, 0x9}, {0x0, 0x4}, {0x0, 0x2}, {0x5, 0x4}, {0x7, 0x2}, {0x5, 0x9}, {0x2, 0x3}, {0x0, 0x2}, {0x5, 0x6}, {0x5, 0x6}, {0x1, 0x1}, {0x3, 0x5}, {0x5, 0x7}]}, @NL80211_TXRATE_HT={0x10, 0x2, [{0x2, 0x8}, {0x6, 0x6}, {0x0, 0x1}, {0x1, 0x4}, {0x3, 0x8}, {0x5, 0x6}, {0x0, 0x8}, {0x5}, {0x5, 0x9}, {0x3, 0x8}, {0x1, 0x1}, {0x0, 0x7}]}]}, @NL80211_BAND_60GHZ={0x4c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x5, 0x2, [{0x4, 0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x16, 0x6c, 0xb, 0x60, 0x48, 0x48, 0x6c, 0x1]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x80, 0x5, 0x4, 0x5, 0x9, 0x200, 0x3f]}}, @NL80211_TXRATE_HT={0xf, 0x2, [{0x2, 0x1}, {0x2, 0x8}, {0x5, 0x2}, {0x3, 0x1}, {0x0, 0x7}, {0x1, 0x2}, {0x6, 0x9}, {0x3, 0x1}, {0x0, 0x2}, {0x7, 0x1}, {0x6, 0x4}]}]}]}, @NL80211_ATTR_TX_RATES={0x24c, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x44, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x11, 0x1, [0xc, 0x18, 0x5, 0x6, 0x12, 0xc, 0x3, 0xee, 0x1b, 0x0, 0x12, 0x9, 0xc]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x4000, 0x1000, 0xf03f, 0x799, 0x40, 0x0, 0x23]}}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_2GHZ={0x30, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x24, 0x1, [0x3e, 0x9, 0x2, 0x5, 0x48, 0x5, 0xb, 0x48, 0x24, 0x6c, 0x18, 0x60, 0xc, 0x60, 0x2, 0x24, 0x16, 0x30, 0xb, 0x24, 0x74, 0xd882a0fd5df24d93, 0x55, 0x5, 0x9, 0x4, 0x16, 0x6c, 0xc, 0x1, 0x30, 0x4]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x1, 0x6, 0x6, 0xc]}]}, @NL80211_BAND_5GHZ={0x44, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x5, 0x2, [{0x1, 0x6}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x9, 0x0, 0x4, 0x7, 0x0, 0x101, 0xfffb]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x1f, 0xf001, 0x5, 0xacd0, 0x3, 0x7fff, 0x800]}}]}, @NL80211_BAND_6GHZ={0x104, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x12, 0x1, [0x1d, 0x16, 0x24, 0x34, 0x48, 0x8, 0x5, 0x30, 0x24, 0x48, 0xb, 0x18, 0x12, 0x24]}, @NL80211_TXRATE_HT={0x2a, 0x2, [{0x0, 0x3}, {0x6, 0xa}, {0x1, 0x9}, {0x5, 0xa}, {0x3, 0x9}, {0x0, 0x7}, {0x4, 0xa}, {0x3, 0x5}, {0x0, 0xa}, {0x4, 0x5}, {0x5, 0xa}, {0x4, 0xa}, {0x2, 0x4}, {0x6, 0xa}, {}, {0x2, 0x3}, {0x6, 0x4}, {0x6, 0x9}, {0x1, 0x1}, {0x4, 0x8}, {0x2, 0x1}, {0x1, 0x1}, {0x1, 0x5}, {0x4, 0x3}, {0x0, 0x2}, {0x4, 0xa}, {0x4, 0x4}, {0x4, 0x4}, {0x3, 0x6}, {0x0, 0x7}, {0x7, 0x3}, {0x0, 0xa}, {0x6, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x6, 0x3}, {0x6, 0x5}, {0x6, 0x4}]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x12, 0x10, 0x48, 0x9]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x8, 0x81, 0x6, 0x3f, 0x3, 0x8, 0x5]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfffb, 0x1ff, 0x4, 0x8, 0x3ff, 0x7, 0xbe, 0x28]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x7, 0x5, 0xfd, 0x5, 0xff, 0x3ff, 0x6]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x21, 0x2, [{0x2, 0x6}, {0x4, 0x2}, {0x0, 0x4}, {0x6, 0x7}, {0x2, 0xa}, {0x7, 0x9}, {0x1}, {0x3}, {0x3, 0x8}, {0x3, 0x4}, {0x5, 0xa}, {0x1, 0x8}, {0x5, 0x9}, {0x0, 0x4}, {0x4, 0x6}, {0x3, 0x4}, {0x4, 0x5}, {0x5, 0x7}, {0x3, 0x4}, {0x6, 0x2}, {0x6, 0x7}, {0x3, 0x2}, {0x7, 0x8}, {0x0, 0x9}, {0x1, 0x9}, {0x5, 0x4}, {0x4, 0x3}, {0x0, 0x1}, {0x0, 0x6}]}, @NL80211_TXRATE_HT={0x4d, 0x2, [{0x1, 0xa}, {0x7, 0x2}, {0x4, 0x4}, {0x3}, {0x1, 0x8}, {}, {0x1, 0x7}, {0x3, 0x5}, {0x2}, {0x0, 0x2}, {0x0, 0x2}, {0x2, 0x5}, {0x3, 0x1}, {0x3, 0x3}, {0x7, 0x1}, {0x3, 0xa}, {0x6, 0x7}, {0x3, 0x4}, {0x1, 0x6}, {0x4, 0x1}, {0x1, 0x2}, {0x5, 0x3}, {0x1, 0x8}, {0x3, 0x6}, {0x0, 0x4}, {0x1}, {0x4, 0x4}, {0x6}, {0x3, 0x7}, {0x1}, {0x4, 0x7}, {0x7, 0x6}, {0x6, 0x8}, {0x2, 0x9}, {0x7, 0x6}, {0x0, 0x8}, {0x3, 0x5}, {0x0, 0x2}, {0x2}, {0x1, 0x3}, {0x4, 0x8}, {0x1, 0x3}, {0x2, 0x3}, {0x5, 0x1}, {0x6, 0x2}, {0x2, 0x7}, {0x4, 0x3}, {0x5, 0x7}, {0x5, 0x6}, {0x0, 0xa}, {0x6, 0x8}, {0x7, 0x5}, {0x3, 0x7}, {0x1, 0x4}, {0x3, 0x7}, {0x3, 0x3}, {0x6, 0x8}, {0x0, 0x4}, {0x6}, {0x0, 0x6}, {0x4, 0x6}, {0x5, 0x1}, {0x7}, {0x4, 0x5}, {0x1, 0x6}, {0x5, 0xa}, {}, {0x4, 0x7}, {0x6, 0x3}, {0x5, 0x4}, {0x5, 0x3}, {0x1, 0x1}, {0x3, 0x1}]}]}, @NL80211_BAND_60GHZ={0x18, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x9, 0x5892, 0x14da, 0xfff, 0x3, 0x3, 0x7]}}]}, @NL80211_BAND_6GHZ={0x48, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x6c]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x2, 0x3, 0x4e02, 0x488, 0x7f, 0x0, 0x8]}}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x3, 0x6}, {0x5, 0x5}]}]}, @NL80211_BAND_2GHZ={0x2c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x14, 0x1, [0x60, 0x30, 0x6, 0x2, 0x0, 0x30, 0x30, 0x4, 0x9, 0x6, 0x1b, 0xc, 0x1b, 0x36, 0x24, 0x4]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0xffff, 0x3ff, 0x7, 0x6, 0x2, 0x80, 0x7cd]}}]}]}, @NL80211_ATTR_TX_RATES={0xa0, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x24, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x5, 0x0, 0x6, 0x6, 0x3, 0x5, 0x3, 0x6, 0x48, 0x6, 0x48, 0x5, 0x60, 0x36, 0x6, 0x30, 0x6c, 0x4]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x4}, {0x7, 0x1}]}]}, @NL80211_BAND_5GHZ={0x78, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x78, 0x24, 0x5, 0x24, 0x1, 0x0, 0x0, 0x30, 0x36, 0x60, 0x4, 0x48, 0x3, 0xc, 0x16, 0x4, 0x44, 0x36, 0x2, 0xc, 0x18, 0x3, 0x9, 0x24, 0x2, 0x3, 0x24, 0x30, 0xb, 0x1b, 0xc]}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x24, 0x9, 0x6c, 0x1, 0x0, 0xb, 0x30, 0x3, 0x48, 0x3, 0x18]}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x24, 0x48, 0xb, 0x1, 0x18, 0x16, 0x5, 0x6df2f684c4e49310, 0x36, 0x9, 0x3, 0x6c, 0x1e, 0xb, 0x5, 0xc, 0x6c, 0x1, 0x30, 0x6, 0x1b, 0x40, 0x36, 0x9, 0x24, 0x4, 0x1, 0xdf, 0x48, 0x30, 0x36, 0x2]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x401, 0x20, 0x401, 0xff81, 0x70, 0x7, 0x7, 0x1]}}]}]}]}, 0xc0c}, 0x1, 0x0, 0x0, 0x80}, 0x4000080) [ 296.068640] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 296.075896] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000d [ 296.083154] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 04:36:43 executing program 3 (fault-call:5 fault-nth:14): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 296.230916] FAULT_INJECTION: forcing a failure. [ 296.230916] name failslab, interval 1, probability 0, space 0, times 0 [ 296.262730] CPU: 1 PID: 20850 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 296.270664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.280014] Call Trace: [ 296.282612] dump_stack+0x1b2/0x283 [ 296.286244] should_fail.cold+0x10a/0x154 [ 296.290396] should_failslab+0xd6/0x130 [ 296.294373] __kmalloc+0x2c1/0x400 [ 296.297916] ? match_strdup+0x58/0xa0 [ 296.301721] match_strdup+0x58/0xa0 [ 296.305352] p9_client_create+0x3ba/0x12c0 [ 296.309625] ? p9_client_flush+0x4c0/0x4c0 [ 296.313868] ? __lockdep_init_map+0x100/0x560 [ 296.318361] ? __raw_spin_lock_init+0x28/0x100 [ 296.322942] v9fs_session_init+0x1c5/0x1540 [ 296.327261] ? pcpu_alloc+0xbe0/0xf50 [ 296.331069] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 296.335912] ? v9fs_show_options+0x6b0/0x6b0 [ 296.340326] ? v9fs_mount+0x54/0x860 [ 296.344043] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 296.349497] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 296.354515] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 296.359358] v9fs_mount+0x73/0x860 [ 296.362929] ? alloc_pages_current+0x15d/0x260 [ 296.367510] ? __lockdep_init_map+0x100/0x560 [ 296.372013] mount_fs+0x92/0x2a0 [ 296.375389] vfs_kern_mount.part.0+0x5b/0x470 04:36:44 executing program 5: fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46802) io_setup(0x0, &(0x7f0000000180)) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000280)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xa, 0x5, &(0x7f00000003c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17, 0x8000000}, {0x0, 0x0, 0x10e00}, {&(0x7f0000000400), 0x0, 0x7ff}, {&(0x7f0000000300)="4e3ce491c200b366d55566cf2ad2099cf52bf85be476e12674dd3e80ea877f0811433de8d980eef9fd495e12d843f91a1bef708aa15cc1b29f21e5f2c5976ec28fe782e1469cd4b7374cd82e2bac41763d8176c36139d0e6811b7aaa48b020faca72646d5b77245873b09f1960d3ed02dc05ceaec48e80", 0x77, 0x5}, {&(0x7f00000001c0)="f69c8eca39a68b6bbcc834ecb63ec5145ee011daa7e87d5f3426320dac86c8f107bace391e6a54d90b6923da96f54a6b67f3afd3", 0x34, 0x3}], 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='u\x00\x00\x00\x000,\x00']) keyctl$setperm(0x5, 0x0, 0x1000000) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000040)={0x6, [0x0, 0x6, 0x1, 0x7, 0x4ea7, 0x2]}) mkdirat(0xffffffffffffffff, &(0x7f0000000380)='./file1\x00', 0x0) ioctl$SNDRV_PCM_IOCTL_PAUSE(0xffffffffffffffff, 0x40044145, &(0x7f0000000440)=0x40) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) r3 = open(&(0x7f0000000240)='./file0\x00', 0x1070c5, 0x0) open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) write$9p(r3, &(0x7f0000001400), 0x0) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) sendfile(r1, r4, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) setxattr$security_evm(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)='security.evm\x00', 0x0, 0x0, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x9) ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000080)) 04:36:44 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 296.379890] do_mount+0xe53/0x2a00 [ 296.383485] ? do_raw_spin_unlock+0x164/0x220 [ 296.387986] ? copy_mount_string+0x40/0x40 [ 296.392222] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 296.397241] ? copy_mnt_ns+0xa30/0xa30 [ 296.401161] ? copy_mount_options+0x1fa/0x2f0 [ 296.405644] ? copy_mnt_ns+0xa30/0xa30 [ 296.409529] SyS_mount+0xa8/0x120 [ 296.412998] ? copy_mnt_ns+0xa30/0xa30 [ 296.416879] do_syscall_64+0x1d5/0x640 [ 296.420775] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 296.425960] RIP: 0033:0x45e0f9 04:36:44 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x10, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=ANY=[@ANYBLOB="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"/529, @ANYRESHEX, @ANYBLOB="40000000ffffff3d70820e40fd220a2251672c1bfe3f84ff00080000000000000066736300010000080002"], 0x38}, 0x1, 0x0, 0x0, 0x20c1}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000840)=ANY=[@ANYBLOB="5c3500fd000000000f00000000000000000000009cef57b912667f21b6a87500cf4196ccc6bfd363b1ae3ba98d97b17ade534c512fa831d98443f8bee4e1fd6caef2c5c035487ef40df291375f70ed69d3b02881f5a1e4e3f1f0bc7b412a46f4f75d52", @ANYRES32=0x0, @ANYBLOB="0400000000000000990000000a000100629583617369630000002c00020028000280080001007e0000001c0002801800010000000400000000000c000100000000000000b4dceb311eb500f656bd4b7a049631e7fb46b52f110e5b9ca76aa9e9457d52fc0f0c0aee80b330666e5250a68d1a59bd0133b14b0760568e"], 0x5c}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000200)={'ip6_vti0\x00', &(0x7f0000000080)={'ip6tnl0\x00', 0x0, 0x2f, 0x5, 0x6, 0x0, 0x3, @private2={0xfc, 0x2, [], 0x1}, @rand_addr=' \x01\x00', 0x700, 0x8000, 0x9, 0x400}}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000000480)={'ip6_vti0\x00', &(0x7f0000000400)={'ip6gre0\x00', r1, 0x4, 0x5, 0x3f, 0x2, 0x41, @dev={0xfe, 0x80, [], 0x28}, @private2, 0x7, 0x80, 0x800, 0x8000}}) r2 = socket$packet(0x11, 0x2, 0x300) openat$autofs(0xffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x430040, 0x0) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000280)=@req={0x9, 0x1, 0x200, 0x7ff}, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) r6 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8936, &(0x7f0000000240)={@private2, 0x80, r3}) ioctl$KDSKBMODE(0xffffffffffffffff, 0x4b45, &(0x7f0000000680)=0x4) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x54, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc, 0x1, 'macvlan\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}, @IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x54}}, 0x0) [ 296.429250] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 296.436988] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 296.444269] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 296.451542] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 296.458812] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000e [ 296.466091] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:44 executing program 3 (fault-call:5 fault-nth:15): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:44 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bind$l2tp(r3, &(0x7f0000000b80)={0x2, 0x0, @multicast1, 0x4}, 0x10) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @remote}, {0xa, 0x0, 0x0, @dev}, r5}}, 0x48) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000040)={0x13, 0x10, 0xfa00, {&(0x7f0000000280), r5, 0x2}}, 0x18) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r1, &(0x7f0000000b40)={0x5, 0x10, 0xfa00, {&(0x7f0000000940), r5, 0x1}}, 0x18) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r6, &(0x7f0000000000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000bc0)) dup(r7) write$binfmt_elf64(r7, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0xc1, 0x1, 0x3f, 0x6, 0x20, 0x2, 0x3, 0x20, 0x2bb, 0x40, 0x3ac, 0x10001, 0x2, 0x38, 0x1, 0x4, 0xfc01, 0x9}, [{0x7, 0x200, 0x4, 0x8, 0x9, 0x37b9, 0x10000, 0x200}], "fde561a5420cff9022cb6f8522abc415ef301f9a3071668bc4e3b4ae12a38f935e7913a2f659b6dec292048e571ce55dde5cfccd98955acf971c3cf391f345a3869100783a72f21ce4e9be9d75e208a81ed5eddf1d4eb29616e6303f714beefed9bf7d3b5b896081a011fc02e4f2b47619f1d13c1c82c9a7f1ed1ff8be18e3ce14728bc33a762efd0ee5c7e18cfd9dcddb93f8f8dffd32767262d0ee55ca68227361d1214343e9fa74aec6764793045164d09108e88dc23acdb8051770158de38ce633ab9112903b396718519f540b167dc232ac406c551d5f", [[], [], [], [], [], [], []]}, 0x851) [ 296.731086] FAT-fs (loop5): Unrecognized mount option "" or missing value 04:36:44 executing program 1: r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000080)="a16ec62484439a6922b5d33b47397126", 0x10) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) getresgid(&(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0, &(0x7f0000000240)=0x0) getgroups(0x7, &(0x7f0000000a40)=[0xee00, r4, r3, r4, r2, r4, r3]) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x800010, &(0x7f0000000100)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, r4}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x20}}, {@blksize={'blksize'}}, {@blksize={'blksize'}}, {@allow_other='allow_other'}], [{@defcontext={'defcontext', 0x3d, 'user_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x35, 0x34, 0x33, 0x30, 0x64, 0x32, 0x61], 0x2d, [0x64, 0x64, 0x35, 0x31], 0x2d, [0x61, 0x32, 0x34, 0x30], 0x2d, [0x35, 0x35, 0x38, 0x38], 0x2d, [0x32, 0x36, 0x37, 0x34, 0x61, 0x66, 0x64, 0x38]}}}, {@dont_appraise='dont_appraise'}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x32, 0x66, 0x61, 0x30, 0x61, 0x31, 0x61], 0x2d, [0x33, 0x33, 0x65, 0x35], 0x2d, [0x39, 0x32, 0x33, 0x30], 0x2d, [0x39, 0x36, 0xf], 0x2d, [0x39, 0x32, 0x65, 0x31, 0x30, 0x36, 0x39, 0x33]}}}, {@seclabel='seclabel'}, {@smackfsroot={'smackfsroot', 0x3d, '.:^'}}, {@smackfsdef={'smackfsdef', 0x3d, 'bridge\x00'}}, {@dont_appraise='dont_appraise'}, {@fsmagic={'fsmagic', 0x3d, 0xa02}}]}}) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000340)={0x0, @in6={{0xa, 0x4e20, 0x6, @local, 0xffff}}, 0x7f, 0x8000, 0x7ff, 0x9, 0x43, 0x100, 0x43}, 0x9c) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0) ioctl$UI_SET_ABSBIT(r5, 0x40045567, 0x2) 04:36:44 executing program 5: fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46802) io_setup(0x0, &(0x7f0000000180)) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000280)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xa, 0x5, &(0x7f00000003c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17, 0x8000000}, {0x0, 0x0, 0x10e00}, {&(0x7f0000000400), 0x0, 0x7ff}, {&(0x7f0000000300)="4e3ce491c200b366d55566cf2ad2099cf52bf85be476e12674dd3e80ea877f0811433de8d980eef9fd495e12d843f91a1bef708aa15cc1b29f21e5f2c5976ec28fe782e1469cd4b7374cd82e2bac41763d8176c36139d0e6811b7aaa48b020faca72646d5b77245873b09f1960d3ed02dc05ceaec48e80", 0x77, 0x5}, {&(0x7f00000001c0)="f69c8eca39a68b6bbcc834ecb63ec5145ee011daa7e87d5f3426320dac86c8f107bace391e6a54d90b6923da96f54a6b67f3afd3", 0x34, 0x3}], 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='u\x00\x00\x00\x000,\x00']) keyctl$setperm(0x5, 0x0, 0x1000000) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000040)={0x6, [0x0, 0x6, 0x1, 0x7, 0x4ea7, 0x2]}) mkdirat(0xffffffffffffffff, &(0x7f0000000380)='./file1\x00', 0x0) ioctl$SNDRV_PCM_IOCTL_PAUSE(0xffffffffffffffff, 0x40044145, &(0x7f0000000440)=0x40) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) r3 = open(&(0x7f0000000240)='./file0\x00', 0x1070c5, 0x0) open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) write$9p(r3, &(0x7f0000001400), 0x0) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) sendfile(r1, r4, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) setxattr$security_evm(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)='security.evm\x00', 0x0, 0x0, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x9) ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000080)) [ 296.890864] FAULT_INJECTION: forcing a failure. [ 296.890864] name failslab, interval 1, probability 0, space 0, times 0 [ 296.976562] CPU: 1 PID: 20887 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 296.984521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.993870] Call Trace: [ 296.996461] dump_stack+0x1b2/0x283 [ 297.000098] should_fail.cold+0x10a/0x154 [ 297.004274] should_failslab+0xd6/0x130 [ 297.008250] __kmalloc+0x2c1/0x400 [ 297.011791] ? match_strdup+0x58/0xa0 [ 297.015596] ? p9_client_create+0x400/0x12c0 [ 297.020009] match_strdup+0x58/0xa0 [ 297.023643] p9_client_create+0x41b/0x12c0 [ 297.027888] ? p9_client_flush+0x4c0/0x4c0 [ 297.032152] ? __lockdep_init_map+0x100/0x560 [ 297.036648] ? __raw_spin_lock_init+0x28/0x100 [ 297.041234] v9fs_session_init+0x1c5/0x1540 [ 297.045554] ? pcpu_alloc+0xbe0/0xf50 [ 297.049359] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 297.054203] ? v9fs_show_options+0x6b0/0x6b0 [ 297.057678] FAT-fs (loop5): Unrecognized mount option "u" or missing value [ 297.058609] ? v9fs_mount+0x54/0x860 [ 297.058622] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 297.058633] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 297.058645] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 297.058657] v9fs_mount+0x73/0x860 [ 297.058666] ? alloc_pages_current+0x15d/0x260 [ 297.058678] ? __lockdep_init_map+0x100/0x560 [ 297.097410] mount_fs+0x92/0x2a0 [ 297.100787] vfs_kern_mount.part.0+0x5b/0x470 [ 297.105288] do_mount+0xe53/0x2a00 [ 297.108832] ? do_raw_spin_unlock+0x164/0x220 [ 297.113334] ? copy_mount_string+0x40/0x40 [ 297.117571] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 297.122587] ? copy_mnt_ns+0xa30/0xa30 [ 297.126478] ? copy_mount_options+0x1fa/0x2f0 [ 297.130973] ? copy_mnt_ns+0xa30/0xa30 [ 297.134861] SyS_mount+0xa8/0x120 [ 297.138313] ? copy_mnt_ns+0xa30/0xa30 [ 297.142194] do_syscall_64+0x1d5/0x640 [ 297.146079] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 297.151278] RIP: 0033:0x45e0f9 [ 297.154457] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 297.162153] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 297.169412] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 04:36:45 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:45 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x366, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008108040f80ecdb4cb92e0a480e000d00000009000e00010040d5ae7d0200ff050005", 0x2e}], 0x1}, 0x80) socket$kcm(0x29, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x65580000, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008108040f80ecdb4cb92e0a480e000d000000e8bd6efb2503094c0e000100240248ff050005001201", 0x2e}], 0x1}, 0x0) sync_file_range(r0, 0x8, 0x60b5, 0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair(0x25, 0x0, 0x0, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) [ 297.176670] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 297.183926] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000f [ 297.191201] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 04:36:45 executing program 3 (fault-call:5 fault-nth:16): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:45 executing program 2: r0 = creat(&(0x7f0000000840)='./file0\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000380)='fd/4\x00') sendfile(r1, r1, 0x0, 0xffff) recvfrom(r1, &(0x7f00000001c0)=""/241, 0xf1, 0x10000, &(0x7f00000002c0)=@can, 0x80) write$P9_RLINK(r0, &(0x7f0000000040)={0x7}, 0xffffff07) write$P9_RFSYNC(0xffffffffffffffff, 0x0, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = add_key$fscrypt_v1(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000100)={0x0, "a9bfed7aeb5965ef00ce1b050924bc4c8b3c42d84242b77f4952576f2dc395a5248dd64a8cff8babb45bf9b27abd231478d90e5181858732e402fbddeced4034"}, 0x48, 0xfffffffffffffffe) keyctl$invalidate(0x15, r2) keyctl$get_security(0x11, r2, &(0x7f00000000c0)=""/156, 0x9c) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000340)={0x8, 0x20, 0x4, 0x400}) socket$can_bcm(0x1d, 0x2, 0x2) r3 = open(&(0x7f00000003c0)='./file0\x00', 0x20040, 0x18) write$P9_RLERROR(r3, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x9) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) write$UHID_DESTROY(r4, &(0x7f0000000000), 0x4) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000600)=[{&(0x7f0000000540)="9b98191816c36a4c75f8f9a1402defcf613257f10287c43d42170f367a558a9abb93b5a8c39549aca2bbb5e243d1f8c01933a648009608ad41f7ca7078858de8d407d7886bddd94ed9297ee15af7891174c496ed3e60da2162df1e364573ed060b4b2d8c0cbe08db20bc075dc600b62d5766432d9f8964531d630e5992aa335587b6bc05bc66703aaa359dd758567fa293502aeb9db9eb36d8906140d9573c632d519223b074cbd04524c36c1737da", 0xaf}], 0x1, 0x0, 0x0, 0x11}, 0x8044) syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000180)=""/4) [ 297.302275] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 297.360876] FAULT_INJECTION: forcing a failure. [ 297.360876] name failslab, interval 1, probability 0, space 0, times 0 [ 297.418588] CPU: 0 PID: 20927 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 297.426502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 297.435854] Call Trace: [ 297.438443] dump_stack+0x1b2/0x283 [ 297.442075] should_fail.cold+0x10a/0x154 [ 297.446228] should_failslab+0xd6/0x130 [ 297.450205] __kmalloc+0x2c1/0x400 [ 297.453746] ? match_number+0x9d/0x200 [ 297.457635] match_number+0x9d/0x200 [ 297.461350] ? match_strdup+0xa0/0xa0 [ 297.465146] ? memcpy+0x35/0x50 [ 297.468428] parse_opts.part.0+0x1b5/0x2d0 [ 297.472661] ? p9_fd_show_options+0x190/0x190 [ 297.477155] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 297.482258] ? fs_reclaim_release+0xd0/0x110 [ 297.486703] p9_fd_create+0x86/0x3b0 [ 297.490416] ? p9_fd_create_tcp+0x440/0x440 [ 297.494746] ? __raw_spin_lock_init+0x28/0x100 [ 297.499326] p9_client_create+0x5fd/0x12c0 [ 297.503569] ? p9_client_flush+0x4c0/0x4c0 [ 297.507826] ? __lockdep_init_map+0x100/0x560 [ 297.512326] ? __raw_spin_lock_init+0x28/0x100 [ 297.516911] v9fs_session_init+0x1c5/0x1540 [ 297.521253] ? pcpu_alloc+0xbe0/0xf50 [ 297.525054] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 297.529897] ? v9fs_show_options+0x6b0/0x6b0 [ 297.534309] ? v9fs_mount+0x54/0x860 [ 297.538023] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 297.543470] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 297.548489] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 297.553332] v9fs_mount+0x73/0x860 [ 297.556871] ? alloc_pages_current+0x15d/0x260 [ 297.561477] ? __lockdep_init_map+0x100/0x560 [ 297.565971] mount_fs+0x92/0x2a0 [ 297.569342] vfs_kern_mount.part.0+0x5b/0x470 [ 297.573838] do_mount+0xe53/0x2a00 [ 297.577384] ? copy_mount_string+0x40/0x40 [ 297.581617] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 297.586633] ? copy_mnt_ns+0xa30/0xa30 [ 297.590544] ? copy_mount_options+0x1fa/0x2f0 [ 297.595040] ? copy_mnt_ns+0xa30/0xa30 [ 297.598948] SyS_mount+0xa8/0x120 [ 297.602421] ? copy_mnt_ns+0xa30/0xa30 [ 297.606320] do_syscall_64+0x1d5/0x640 [ 297.610241] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 297.615427] RIP: 0033:0x45e0f9 [ 297.618612] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 297.626318] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 297.633457] audit: type=1804 audit(1607488605.223:11): pid=20941 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir148805793/syzkaller.9ZEhd0/479/file0" dev="sda1" ino=16458 res=1 [ 297.633582] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 297.662017] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 297.669287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000010 [ 297.676561] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 297.684182] device bridge0 entered promiscuous mode [ 297.686522] Bluetooth: hci1 command 0x040f tx timeout 04:36:45 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) memfd_create(&(0x7f0000000000)='}.\x00', 0xd) fstat(r2, &(0x7f0000004140)) 04:36:45 executing program 1: creat(0x0, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xb6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xc, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) socket(0x10, 0x803, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x280, 0x0, 0x0, 0x5, 0x0, 0x0, 0x83}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) syz_open_dev$char_usb(0xc, 0xb4, 0x0) clone(0x2000000000200100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x20000080000000, 0x0) r1 = memfd_create(&(0x7f0000000180)='B\'%nod\x05\x00\x00\x1d-v\xcak\xf7\xccX\xe2^)]\x00'/35, 0x2) ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80047601, &(0x7f0000000000)) write(r1, &(0x7f0000002000)='/', 0x1) keyctl$assume_authority(0x10, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000000, 0x810, 0xffffffffffffffff, 0x0) r2 = gettid() r3 = syz_open_procfs(0x0, &(0x7f0000000500)='map_files\x00') fchdir(r3) mount(&(0x7f0000000000)=ANY=[], &(0x7f00000001c0)='.', 0x0, 0x5010, 0x0) tkill(r2, 0x35) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 04:36:45 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x366, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008108040f80ecdb4cb92e0a480e000d00000009000e00010040d5ae7d0200ff050005", 0x2e}], 0x1}, 0x80) socket$kcm(0x29, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x65580000, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008108040f80ecdb4cb92e0a480e000d000000e8bd6efb2503094c0e000100240248ff050005001201", 0x2e}], 0x1}, 0x0) sync_file_range(r0, 0x8, 0x60b5, 0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair(0x25, 0x0, 0x0, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) 04:36:45 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) [ 298.052619] nla_parse: 1 callbacks suppressed [ 298.052625] netlink: 14 bytes leftover after parsing attributes in process `syz-executor.5'. [ 298.069132] 9pnet: Insufficient options for proto=fd 04:36:45 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='wchan\x00') sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000100000000000240012800b00010062726964676500001400028005002b02000000000600060000000000"], 0x44}}, 0x0) 04:36:45 executing program 3 (fault-call:5 fault-nth:17): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 298.109773] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 298.180526] FAULT_INJECTION: forcing a failure. [ 298.180526] name failslab, interval 1, probability 0, space 0, times 0 [ 298.193879] CPU: 0 PID: 20967 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 298.201771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.211121] Call Trace: [ 298.213713] dump_stack+0x1b2/0x283 [ 298.217344] should_fail.cold+0x10a/0x154 [ 298.221496] should_failslab+0xd6/0x130 [ 298.225496] __kmalloc+0x2c1/0x400 04:36:46 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000000}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f0000000700)}, 0x4f}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240)='nl80211\x00') r4 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000100)=0x60, &(0x7f0000000180)=0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x508, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext, 0x10000, 0x0, 0x0, 0x1, 0x0, 0x73}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r4, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000140)={0xda620000, 0x1ff, 0x6}, 0x10) ioctl$sock_inet6_SIOCADDRT(r4, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local, 0x0, 0x0, 0xfffe}) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x0, 0x70bd2a, 0x0, {{}, {}, {0x14, 0x19, {0x8001, 0x15, 0x6, 0x3}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) 04:36:46 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x10001, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f00000000c0)={0x40000, 0x0, [0x1, 0x0, 0x3, 0x2, 0x114, 0x80, 0xfffffffffffff254, 0x200]}) fstat(r0, &(0x7f0000004140)) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) futimesat(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={{0x0, 0xea60}}) [ 298.229056] ? match_number+0x9d/0x200 [ 298.232948] match_number+0x9d/0x200 [ 298.236686] ? match_strdup+0xa0/0xa0 [ 298.240486] ? memcpy+0x35/0x50 [ 298.243767] parse_opts.part.0+0x1b5/0x2d0 [ 298.248003] ? p9_fd_show_options+0x190/0x190 [ 298.252503] ? fs_reclaim_release+0xd0/0x110 [ 298.256948] p9_fd_create+0x86/0x3b0 [ 298.260668] ? p9_fd_create_tcp+0x440/0x440 [ 298.264992] ? __raw_spin_lock_init+0x28/0x100 [ 298.269575] p9_client_create+0x5fd/0x12c0 [ 298.273812] ? p9_client_flush+0x4c0/0x4c0 [ 298.278050] ? __lockdep_init_map+0x100/0x560 [ 298.282549] ? __raw_spin_lock_init+0x28/0x100 [ 298.287135] v9fs_session_init+0x1c5/0x1540 [ 298.291465] ? pcpu_alloc+0xbe0/0xf50 [ 298.295296] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 298.300137] ? v9fs_show_options+0x6b0/0x6b0 [ 298.304547] ? v9fs_mount+0x54/0x860 [ 298.308259] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 298.313708] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 298.318729] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 298.323572] v9fs_mount+0x73/0x860 04:36:46 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) ioctl$LOOP_SET_DIRECT_IO(r3, 0x4c08, 0x4e6b) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r4, &(0x7f0000004140)) r5 = syz_mount_image$cramfs(&(0x7f0000000000)='cramfs\x00', &(0x7f0000000040)='./file0\x00', 0x3c, 0x2, &(0x7f00000001c0)=[{&(0x7f00000000c0)="2086df6110d36bea688b85c40d59a55772edf6a5c88fccec622135e105b87daa4d990265150d918a1dcb0fed439860617f8c121cbe801b01875cd86eab567f5f3e47cfeb8f5ee9e2aa23caeed15dd4df2bfcdee984a22f76399511ba01bc09", 0x5f}, {&(0x7f00000003c0)="bf0b74aac57e9563e9820db42e9dfc1bb3d27099dc829e8bd4a3aed451a524844cc0883f4cc9fbfdfe4c1dfda4412a52f45b194287efee782f3cd05688fd04ceeed3a29a610ded8462a4f04a3dad7f58ab6fda354c0d8acc7a108f1f99cc0abc8ec881085badcbdc12380d93a9b5c5bd0058030a580e6b1e7e95bc191bbfc6e9022d938132c8cd0c8bc208470cee54a4647905545c10fc02798aafc45c0bbe26c2abb0013ddb1473ab1077381625542ad0eb7434257c99326c00b7853cc9115dff26899c6ffcae5cb77612cfd7c27f5a2259317f6457", 0xd6, 0x7}], 0x40, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]) copy_file_range(r5, &(0x7f0000000280)=0x6, r2, &(0x7f00000002c0)=0x2, 0x9, 0x0) [ 298.327119] ? alloc_pages_current+0x15d/0x260 [ 298.331700] ? __lockdep_init_map+0x100/0x560 [ 298.336195] mount_fs+0x92/0x2a0 [ 298.339565] vfs_kern_mount.part.0+0x5b/0x470 [ 298.344065] do_mount+0xe53/0x2a00 [ 298.347616] ? copy_mount_string+0x40/0x40 [ 298.351848] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 298.356864] ? copy_mnt_ns+0xa30/0xa30 [ 298.360751] ? copy_mount_options+0x1fa/0x2f0 [ 298.365244] ? copy_mnt_ns+0xa30/0xa30 [ 298.369152] SyS_mount+0xa8/0x120 [ 298.372599] ? copy_mnt_ns+0xa30/0xa30 [ 298.376482] do_syscall_64+0x1d5/0x640 [ 298.380370] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 298.385553] RIP: 0033:0x45e0f9 [ 298.388733] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 298.396457] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 298.403746] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 298.411011] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 298.418293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000011 [ 298.425559] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:46 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f0000000000)={0x7fff, 0x8}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB="000000000000000024f512800b000100627269646f6500001400028005002b0000000000060006000000000014993fe2f6e32748176aa72b5aed65a0b73ac79dbd888a89033aedb455b672a7dc61fd3190c5f644a03f25d013aa977ae894ce673ff23da36b67e17d29a8b92a5aa4063574b7036f3052137aa57a6aece7266f7984da4f285be688160bc8b7a88fe0de42e480f91df7be27"], 0x44}}, 0x0) [ 298.767456] 9pnet: Insufficient options for proto=fd 04:36:46 executing program 3 (fault-call:5 fault-nth:18): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 298.787867] cramfs: wrong magic [ 298.878182] FAULT_INJECTION: forcing a failure. [ 298.878182] name failslab, interval 1, probability 0, space 0, times 0 [ 298.889578] CPU: 0 PID: 21002 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 298.897485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.906873] Call Trace: [ 298.909472] dump_stack+0x1b2/0x283 [ 298.913106] should_fail.cold+0x10a/0x154 [ 298.917261] should_failslab+0xd6/0x130 [ 298.921230] kmem_cache_alloc_trace+0x47/0x3d0 [ 298.925842] p9_client_prepare_req.part.0+0x4ea/0xb60 [ 298.931034] p9_client_rpc+0x170/0x1520 [ 298.935027] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 298.940037] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 298.945408] ? p9_pollwait+0x18e/0x1f0 [ 298.949286] ? p9_conn_create+0x4b0/0x4b0 [ 298.953423] ? pipe_poll+0x24f/0x2c0 [ 298.957143] ? p9_fd_poll+0x237/0x2e0 [ 298.960935] ? p9_conn_create+0x3aa/0x4b0 [ 298.965090] ? p9_fd_create+0x293/0x3b0 [ 298.969052] ? p9_fd_create_tcp+0x440/0x440 [ 298.974496] p9_client_create+0x92f/0x12c0 [ 298.978723] ? p9_client_flush+0x4c0/0x4c0 [ 298.982951] ? __lockdep_init_map+0x100/0x560 [ 298.987440] ? __raw_spin_lock_init+0x28/0x100 [ 298.992017] v9fs_session_init+0x1c5/0x1540 [ 298.996331] ? pcpu_alloc+0xbe0/0xf50 [ 299.000126] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 299.004959] ? v9fs_show_options+0x6b0/0x6b0 [ 299.009359] ? v9fs_mount+0x54/0x860 [ 299.013061] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 299.018499] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 299.023518] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 299.028361] v9fs_mount+0x73/0x860 [ 299.031894] ? alloc_pages_current+0x15d/0x260 [ 299.036467] ? __lockdep_init_map+0x100/0x560 [ 299.040950] mount_fs+0x92/0x2a0 [ 299.044318] vfs_kern_mount.part.0+0x5b/0x470 [ 299.048806] do_mount+0xe53/0x2a00 [ 299.052337] ? do_raw_spin_unlock+0x164/0x220 [ 299.056844] ? copy_mount_string+0x40/0x40 [ 299.061107] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 299.066113] ? copy_mnt_ns+0xa30/0xa30 [ 299.069994] ? copy_mount_options+0x1fa/0x2f0 [ 299.074478] ? copy_mnt_ns+0xa30/0xa30 [ 299.078356] SyS_mount+0xa8/0x120 [ 299.081814] ? copy_mnt_ns+0xa30/0xa30 [ 299.085694] do_syscall_64+0x1d5/0x640 [ 299.089582] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 299.094764] RIP: 0033:0x45e0f9 [ 299.097940] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 299.105636] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 299.112891] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 299.120178] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 299.127437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000012 [ 299.134694] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 299.141963] 9pnet: Couldn't grow tag array 04:36:47 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) 04:36:47 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) sendmsg$IPSET_CMD_GET_BYNAME(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f00000001c0)={0x4c, 0xe, 0x6, 0x201, 0x0, 0x0, {0xc, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4800}, 0x8080) 04:36:47 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="340000001600"/15, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b000100627269646765000004000280"], 0x34}, 0x1, 0x0, 0x0, 0xc010}, 0x0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000080)={'ip6erspan0\x00', 0x3}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x40040, 0x0) sendfile(r1, r1, 0x0, 0xffff) ioctl$TCFLSH(r1, 0x540b, 0x2) 04:36:47 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000000}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f0000000700)}, 0x4f}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240)='nl80211\x00') r4 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000100)=0x60, &(0x7f0000000180)=0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x508, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext, 0x10000, 0x0, 0x0, 0x1, 0x0, 0x73}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r4, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000140)={0xda620000, 0x1ff, 0x6}, 0x10) ioctl$sock_inet6_SIOCADDRT(r4, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local, 0x0, 0x0, 0xfffe}) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x0, 0x70bd2a, 0x0, {{}, {}, {0x14, 0x19, {0x8001, 0x15, 0x6, 0x3}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) 04:36:47 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) 04:36:47 executing program 3 (fault-call:5 fault-nth:19): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 299.193667] audit: type=1804 audit(1607488606.993:12): pid=20941 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir148805793/syzkaller.9ZEhd0/479/file0" dev="sda1" ino=16458 res=1 04:36:47 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vim2m\x00', 0x2, 0x0) [ 299.288376] FAULT_INJECTION: forcing a failure. [ 299.288376] name failslab, interval 1, probability 0, space 0, times 0 [ 299.321509] CPU: 0 PID: 21018 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 299.329465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.338812] Call Trace: [ 299.341447] dump_stack+0x1b2/0x283 [ 299.345084] should_fail.cold+0x10a/0x154 [ 299.349216] should_failslab+0xd6/0x130 [ 299.353172] kmem_cache_alloc_trace+0x29a/0x3d0 [ 299.357822] p9_fd_create+0x135/0x3b0 [ 299.361602] ? p9_fd_create_tcp+0x440/0x440 [ 299.365906] ? __raw_spin_lock_init+0x28/0x100 [ 299.370478] p9_client_create+0x5fd/0x12c0 [ 299.374725] ? p9_client_flush+0x4c0/0x4c0 [ 299.378965] ? __lockdep_init_map+0x100/0x560 [ 299.383462] ? __raw_spin_lock_init+0x28/0x100 [ 299.388074] v9fs_session_init+0x1c5/0x1540 [ 299.392411] ? pcpu_alloc+0xbe0/0xf50 [ 299.396214] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 299.401068] ? v9fs_show_options+0x6b0/0x6b0 [ 299.405459] ? v9fs_mount+0x54/0x860 [ 299.409170] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 299.414603] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 299.419601] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 299.424446] v9fs_mount+0x73/0x860 [ 299.427982] ? alloc_pages_current+0x15d/0x260 [ 299.432542] ? __lockdep_init_map+0x100/0x560 [ 299.437038] mount_fs+0x92/0x2a0 [ 299.440407] vfs_kern_mount.part.0+0x5b/0x470 [ 299.444885] do_mount+0xe53/0x2a00 [ 299.448409] ? copy_mount_string+0x40/0x40 [ 299.452623] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 299.457644] ? copy_mnt_ns+0xa30/0xa30 [ 299.461524] ? copy_mount_options+0x1fa/0x2f0 [ 299.465998] ? copy_mnt_ns+0xa30/0xa30 [ 299.469866] SyS_mount+0xa8/0x120 [ 299.473304] ? copy_mnt_ns+0xa30/0xa30 [ 299.477175] do_syscall_64+0x1d5/0x640 [ 299.481058] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 299.486261] RIP: 0033:0x45e0f9 [ 299.489448] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 299.497136] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 299.504385] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 299.511635] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 299.518896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013 [ 299.526195] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:47 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r2, r2, 0x0, 0xffff) getsockopt$bt_sco_SCO_CONNINFO(r2, 0x11, 0x2, &(0x7f0000000000)=""/7, &(0x7f0000000040)=0x7) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$netlink(0x10, 0x3, 0xb) sendmsg$GTP_CMD_GETPDP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x20}, 0x40010) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) fstat(r4, &(0x7f0000004140)) [ 299.803445] Bluetooth: hci1 command 0x0419 tx timeout 04:36:47 executing program 3 (fault-call:5 fault-nth:20): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 299.949728] FAULT_INJECTION: forcing a failure. [ 299.949728] name failslab, interval 1, probability 0, space 0, times 0 [ 299.979936] CPU: 1 PID: 21051 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 299.987893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.997245] Call Trace: [ 299.999836] dump_stack+0x1b2/0x283 [ 300.003470] should_fail.cold+0x10a/0x154 [ 300.007622] should_failslab+0xd6/0x130 [ 300.011601] kmem_cache_alloc_trace+0x29a/0x3d0 [ 300.016278] p9_fd_create+0x135/0x3b0 [ 300.020082] ? p9_fd_create_tcp+0x440/0x440 [ 300.024412] ? __raw_spin_lock_init+0x28/0x100 [ 300.028997] p9_client_create+0x5fd/0x12c0 [ 300.033238] ? p9_client_flush+0x4c0/0x4c0 [ 300.037473] ? __lockdep_init_map+0x100/0x560 [ 300.041971] ? __raw_spin_lock_init+0x28/0x100 [ 300.046557] v9fs_session_init+0x1c5/0x1540 [ 300.050881] ? pcpu_alloc+0xbe0/0xf50 [ 300.054685] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 300.059528] ? v9fs_show_options+0x6b0/0x6b0 [ 300.063935] ? v9fs_mount+0x54/0x860 [ 300.067646] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 300.073087] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 300.078095] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 300.082929] v9fs_mount+0x73/0x860 [ 300.086460] ? alloc_pages_current+0x15d/0x260 [ 300.091031] ? __lockdep_init_map+0x100/0x560 [ 300.095523] mount_fs+0x92/0x2a0 [ 300.098886] vfs_kern_mount.part.0+0x5b/0x470 [ 300.103374] do_mount+0xe53/0x2a00 [ 300.106908] ? retint_kernel+0x2d/0x2d [ 300.110787] ? copy_mount_string+0x40/0x40 [ 300.115031] ? copy_mount_options+0x185/0x2f0 [ 300.119516] ? copy_mount_options+0x197/0x2f0 [ 300.124018] ? copy_mount_options+0x1fa/0x2f0 [ 300.128499] ? copy_mnt_ns+0xa30/0xa30 [ 300.132375] SyS_mount+0xa8/0x120 [ 300.135816] ? copy_mnt_ns+0xa30/0xa30 [ 300.139691] do_syscall_64+0x1d5/0x640 [ 300.143574] entry_SYSCALL_64_after_hwframe+0x46/0xbb 04:36:47 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) fstat(r3, &(0x7f0000004140)) 04:36:48 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000000000)) 04:36:48 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) tee(r1, r0, 0x400, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 300.148752] RIP: 0033:0x45e0f9 [ 300.151928] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 300.159641] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 300.166897] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 300.174154] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 300.181410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 300.188686] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:48 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vim2m\x00', 0x2, 0x0) 04:36:48 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) 04:36:48 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000000}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f0000000700)}, 0x4f}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240)='nl80211\x00') r4 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000100)=0x60, &(0x7f0000000180)=0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x508, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext, 0x10000, 0x0, 0x0, 0x1, 0x0, 0x73}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r4, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000140)={0xda620000, 0x1ff, 0x6}, 0x10) ioctl$sock_inet6_SIOCADDRT(r4, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local, 0x0, 0x0, 0xfffe}) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x0, 0x70bd2a, 0x0, {{}, {}, {0x14, 0x19, {0x8001, 0x15, 0x6, 0x3}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) 04:36:48 executing program 4: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e24, 0x7, @remote, 0x8}}, 0x59d, 0x12}, &(0x7f0000000000)=0x90) r1 = openat(r0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x2, &(0x7f0000000200)=0x6, 0x4) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') ptrace$getsig(0x4202, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)) sendfile(r2, r2, 0x0, 0xffff) r3 = syz_open_dev$mouse(&(0x7f0000000240)='/dev/input/mouse#\x00', 0x1, 0x2100) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r4, r4, 0x0, 0xffff) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f0000000340)={0x30, 0x5, 0x0, {0x0, 0x6, 0x1896}}, 0x30) ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000280)={0x3000, 0x0, 0xffff, 0x80000000, 0x401}) write$RDMA_USER_CM_CMD_DESTROY_ID(r2, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000040)}}, 0x18) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r5) fstat(r5, &(0x7f0000000380)) 04:36:48 executing program 3 (fault-call:5 fault-nth:21): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:48 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002419f0a295d006e2a16500001400df7f05002b0000000039dc48ad000000000000000000"], 0x44}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r1, r1, 0x0, 0xffff) r2 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000000)=r2) [ 300.723509] FAULT_INJECTION: forcing a failure. [ 300.723509] name failslab, interval 1, probability 0, space 0, times 0 [ 300.741123] CPU: 0 PID: 21102 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 300.749039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.758387] Call Trace: [ 300.760979] dump_stack+0x1b2/0x283 [ 300.764615] should_fail.cold+0x10a/0x154 [ 300.768772] should_failslab+0xd6/0x130 04:36:48 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f, 0x0, @perf_config_ext={0x9, 0x8}, 0x64}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000001180)="0f01c20fffa5080000000f019c75940000008fe9e802b7000000000f01df0f21dbc4e2e53ae2f61366b8f3000f00d0f08311b5"}], 0x1, 0x60, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$CHAR_RAW_IOMIN(r5, 0x1278, &(0x7f00000010c0)) r6 = eventfd(0x12) ustat(0x4, &(0x7f0000001100)) ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000001140)={0x154, 0xa, &(0x7f00000011c0)}) dup2(r6, 0xffffffffffffffff) signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) sendmsg$OSF_MSG_ADD(0xffffffffffffffff, 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000000c0)={{r6}, 0x0, 0x0, @unused=[0x0, 0x0, 0x9a], @devid}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 300.772748] __kmalloc+0x2c1/0x400 [ 300.776290] ? p9_fcall_alloc+0x19/0x90 [ 300.780261] ? __lockdep_init_map+0x100/0x560 [ 300.784756] p9_fcall_alloc+0x19/0x90 [ 300.788564] p9_client_prepare_req.part.0+0x86c/0xb60 [ 300.793764] p9_client_rpc+0x170/0x1520 [ 300.797744] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 300.802763] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 300.808129] ? p9_pollwait+0x18e/0x1f0 [ 300.812047] ? p9_conn_create+0x4b0/0x4b0 [ 300.816198] ? pipe_poll+0x24f/0x2c0 [ 300.819915] ? p9_fd_poll+0x237/0x2e0 [ 300.823720] ? p9_conn_create+0x3aa/0x4b0 [ 300.827873] ? p9_fd_create+0x293/0x3b0 [ 300.831848] ? p9_fd_create_tcp+0x440/0x440 [ 300.836169] p9_client_create+0x92f/0x12c0 [ 300.840418] ? p9_client_flush+0x4c0/0x4c0 [ 300.844650] ? __lockdep_init_map+0x100/0x560 [ 300.849145] ? __raw_spin_lock_init+0x28/0x100 [ 300.853751] v9fs_session_init+0x1c5/0x1540 [ 300.858066] ? pcpu_alloc+0xbe0/0xf50 [ 300.861953] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 300.866792] ? v9fs_show_options+0x6b0/0x6b0 [ 300.871197] ? v9fs_mount+0x54/0x860 [ 300.874905] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 300.880353] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 300.885370] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 300.890217] v9fs_mount+0x73/0x860 [ 300.893784] ? alloc_pages_current+0x15d/0x260 [ 300.898363] ? __lockdep_init_map+0x100/0x560 [ 300.902852] mount_fs+0x92/0x2a0 [ 300.906241] vfs_kern_mount.part.0+0x5b/0x470 [ 300.910736] do_mount+0xe53/0x2a00 [ 300.914279] ? copy_mount_string+0x40/0x40 [ 300.918524] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 300.923537] ? copy_mnt_ns+0xa30/0xa30 [ 300.927423] ? copy_mount_options+0x1fa/0x2f0 [ 300.931911] ? copy_mnt_ns+0xa30/0xa30 [ 300.935793] SyS_mount+0xa8/0x120 [ 300.939261] ? copy_mnt_ns+0xa30/0xa30 [ 300.943144] do_syscall_64+0x1d5/0x640 [ 300.947033] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 300.952214] RIP: 0033:0x45e0f9 [ 300.955394] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 300.963114] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045e0f9 [ 300.970393] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 300.977672] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 300.984957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 300.992221] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 301.030135] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 301.035571] 9pnet: Couldn't grow tag array 04:36:48 executing program 3 (fault-call:5 fault-nth:22): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:48 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fchmodat(r2, &(0x7f00000000c0)='./file0\x00', 0x4) fstat(r0, &(0x7f0000000000)) 04:36:48 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 301.107427] FAULT_INJECTION: forcing a failure. [ 301.107427] name failslab, interval 1, probability 0, space 0, times 0 [ 301.128832] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 301.130310] CPU: 0 PID: 21122 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 301.145326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 301.154760] Call Trace: [ 301.157350] dump_stack+0x1b2/0x283 [ 301.160986] should_fail.cold+0x10a/0x154 [ 301.165141] should_failslab+0xd6/0x130 [ 301.169121] __kmalloc+0x2c1/0x400 [ 301.172662] ? p9_fcall_alloc+0x19/0x90 [ 301.176636] ? __lockdep_init_map+0x100/0x560 [ 301.181134] p9_fcall_alloc+0x19/0x90 [ 301.184961] p9_client_prepare_req.part.0+0x86c/0xb60 [ 301.190161] p9_client_rpc+0x170/0x1520 [ 301.194147] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 301.199192] ? p9_client_prepare_req.part.0+0xb60/0xb60 04:36:49 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) [ 301.204581] ? p9_pollwait+0x18e/0x1f0 [ 301.208466] ? p9_conn_create+0x4b0/0x4b0 [ 301.212611] ? pipe_poll+0x24f/0x2c0 [ 301.216330] ? p9_fd_poll+0x237/0x2e0 [ 301.220136] ? p9_conn_create+0x3aa/0x4b0 [ 301.224285] ? p9_fd_create+0x293/0x3b0 [ 301.228263] ? p9_fd_create_tcp+0x440/0x440 [ 301.232595] p9_client_create+0x92f/0x12c0 [ 301.236838] ? p9_client_flush+0x4c0/0x4c0 [ 301.241087] ? __lockdep_init_map+0x100/0x560 [ 301.245588] ? __raw_spin_lock_init+0x28/0x100 [ 301.250178] v9fs_session_init+0x1c5/0x1540 [ 301.254500] ? pcpu_alloc+0xbe0/0xf50 [ 301.258309] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 301.263183] ? v9fs_show_options+0x6b0/0x6b0 [ 301.267596] ? v9fs_mount+0x54/0x860 [ 301.271309] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 301.276761] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 301.281781] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 301.286626] v9fs_mount+0x73/0x860 [ 301.290167] ? alloc_pages_current+0x15d/0x260 [ 301.294780] ? __lockdep_init_map+0x100/0x560 [ 301.299277] mount_fs+0x92/0x2a0 [ 301.302649] vfs_kern_mount.part.0+0x5b/0x470 [ 301.307150] do_mount+0xe53/0x2a00 [ 301.310703] ? copy_mount_string+0x40/0x40 [ 301.314941] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 301.319965] ? copy_mnt_ns+0xa30/0xa30 [ 301.323860] ? copy_mount_options+0x1fa/0x2f0 [ 301.328357] ? copy_mnt_ns+0xa30/0xa30 [ 301.332245] SyS_mount+0xa8/0x120 [ 301.335695] ? copy_mnt_ns+0xa30/0xa30 [ 301.340540] do_syscall_64+0x1d5/0x640 [ 301.344435] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 301.349625] RIP: 0033:0x45e0f9 04:36:49 executing program 1: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0xffffffff, 0x6, &(0x7f0000000340)=[{&(0x7f00000005c0)="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", 0x1000, 0x777}, {&(0x7f00000015c0)="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", 0x1000, 0x3bb}, {&(0x7f0000000080)="f6c6a0a8dbed697814bffd007f3e93d95301afc6dfabe7499d70304f91c6edd9acd0270a589005b7086efdd37ca432509cb0bb6de5", 0x35, 0x40}, {&(0x7f00000002c0)="dcd8eeeee19168ad2929f4043ba02b9ab534dd69de24c0ed5278601f735b6f5cd32f4d10b8439a7e07882e11", 0x2c, 0x9}, {&(0x7f0000000140), 0x0, 0x31e90edf}, {&(0x7f0000000180)="a7c33595d18be9bae94e34a18dc55e6da3cfdb3488c67182b1b8c737a45dc3d8b1b48aaeb2b99beaec3142435fc80dbd581f79b0295d09e0968ec8606cb89d3cd591d41b83d22e8075eaeb861cceff262e05612865f6db49c70301a537e69dcbc8fb0afd054b99a1bba11072062367dd0c2fe8b90233a9ab224962c33734c60cdb9d83ec5ea4cafc148c1e41071b93d26f80ed7487064b3bd1d30faa2fbffd262fea24a05ba570d79fb1bcc7319f2ea37cbd04caf30874ad4047a0404bddb85176ba3ec3d974fd6e5dbce02044a0947524f70f797610470f1da2d9e188b5461594040669fb59858d7a80b7eb1b09bf9af2", 0xf1, 0x4fde}], 0x101401, &(0x7f0000000400)={[{@nospace_cache='nospace_cache'}, {@metadata_ratio={'metadata_ratio', 0x3d, 0x3}}, {@check_int_print_mask={'check_int_print_mask', 0x3d, 0x5}}, {@metadata_ratio={'metadata_ratio', 0x3d, 0x2}}, {@discard='discard'}], [{@smackfsdef={'smackfsdef', 0x3d, 'bridge\x00'}}, {@obj_type={'obj_type'}}]}) r1 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) fchownat(r0, &(0x7f0000000280)='./file0\x00', r2, 0xffffffffffffffff, 0x400) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_GET_CPUID2(r4, 0xc008ae91, &(0x7f0000002840)={0x8, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) r6 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x2043, 0x0) setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000002740)={{{@in=@multicast2, @in6=@private1, 0x4e20, 0x4, 0x4e24, 0x346, 0xa, 0xa0, 0x20, 0x2e, 0x0, r2}, {0x400, 0xf78, 0x80, 0x3, 0x630, 0x8001, 0x0, 0x8000}, {0x7, 0x9, 0xac52, 0x800}, 0xfff, 0x6e6bb7, 0x2, 0x1, 0x0, 0x1}, {{@in6=@mcast2, 0x4d4, 0x32}, 0xa, @in=@private=0xa010101, 0x0, 0x4, 0x1, 0x9, 0x5, 0x9c8, 0x8001}}, 0xe8) [ 301.352825] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 301.360545] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 301.367826] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 301.375085] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 301.382343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 301.389602] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:49 executing program 3 (fault-call:5 fault-nth:23): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:49 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000024000b0f00000000e4ff000000000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff000000000b00010064736d61726b00000c0002000600010020"], 0x3c}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$BTRFS_IOC_SEND(r6, 0x40489426, &(0x7f0000000480)={{r1}, 0x3, &(0x7f0000000440)=[0xfffffffffffffff7, 0x7fffffff, 0x80000000], 0x1, 0x7, [0xff, 0x2, 0x8000]}) r7 = add_key$fscrypt_v1(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000100)={0x0, "a9bfed7aeb5965ef00ce1b050924bc4c8b3c42d84242b77f4952576f2dc395a5248dd64a8cff8babb45bf9b27abd231478d90e5181858732e402fbddeced4034"}, 0x48, 0xfffffffffffffffe) keyctl$invalidate(0x15, r7) keyctl$instantiate_iov(0x14, 0x0, &(0x7f00000003c0)=[{&(0x7f00000002c0)="1b6daa8038b80f81ad98d4511ef602f8b71b4901f946aa938aa602d9f0572c5120433ce34e75ee0d29e215198ba146f506457edd1a707d0e904c488e92d214056caf5b4c8eecb02e557d7691077c8ffb1179d779", 0x54}, {&(0x7f0000000800)="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", 0x1000}, {&(0x7f0000000380)="d8528d6768fcb646e5601955e64b1ea3ea12fb4064e7da6e1c6f60fb483bd276c72d46d5566ce9fab00be5ab1d4e6bdb11ab", 0x32}], 0x3, r7) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x6}}, [@filter_kind_options=@f_rsvp={{0x9, 0x1, 'rsvp\x00'}, {0xc, 0x2, [@TCA_RSVP_DST={0x8, 0x2, @broadcast}]}}]}, 0x3c}}, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) r9 = socket(0x1, 0x803, 0x0) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14) sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=@newlink={0x20, 0x11, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r10}}, 0x20}, 0x1, 0x74}, 0x0) [ 301.417705] 9pnet: Couldn't grow tag array [ 301.465911] FAULT_INJECTION: forcing a failure. [ 301.465911] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 301.477742] CPU: 0 PID: 21152 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 301.485623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 301.495001] Call Trace: [ 301.497621] dump_stack+0x1b2/0x283 [ 301.501256] should_fail.cold+0x10a/0x154 [ 301.505408] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 301.510780] __alloc_pages_nodemask+0x22c/0x2720 [ 301.515531] ? depot_save_stack+0x10d/0x3e3 [ 301.519850] ? kasan_kmalloc+0xeb/0x160 [ 301.523816] ? kmem_cache_alloc_trace+0x131/0x3d0 [ 301.528649] ? p9_client_prepare_req.part.0+0x8ce/0xb60 [ 301.534000] ? p9_client_rpc+0x170/0x1520 [ 301.538139] ? p9_client_create+0x92f/0x12c0 [ 301.542539] ? v9fs_session_init+0x1c5/0x1540 [ 301.547022] ? v9fs_mount+0x73/0x860 [ 301.550728] ? mount_fs+0x92/0x2a0 [ 301.554257] ? vfs_kern_mount.part.0+0x5b/0x470 [ 301.558915] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 301.563747] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 301.569102] ? finish_task_switch+0x187/0x610 [ 301.573589] ? finish_task_switch+0x14d/0x610 [ 301.578071] ? switch_mm_irqs_off+0x601/0xeb0 [ 301.582555] ? __schedule+0x893/0x1de0 [ 301.586436] cache_grow_begin+0x8f/0x420 [ 301.590491] cache_alloc_refill+0x273/0x350 [ 301.594805] __kmalloc+0x378/0x400 [ 301.598335] ? p9_fcall_alloc+0x19/0x90 [ 301.602297] p9_fcall_alloc+0x19/0x90 [ 301.606088] p9_client_prepare_req.part.0+0x86c/0xb60 [ 301.611271] p9_client_rpc+0x170/0x1520 [ 301.615238] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 301.620590] ? p9_pollwait+0x18e/0x1f0 [ 301.624465] ? p9_conn_create+0x4b0/0x4b0 [ 301.628599] ? pipe_poll+0x24f/0x2c0 [ 301.632303] ? p9_fd_poll+0x237/0x2e0 [ 301.636096] ? p9_conn_create+0x3aa/0x4b0 [ 301.640249] ? p9_fd_create+0x293/0x3b0 [ 301.644233] ? p9_fd_create_tcp+0x440/0x440 [ 301.648549] p9_client_create+0x92f/0x12c0 [ 301.652793] ? p9_client_flush+0x4c0/0x4c0 [ 301.657024] ? __lockdep_init_map+0x100/0x560 [ 301.661514] ? __raw_spin_lock_init+0x28/0x100 [ 301.666088] v9fs_session_init+0x1c5/0x1540 [ 301.670404] ? __schedule+0x893/0x1de0 [ 301.674282] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 301.679141] ? v9fs_show_options+0x6b0/0x6b0 [ 301.683540] ? v9fs_mount+0x54/0x860 [ 301.687248] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 301.692688] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 301.697714] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 301.702559] v9fs_mount+0x73/0x860 [ 301.706086] ? alloc_pages_current+0x15d/0x260 [ 301.710671] ? __lockdep_init_map+0x100/0x560 [ 301.715172] mount_fs+0x92/0x2a0 [ 301.718548] vfs_kern_mount.part.0+0x5b/0x470 [ 301.723041] do_mount+0xe53/0x2a00 [ 301.726575] ? retint_kernel+0x2d/0x2d [ 301.730469] ? copy_mount_string+0x40/0x40 [ 301.734696] ? copy_mount_options+0x150/0x2f0 [ 301.739180] ? copy_mount_options+0x157/0x2f0 [ 301.743685] ? copy_mount_options+0x1fa/0x2f0 [ 301.748170] ? copy_mnt_ns+0xa30/0xa30 [ 301.752052] SyS_mount+0xa8/0x120 [ 301.755511] ? copy_mnt_ns+0xa30/0xa30 [ 301.759391] do_syscall_64+0x1d5/0x640 [ 301.763294] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 301.768472] RIP: 0033:0x45e0f9 [ 301.771648] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 301.779344] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 301.786601] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 301.793857] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 301.801115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 301.808388] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:49 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:49 executing program 3 (fault-call:5 fault-nth:24): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:49 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="44dacf289a76c49400000010001fff0000000000fdd4e5c49cc2a6983ad2e24ef48f07ecb0c2e1841d3ed4dcac99820088e0c576b8038dde252bf42ab0208d34e1868102060000a86e87775d9ee4444c22407b25dcb0e4f567159c28ba4b3d49e44552f60547b9b6de5ce44d69bb39994bda4d7b18cbf1a8d35a9535", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) [ 302.065438] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 04:36:49 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff00ed00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$NFT_MSG_GETTABLE(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, 0x1, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8811}, 0x4000040) accept(r0, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, &(0x7f0000000080)=0x80) [ 302.130170] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 302.165815] FAULT_INJECTION: forcing a failure. [ 302.165815] name failslab, interval 1, probability 0, space 0, times 0 [ 302.184496] CPU: 0 PID: 21186 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 302.192392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.201744] Call Trace: [ 302.204338] dump_stack+0x1b2/0x283 [ 302.207972] should_fail.cold+0x10a/0x154 [ 302.212136] should_failslab+0xd6/0x130 [ 302.216114] __kmalloc+0x2c1/0x400 [ 302.219684] ? p9_fcall_alloc+0x19/0x90 [ 302.223675] p9_fcall_alloc+0x19/0x90 [ 302.227481] p9_client_prepare_req.part.0+0x7f8/0xb60 [ 302.232702] p9_client_rpc+0x170/0x1520 [ 302.236684] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 302.241703] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 302.247068] ? p9_pollwait+0x18e/0x1f0 [ 302.250958] ? p9_conn_create+0x4b0/0x4b0 [ 302.255124] ? pipe_poll+0x24f/0x2c0 [ 302.258862] ? p9_fd_poll+0x237/0x2e0 [ 302.262664] ? p9_conn_create+0x3aa/0x4b0 [ 302.266812] ? p9_fd_create+0x293/0x3b0 [ 302.270784] ? p9_fd_create_tcp+0x440/0x440 [ 302.275138] p9_client_create+0x92f/0x12c0 [ 302.279370] ? p9_client_flush+0x4c0/0x4c0 [ 302.283597] ? __lockdep_init_map+0x100/0x560 [ 302.288082] ? __raw_spin_lock_init+0x28/0x100 [ 302.292659] v9fs_session_init+0x1c5/0x1540 [ 302.296973] ? pcpu_alloc+0xbe0/0xf50 [ 302.300768] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 302.305602] ? v9fs_show_options+0x6b0/0x6b0 [ 302.310003] ? v9fs_mount+0x54/0x860 [ 302.313726] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 302.319166] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 302.324173] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 302.329014] v9fs_mount+0x73/0x860 [ 302.332544] ? alloc_pages_current+0x15d/0x260 [ 302.337115] ? __lockdep_init_map+0x100/0x560 [ 302.341602] mount_fs+0x92/0x2a0 [ 302.344981] vfs_kern_mount.part.0+0x5b/0x470 [ 302.349468] do_mount+0xe53/0x2a00 [ 302.353001] ? retint_kernel+0x2d/0x2d [ 302.356893] ? copy_mount_string+0x40/0x40 [ 302.361119] ? copy_mount_options+0x185/0x2f0 [ 302.365605] ? copy_mount_options+0x197/0x2f0 [ 302.370091] ? copy_mount_options+0x1fa/0x2f0 [ 302.374575] ? copy_mnt_ns+0xa30/0xa30 [ 302.378453] SyS_mount+0xa8/0x120 [ 302.381910] ? copy_mnt_ns+0xa30/0xa30 [ 302.385786] do_syscall_64+0x1d5/0x640 [ 302.389683] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 302.394861] RIP: 0033:0x45e0f9 [ 302.398036] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 302.405737] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 302.412991] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 302.420248] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 302.427532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000018 [ 302.434816] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 302.453762] 9pnet: Couldn't grow tag array 04:36:50 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:50 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:50 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000000000)) 04:36:50 executing program 3 (fault-call:5 fault-nth:25): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:50 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r3}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000100)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team0\x00', 0x0}) ioctl$RTC_ALM_READ(0xffffffffffffffff, 0x80247008, &(0x7f0000000040)) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x88, 0x0, 0x104, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x4}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x88}}, 0x40001) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000fff000/0x1000)=nil) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$RTC_EPOCH_SET(r7, 0x4008700e, 0x2) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff0000000000f0ffffff000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) [ 302.767327] FAULT_INJECTION: forcing a failure. [ 302.767327] name failslab, interval 1, probability 0, space 0, times 0 [ 302.773643] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 302.784362] CPU: 1 PID: 21227 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 302.794970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.804321] Call Trace: [ 302.806909] dump_stack+0x1b2/0x283 [ 302.810540] should_fail.cold+0x10a/0x154 [ 302.814694] should_failslab+0xd6/0x130 [ 302.818664] __kmalloc+0x2c1/0x400 [ 302.822187] ? p9pdu_readf+0x345/0x1970 [ 302.826155] p9pdu_readf+0x345/0x1970 [ 302.830000] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 302.835367] ? p9pdu_writef+0xd0/0xd0 [ 302.839173] ? p9_fd_poll+0x237/0x2e0 [ 302.842976] ? p9_fd_create+0x293/0x3b0 [ 302.846951] ? p9_fd_create_tcp+0x440/0x440 [ 302.851276] p9_client_create+0x9b2/0x12c0 [ 302.855506] ? p9_client_flush+0x4c0/0x4c0 [ 302.859778] ? __lockdep_init_map+0x100/0x560 [ 302.864276] ? __raw_spin_lock_init+0x28/0x100 [ 302.868850] v9fs_session_init+0x1c5/0x1540 [ 302.873165] ? pcpu_alloc+0xbe0/0xf50 [ 302.876975] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 302.881810] ? v9fs_show_options+0x6b0/0x6b0 [ 302.886213] ? v9fs_mount+0x54/0x860 [ 302.889922] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 302.895365] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 302.900397] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 302.905232] v9fs_mount+0x73/0x860 [ 302.908773] ? alloc_pages_current+0x15d/0x260 [ 302.913347] ? __lockdep_init_map+0x100/0x560 [ 302.917834] mount_fs+0x92/0x2a0 [ 302.921200] vfs_kern_mount.part.0+0x5b/0x470 [ 302.925693] do_mount+0xe53/0x2a00 [ 302.929227] ? copy_mount_string+0x40/0x40 [ 302.933466] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 302.938464] ? copy_mnt_ns+0xa30/0xa30 [ 302.942332] ? copy_mount_options+0x1fa/0x2f0 [ 302.946814] ? copy_mnt_ns+0xa30/0xa30 [ 302.950721] SyS_mount+0xa8/0x120 [ 302.954205] ? copy_mnt_ns+0xa30/0xa30 [ 302.958104] do_syscall_64+0x1d5/0x640 [ 302.962001] entry_SYSCALL_64_after_hwframe+0x46/0xbb 04:36:50 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 302.967184] RIP: 0033:0x45e0f9 [ 302.970363] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 302.978050] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 302.985334] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 302.992596] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 302.999873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019 [ 303.007129] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:50 executing program 3 (fault-call:5 fault-nth:26): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:50 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000000)=0x401) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r4, &(0x7f0000004140)) [ 303.249117] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 303.288678] FAULT_INJECTION: forcing a failure. 04:36:51 executing program 1: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x81, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x80100, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000080)=0x0) perf_event_open(0x0, r2, 0x0, r1, 0x1) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 303.288678] name failslab, interval 1, probability 0, space 0, times 0 [ 303.309579] CPU: 0 PID: 21252 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 303.317486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.326838] Call Trace: [ 303.329426] dump_stack+0x1b2/0x283 [ 303.333061] should_fail.cold+0x10a/0x154 [ 303.337216] should_failslab+0xd6/0x130 [ 303.341195] __kmalloc_track_caller+0x2bc/0x400 [ 303.345868] ? v9fs_session_init+0x387/0x1540 [ 303.350371] kstrdup+0x36/0x70 [ 303.353577] v9fs_session_init+0x387/0x1540 [ 303.357911] ? v9fs_show_options+0x6b0/0x6b0 [ 303.362326] ? v9fs_mount+0x54/0x860 [ 303.366041] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 303.371498] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 303.376513] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 303.381337] v9fs_mount+0x73/0x860 [ 303.384868] ? alloc_pages_current+0x15d/0x260 [ 303.389440] ? __lockdep_init_map+0x100/0x560 [ 303.393917] mount_fs+0x92/0x2a0 [ 303.397275] vfs_kern_mount.part.0+0x5b/0x470 [ 303.401797] do_mount+0xe53/0x2a00 [ 303.405322] ? do_raw_spin_unlock+0x164/0x220 [ 303.409800] ? copy_mount_string+0x40/0x40 [ 303.414016] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 303.419079] ? copy_mnt_ns+0xa30/0xa30 [ 303.422958] ? copy_mount_options+0x1fa/0x2f0 [ 303.427473] ? copy_mnt_ns+0xa30/0xa30 [ 303.431370] SyS_mount+0xa8/0x120 [ 303.434815] ? copy_mnt_ns+0xa30/0xa30 [ 303.438684] do_syscall_64+0x1d5/0x640 [ 303.442576] entry_SYSCALL_64_after_hwframe+0x46/0xbb 04:36:51 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$IMCLEAR_L2(r1, 0x80044946, &(0x7f0000000140)=0xff) r2 = perf_event_open(0x0, 0x0, 0x4, r1, 0x1) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e23, 0x1, @private1, 0x9}}, 0x1, 0x7ff, 0x5, 0xff, 0xfff}, &(0x7f0000000040)=0x98) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000000)={r3, 0x9a1}, &(0x7f00000002c0)=0x8) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x80400, 0x0) fstat(r2, &(0x7f00000000c0)) [ 303.447752] RIP: 0033:0x45e0f9 [ 303.450927] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 303.458660] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 303.465909] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 303.473158] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 303.480412] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001a [ 303.487672] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:51 executing program 2: r0 = socket(0x10, 0x803, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r3}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000100)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team0\x00', 0x0}) ioctl$RTC_ALM_READ(0xffffffffffffffff, 0x80247008, &(0x7f0000000040)) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x88, 0x0, 0x104, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x4}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x88}}, 0x40001) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000fff000/0x1000)=nil) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$RTC_EPOCH_SET(r7, 0x4008700e, 0x2) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4400000010001fff0000000000f0ffffff000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) 04:36:51 executing program 3 (fault-call:5 fault-nth:27): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:51 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:51 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000000)={0x9, 0xff, 0x9, 0x9d2, 0xfe}) [ 303.779987] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 303.796387] FAULT_INJECTION: forcing a failure. [ 303.796387] name failslab, interval 1, probability 0, space 0, times 0 [ 303.812399] CPU: 0 PID: 21285 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 303.820297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.829680] Call Trace: [ 303.832270] dump_stack+0x1b2/0x283 [ 303.835906] should_fail.cold+0x10a/0x154 [ 303.840064] should_failslab+0xd6/0x130 [ 303.844052] __kmalloc+0x2c1/0x400 [ 303.847597] ? p9pdu_readf+0x345/0x1970 [ 303.851573] p9pdu_readf+0x345/0x1970 [ 303.855374] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 303.860745] ? p9pdu_writef+0xd0/0xd0 [ 303.864545] ? p9_fd_poll+0x237/0x2e0 [ 303.868354] ? p9_fd_create+0x293/0x3b0 [ 303.872329] ? p9_fd_create_tcp+0x440/0x440 [ 303.876657] p9_client_create+0x9b2/0x12c0 [ 303.880901] ? p9_client_flush+0x4c0/0x4c0 [ 303.885142] ? __lockdep_init_map+0x100/0x560 [ 303.889649] ? __raw_spin_lock_init+0x28/0x100 [ 303.894241] v9fs_session_init+0x1c5/0x1540 [ 303.898546] ? pcpu_alloc+0xbe0/0xf50 [ 303.902340] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 303.907189] ? v9fs_show_options+0x6b0/0x6b0 [ 303.911621] ? v9fs_mount+0x54/0x860 [ 303.915340] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 303.920792] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 303.925810] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 303.930653] v9fs_mount+0x73/0x860 [ 303.934220] ? alloc_pages_current+0x15d/0x260 [ 303.938801] ? __lockdep_init_map+0x100/0x560 [ 303.943285] mount_fs+0x92/0x2a0 [ 303.946643] vfs_kern_mount.part.0+0x5b/0x470 [ 303.951120] do_mount+0xe53/0x2a00 [ 303.954643] ? do_raw_spin_unlock+0x164/0x220 [ 303.959140] ? copy_mount_string+0x40/0x40 [ 303.963363] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 303.968389] ? copy_mnt_ns+0xa30/0xa30 [ 303.972256] ? copy_mount_options+0x1fa/0x2f0 [ 303.976739] ? copy_mnt_ns+0xa30/0xa30 [ 303.980619] SyS_mount+0xa8/0x120 [ 303.984062] ? copy_mnt_ns+0xa30/0xa30 [ 303.987932] do_syscall_64+0x1d5/0x640 [ 303.991806] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 303.997018] RIP: 0033:0x45e0f9 [ 304.000232] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 304.007925] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 304.015187] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 304.022436] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 04:36:51 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 304.029696] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001b [ 304.036962] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:51 executing program 3 (fault-call:5 fault-nth:28): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 304.146107] FAULT_INJECTION: forcing a failure. [ 304.146107] name failslab, interval 1, probability 0, space 0, times 0 [ 304.157515] CPU: 0 PID: 21313 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 304.165434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 304.174819] Call Trace: [ 304.177408] dump_stack+0x1b2/0x283 [ 304.181045] should_fail.cold+0x10a/0x154 [ 304.185197] should_failslab+0xd6/0x130 [ 304.189179] kmem_cache_alloc+0x40/0x3c0 [ 304.193247] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 304.198875] radix_tree_extend+0x158/0x3e0 [ 304.203117] idr_get_free_cmn+0x650/0x8d0 [ 304.207275] idr_alloc_cmn+0xe8/0x1e0 [ 304.211081] ? __fprop_inc_percpu_max+0x1d0/0x1d0 [ 304.215923] ? lock_acquire+0x170/0x3f0 [ 304.219905] p9_idpool_get+0x80/0xf0 [ 304.223624] ? p9_idpool_destroy+0x20/0x20 [ 304.227857] ? __lock_acquire+0x5fc/0x3f20 [ 304.232093] p9_client_prepare_req.part.0+0x65/0xb60 [ 304.237198] ? trace_hardirqs_on+0x10/0x10 [ 304.241450] ? idr_get_free_cmn+0x562/0x8d0 [ 304.245807] p9_client_rpc+0x170/0x1520 [ 304.249807] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 304.255179] ? lock_acquire+0x170/0x3f0 [ 304.259154] ? lock_downgrade+0x740/0x740 [ 304.263309] ? lock_acquire+0x170/0x3f0 [ 304.267291] ? lock_downgrade+0x740/0x740 [ 304.271443] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 304.276561] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 304.281585] p9_client_attach+0x137/0x750 [ 304.285760] ? p9_client_zc_rpc.constprop.0+0x1360/0x1360 [ 304.291381] ? v9fs_session_init+0xad1/0x1540 [ 304.295877] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 304.300896] v9fs_session_init+0xc03/0x1540 [ 304.305226] ? v9fs_show_options+0x6b0/0x6b0 [ 304.309637] ? v9fs_mount+0x54/0x860 [ 304.313352] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 304.318801] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 304.323819] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 304.328663] v9fs_mount+0x73/0x860 [ 304.332203] ? alloc_pages_current+0x15d/0x260 [ 304.336783] ? __lockdep_init_map+0x100/0x560 [ 304.341280] mount_fs+0x92/0x2a0 [ 304.344651] vfs_kern_mount.part.0+0x5b/0x470 [ 304.349146] do_mount+0xe53/0x2a00 [ 304.352690] ? copy_mount_string+0x40/0x40 [ 304.356925] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 304.361939] ? copy_mnt_ns+0xa30/0xa30 [ 304.365828] ? copy_mount_options+0x1fa/0x2f0 [ 304.370323] ? copy_mnt_ns+0xa30/0xa30 [ 304.374216] SyS_mount+0xa8/0x120 [ 304.377668] ? copy_mnt_ns+0xa30/0xa30 [ 304.381561] do_syscall_64+0x1d5/0x640 [ 304.385458] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 304.390643] RIP: 0033:0x45e0f9 04:36:52 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @wireguard={{0x0, 0x1, 'wireguard\x00'}}}]}, 0xfffffffffffffce9}}, 0x0) [ 304.393831] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 304.401546] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 304.408820] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 304.416117] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 304.423381] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001c [ 304.430651] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:52 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:52 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:52 executing program 1: getgid() r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r0, r0, 0x0, 0xffff) bind$unix(r0, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e21}, 0x6e) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000080)}, {&(0x7f00000005c0)="c06b91c061e8d918e44c84e183df174f87e33e58ecba683c2cfc4190f73119755f9f5c5a158f4d5ff90a3b236fa74a13d070b1a511c38bcdf210d75d02052d007155beedb79496f97bbc656f2ccf855d3feefa3a1a4f0a6f660a28c7e933d452c8c294677404bd9f050cc764667bd09e8556419bff35ef633715b2a741301715fcc549708367c470a481f37b8ab53417a34c8cfbcf680d231f8a743e4deb5f1456c9e589f72a334d1ee049bb68b3b2bf2f4ef8145ce092c61cfd1340779c8a5f8fd2d6e7b4301f6cb7a2b9c94aad54cc4037716db098389a83d0ec34f56b80a7d700b5b87fb6d02c0ee4d27829e64b5d1e22b36decec46e37e71bde87166c36dc988f3b91535492b2e00f189e037288f46afe67b0b765a1923ec9da7d1b047b0fa6326f0becc03f7f83bab4978e9b9a2b63d9ef67218346b4175e70793532ee7faad1e3877b2fd768613dc5fd69c784faf142563a256bb641b5fe7b53e58158e5a78bf13e852d334eb2a899720f9229e3687de812cb5ee3cf385aee0440dffcb9386bbb3eeec6f238cce40ad57f980aeba50cd93028903cb6ef3e8695ccfa974874391428e26bc6e2ba851c1bcd99549bd193dc5d0968c63ebb67521fcab223cc4176240fa40c90750d7211f77546b43aab20cff90a027d78521c0af854f39556fc5715197c26d7cf1e09a895c9485114a83439f86f90eb562285b7b2345592e30b3cb4a4cdd94ae1b36bafce9e4bd1a8e3c18b6077972a03bf4da6be23478c8a51419e68c0b358a7f38a807961e01522e7d02877debe846f4f10280fefae1e043a7894b5fd619f7449b0912dae50a2342826ef98ce4f66ad77c008a5b5c0738ba40d4864b7b6f9fb19f406a9455a89d7298d0accd508eff312dbb81c9396f813d92e2f4117914e8462ea91e878f20cf3c452ccd777aba6234632b43b384f9f204793d842799837e88d3631539e22de862817dac9299962379536f3bf4912c5e0c5180b1c98e35916fb21bdc9ccc49a89205b36275e9a3011d027f624f8f6a6809f42390665411cc58799d4a65ba66dda2fcc140baa5e58d06651fe875bca8dcdb300d3acab9472c95ace3c32ed605897d29c7282bdea3b0ab2f77319973444cec6524cce626e62a43f4bd25193701b8ff1781ca7fc5a6b85b6c6d9d7317c5d852e336813e4e18f62bc6692c6749580003f7157538a6ba976902847b789d52d4ac363b842fd510256ac906e1c184eb4de8a0bbe0fca694928c4e46111bdb06a30098898f79d048863bdd76336a82db25bfdb88540d45e5565e2d363c72b6761b7c5b7da37f74f0407511c202e02bd4a90629dcdfdbe3fe9fdd6f88a16d4f708760229465fe65cd814d02ea9035162f62e6ebd3ac66b7ca29171e925fe99c97dd2f4db9a24ee40d2fcf5db0d75cd03d25b8d688261a69207fc041e2fa190e2eed20333f4f66771311355826dcc20b0565f618f5ded1571c32e30bcedf6f5112c9a0df69c168f5e5f488cc4eee8604b7eefff964b46d0efd6b4b03a44374528c717e7168188cec429799f5f6c931f929105c9583bc7a4c037b1e86428c71c07888b3ce426153cc54d5ce23ff6d5f35b7e110c4ec43fea1764b194534e9163a4c9162018748eb313114cb3456dd301c2e35210320067b61173c783d5d742d4c621fcc4827e82b263c2af1674010217ddab89deb540a8875dfc8bd769b1e5ee7648ee9dab0285a4a83af3e1dda1cf716ece22031ce62b68d65ffae0884b4caa4986df5c8e0e4267ba01057c03c1aee0a6cd3225c1a301c09464193faa1635b56c2429ef65bb0bf9de8a85223561cdc46f6916f9ddfd1e8fc9a8d64a5931a6def6a12b776c9be6c06e98ce4fee86babb9faa4cf5441deab0cf602f7082f9d7ef06dc0e32289cb097eda56e4e94e09fddb2f2e6d3fb123be717a49fdb9de6c85dad504406ad04e75c1799928024a70637649f5b17af66d3ff67d0005455598e1a382a4463591d369e4cbb93fd66a4d2017f34ca8e3cb060d91ea8c8138d2c9f5f5f5801857845e5593574203e16ac4bd864c6516e2be5f8fe5bea62c76e2b9ad745186efd96f83df989a4991c3585da249354c2fa5baadcfefdd0ffe852ff5f8fdb9ed7ba9c04733fe14a0dc253cef36a5c957497e1ded290bd1fe3e8efdaed06426e92ea00099a50c4abc5255fd818f2fffc86b7bd63793be3cc518dac4c46b4dce56b30403de36b67ee8904f35c9319d5150fe8a233076363000aa775dd207439629f189f790c3b83cc560a7df8b6ebb1625976b48a33529fe9a97c7e368172bc94f62ad8f189bd182b0a12495a0778b40cb1c3548a1a592f45ca4f6e1b9c27540ead51b3c5f6225eb05cc5334db9d9892819dabeaffe1675017bde41adea0ac8871bd11fc57f350298482770204c21e0552159c13feab590f76c8456edb85350e00345844112ce3bb8cc92be342ef6556624bdb1c6e2456e3b48fc6ac6e98efda974db6eda6df0004a84455635f122632daf09bb03ba94a3a8cde39996a3b98c5969f706748146635c3657f9e1f2caa1dc4d482aa880f84d40732ee745b69f3bee9a31ca43181176e7be3f2f7bbda5730ee878266b96b9bb62df11403ff6dc90a4719de6f4aab164687c1e7914cdd7316b9860cb9139909facfc0020b3be130fdb51cf31b08411dd250bdeee4c0af0ebd38ed417e7715355ee755353f038fe19ef742e6f4b4a88e1ed85b8d618d72bc19103f17fae76c5928e20dfcf1b2cc0a5976a32776f37dbcbe35000bed17b9cfdbf6b06f35bac96e99273d60e387de982345bce6eb88c025f2377812b6d151ce2bc07b2bc68407a9e3c0d11fc3c4e6710a9c97dcaf8652f00f238bf914cd858b3b837a19bdfb38c98c85e1161f595508a64b3174fa05cf018c3d6e48fd57f088fedc785dd0f62ed20c623948384c937d310c9d44068a20aace66cb8a4c17a59e40ee8e5dc973205e266d0113e8efb99445ac9748c999b8803c92522e0339a5362053c637cc99567d148516be9661b0035c455986a65e20e3c64c25bd839a6be0f96930f22aafc67ee2ea2b82b24f0d7d64703cf01fb52e941eee368bfe70a0e1329c8265166bead88fc94fb95f68d109e60b9936a7bda0a81e898aed875f6de22ff1e1eccaab1d7c5656fce3740543821f3da33f87d08c4c1e3b4bd2005b131e64407b0487911ab481972e5acb784792b901dcb78a28a9f3afb01305fa615d78f2a84781db90eea207cc07a5d8b47a0efcf8947670b14b614e0efce31be2775b5abce84473a65fdf775482dd23838dff883234bd6efddae95ed68e1d8a27b2eadf7de8bab22be0045e5d2c78f9e50680358ea47c03a87424076bc26472fa16ec6e3547488473e4f20c1acceb983ed26bcdc0c42e80e0ff8b407a04b5dec20ccec831c8030eb5e2f4ebf83b9919ec8e29ca9c85d523acc635f9c6dd223e8da73e6cecf2a3aa8b51e4c10f023a8b6c3aab294c7bf2b0c281316050b1e1053cdce7c26c18524a41c79a78df8b952869906b974be4fdf40cc9efcc1444e1a3231300bb0c7f21b79d05eb3373708ad58f3cb116a6266fb8301f398ddd248fe83e3561a2f918d69ff682d2d5bdac04b7c66bb6ee96cfbd75594dadd707d8f5bd92845504ad67c931391fe4898c6ee06bf97a9ba116a3d3cd34cb5217f06739ae7552b8bf045dfa4176a7bda92ff552e27099bd8677599741051bf028ea5640457f704203afa762773c7200a9e882e1bdc802bd37a0a9424d5474702f7a62ca4289c7d047461d9424aeb20cee7ac23d0272403ddb6575ce8e2f60b05ab68388b1be8bce1758fa4e49430beda2fbd9c512f721ecea0335bc3d620b8d77133d067430a25afeef83478b063f96b6760f4742b63f382d1bf2beb16a258de69d9d0f30934a89d4c83e0fadbb8aacdaf797f631b1a17871f8fd9fd7e63124da6aff6ffb76716f4d990c3ddba308af02dd9683f8b9481b6c3c30c0933f9fa05b5faa346425a99ba7d0839a6992d5a303d4eb4cfb0115a393a8edef99bd863e1fd45f6f3b7e18dfdb1c1b2a65e8e84de9454b33b1f6070bb99bbbe823eb69566ebd35f0b33fe98c65cdf935282fa723bc308f2ff5c08d6d3b98261714c39dc00fa6cb9dc335235d7a20e51de8ad33ebc5b257864dd0884f037b038c92ff9710e37c984c65b45c1fbac32028f96e33bf0d872f7d6db83fc05cbcd4fef6bd681258645f4cbf28e49022324bb92f215518a843ffd644469b6f1ac21d03278b918011bb2bed0a4e850769f51f0174935e10862237b6fcbfbd14255a9d61bb73f08472b719d584d8f00d65649ca72a28cbf334dca48adb35219abbc98bbcff5dd46800b3be9bc0d4a10a88848e7a025bd91880e7f4d39df49040e78cce77a73382a2b847b68e700e02d0b012caa48d9fa8b9b2905f35ff772f2e85018cd45a8421762a0ed53371e657aa05d2725bdfa6bd3e141ac2edb71ef6d823358b6e8f75dc7f2b95254dc17915921aa362575134a8274c7d8636963ed0c5741df4b251b4ff4adc2ceb06fc9f8848546076440239bd4140d9ce7abdfe72e297145b612d155e5ba964c875fcddfa4270031f4c3a68be12fada461d14c2e61c30cc75990da39285920b0d425f0b17e2b5385742b1d99780fbd3f92d604a8c606ddfc3ae30d444b9c709aae975878dd56d20a8e7a4c660937f4b7c2ccda5c5da109a20d90a36b5420671e318bb7e90208a3e1016c23ff38bdf0ffb0152000dce267b4340e427e8c0b61df62567e87d6508259b7b3331df5c9a4f3ee740118773c9adb1a18bbec38223b1005aab70e77dc8923e677763342453c092cdecba02c3e63593059a7e47199ebf4e261260b99ea9a6d0f5016519df5416e2214ed61da93a0893fc15d772c7fbacedc1b5af1dace18f48599b3a01e98f275f9dfc04ab42e30f499a2f6c902bff76c981b9a68bd7b0904a8491d5381b8b3993bd358a4b36db971b340fd829cdb8c6770a533820613c15e95d46418f5737ea915a12e75b1a5eb9c4e94149ea7afc93205ee2bc6a47238e07bc1c64945241f78617a1b447ea92411e9fa40dd9b9f7df983c55b235e80d5c544ffb5f4e5d850648275f56eeaae3a74237a154bf04460afd0550d70877c3467cb7d343376ee3eed4f2e425fca3bfa68657ef24b65114b425c2c0301eecd76555dbc956b2f85fc83bdc90cd0ba246534f3ec44bcb34d8115c52a28dc58b4875af95607496c7009392ec1aa3a0a02a771e77288407d2270aa5532f50a7cdbb05ad209bbd9124585be1ec39e4dea3ae6e64a3debcb02cf8655bd18454aeb015566a2840edaba446c16380a0b07eae0d3cffd9fa6e5463b1b18755374b1c66d93def6d68b7ff764b3ffd0e4824fd947e31c83a12458c6c8423f18efa9a2faf7bd5fdc723fe8b2b54cb0ddd5d549f015c7ff035d27bc03eb6096c83f59cf7b7eeb28e5808621fd4943dfdacff3bce66b482f662f38ee4e1699348a8337639a4e33beaf41139d5bbd83f385e50dc37765786f4ad8c18fdff788dd7497972fb69c3688d2b1e50b7369d90e0f368850b2f86f83f5f127f98b86a42e1f65a20ed95e15669117db8d6aa44d412af53b05ceb068cb594bc49354de4f7b8f9d49709a9c5c6f351a908e1a12165f1e564b7c4707b6ca638df5f40b5d659b68c5d2062a636edd6db0612e103ed8a33478b871895e6a85c05a78706496395e776e1594e2754dd32003f134da97a94d2d52c55f4576e6d390445db7ffb223801b3bd66d0df24c78a6474132f1c93e3c1ee92a5dd13bfc4", 0x1000}, {&(0x7f0000000100)="b3298ba21d4dc784e82c4f91a603810a0a964c784ac7a10d40d2d24e09e69d313230d89b0b4850e51f9c0a7b9de03ca383e51ccc", 0x34}, {&(0x7f0000000140)="8f8f91985da8242b3efcb3d24ef89d1a1aba245b045f431112216a3ef6ffa578fdc15c8dabe1083238f709af1636cd35a59d6d198cda483abf60dd1ebeb26a414d49cbd03d238e0b663dbd1cb542d962865b281f32834389d7f4", 0x5a}, {&(0x7f00000001c0)="b9ea9d1ed13bc94f4b1ee3765f5af5564728b11683a39cd6d048708e9158a07e1235465a68c3a8f9852b9a26d247b91549ddd6d55012610a953dbd", 0x3b}, {&(0x7f0000000200)="07dcf581021a81f9789f73545b8546e575b31fe70226d323af5c1b8dd5c2d6ffd85604243a979c0a7e4e886a6820243f2781eeb545424055f26a2aedb11bdf576f4c069eed770397398c9080fdef5f", 0x4f}, {&(0x7f0000000340)="ff9fffed2aa6ac0f3e774f5530a87b17981a9074e3b41b3c44d7f2822fef6940be89e8f5bf3e0d6d5a6f472ac928079d5cd6fb6fb9bb81dbf494158dd25f214763829b15f5794a40393a109457cb9dec13e3cc707303229c823c3bc8a44246b1075a9db787edae0b2717a0443bf8965ceda02a3fbed17fa62731d0a1d4f330a61202630f1a3afe32dc763c332d95f785363b903721b22a9515305aef274ac2e25f09906747fda4ff6396a953fc7d8b8d28f83086313c19edbf2af906af8b34fe95ef569a232bbf3f93c5fd6366e807dba5054bb9eb449e1c03546c35038bd6310d90815bfa42406b2463717b02282cb1b43640cc5ad53b9ac63094382129", 0xfe}, {&(0x7f0000000280)="7c7f47c52beb17be91c0113d08e8dcd1d5cc54e18215194842bc2ad42ccbb3184cd8f745c2d8e2c6a84c06b14b834d01ac1b8dd2", 0x34}], 0x8, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000001600)='/dev/full\x00', 0x101000, 0x0) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000001640)=0x4) sendfile(r2, r2, 0x0, 0xffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FLUSH_PMKSA(r2, &(0x7f00000015c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0x5, &(0x7f0000000500)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="007ea700000e00"/18, @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x8040) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x80}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:52 executing program 3 (fault-call:5 fault-nth:29): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:52 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 305.013136] FAULT_INJECTION: forcing a failure. [ 305.013136] name failslab, interval 1, probability 0, space 0, times 0 [ 305.024368] CPU: 0 PID: 21358 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 305.032248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.041601] Call Trace: [ 305.044194] dump_stack+0x1b2/0x283 [ 305.047828] should_fail.cold+0x10a/0x154 [ 305.052014] should_failslab+0xd6/0x130 [ 305.055995] kmem_cache_alloc+0x40/0x3c0 [ 305.060064] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 305.065694] radix_tree_extend+0x158/0x3e0 [ 305.069944] idr_get_free_cmn+0x650/0x8d0 [ 305.074099] idr_alloc_cmn+0xe8/0x1e0 [ 305.077905] ? __fprop_inc_percpu_max+0x1d0/0x1d0 [ 305.082747] ? lock_acquire+0x170/0x3f0 [ 305.086732] p9_idpool_get+0x80/0xf0 [ 305.090448] ? p9_idpool_destroy+0x20/0x20 [ 305.094680] ? __lock_acquire+0x5fc/0x3f20 [ 305.098920] p9_client_prepare_req.part.0+0x65/0xb60 [ 305.104024] ? trace_hardirqs_on+0x10/0x10 [ 305.108268] ? idr_get_free_cmn+0x562/0x8d0 [ 305.112592] p9_client_rpc+0x170/0x1520 [ 305.116572] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 305.121936] ? lock_acquire+0x170/0x3f0 [ 305.125909] ? lock_downgrade+0x740/0x740 [ 305.130064] ? lock_acquire+0x170/0x3f0 [ 305.134043] ? lock_downgrade+0x740/0x740 [ 305.138217] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 305.143350] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 305.148372] p9_client_attach+0x137/0x750 [ 305.152526] ? p9_client_zc_rpc.constprop.0+0x1360/0x1360 [ 305.158069] ? v9fs_session_init+0xad1/0x1540 [ 305.162579] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 305.167601] v9fs_session_init+0xc03/0x1540 [ 305.171932] ? v9fs_show_options+0x6b0/0x6b0 [ 305.176341] ? v9fs_mount+0x54/0x860 [ 305.180084] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 305.185533] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 305.190551] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 305.195395] v9fs_mount+0x73/0x860 [ 305.198933] ? alloc_pages_current+0x15d/0x260 [ 305.203510] ? __lockdep_init_map+0x100/0x560 [ 305.208008] mount_fs+0x92/0x2a0 [ 305.211385] vfs_kern_mount.part.0+0x5b/0x470 [ 305.215885] do_mount+0xe53/0x2a00 [ 305.219431] ? copy_mount_string+0x40/0x40 [ 305.223668] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 305.228686] ? copy_mnt_ns+0xa30/0xa30 [ 305.232576] ? copy_mount_options+0x1fa/0x2f0 [ 305.237077] ? copy_mnt_ns+0xa30/0xa30 [ 305.240964] SyS_mount+0xa8/0x120 [ 305.244505] ? copy_mnt_ns+0xa30/0xa30 [ 305.248397] do_syscall_64+0x1d5/0x640 [ 305.252311] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 305.257497] RIP: 0033:0x45e0f9 04:36:53 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000080)='NET_DM\x00') r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000180)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r3, 0x300, 0x70bd2d, 0x25dfdbfb, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2404c010}, 0x44840) r4 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000240)='/dev/nvme-fabrics\x00', 0x402, 0x0) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) ioctl$VFIO_IOMMU_UNMAP_DMA(r1, 0x3b72, &(0x7f0000000480)={0x9a, 0x1, 0x8a0c, 0x1, "a948bef199d656613c464f4606c7aa576d2c6a264cfb1da5aa87be863051897a1602ad91c2e8ca83f19d071bb32553a683faea11a4845a035fdc801e30cd005b6eb1d9de2593879499f751d88cf5d4070d404477113851d861758444cd4bb466f21d0458035afdc3c60775fa4f1cf7a6618332b33d95ca07cd7c47f2fa79ebecb21d"}) write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @remote}, {0xa, 0x0, 0x0, @dev}}}, 0x48) write$RDMA_USER_CM_CMD_QUERY(r5, &(0x7f0000000040)={0x13, 0x10, 0xfa00, {&(0x7f0000000280), 0xffffffffffffffff, 0x2}}, 0x18) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r4, &(0x7f00000002c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000280), 0x2, {0xa, 0x4e23, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xc0000000}}}, 0x38) sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r2, 0x4, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", ""]}, 0x14}}, 0x24100) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r6, &(0x7f00000001c0)) [ 305.260682] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 305.268390] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 305.275655] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 305.282921] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 305.290188] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001d [ 305.297455] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c [ 305.298170] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 305.326110] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request 04:36:53 executing program 3 (fault-call:5 fault-nth:30): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:53 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r3 = openat$cgroup_netprio_ifpriomap(r2, &(0x7f00000000c0)='net_prio.ifpriomap\x00', 0x2, 0x0) fstat(r3, &(0x7f0000000000)) 04:36:53 executing program 5: getgid() r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r0, r0, 0x0, 0xffff) bind$unix(r0, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e21}, 0x6e) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000080)}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f0000000100)="b3298ba21d4dc784e82c4f91a603810a0a964c784ac7a10d40d2d24e09e69d313230d89b0b4850e51f9c0a7b9de03ca383e51ccc", 0x34}, {&(0x7f0000000140)="8f8f91985da8242b3efcb3d24ef89d1a1aba245b045f431112216a3ef6ffa578fdc15c8dabe1083238f709af1636cd35a59d6d198cda483abf60dd1ebeb26a414d49cbd03d238e0b663dbd1cb542d962865b281f32834389d7f4", 0x5a}, {&(0x7f00000001c0)="b9ea9d1ed13bc94f4b1ee3765f5af5564728b11683a39cd6d048708e9158a07e1235465a68c3a8f9852b9a26d247b91549ddd6d55012610a953dbd", 0x3b}, {&(0x7f0000000200)="07dcf581021a81f9789f73545b8546e575b31fe70226d323af5c1b8dd5c2d6ffd85604243a979c0a7e4e886a6820243f2781eeb545424055f26a2aedb11bdf576f4c069eed770397398c9080fdef5f", 0x4f}, {&(0x7f0000000340)="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", 0xfe}, {&(0x7f0000000280)="7c7f47c52beb17be91c0113d08e8dcd1d5cc54e18215194842bc2ad42ccbb3184cd8f745c2d8e2c6a84c06b14b834d01ac1b8dd2", 0x34}], 0x8, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000001600)='/dev/full\x00', 0x101000, 0x0) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000001640)=0x4) sendfile(r2, r2, 0x0, 0xffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FLUSH_PMKSA(r2, &(0x7f00000015c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0x5, &(0x7f0000000500)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="007ea700000e00"/18, @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x8040) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x80}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) [ 305.552612] FAULT_INJECTION: forcing a failure. [ 305.552612] name failslab, interval 1, probability 0, space 0, times 0 04:36:53 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 305.645822] CPU: 1 PID: 21377 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 305.653740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.663093] Call Trace: [ 305.665689] dump_stack+0x1b2/0x283 [ 305.669327] should_fail.cold+0x10a/0x154 [ 305.673481] should_failslab+0xd6/0x130 [ 305.677465] kmem_cache_alloc_trace+0x29a/0x3d0 [ 305.682137] ? v9fs_session_init+0xad1/0x1540 [ 305.686642] v9fs_cache_session_get_cookie+0x103/0x1c0 [ 305.691920] v9fs_session_init+0xc92/0x1540 [ 305.696253] ? v9fs_show_options+0x6b0/0x6b0 [ 305.700670] ? v9fs_mount+0x54/0x860 [ 305.704384] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 305.709839] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 305.714861] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 305.719708] v9fs_mount+0x73/0x860 [ 305.723248] ? alloc_pages_current+0x15d/0x260 [ 305.727828] ? __lockdep_init_map+0x100/0x560 [ 305.732325] mount_fs+0x92/0x2a0 [ 305.735699] vfs_kern_mount.part.0+0x5b/0x470 [ 305.740198] do_mount+0xe53/0x2a00 [ 305.743748] ? retint_kernel+0x2d/0x2d [ 305.747641] ? copy_mount_string+0x40/0x40 [ 305.751879] ? copy_mount_options+0x185/0x2f0 [ 305.756404] ? copy_mount_options+0x18b/0x2f0 [ 305.760905] ? copy_mount_options+0x1fa/0x2f0 [ 305.765406] ? copy_mnt_ns+0xa30/0xa30 [ 305.769294] SyS_mount+0xa8/0x120 [ 305.772750] ? copy_mnt_ns+0xa30/0xa30 [ 305.776639] do_syscall_64+0x1d5/0x640 [ 305.780535] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 305.785729] RIP: 0033:0x45e0f9 [ 305.788913] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 04:36:53 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000200)='team\x00') ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000840)={'team0\x00'}) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000a00)={0x14, r2, 0x103, 0x0, 0x2}, 0x14}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000040)={'sit0\x00', 0x0, 0x29, 0x0, 0x20, 0x200, 0x1, @private2={0xfc, 0x2, [], 0x1}, @private2={0xfc, 0x2, [], 0x1}, 0x7, 0x8, 0xfe0, 0x9}}) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f00000005c0)={0x204, r2, 0x10, 0x70bd2d, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x1e8, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x10001}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x800}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8, 0x4, 0x7}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x5}, {0x1c, 0x4, [{0x3f, 0x20, 0x20, 0x7}, {0x9, 0x2, 0xf9, 0x2}, {0xfeff, 0x3a, 0xd8, 0xffff0000}]}}}]}}]}, 0x204}, 0x1, 0x0, 0x0, 0x40}, 0x40) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:53 executing program 3 (fault-call:5 fault-nth:31): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 305.796650] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 305.803920] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 305.811185] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 305.818447] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001e [ 305.825703] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:53 executing program 5: getgid() r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r0, r0, 0x0, 0xffff) bind$unix(r0, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e21}, 0x6e) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000080)}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f0000000100)="b3298ba21d4dc784e82c4f91a603810a0a964c784ac7a10d40d2d24e09e69d313230d89b0b4850e51f9c0a7b9de03ca383e51ccc", 0x34}, {&(0x7f0000000140)="8f8f91985da8242b3efcb3d24ef89d1a1aba245b045f431112216a3ef6ffa578fdc15c8dabe1083238f709af1636cd35a59d6d198cda483abf60dd1ebeb26a414d49cbd03d238e0b663dbd1cb542d962865b281f32834389d7f4", 0x5a}, {&(0x7f00000001c0)="b9ea9d1ed13bc94f4b1ee3765f5af5564728b11683a39cd6d048708e9158a07e1235465a68c3a8f9852b9a26d247b91549ddd6d55012610a953dbd", 0x3b}, {&(0x7f0000000200)="07dcf581021a81f9789f73545b8546e575b31fe70226d323af5c1b8dd5c2d6ffd85604243a979c0a7e4e886a6820243f2781eeb545424055f26a2aedb11bdf576f4c069eed770397398c9080fdef5f", 0x4f}, {&(0x7f0000000340)="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", 0xfe}, {&(0x7f0000000280)="7c7f47c52beb17be91c0113d08e8dcd1d5cc54e18215194842bc2ad42ccbb3184cd8f745c2d8e2c6a84c06b14b834d01ac1b8dd2", 0x34}], 0x8, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000001600)='/dev/full\x00', 0x101000, 0x0) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000001640)=0x4) sendfile(r2, r2, 0x0, 0xffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FLUSH_PMKSA(r2, &(0x7f00000015c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0x5, &(0x7f0000000500)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="007ea700000e00"/18, @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x8040) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x80}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:53 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 306.115320] FAULT_INJECTION: forcing a failure. [ 306.115320] name failslab, interval 1, probability 0, space 0, times 0 [ 306.166342] CPU: 0 PID: 21416 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 306.174248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.183592] Call Trace: [ 306.186162] dump_stack+0x1b2/0x283 [ 306.189774] should_fail.cold+0x10a/0x154 [ 306.193921] should_failslab+0xd6/0x130 [ 306.197886] __kmalloc+0x2c1/0x400 [ 306.201416] ? p9_fcall_alloc+0x19/0x90 [ 306.205373] ? __lockdep_init_map+0x100/0x560 [ 306.209888] p9_fcall_alloc+0x19/0x90 [ 306.213679] p9_client_prepare_req.part.0+0x86c/0xb60 [ 306.218860] p9_client_rpc+0x170/0x1520 [ 306.222817] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 306.228161] ? lock_acquire+0x170/0x3f0 [ 306.232124] ? lock_downgrade+0x740/0x740 [ 306.236260] ? lock_acquire+0x170/0x3f0 [ 306.240217] ? lock_downgrade+0x740/0x740 [ 306.244355] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 306.249450] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 306.254458] p9_client_attach+0x137/0x750 [ 306.258618] ? p9_client_zc_rpc.constprop.0+0x1360/0x1360 [ 306.264135] ? v9fs_session_init+0xad1/0x1540 [ 306.268623] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 306.273635] v9fs_session_init+0xc03/0x1540 [ 306.278005] ? v9fs_show_options+0x6b0/0x6b0 [ 306.282406] ? v9fs_mount+0x54/0x860 [ 306.286119] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 306.291551] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 306.296557] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 306.301428] v9fs_mount+0x73/0x860 [ 306.304948] ? alloc_pages_current+0x15d/0x260 [ 306.309509] ? __lockdep_init_map+0x100/0x560 [ 306.313986] mount_fs+0x92/0x2a0 [ 306.317336] vfs_kern_mount.part.0+0x5b/0x470 [ 306.321832] do_mount+0xe53/0x2a00 [ 306.325357] ? copy_mount_string+0x40/0x40 [ 306.329589] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 306.334591] ? copy_mnt_ns+0xa30/0xa30 [ 306.338474] ? copy_mount_options+0x1fa/0x2f0 [ 306.342948] ? copy_mnt_ns+0xa30/0xa30 [ 306.346824] SyS_mount+0xa8/0x120 [ 306.350294] ? copy_mnt_ns+0xa30/0xa30 [ 306.354197] do_syscall_64+0x1d5/0x640 [ 306.358083] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 306.363273] RIP: 0033:0x45e0f9 04:36:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r1, &(0x7f00000000c0)) [ 306.366463] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 306.374164] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 306.381418] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 306.388677] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 306.395929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001f [ 306.403186] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:54 executing program 3 (fault-call:5 fault-nth:32): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 306.420758] 9pnet: Couldn't grow tag array 04:36:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000000)={0xfffffffffffffffe, 0x3, 0x7f000, 0x1, 0xfffff001}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) vmsplice(r4, &(0x7f00000005c0)=[{&(0x7f0000000100)="d9ba818eaf341c03eb12e5ac9a72bdcef6afd41875511d751b30c1eaf4deb3462c46f035674c251b0696d12ac0af91b4418a4cf293b0410dc6465cd33519a0bc82a7d04daf79ec0ecb9b7a1a43811016dcaff93d13efce30e3490d0a64df6d9e72424a27ab1e40170783e64ab18546a61bb8d56bf3129c0a95baaa066e82d53ef3866c83172a1d86f9a57193cfe07c20e75cbaa474c35468f277e05f6f689e4105155f4f574ba41defb03e1a6037083c9397c1a7f88575ee1572045fdb934aa3e7a52c5d8e026f23da7de9b8222013ee54f6b9395dae919de11d6899350e71a8fc934c7f38bdc5aaaaa3915ff543450a84d817551bbfade1", 0xf8}, {&(0x7f0000000200)="ba47b1c876dfc1d50669796a1f4d4762c533a521d6b378e9149963cae14633d4bc3fed0768c56f46542c5faae085fed375229c6a7723099745407ed6bc1de7976348ba47ea4f176bc8c2415e4c2c7903d3a8b1433c61a50d03bfc3bc37487d8896b18b103f19328c8de1d898e539e9df973bf2d779fa4ac5154fcd6fbfbc8cc9eb0027fc3bf15957279df05da1ff8dc913eef1a6a69521afd74d4ef5cbfa31303ad511b4b5083a62a798062168380dd3587b3df4769408e292d49e806c7d084fb0c351cf", 0xc4}, {&(0x7f0000000340)="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", 0xfd}, {&(0x7f0000000440)="308eb114b587ef645300350af7eb44af68a79ca425e5699195be1bd2eb402af5c479e7507809a4fbcb51eabd5f151937d9797a15d5f04cf68fc330591f7e5378cc0c909a5da37005300f013ae8b2326e59b3bd65f367a2c55fa003c73d890a9fc24b29dbd054f4d912bdb72a59bfe3693afd9a8514855a5577492f72fc14be5581d133bf1e38bfc5efc1d45e89e4e941905f796ad07dac70fcce71082a21e416e70f89d5005a13dc2113fd75b05d94e0f7ce2002bd0dda1eea691010d720763543776289dfd3b2e870f570e0665d0d5730c0ab3831055dedf1ff44e27c2b55", 0xdf}, {&(0x7f0000000040)="2b372b2a9deb3009b070cb0fcf5a", 0xe}], 0x5, 0x6) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:54 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000200)='team\x00') ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000840)={'team0\x00'}) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000a00)={0x14, r2, 0x103, 0x0, 0x2}, 0x14}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000040)={'sit0\x00', 0x0, 0x29, 0x0, 0x20, 0x200, 0x1, @private2={0xfc, 0x2, [], 0x1}, @private2={0xfc, 0x2, [], 0x1}, 0x7, 0x8, 0xfe0, 0x9}}) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f00000005c0)={0x204, r2, 0x10, 0x70bd2d, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x1e8, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x10001}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x800}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8, 0x4, 0x7}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x5}, {0x1c, 0x4, [{0x3f, 0x20, 0x20, 0x7}, {0x9, 0x2, 0xf9, 0x2}, {0xfeff, 0x3a, 0xd8, 0xffff0000}]}}}]}}]}, 0x204}, 0x1, 0x0, 0x0, 0x40}, 0x40) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) 04:36:54 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 306.517588] FAULT_INJECTION: forcing a failure. [ 306.517588] name failslab, interval 1, probability 0, space 0, times 0 [ 306.554088] CPU: 0 PID: 21436 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 306.561998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.571348] Call Trace: [ 306.573934] dump_stack+0x1b2/0x283 [ 306.577556] should_fail.cold+0x10a/0x154 [ 306.581695] should_failslab+0xd6/0x130 [ 306.585662] kmem_cache_alloc_trace+0x29a/0x3d0 [ 306.590324] ? v9fs_session_init+0xad1/0x1540 [ 306.594810] v9fs_cache_session_get_cookie+0x103/0x1c0 [ 306.600076] v9fs_session_init+0xc92/0x1540 [ 306.604383] ? v9fs_show_options+0x6b0/0x6b0 [ 306.608796] ? v9fs_mount+0x54/0x860 [ 306.612506] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 306.617956] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 306.622974] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 306.627822] v9fs_mount+0x73/0x860 [ 306.631360] ? alloc_pages_current+0x15d/0x260 [ 306.635940] ? __lockdep_init_map+0x100/0x560 [ 306.640534] mount_fs+0x92/0x2a0 [ 306.643886] vfs_kern_mount.part.0+0x5b/0x470 [ 306.648411] do_mount+0xe53/0x2a00 [ 306.651937] ? copy_mount_string+0x40/0x40 [ 306.656166] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 306.661187] ? copy_mnt_ns+0xa30/0xa30 [ 306.665103] ? copy_mount_options+0x1fa/0x2f0 [ 306.669600] ? copy_mnt_ns+0xa30/0xa30 [ 306.673516] SyS_mount+0xa8/0x120 [ 306.676970] ? copy_mnt_ns+0xa30/0xa30 [ 306.680858] do_syscall_64+0x1d5/0x640 [ 306.684764] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 306.689980] RIP: 0033:0x45e0f9 [ 306.693167] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 306.700878] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 306.708147] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 04:36:54 executing program 3 (fault-call:5 fault-nth:33): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) [ 306.715431] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 306.722680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000020 [ 306.729930] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x2) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 306.793126] FAULT_INJECTION: forcing a failure. [ 306.793126] name failslab, interval 1, probability 0, space 0, times 0 [ 306.816545] CPU: 0 PID: 21465 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 306.824447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.833800] Call Trace: [ 306.836391] dump_stack+0x1b2/0x283 04:36:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 306.840026] should_fail.cold+0x10a/0x154 [ 306.844182] should_failslab+0xd6/0x130 [ 306.848172] __kmalloc+0x2c1/0x400 [ 306.851715] ? p9_fcall_alloc+0x19/0x90 [ 306.855701] p9_fcall_alloc+0x19/0x90 [ 306.859512] p9_client_prepare_req.part.0+0x7f8/0xb60 [ 306.864713] p9_client_rpc+0x170/0x1520 [ 306.868728] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 306.874102] ? lock_acquire+0x170/0x3f0 [ 306.878074] ? lock_downgrade+0x740/0x740 [ 306.882225] ? lock_acquire+0x170/0x3f0 [ 306.886200] ? lock_downgrade+0x740/0x740 04:36:54 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_dev$ttys(0xc, 0x2, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fstat(r2, &(0x7f0000004140)) [ 306.890352] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 306.895459] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 306.900486] p9_client_attach+0x137/0x750 [ 306.904643] ? p9_client_zc_rpc.constprop.0+0x1360/0x1360 [ 306.910180] ? v9fs_session_init+0xad1/0x1540 [ 306.914681] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 306.919701] v9fs_session_init+0xc03/0x1540 [ 306.924041] ? v9fs_show_options+0x6b0/0x6b0 [ 306.928477] ? v9fs_mount+0x54/0x860 [ 306.932210] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 306.937660] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 306.942679] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 306.947526] v9fs_mount+0x73/0x860 [ 306.951070] ? alloc_pages_current+0x15d/0x260 [ 306.955657] ? __lockdep_init_map+0x100/0x560 [ 306.960158] mount_fs+0x92/0x2a0 [ 306.963532] vfs_kern_mount.part.0+0x5b/0x470 [ 306.968034] do_mount+0xe53/0x2a00 [ 306.971603] ? copy_mount_string+0x40/0x40 [ 306.975845] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 306.980868] ? copy_mnt_ns+0xa30/0xa30 [ 306.984760] ? copy_mount_options+0x1fa/0x2f0 [ 306.989260] ? copy_mnt_ns+0xa30/0xa30 04:36:54 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 306.993149] SyS_mount+0xa8/0x120 [ 306.996630] ? copy_mnt_ns+0xa30/0xa30 [ 307.000522] do_syscall_64+0x1d5/0x640 [ 307.004428] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 307.009626] RIP: 0033:0x45e0f9 [ 307.012816] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 307.020534] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 307.027805] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 307.035073] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 04:36:54 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 307.042342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000021 [ 307.049610] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:54 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000bc0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000b80)={&(0x7f0000000140)={0xa18, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0x368, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x50, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x64, 0x9, 0x16, 0xb, 0x2, 0x3, 0x6c, 0x2, 0x0, 0x6, 0x4, 0x24, 0xc, 0x1, 0x2, 0x5, 0x24, 0x39, 0x0, 0xc, 0x12, 0x18]}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0xb, 0xc, 0x6, 0x48, 0x3, 0x18, 0xb, 0x24, 0x24, 0x6, 0x2, 0x5, 0x60, 0x4, 0x30]}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x48, 0x1d, 0x24, 0x30, 0x5, 0x5, 0x1b, 0x2, 0x5, 0x77, 0x6c, 0x1, 0x1b, 0x60, 0x16, 0xc, 0x24, 0x4]}]}, @NL80211_BAND_6GHZ={0x18, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x13, 0x2, [{0x3, 0x5}, {0x7, 0x5}, {0x1, 0x5}, {0x4, 0x5}, {0x5, 0x6}, {0x6}, {0x5, 0x2}, {0x2, 0x4}, {0x5, 0x4}, {0x5, 0x8}, {0x7, 0x6}, {0x3, 0x9}, {0x0, 0xa}, {0x1, 0x6}, {}]}]}, @NL80211_BAND_6GHZ={0x108, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x2, 0x5, 0x5, 0xd77, 0x1, 0xfbff, 0x86c0]}}, @NL80211_TXRATE_HT={0x37, 0x2, [{0x0, 0x2}, {0x1, 0x5}, {0x1, 0x2}, {0x3, 0x5}, {0x2, 0xa}, {0x0, 0x2}, {0x3, 0x5}, {0x1}, {0x5, 0x2}, {0x0, 0x9}, {0x7, 0x8}, {0x1, 0x7}, {0x6}, {0x4, 0x3}, {0x1, 0x9}, {0x2, 0xa}, {0x4}, {0x3, 0x2}, {0x4, 0xa}, {0x4, 0x3}, {0x0, 0x1}, {0x7, 0x4}, {0x5}, {}, {0x5, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {0x2, 0x8}, {0x7, 0x7}, {0x1}, {}, {0x5, 0x6}, {0x1, 0x2}, {0x5, 0x9}, {0x2, 0x9}, {0x0, 0x4}, {0x3, 0x3}, {0x5, 0x3}, {0x7, 0x6}, {0x1, 0x5}, {0x7, 0x6}, {0x0, 0x7}, {0x4, 0x3}, {0x1, 0x9}, {0x4, 0x6}, {0x7, 0xa}, {0x5, 0x5}, {0x6, 0x3}, {0x3, 0x4}, {0x0, 0x9}, {0x1, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffc1, 0x9, 0x1, 0xffff, 0x0, 0x0, 0x6, 0x8]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x5, 0x9, 0x3ff, 0x8000, 0x20, 0x401, 0x80]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x8, 0xab0, 0x7, 0x8001, 0xd1e, 0x1, 0x2]}}, @NL80211_TXRATE_HT={0x50, 0x2, [{0x6, 0x8}, {0x2, 0x4}, {0x2, 0x2}, {0x2, 0x4}, {0x3, 0x7}, {0x1, 0x7}, {0x6, 0x6}, {0x1, 0x2}, {0x1, 0x5}, {0x4, 0x4}, {0x5, 0x8}, {0x7, 0x3}, {0x4, 0x5}, {0x5, 0x6}, {0x0, 0x3}, {}, {0x5, 0x5}, {0x5, 0x4}, {0x7, 0x8}, {0x4, 0x2}, {0x3, 0x6}, {0x0, 0xa}, {0x0, 0x4}, {0x0, 0x3}, {0x1, 0x6}, {0x0, 0x7}, {0x0, 0x3}, {0x3, 0x1}, {0x4, 0x4}, {0x0, 0x4}, {0x1}, {0x4, 0x9}, {0x1, 0x2}, {0x2, 0x4}, {0x5, 0x6}, {0x0, 0x3}, {0x2, 0x9}, {0x6, 0x6}, {0x6, 0x9}, {0x3, 0x9}, {0x6, 0x8}, {0x5, 0x2}, {0x0, 0x3}, {0x7, 0x6}, {0x0, 0x3}, {0x6, 0x1}, {0x6, 0x9}, {0x1, 0x8}, {0x5, 0x4}, {0x1, 0x1}, {0x3, 0x9}, {0x4, 0x3}, {0x7, 0x4}, {0x5}, {0x1, 0x8}, {0x6, 0x6}, {0x2, 0x9}, {0x4, 0x6}, {0x4}, {0x2, 0x7}, {0x6, 0x9}, {0x5, 0x9}, {0x3, 0x3}, {0x5, 0x1}, {0x5, 0xa}, {0x1, 0x5}, {0x2, 0x4}, {0x4, 0x8}, {0x1, 0xa}, {0x2, 0x6}, {0x1}, {0x3, 0x3}, {0x7, 0x7}, {}, {0x5, 0x2}, {0x4, 0xa}]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x1, 0x4, 0x12, 0x2, 0x6c, 0x23, 0x18, 0x3, 0x16, 0x23, 0x48, 0x60, 0x6c, 0x4, 0x18, 0x9, 0x2, 0x77, 0x60, 0x6, 0x9, 0x30, 0x2, 0x18, 0xb, 0x60, 0x4, 0x12, 0x52]}]}, @NL80211_BAND_6GHZ={0x24, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x7, 0x2, [{0x6, 0x6}, {0x1, 0xa}, {0x2, 0x9}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x1ff, 0x20, 0xd1b9, 0x1, 0x482, 0x7fff, 0x7, 0x101]}}, @NL80211_TXRATE_HT={0x46, 0x2, [{}, {0x1, 0x3}, {0x1, 0x1}, {0x4, 0x9}, {0x1, 0xa}, {0x0, 0x4}, {0x1}, {0x4, 0x9}, {0x5, 0x5}, {0x4, 0x6}, {0x1, 0x5}, {0x7, 0x5}, {0x5, 0xa}, {}, {0x0, 0x8}, {0x1, 0x3}, {0x3, 0xa}, {0x5, 0x5}, {0x3, 0x9}, {0x0, 0x1}, {0x2, 0x2}, {0x2, 0x4}, {0x2, 0x4}, {0x2, 0x9}, {0x1, 0x5}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x2}, {0x1, 0x9}, {0x4, 0x5}, {0x4, 0x6}, {0x1, 0x4}, {0x2}, {0x6, 0x7}, {0x6}, {0x4, 0x9}, {0x6, 0x7}, {0x4}, {0x1, 0x8}, {0x7, 0x6}, {0x7, 0x7}, {0x0, 0x4}, {0x0, 0x7}, {0x1, 0x9}, {0x7, 0x7}, {0x4, 0x6}, {0x0, 0x3}, {0x0, 0x2}, {0x0, 0x5}, {0x2, 0x4}, {0x3, 0xa}, {0x2, 0x4}, {0x3, 0x7}, {0x0, 0xa}, {0x5, 0x7}, {0x1, 0x7}, {0x2}, {0x4, 0x4}, {0x2, 0x3}, {0x7, 0x2}, {0x3, 0x4}, {0x4, 0x4}, {0x1}, {0x1, 0x4}, {0x1, 0x4}, {0x4, 0x6}]}]}, @NL80211_BAND_6GHZ={0x5c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x39, 0x2, [{0x2, 0x5}, {0x1, 0x4}, {0x1, 0x9}, {0x1, 0x5}, {0x3, 0x5}, {0x7, 0x4}, {0x7}, {0x1, 0x5}, {0x3, 0x5}, {0x1, 0x8}, {0x6, 0x3}, {0x7, 0xa}, {0x2, 0x6}, {0x4, 0x7}, {0x5, 0x2}, {0x1, 0x2}, {0x4, 0x5}, {0x0, 0x8}, {0x4, 0x4}, {0x2, 0x7}, {0x2, 0x2}, {0x4}, {0x2, 0x3}, {0x4, 0x3}, {0x1, 0x1}, {0x4, 0x7}, {0x6, 0x7}, {0x1, 0x7}, {0x6, 0x3}, {0x1}, {0x7, 0x2}, {0x5, 0x5}, {0x7, 0x9}, {0x4, 0x9}, {0x7, 0xa}, {0x6}, {0x5}, {0x1, 0x4}, {0x3, 0xa}, {0x2, 0x1}, {0x6, 0x4}, {0x0, 0x9}, {0x0, 0x5}, {0x2}, {0x6, 0x8}, {0x1, 0x8}, {0x2, 0x6}, {0x2, 0x3}, {0x2, 0x6}, {0x4, 0xa}, {0x7, 0x9}, {0x1, 0x2}, {0x5, 0x1}]}, @NL80211_TXRATE_HT={0x1c, 0x2, [{0x6, 0x7}, {0x7, 0x2}, {0x0, 0x8}, {0x6, 0x2}, {0x7, 0x8}, {0x2, 0x5}, {0x3, 0xa}, {0x6, 0x2}, {0x4, 0x7}, {0x3, 0x9}, {0x7, 0x9}, {0x0, 0x1}, {0x1, 0x1}, {0x2}, {0x7, 0x1}, {0x2, 0x7}, {0x4}, {0x7, 0x7}, {0x6, 0x9}, {0x7, 0x8}, {0x2, 0x1}, {0x4, 0x1}, {0x2, 0x2}, {0x5, 0x1}]}]}, @NL80211_BAND_6GHZ={0x114, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x37, 0x2, [{0x3, 0x3}, {0x4, 0xa}, {0x0, 0x2}, {0x3, 0x9}, {0x1, 0x8}, {0x7, 0xa}, {0x5}, {0x5, 0x6}, {0x0, 0x8}, {0x1, 0x6}, {0x6, 0x6}, {0x3, 0x3}, {0x2, 0x6}, {0x7, 0x1}, {0x7, 0x9}, {0x5, 0x1}, {0x6, 0x5}, {0x4}, {0x5}, {0x7, 0x4}, {0x4, 0x3}, {0x0, 0x2}, {0x3, 0x2}, {0x7, 0x3}, {0x4, 0x6}, {0x5, 0x1}, {0x6, 0x3}, {0x4, 0x5}, {0x0, 0x6}, {0x4, 0x6}, {0x1, 0x2}, {0x5, 0x3}, {0x5, 0x1}, {0x2, 0x7}, {0x2, 0x5}, {0x7, 0x2}, {0x7, 0x9}, {0x1, 0x4}, {0x3, 0x7}, {0x1, 0x9}, {0x1, 0x4}, {0x2, 0x2}, {0x0, 0x2}, {0x1, 0x1}, {0x1, 0x6}, {0x6, 0x8}, {0x6, 0x5}, {0x4, 0x3}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_HT={0x33, 0x2, [{0x6, 0xa}, {0x6, 0x1}, {0x1, 0x7}, {0x3, 0xa}, {0x1, 0x7}, {0x7, 0x6}, {0x6, 0x9}, {0x6, 0x3}, {0x2, 0x4}, {0x5, 0x3}, {0x0, 0x5}, {0x3, 0x1}, {0x2}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0xa}, {0x2, 0x8}, {0x5, 0x1}, {0x1, 0x2}, {0x7, 0x2}, {0x3, 0x4}, {0x0, 0xa}, {0x0, 0x5}, {0x2, 0x8}, {0x0, 0x6}, {0x2}, {0x6, 0x1}, {0x4, 0x9}, {0x7, 0x5}, {0x6}, {0x4, 0x3}, {0x0, 0xa}, {0x7}, {0x4, 0x5}, {0x0, 0x1}, {0x7, 0xa}, {0x4, 0x5}, {0x1, 0x2}, {0x2, 0x1}, {0x0, 0x4}, {0x1, 0x5}, {0x6, 0xa}, {0x0, 0x8}, {0x3, 0x6}, {0x4, 0x9}, {0x6}, {0x0, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x1, 0xffff, 0x4, 0x3, 0x40, 0x1a28, 0x2d0]}}, @NL80211_TXRATE_HT={0x3e, 0x2, [{0x7, 0x7}, {0x6, 0x1}, {0x3, 0x1}, {0x1, 0x4}, {0x4, 0x5}, {0x0, 0x6}, {0x4, 0xa}, {0x1, 0x8}, {0x0, 0x4}, {0x4, 0x2}, {0x0, 0x3}, {0x5, 0x9}, {0x1, 0x9}, {0x0, 0xa}, {0x3}, {0x1, 0x9}, {0x2, 0x6}, {0x7, 0x2}, {0x0, 0x5}, {0x3, 0x3}, {0x1, 0x5}, {0x2, 0x1}, {0x7, 0xa}, {0x3, 0x9}, {0x2, 0x5}, {0x0, 0x3}, {0x1, 0x5}, {0x5, 0x1}, {0x2, 0x7}, {0x0, 0x5}, {0x5}, {0x7, 0x9}, {0x1, 0x5}, {0x0, 0xa}, {0x1, 0x3}, {0x3, 0x4}, {0x7, 0x9}, {0x5, 0x6}, {0x5, 0x1}, {0x3, 0x5}, {0x0, 0x5}, {0x7, 0xa}, {0x0, 0x3}, {0x0, 0x5}, {0x4}, {0x0, 0x2}, {0x1, 0x4}, {0x0, 0x6}, {0x4, 0x6}, {0x0, 0x6}, {0x0, 0x1}, {0x3, 0x4}, {0x7, 0x7}, {}, {0x7, 0x5}, {0x2, 0x4}, {0x5, 0x3}, {0x5, 0x3}]}, @NL80211_TXRATE_HT={0x27, 0x2, [{0x2, 0x7}, {}, {0x1, 0x6}, {0x3, 0x4}, {0x5, 0x5}, {0x7, 0x4}, {0x6}, {0x2, 0x1}, {0x0, 0xa}, {0x4, 0x1}, {0x4, 0x5}, {}, {0x6}, {0x4, 0x7}, {0x4, 0x1}, {0x7, 0x8}, {0x7, 0x5}, {0x7, 0x8}, {0x3, 0x5}, {0x3, 0x4}, {0x2, 0x5}, {}, {0x3, 0x9}, {0x3, 0x5}, {0x6, 0x9}, {0x4}, {0x5, 0x6}, {0x3, 0x3}, {0x2, 0x9}, {0x3, 0x2}, {0x4, 0x5}, {0x0, 0x8}, {0x2, 0x6}, {0x5, 0x4}, {0x5, 0x7}]}, @NL80211_TXRATE_LEGACY={0x9, 0x1, [0xb, 0x6c, 0x48, 0x3, 0x6c]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x3, 0xed, 0x40, 0x7, 0x5, 0x3f64, 0x2]}}]}]}, @NL80211_ATTR_TX_RATES={0x308, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x138, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xa, 0x1, [0xc, 0x48, 0x3, 0x60, 0xb, 0x2]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x3c, 0x2, [{0x2, 0x7}, {0x0, 0x3}, {0x0, 0x9}, {0x0, 0x6}, {0x4, 0x7}, {0x3, 0x5}, {0x6, 0x6}, {0x7}, {0x6, 0x5}, {0x0, 0x2}, {0x1, 0x5}, {0x4, 0x2}, {0x3, 0x2}, {0x2, 0x7}, {0x3, 0x2}, {0x4, 0x4}, {0x1, 0x9}, {0x7}, {0x4, 0x8}, {0x4, 0x1}, {0x3, 0x4}, {0x1, 0x9}, {0x1, 0x2}, {0x1, 0x8}, {0x1, 0x8}, {0x6, 0x4}, {0x6, 0x6}, {0x2, 0x2}, {0x0, 0x6}, {0x1}, {0x1, 0x6}, {0x7, 0x1}, {0x2, 0x3}, {0x2}, {0x3, 0x5}, {0x2, 0x8}, {0x5, 0x7}, {0x7, 0x2}, {0x1, 0x9}, {0x5, 0x3}, {0x1, 0x5}, {0x5}, {0x4, 0xa}, {0x3, 0x2}, {0x6, 0x8}, {0x0, 0x4}, {0x6, 0x2}, {0x2, 0x5}, {0x5, 0x8}, {0x7, 0x9}, {0x2, 0x4}, {0x6, 0x3}, {0x4, 0x7}, {0x2, 0x5}, {0x0, 0x9}, {0x7, 0x7}]}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x48, 0x19, 0x5, 0x30, 0x31, 0x24, 0x60, 0x6, 0x9, 0x6c, 0x4, 0x9, 0x1, 0x48, 0x18, 0xc, 0x36, 0x0, 0xc, 0x18, 0x16, 0x6, 0x1b, 0x16, 0x72, 0xd197742195f6ae58, 0x6c]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x8001, 0x81, 0x9, 0x8000, 0x6, 0x6, 0x2]}}, @NL80211_TXRATE_HT={0x2e, 0x2, [{0x0, 0x8}, {0x5, 0x8}, {0x7, 0x8}, {0x1, 0x9}, {0x4, 0x2}, {0x1, 0x8}, {0x4, 0x6}, {0x1, 0x6}, {0x2, 0xa}, {0x3, 0x8}, {0x3, 0xa}, {0x6, 0xa}, {0x0, 0x3}, {}, {0x7, 0xa}, {0x1, 0x8}, {0x6, 0x6}, {0x4, 0xa}, {0x0, 0x1}, {0x6, 0x7}, {0x7, 0x8}, {0x6, 0xa}, {0x5, 0x8}, {0x6, 0x7}, {0x2}, {0x4, 0x8}, {0x0, 0x4}, {0x3, 0x7}, {0x2, 0x1}, {0x0, 0xa}, {0x1, 0x4}, {0x3, 0x6}, {0x4, 0x4}, {0x4, 0x9}, {0x2, 0x7}, {0x6, 0x7}, {0x6, 0x3}, {0x1, 0x5}, {0x1, 0xa}, {0x5, 0x3}, {0x7, 0x3}, {0x1, 0x5}]}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x6, 0x7}, {0x2, 0x9}, {0x0, 0xa}, {0x1, 0x4}, {0x0, 0x9}, {0x4, 0x9}, {0x1, 0x4}, {0x5, 0x5}, {0x7}, {0x4}, {0x6, 0x3}, {0x2, 0x9}, {0x2, 0x8}, {0x3}, {0x0, 0x4}, {0x2, 0x7}, {0x4, 0xa}, {0x3, 0x8}, {0x1, 0x4}, {0x0, 0xa}, {0x4}, {0x1, 0x2}, {0x0, 0x7}, {0x7, 0x5}, {0x6, 0x1}, {0x7, 0x3}, {0x1, 0x5}, {0x2, 0x6}, {0x1, 0x2}, {0x5, 0x3}, {0x7, 0x2}, {0x0, 0xa}, {0x7, 0x2}, {0x7, 0x9}, {0x3, 0x6}, {0x1, 0x1}, {0x0, 0x9}, {0x0, 0x6}, {0x1}, {0x4, 0x5}, {0x3, 0x6}, {0x4, 0x3}, {0x2, 0x9}, {0x5, 0x7}, {0x5, 0x4}, {0x6, 0x5}, {0x7, 0x1}, {0x5, 0xa}, {0x3, 0x5}, {0x7, 0x8}, {0x5, 0x9}, {0x6, 0x5}, {0x2}, {0x0, 0x5}, {0x4, 0x7}, {0x6, 0x7}, {0x0, 0x2}, {0x3}, {0x0, 0x3}, {0x4, 0x3}, {0x5, 0x2}, {0x7, 0x3}, {0x6, 0x9}, {0x6, 0x6}, {0x0, 0x8}, {0x2, 0x1}, {0x7, 0x2}, {0x6, 0x2}, {0x6, 0x4}, {0x5, 0x7}, {0x5, 0x8}, {0x1, 0x1}, {0x7, 0x6}, {0x7, 0xa}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x3, 0x6115, 0x1, 0xf1, 0x100, 0xbd6, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x7, 0x1, 0x2, 0x5a, 0x7, 0x7ff, 0x3]}}]}, @NL80211_BAND_2GHZ={0x50, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x6, 0x0, 0x18, 0xc, 0x30, 0x36, 0x4, 0x22, 0xb, 0x30, 0xc, 0x48, 0x16, 0x18, 0x2, 0x24, 0x36, 0x12, 0x1, 0x6, 0x4, 0x6, 0x6]}, @NL80211_TXRATE_HT={0x2e, 0x2, [{0x5}, {0x6, 0xa}, {0x1, 0xa}, {0x5, 0x2}, {0x6, 0x8}, {0x4, 0x3}, {0x4, 0x8}, {0x0, 0x6}, {0x5, 0x2}, {0x3, 0x3}, {0x4, 0x8}, {0x0, 0x5}, {0x1, 0x1}, {0x7, 0x3}, {0x0, 0x1}, {0x2, 0x9}, {0x4, 0x7}, {0x6, 0xa}, {0x1, 0x2}, {0x7, 0x8}, {0x7, 0x5}, {}, {0x4, 0x4}, {0x1, 0x2}, {}, {0x7, 0x5}, {0x4, 0x8}, {0x4, 0x1}, {0x0, 0x2}, {0x6, 0x5}, {0x6, 0x8}, {0x1, 0x6}, {0x5, 0x4}, {0x7, 0x4}, {0x0, 0x9}, {0x6, 0xa}, {0x2}, {0x1, 0x6}, {0x3, 0x9}, {0x1, 0x7}, {0x7, 0x4}, {0x5, 0xa}]}]}, @NL80211_BAND_60GHZ={0xe4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x46, 0x2, [{0x2, 0x3}, {0x1}, {0x6, 0x6}, {0x7, 0x6}, {0x3, 0x9}, {0x6, 0x5}, {0x4, 0x1}, {0x6}, {0x1, 0x4}, {0x2, 0x9}, {0x2, 0x4}, {0x1, 0x5}, {}, {0x2, 0x1}, {0x6, 0x1}, {0x6, 0x5}, {0x5, 0x5}, {0x0, 0x9}, {0x1, 0x8}, {0x1, 0x1}, {0x2, 0x9}, {0x7, 0x5}, {0x4, 0x2}, {0x7, 0x9}, {0x6, 0x9}, {0x2, 0x3}, {0x3, 0x4}, {0x4, 0x9}, {0x7, 0xa}, {0x0, 0x7}, {0x0, 0x1}, {0x7, 0x8}, {0x0, 0x4}, {0x2, 0x9}, {0x1, 0x3}, {0x0, 0x8}, {0x0, 0x5}, {0x6, 0x6}, {0x6, 0x3}, {0x4, 0x5}, {0x2, 0xa}, {0x0, 0x6}, {0x5, 0x4}, {0x5, 0x7}, {0x5, 0x6}, {0x5, 0x7}, {0x0, 0x3}, {0x1, 0x1}, {0x6, 0x5}, {0x0, 0x7}, {0x6, 0x7}, {0x1, 0x9}, {0x5, 0x9}, {0x5, 0x2}, {0x3, 0xa}, {0x6, 0x9}, {0x5, 0x7}, {0x2, 0x4}, {0x4, 0x7}, {0x7, 0x9}, {0x7, 0x3}, {0x5}, {0x3, 0xa}, {0x6, 0x6}, {0x1, 0x9}, {0x5, 0x5}]}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x6, 0x5}, {0x1}, {0x6, 0x2}, {0x5, 0x1}, {0x7, 0x2}, {0x6, 0x3}, {0x4, 0x8}, {0x5, 0x2}, {0x7, 0x8}, {0x1, 0x4}, {0x5, 0x6}, {0x7, 0x1}, {0x6, 0x7}, {0x1, 0xa}, {0x7, 0x1}, {0x2, 0x5}, {0x0, 0x2}, {0x1, 0x9}, {}, {0x5, 0x4}, {0x5, 0x7}, {0x3, 0x9}, {0x7, 0xa}, {0x0, 0x6}, {0x4, 0x1}, {0x2, 0x8}, {0x1}, {0x1, 0x7}, {0x3, 0x7}, {0x3, 0x8}, {0x2, 0x4}, {}, {0x2, 0x5}, {0x4, 0x2}, {0x5, 0x3}, {0x2, 0x1}, {0x0, 0x2}, {0x7, 0x5}, {0x6, 0x7}, {0x6, 0x2}, {0x5, 0x9}, {0x3, 0x2}, {0x7, 0x7}, {0x7, 0x5}, {0x4, 0x7}, {0x7}, {0x2, 0x1}, {0x0, 0x8}]}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x0, 0x1}, {0x0, 0x5}, {0x1, 0x9}, {0x0, 0x2}, {0x0, 0x7}, {0x4, 0x5}, {0x1, 0x7}, {0x6, 0x2}, {0x5}, {0x0, 0x9}, {0x5, 0xa}, {0x7, 0x5}, {0x5, 0x3}, {0x1}, {0x7, 0xa}, {0x6, 0x4}, {0x5, 0xa}, {0x2, 0x6}, {0x5, 0x1}, {0x0, 0x9}, {0x2, 0x8}, {0x0, 0x8}, {0x1}, {0x3, 0x8}, {0x6, 0x3}, {0x0, 0x1}, {0x7, 0x8}, {0x3, 0x9}, {0x7, 0x2}, {0x3, 0x4}, {0x4, 0x5}, {0x5, 0x8}, {0x4, 0x7}, {0x6}, {0x0, 0x3}, {0x6, 0xa}, {0x0, 0x5}, {0x3, 0x7}, {0x1, 0x1}, {0x7, 0x7}, {0x2, 0x9}, {0x5, 0x2}, {0x0, 0x9}, {0x6, 0x8}, {0x5, 0x6}, {0x3, 0x9}, {0x3, 0x8}, {0x1, 0x5}, {0x4, 0x4}, {0x4, 0x4}, {0x1, 0x7}, {0x4, 0x9}, {0x1}, {0x1, 0x5}, {0x2, 0x1}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x9}, {0x1, 0xa}, {0x7, 0x2}, {0x0, 0x8}, {0x1}, {0x2, 0x1}, {0x5, 0x2}, {0x6, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7f, 0x6, 0x8001, 0x8, 0x9, 0xfff, 0x20, 0x40]}}]}, @NL80211_BAND_6GHZ={0x24, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x2, 0x36, 0xb, 0x1, 0x6c, 0x6, 0x18, 0x16, 0x30, 0x1, 0x6, 0x18, 0x6c, 0x6c, 0x6, 0x0, 0xb, 0xb, 0x6, 0x18, 0x18, 0x18, 0x6c, 0x6, 0x1b, 0x6c]}]}, @NL80211_BAND_6GHZ={0x74, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x3, 0x1b, 0x0, 0xc, 0x60, 0x48, 0x30, 0x30, 0x1, 0x1b, 0x2, 0x2, 0x12, 0x48, 0x48, 0x30, 0x2, 0x1b, 0x24, 0x4, 0x48]}, @NL80211_TXRATE_HT={0x44, 0x2, [{0x1, 0x3}, {0x6, 0xa}, {0x7, 0x5}, {0x7, 0x3}, {0x1, 0x2}, {0x0, 0xa}, {0x6, 0x9}, {}, {0x1, 0x1}, {0x7, 0x4}, {0x1, 0x5}, {0x7, 0x9}, {0x4, 0x8}, {0x4, 0x3}, {0x3}, {0x6, 0x8}, {0x2, 0x8}, {0x5, 0x7}, {0x0, 0x9}, {}, {0x6, 0x2}, {0x5, 0x6}, {0x4, 0x1}, {0x2, 0x8}, {0x7, 0x3}, {0x1, 0x2}, {0x3, 0x4}, {0x4, 0x2}, {0x7, 0x8}, {0x6, 0x2}, {}, {0x5, 0x1}, {0x5, 0x3}, {0x5, 0x9}, {0x1, 0x6}, {0x1, 0x6}, {0x7, 0x7}, {0x3, 0x4}, {0x0, 0x5}, {0x7, 0x2}, {0x2, 0x3}, {0x4}, {0x2, 0x1}, {0x0, 0x3}, {0x4}, {0x4, 0x9}, {0x0, 0x2}, {0x1, 0x9}, {0x7, 0x4}, {0x1, 0x3}, {0x3}, {0x0, 0x1}, {0x6, 0x7}, {0x6, 0x7}, {}, {0x6, 0x5}, {0x3, 0x8}, {0x7, 0x8}, {0x4, 0xa}, {0x1, 0x2}, {0x0, 0x8}, {0x6, 0x3}, {0x3, 0x7}, {0x0, 0x7}]}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_ATTR_TX_RATES={0x6c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x44, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2a, 0x2, [{0x4}, {0x1, 0x8}, {}, {0x6, 0x6}, {0x2, 0x9}, {0x5, 0x1}, {0x3, 0x7}, {0x7, 0x4}, {0x2, 0x5}, {0x4, 0x7}, {0x6, 0xa}, {0x0, 0x9}, {0x4, 0xa}, {0x1, 0x2}, {0x0, 0x5}, {0x3, 0x3}, {0x3, 0x9}, {0x5, 0x5}, {0x1, 0x5}, {0x1, 0x7}, {0x0, 0x8}, {0x7, 0x3}, {0x0, 0x2}, {0x5, 0x8}, {0x5}, {0x0, 0x5}, {0x2, 0x5}, {0x4, 0x8}, {0x5, 0x9}, {0x6, 0x7}, {0x6, 0xa}, {0x0, 0x1}, {0x3}, {0x4, 0x6}, {0x1, 0x1}, {0x7, 0x2}, {0x2, 0x5}, {0x2, 0x8}]}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x36, 0x3, 0x36, 0x34, 0xb, 0x12, 0xb, 0x6, 0x48, 0x12, 0x3, 0x60, 0x3, 0x12, 0x12, 0x2]}]}, @NL80211_BAND_60GHZ={0x24, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x36, 0x9d1aad25776ea88f, 0x6c, 0x6c, 0x24, 0x9, 0x1f, 0x30, 0x2, 0x16, 0x3, 0x24]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}, @NL80211_ATTR_TX_RATES={0x1f0, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x9c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x48, 0x18, 0x30, 0x48, 0x30, 0x24, 0x9, 0x60, 0x4, 0x18, 0x16, 0x6, 0x3, 0xc, 0x29, 0x4, 0x12, 0x24, 0x60, 0x1, 0x2, 0x3, 0x6c]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x813, 0x1000, 0x5, 0x5, 0x659b, 0x80, 0x8]}}, @NL80211_TXRATE_LEGACY={0xe, 0x1, [0x9, 0x2, 0xb, 0x6, 0x3, 0x16, 0x12, 0x12, 0x4d, 0x48]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x3, 0x100, 0xfff7, 0x4, 0x7, 0xc5ea, 0x3ff]}}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x60, 0x0, 0x9, 0x9, 0x24, 0x36, 0x30, 0x18, 0x9, 0x3, 0x0, 0x60, 0x1, 0x1b, 0x60, 0x24, 0xb, 0x48]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5c28, 0x1, 0x20, 0x7fff, 0x3ff, 0x36, 0x3fa, 0x4]}}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x36, 0x36, 0x36, 0xc, 0x6c, 0x12, 0x3, 0x1, 0x9, 0x30, 0xe322502029d669f8, 0x0, 0x16, 0x1b, 0x4, 0x6, 0xc, 0x30, 0x9]}]}, @NL80211_BAND_2GHZ={0x30, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x1, 0x0, 0x0, 0x68, 0xfff, 0x3]}}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x1f, 0x24]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x9c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x21, 0x1, [0x18, 0x32, 0x5, 0x1, 0x36, 0x9, 0x1b, 0x4, 0x1b, 0x2, 0x16, 0x12, 0x30, 0x1b, 0x1b, 0x24, 0x0, 0x14, 0x9, 0x6c, 0xc, 0x6c, 0x2, 0x3, 0x18, 0x48, 0x4, 0x6c, 0x30]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x400, 0x15d, 0x4, 0xe90, 0x6, 0x7f, 0x0, 0x200]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x1, 0x2, 0x9, 0x81, 0x2, 0x5, 0x1]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x43, 0x2, [{0x3, 0x5}, {0x5, 0x5}, {0x7, 0x1}, {0x4, 0x6}, {0x2, 0x1}, {0x7, 0x7}, {0x2}, {0x2, 0x1}, {0x5, 0x1}, {0x3, 0xa}, {}, {0x2, 0x8}, {0x5, 0xa}, {0x4, 0x3}, {0x5, 0x8}, {0x7, 0x3}, {0x4}, {0x4}, {0x3, 0x6}, {0x6, 0xa}, {0x3, 0x9}, {0x1, 0x3}, {0x1, 0xa}, {0x5, 0x1}, {0x6, 0xa}, {0x6, 0x9}, {0x7, 0x8}, {0x1}, {0x6, 0x1}, {0x6, 0x2}, {0x5, 0x4}, {0x4, 0x7}, {0x1, 0xa}, {0x4}, {0x3, 0x1}, {0x0, 0x8}, {0x0, 0x4}, {0x3, 0x9}, {0x2, 0x2}, {0x0, 0x6}, {0x1, 0x8}, {0x0, 0x3}, {0x3, 0x2}, {0x1, 0x8}, {0x2, 0x1}, {0x4, 0x5}, {0x3, 0xa}, {0x1, 0x6}, {0x0, 0x7}, {0x6, 0x9}, {0x1, 0x5}, {0x3, 0xa}, {0x4, 0x9}, {0x7, 0xa}, {0x0, 0x1}, {0x1, 0x9}, {0x7, 0x8}, {0x0, 0x2}, {0x0, 0x4}, {0x0, 0x6}, {0x2, 0x8}, {0x0, 0x8}, {0x6, 0x7}]}]}, @NL80211_BAND_5GHZ={0x84, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x9, 0x72, 0x40e9, 0x0, 0x774, 0x3ff, 0x1ff]}}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x4, 0x9}, {0x3, 0x4}, {0x3, 0x8}, {0x5, 0x5}, {0x0, 0x8}, {0x2, 0x9}, {0x1, 0xa}, {0x0, 0x19}, {0x5}, {0x3, 0x3}, {0x3, 0x8}, {0x0, 0x1}, {0x2, 0x8}, {0x1, 0x7}, {0x0, 0x5}, {0x2, 0x7}, {0x4, 0x9}, {0x4, 0x3}, {0x7, 0x9}, {0x6, 0x6}, {0x5, 0x3}, {0x0, 0x9}, {0x4, 0x8}, {0x1, 0x2}, {0x4, 0x4}, {0x7, 0x7}, {0x1, 0x2}, {0x5}, {0x3, 0x5}, {0x0, 0x6}, {0x3, 0x5}, {0x5, 0x8}, {0x3, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x80, 0x8, 0x8, 0x8000, 0x8, 0x2, 0x8, 0x4]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x63ad, 0x6, 0x8c, 0x2, 0x200, 0xf001, 0x1]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x1b, 0x30, 0x64, 0x16, 0xc, 0x1b, 0x16, 0x48, 0xb, 0x0, 0xc, 0x6, 0x24, 0x1, 0x9, 0x16]}]}]}, @NL80211_ATTR_TX_RATES={0x24, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x20, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3f, 0x9, 0x1000, 0x6, 0x9a14, 0x3, 0x100, 0x5]}}]}]}, @NL80211_ATTR_TX_RATES={0x10c, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x7c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x9, 0xf18f, 0x4ff, 0x3ff, 0x5d, 0x3, 0x9]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x3, 0x2, 0x7ff, 0x8, 0x200, 0x0, 0x7]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8001, 0x3, 0x6ac, 0x1, 0x15, 0xff, 0x5, 0x7ff]}}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x24, 0x16, 0x48, 0x60, 0xc, 0x4, 0x1b, 0x16, 0x4, 0x48, 0x3, 0x6c, 0xc, 0x9, 0xc, 0x12, 0xb, 0xb, 0xc, 0x48, 0x60, 0x1, 0xb, 0x3, 0xc]}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x36, 0x16, 0x9, 0x1b, 0x1, 0x3, 0x35, 0x2, 0x60, 0x5, 0x36, 0x6c, 0x36, 0x24, 0x48, 0x1, 0x2, 0x48, 0x2, 0x1, 0x1b]}]}, @NL80211_BAND_60GHZ={0x80, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x81, 0xfff, 0x400, 0x2, 0x661, 0x0, 0x0, 0x5]}}, @NL80211_TXRATE_HT={0x4d, 0x2, [{0x6, 0x6}, {0x3, 0x8}, {0x6, 0x6}, {0x3, 0x6}, {0x6, 0x9}, {0x3, 0x4}, {0x6, 0x7}, {}, {0x6, 0x3}, {0x6, 0x4}, {0x7, 0x6}, {0x7, 0x9}, {0x1, 0x6}, {0x2, 0x6}, {0x7, 0x2}, {0x1, 0x8}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x4}, {0x6, 0x8}, {0x1, 0x8}, {0x1, 0x3}, {0x1, 0x4}, {0x1, 0x9}, {0x1, 0x1}, {0x2, 0xa}, {0x1, 0x5}, {0x7, 0x7}, {0x6}, {0x5, 0x6}, {0x5, 0x7}, {0x6, 0x4}, {0x1, 0x2}, {0x1, 0x3}, {0x5, 0x5}, {0x7, 0x8}, {0x4, 0x6}, {0x4, 0xa}, {0x0, 0xa}, {}, {0x5, 0x6}, {0x4, 0x5}, {0x7, 0x2}, {0x7, 0x4}, {0x4, 0x1}, {0x7, 0x2}, {0x6, 0x7}, {0x4, 0xa}, {0x1, 0x2}, {0x3, 0x6}, {0x0, 0x4}, {0x6, 0x1}, {0x6, 0x3}, {0x6, 0x15}, {0x1, 0x7}, {0x1, 0x5}, {0x2, 0x4}, {0x2, 0x4}, {0x1, 0x6}, {0x2, 0x3}, {0x5, 0x9}, {0x1, 0x2}, {0x4, 0x2}, {0x6, 0x5}, {0x0, 0x7}, {0x4, 0x5}, {0x1}, {0x6}, {0x1, 0x2}, {0x0, 0x2}, {0x0, 0x8}, {0x5, 0x5}, {0x1, 0x6}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_LEGACY={0xe, 0x1, [0x6, 0x9, 0x12, 0x6, 0x2, 0x1b, 0x6, 0x1, 0x5, 0x2]}]}]}]}, 0xa18}, 0x1, 0x0, 0x0, 0x2000c041}, 0x4400) setsockopt$netrom_NETROM_T2(r1, 0x103, 0x2, &(0x7f0000000c00)=0x7fff, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000400), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="67716e6f656ed6000000652c00"]) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000040)) [ 307.085972] 9pnet: Couldn't grow tag array 04:36:54 executing program 3 (fault-call:5 fault-nth:34): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:55 executing program 2: r0 = open(&(0x7f0000000240)='./file0\x00', 0x102e0, 0x0) fcntl$setsig(r0, 0xa, 0x11) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setlease(r0, 0x400, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1c, 0x9, &(0x7f0000000740)=ANY=[@ANYBLOB="181b000032fad2a39fac229da9b6094676c252df20000000942dd4d2b802edf14f215a417d6cab73aed3f0c3bb801b67f417bd2055106a822a56c2d2c44a458662cb0a97747f0becb40cced063fcdeab9b513bc0e9a14a911525f00498b405638b12c4d43b78e4863c38bc50b01982325c6f53aaf523519b93ed2d", @ANYRES32=r0, @ANYBLOB="00000000000000004b91f6ff0100000035630c00f7ffffff8510000002000000bd46f4ff040000008c9602000100000095000000000000008500000079000000"], &(0x7f00000005c0)='GPL\x00', 0x20, 0x8e, &(0x7f0000000600)=""/142, 0x41100, 0x4, [], 0x0, 0x16, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000700)={0x3, 0xc, 0x3, 0x40}, 0x10, 0x0, r0}, 0x78) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, &(0x7f00000004c0), &(0x7f0000000500)=0xc) timer_create(0x0, &(0x7f0000000000)={0x0, 0x16}, &(0x7f00000001c0)=0x0) sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010026bd7000fcdbdf2501000000080002000600000018da1cdff73c1f6e6bc610e00f9eb09a5ec1a7a148828663ff5742ed3d11501e4518278a35629d1c3c61e2206f5eedbc4f0438bb3af4087165bb679440"], 0x1c}, 0x1, 0x0, 0x0, 0x44040}, 0x4000001) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) truncate(&(0x7f0000000100)='./file0\x00', 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000380)='selinuxfs\x00', 0x0, 0x0) ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f00000002c0)={0x400, 0x0, 0x0, 0x1, 0x6, "9845bce033212a2241a1e3b252a77f163e991a", 0x2}) creat(&(0x7f0000000280)='./file0\x00', 0x0) sendmsg$NLBL_CALIPSO_C_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) sendmsg$NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, 0x0, 0x10) open(&(0x7f0000000100)='./file1\x00', 0x143042, 0x0) [ 307.359579] XFS (loop5): unknown mount option [gqnoenÖ]. [ 307.494660] FAULT_INJECTION: forcing a failure. [ 307.494660] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 307.506489] CPU: 0 PID: 21507 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 307.514371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 307.523723] Call Trace: [ 307.526324] dump_stack+0x1b2/0x283 [ 307.529957] should_fail.cold+0x10a/0x154 [ 307.534105] __alloc_pages_nodemask+0x22c/0x2720 [ 307.538863] ? kasan_kmalloc+0xeb/0x160 [ 307.542832] ? __kmalloc+0x15a/0x400 [ 307.546542] ? p9_fcall_alloc+0x19/0x90 [ 307.550512] ? p9_client_prepare_req.part.0+0x86c/0xb60 [ 307.555871] ? p9_client_rpc+0x170/0x1520 [ 307.560018] ? p9_client_attach+0x137/0x750 [ 307.564339] ? v9fs_session_init+0xc03/0x1540 [ 307.568831] ? v9fs_mount+0x73/0x860 [ 307.572532] ? mount_fs+0x92/0x2a0 [ 307.576055] ? vfs_kern_mount.part.0+0x5b/0x470 [ 307.580703] ? do_mount+0xe53/0x2a00 [ 307.584395] ? SyS_mount+0xa8/0x120 [ 307.588126] ? do_syscall_64+0x1d5/0x640 [ 307.592224] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 307.597058] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 307.602418] ? finish_task_switch+0x178/0x610 [ 307.606907] ? finish_task_switch+0x14d/0x610 [ 307.611412] ? switch_mm_irqs_off+0x601/0xeb0 [ 307.615918] ? cache_alloc_refill+0x2fa/0x350 [ 307.620415] ? check_preemption_disabled+0x35/0x240 [ 307.625416] cache_grow_begin+0x8f/0x420 [ 307.629483] cache_alloc_refill+0x273/0x350 [ 307.633829] __kmalloc+0x378/0x400 [ 307.637355] ? p9_fcall_alloc+0x19/0x90 [ 307.641316] p9_fcall_alloc+0x19/0x90 [ 307.645098] p9_client_prepare_req.part.0+0x7f8/0xb60 [ 307.650288] p9_client_rpc+0x170/0x1520 [ 307.654263] ? p9_client_prepare_req.part.0+0xb60/0xb60 [ 307.659620] ? lock_acquire+0x170/0x3f0 [ 307.663579] ? lock_downgrade+0x740/0x740 [ 307.667708] ? lock_acquire+0x170/0x3f0 [ 307.671681] ? lock_downgrade+0x740/0x740 [ 307.675815] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 307.680910] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 307.685939] p9_client_attach+0x137/0x750 [ 307.690071] ? p9_client_zc_rpc.constprop.0+0x1360/0x1360 [ 307.695602] ? v9fs_session_init+0xad1/0x1540 [ 307.700093] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 307.705112] v9fs_session_init+0xc03/0x1540 [ 307.709445] ? v9fs_show_options+0x6b0/0x6b0 [ 307.713855] ? v9fs_mount+0x54/0x860 [ 307.717570] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 307.723042] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 307.728060] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 307.732908] v9fs_mount+0x73/0x860 [ 307.736446] ? alloc_pages_current+0x15d/0x260 [ 307.741035] ? __lockdep_init_map+0x100/0x560 [ 307.745526] mount_fs+0x92/0x2a0 [ 307.748883] vfs_kern_mount.part.0+0x5b/0x470 [ 307.753360] do_mount+0xe53/0x2a00 [ 307.756885] ? retint_kernel+0x2d/0x2d [ 307.760758] ? copy_mount_string+0x40/0x40 [ 307.764976] ? __sanitizer_cov_trace_pc+0x1d/0x50 [ 307.769806] ? copy_mount_options+0x1fa/0x2f0 [ 307.774282] ? copy_mnt_ns+0xa30/0xa30 [ 307.778149] SyS_mount+0xa8/0x120 [ 307.781581] ? copy_mnt_ns+0xa30/0xa30 [ 307.785451] do_syscall_64+0x1d5/0x640 [ 307.789339] entry_SYSCALL_64_after_hwframe+0x46/0xbb 04:36:55 executing program 2: r0 = open(&(0x7f0000000240)='./file0\x00', 0x102e0, 0x0) fcntl$setsig(r0, 0xa, 0x11) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setlease(r0, 0x400, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1c, 0x9, &(0x7f0000000740)=ANY=[@ANYBLOB="181b000032fad2a39fac229da9b6094676c252df20000000942dd4d2b802edf14f215a417d6cab73aed3f0c3bb801b67f417bd2055106a822a56c2d2c44a458662cb0a97747f0becb40cced063fcdeab9b513bc0e9a14a911525f00498b405638b12c4d43b78e4863c38bc50b01982325c6f53aaf523519b93ed2d", @ANYRES32=r0, @ANYBLOB="00000000000000004b91f6ff0100000035630c00f7ffffff8510000002000000bd46f4ff040000008c9602000100000095000000000000008500000079000000"], &(0x7f00000005c0)='GPL\x00', 0x20, 0x8e, &(0x7f0000000600)=""/142, 0x41100, 0x4, [], 0x0, 0x16, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000700)={0x3, 0xc, 0x3, 0x40}, 0x10, 0x0, r0}, 0x78) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, &(0x7f00000004c0), &(0x7f0000000500)=0xc) timer_create(0x0, &(0x7f0000000000)={0x0, 0x16}, &(0x7f00000001c0)=0x0) sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010026bd7000fcdbdf2501000000080002000600000018da1cdff73c1f6e6bc610e00f9eb09a5ec1a7a148828663ff5742ed3d11501e4518278a35629d1c3c61e2206f5eedbc4f0438bb3af4087165bb679440"], 0x1c}, 0x1, 0x0, 0x0, 0x44040}, 0x4000001) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) truncate(&(0x7f0000000100)='./file0\x00', 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000380)='selinuxfs\x00', 0x0, 0x0) ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f00000002c0)={0x400, 0x0, 0x0, 0x1, 0x6, "9845bce033212a2241a1e3b252a77f163e991a", 0x2}) creat(&(0x7f0000000280)='./file0\x00', 0x0) sendmsg$NLBL_CALIPSO_C_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) sendmsg$NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, 0x0, 0x10) open(&(0x7f0000000100)='./file1\x00', 0x143042, 0x0) [ 307.794508] RIP: 0033:0x45e0f9 [ 307.797675] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 307.805362] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045e0f9 [ 307.812609] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 307.819875] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 307.827125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000022 [ 307.834392] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:55 executing program 3 (fault-call:5 fault-nth:35): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4400000010001fffee91dd532a0f62d6b17ef4805b00"/33, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) setuid(0xee01) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100)='nl80211\x00') sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)={0x2234, r1, 0x2, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x249, 0x44}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_IE={0x21df, 0x2a, [@random_vendor={0xdd, 0xbc, "76e353fce4e7d6f4e820fb6a985a2ab5ae1e3227a8b01592739a7710e780e64e6e8f206df4f83696a37a8164cc9a927e71e07969136d9e85a23d53bb044cefb4ae73387e6862605d34cceb46c43faaecef3febbc283be0230eab3debf0a513637f798874d0f091985112edafe308dd47e4ad31b48606be0cfb4272ee3803a6877d4384e35a8cc2f20416a00ae9b4bcd36711136c5bd214300ff46e589ce3626bc2665343631323c131aa56f544972affcb43ebe603700c289086aee5"}, @mesh_id={0x72, 0x6}, @ibss={0x6, 0x2, 0xf66f}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x5, 0x74, 0x40}}, @sec_chan_ofs={0x3e, 0x1, 0x3}, @perr={0x84, 0xfc, {0x8, 0x10, [@ext={{}, @device_b, 0xfffffffc, @broadcast, 0x25}, @ext={{}, @device_a, 0x9, @device_b, 0x3b}, @ext={{}, @device_a, 0x3eff, @broadcast, 0x2f}, @not_ext={{}, @device_a, 0x6, "", 0x3}, @ext={{}, @device_a, 0x7ff, @device_a, 0xa}, @not_ext={{}, @device_a, 0x9, "", 0x2a}, @ext={{}, @device_b, 0xc16, @device_b, 0x5}, @not_ext={{}, @broadcast, 0x8, "", 0x41}, @not_ext={{}, @device_a, 0x2, "", 0xe}, @not_ext={{}, @broadcast, 0x8, "", 0x34}, @not_ext={{}, @broadcast, 0x2, "", 0x1c}, @not_ext={{}, @device_a, 0x7c47, "", 0x2f}, @ext={{}, @device_a, 0x5, @device_b, 0x9}, @ext={{}, @broadcast, 0x1, @device_b, 0x25}, @not_ext={{}, @device_a, 0x6, "", 0x6}, @not_ext={{}, @device_b, 0x7, "", 0x30}]}}, @measure_req={0x26, 0x1003, {0x1, 0x4, 0x0, "27914c1866b1110f623da7b9f1708a9fad2260297f568cf82a6b84c34a7bec40e0368e4f87c66e5072745bfbaf3a9aff293c194836b0a272df63211756119e512545fc332a30b63b5e33ad6e66e39a3d2ca10be6e4b8ac1b68104aae1c2ee9939cffcc84ff471e9660180ececf6dd01cf1c67def77d36872ae42df344b7e4eaa1658f212df262fbd1c32a67d2d8d1248c6cf95df47c5f7e10fa95bf416556fd519fbe273e37e1aa88e4b5e249e57f5b072479d4ad315c5632ba7243b58728de0a239970591d9c6237f0dd3213cc080a28deae9b7483a5c35c13dcfa161c136f00a46e07a9c448205f1a590bffc02bf6879db888a92522886ade4a87a7470b2de2d6475b4d178f3793aec8f506b932cf604beb07a9a3ae3e321c12a6c9fc2aaa8ebd1c1e31007a07e7eb59b5d2d116c621a97d7bea49d1df5444e01e48f67ff57b489d5108735708f7038202c886fa0355718387a9fb6e2316a96c3432bf4c9df83e2e58b3c3c80792cc30a4abcea8f83a4dd8873a444b86d22a83f125d2eecfb2e5f516edbf551face04e90ad93bd586916e8c306abd3713ffc4cf1ebb757b79785228d6a80e312245e7d1a1beae87d54673457b7347b78a064788585a4337d4ae7c7002232556134a295cfe0f81241938239a4c53d58ce65c5fb5bef631cb4cea7d7d003af2cb9c2e56f5f0444b946e93d23d6f555915a5293621d80970891660b14b1fd66d0affba57a5c9f56762086d55af6acdc2447b479d1b548f9b32dedc147f6c934b18c6250030e78cefc207d4aa9a9e54028cea3c2a818f282733ab0742be6880d7079f8a9b0140ec179f20363e5a83c0168858aeb47c22d3d08dc7c6a4319e2bb1c5456f1150b5b4b6947602e40c65e1c834abe5b18754c5a92a70ba322c0f3a13952ae27da3ee4df72d163847a8881e7e67315def1c401b788cfacb8da2b76121f99547ad32360256b2a81b83380d8f542999328f95eecfa84124d512f844c392dd18a2141558c52a60289b2b6be7d58c980556295ea87c5d2b3a722b357a728393a91803dce24c0879911c7f5cc4c631d4da468a4a0b46b420ae69754621ee7002a4f0885bc02ffe21fc5dfdfb1e359bd136a6de93fe3c83480441045a404393e5c3891bbf58150f3ec0c8c5ccc8a6f081da03f4a191a8c3dfcc4db42536e3d7087e90cce97e92e790ac8790cc50bba85db484331575b09ef6cd84abf22bfcb490c3453e04e7b6ffc69185761ecbd90e94e706997eef785f5f8047c3c71d6c8247b360800eb566320b450792f1d0ad5809d979e46233554d4fe29f0d572fbd8f0dd86a7d1ca5afbbade3130407426e4353632b0af15e2bcb36368a010e74490fcd565d3cd951d85f2ce5015d859d897b00ffc0e2277386b2268e87ed9a47dd278666093f3338e352e3bda9ff5ba038a996926de8219857c882f1e4445604d3f85419c1172b09b9ce8a6622aef1b968a6fa08eb78e1b50367d3cf78cd001f438caf1b6003dca27f609d8127dc51ae16d07942223ed9b689e05c293d45c606ba718daf30f9e5e5dc3d31739f8b247a90f97c32b4b1a5f3ef1cfdf05dd3afa2bdc5a7170b29fd0add13a664223416c0ee402fd76160929483e8dea2a605e3b217f2d4b9e736800bdf3a66332ae1621b20f86d83dde21037dd99de1287c5fa71a7b4f793747a244e4bf56d8520fa91174646e7bc8ce6a0f0753d83748745a332f33388c2747cc0a514bf41381a9766f03d7ebab207e5919ffb03d0e6172d6cbfb01ea6e37d64d0756ab3c85ed52f75b8c54558e355267f4eb16f4caf4a4bb6bdc1313fdd40a01f24ee0a709d741c52e558fd9186a85705fbb2fbf25f781af2b44c45be9c1d01d0a6e0648f6efae4b5d5abdb910544beab5900ab9a0fac5d56c332a9799246ff2026be027279a99a0a8c388e4cd33a7b042b9afceb9be9e5ac13eb939d6cba1071d5f110185bee59f1e53e8ffc4df59e27398d2518e7697d745953d403b8f221b8a8a4c2a9a66873ce89a298ccd8ae89c729cebe06b4e84f1845f22976fd50c761a21e6d4565a25415b61905697cc78af0d5ed42c2f23113268dccd70a2cfa91ce56ef3bcf09eaa6117d41871b8f5cf26c3805734089fce1b4d27284311b33169af7d20649d77809fe1917b9f820c7e09726c3ba96676c2c5f3347d31dc26172cb2e0a5e5360b4528d240014946be831fe4aef2540fb9e83919bf52653efc382a8de5bdee0f4bcfeb77b304c457e7e4474565806f2175c952c93fd32429a4578f68fabe469440e08fe8e6dc83ce77b689877ee40f456bdff9edd848ca70deb6585bef924630e49da9f14b9e59b88e59bc6753cc4df9128ee793571eeaa5c51d241a79a2aa63fc3ba2c8b2acd1626f7ccd7428900ebe6ec2e7a89fb2f48fdd1936fa4660031a6400ccaa93e6e5b2baff6bb50be1c5ea33952f6d37cc01c75a5c494cde893a6e42647d414cdfbae6b8d8d25513fcede760ece59286f164103c5ddfd4b726ca76a6b5efcd4cbe0080ffd434d7790b018d19d737aa5ce0f4d6d9aec2ee31b303fb762fd44a67a2f90a9a80162406c8ed3dba55785815889d708e7a9d7130a305d5a920474ce1ab0d95bd45422a4e12bc4f82129be689ad72fc2e24fb9df0a2164c747d24df2d8551597c1c4c7a7fff894b38fc5c5bfbfaca67c889a8c87815ede697310e5f7da16135064f06137b9ec83dc283c8eeb5a7782b889b542a6d9cc33da75dec4251102f4ef1afd2c4253343a539d1a7e5e34a4605d2617f29545fb799481f7bbb21748038278d5be09a1519c1b8bec1fb53cdbdb163b20cbac60d6774cfc2b373462780e1214cdfe22f3007b0f619ba127e9d1b4a18c4635c913e87546e9dc57fbc13beeef8c8d06cc0979208fba83a3eefe42dd58d75fe66ce5d616bb25b32993aa378b15f78bc11b25dd2370cb888a107d845c8b3a7758527c3b97be82b6d5c608741833fb53e1dc874ab9593b46d7e7534bcb0c716f4cf4aa2a033d012042d62292f7f7a27a767d99a089d0f4a70695c6f518760a8cf3d206525848051deac6d454178fae86e47bacc2597ced04abdb1d2e06d7d30dcfbd159ae03fdae0b8bf38a0f501fdfe0c9badcbe38f6fa271c157539d3967118cd826bc78495b9ba8eb26718bdbc5bf8fe1d6395237931fd43f3fbf56eee8fd94b82d0460e5f52b01d89bd864c0b1019607713f67a03a7661a8220dd460e55575984d99403fca8e26cbf500f8ac6e6388bec9ffcf61756366532b0a38bf83fc326ccd3b1f619c852de25d596d8c4e92afa48843794f0d1b87a554c7ad31da8b58aaafcbc249b89f9d580c2cf0ea1960c997205bb1a68cdbdf44dc4a78de11f99e54482eb524b8371ba2c75b5bc950bee7dca4c2fba1b07bc511e570ff92e3d15d92add957ebce384d81c5569fc1786dcd5f60d92efda08a9e424fac5dff38859aefac0a1ceb8161d3c68bf689db2bf5b2b0e8da920268984952966862d850b7dd16bc12932b62bd9449176ceb5efd2eb88bd1ba70080e215b6898cdee13755146113fb4a3c5477916af565310bbdf4a344ea5b0e0892284175c501d90ee75f4a870d3a51add7eff9b72aa16fdee5d1297c8cd87eddd5948ec5b6f555d1fc361f9cdba4393505830167d9b2e8cb1954205d3be6957ab4dbb3a6abd386fa9ad193f0f7a008f767a4450ea1d63dac1fed8ae4caa2adb24e559c68629c1ce7c304e29dc8095a29b83e4d7a080cb3a056b17c5a8cd69bd6fa85c2619e4a5b33328362bccb3bb7e2154da0f70497185f61da5ed8270d14922745849cb0622e2d938d0bf4a9bf797b1b47551a7b768df58521961213966645732584926125703fb4a78e95cdbec179322ab6f6be58e5f0552c73477b745e387d268535a3f30e3f6ebf100bfde29027625f8e730bcb05c9c9a5acdf3d3993190c9f35434dd5c2ae3c9ae074ae885f0bb69db434ffc461e8dec828f553cb7348980f0c1f2c6485064ffe9eabe8546d04879023413cdfb3122de5342cf070c7b27702d70563df11d75af2afa32d81e4f4cd64f94d64222f821aa4421b04fe2a1caeddbed73f7f1c4c0167471fbe5eb6aa6b20b24bc86226d3ddfb90df3dc50f717fee93703aab98abd019d8493e4ecca59f4d63e8473523202c5d8dbb4102d0a8b3cdc7f6438f6a25f82764f9c4d321a02c111b056f8f60cfb3a0168e0a54c9d238c93b92ef12f46f052f06daa4fee8a1c8f4efb10816d2154ba32558e1fd78dc80fe8bd55dce42043d7af59e1500e30b1c020e918b1def15b63b85161990d27a301c43b37dc19af9421354979fdef84b2f29cb9e02b673756d97b5ff0247b875954b32ddab85f1e6f44ca984b67cfe297461439d95fb2a64e93b875bc78f54edf6ad56acde0bb0fa67425648284abd1c2a087dcc6a94eadfcbfe378a0e3b9a871d1edace4f3d3106e1553b4f45569c01fca884e988af4e021d2ae3c3f83d2c9c3ef9e679411e341319ed887c8366fa150481566d331376a20ff067143fc3b9718152f40fcbde2fbe01c04e755b4a0a485d08dc69dc813b7a13830c2f9c72957005b8898da18c6723d4a63dee97647e82007643339f92b34b20817993b140d5e3379b668e0b635a04a8be5ff08499df8e2a21f5906c661db3ee8c531c9b29a31a5090aebef3a94b82a2c2302ec5830bedb18526bf3a0bc7202ae835683df6147b70b3bc2cb372f6282cec2d73bdd3c0faa04c31f126918657036794250914a57b4ff996f780942a9923f947854e57b6b74d85205277e3c58aa014118371bb53b9ab6f5bbba23d43176aac72d6125d374114c143da82a1261fdf1a4a8f1ab8af3400f8b7a15e0da59e00bbd6cc185541b42c624b1348f42061f84e1a88ed4b196117db86ba4c54eac194afa3949624b886e68aa05831fb603a6243db53738556a9161bd00be8e8cd3ce16aa2ca8e531cf0a0c80441ffc860352f65856ba396d5fe7093f67def284e9354f8daa7d27df67530ab73adb32e837662266990f36542835bf218391fc69c15eb437627ffccd9cf2b6ba60e3e5478ff22c9503a839f6544a6fd1815c22e6adc4f31b2ea6726a7ed606064c433959831cb42451f6126a041e92c218fbf7895b3d1f905a925ec2fc17d5e9b22156fb9e0c4a90f511610d1e6c38148ae2402dd07adf4bba1527a0672e3770d5e6225b2b0af10ab852ddad2dc8c57aeff5084982a6c88af010c18d213a554964dac88728ec99817ae5b7d433861830f192ef9ee97a44e9642c3aa57437985a7f15f2724b6cfdc39a1c020abc595b148ef9572f2419f9d9320ba0f975341ab0558bb36fada67c52e9af7aaef5bfa9731456033eb7a22b7e208d2adbbda7fc701398155da5e93cc1d0a7b9bff77d834ab4f7be2ec8546b0abc4dafdadaf8c385be4ba5b40bf98e763129a954cdf87b4f9478aa5884da550b7e7af021175caea20b7b885799b6dc8c5642b4d09df78d6ee60279daa30f01b42c9b940b4da73eebc8de5cd3c74402515a0d2d8f670521c1d9edb50f25cb304d7c4e421fe937bfa3072a9fb22f7efd36ce9a776e57726af93c0d1585ddfacdc845958eec58318be48d580d6db9b91f0ada815b184221d4c4c26d1d7119678111d55f6022480bd81e576fce4848ebbb5d207fe175402a2c5415a2e924e8f5342b25c0f0761c096e98bdb90bb82d15bea2cadd96933a85c095c636650c50b964e9146f0396f0bbe35ba7a499095d3c84d40df43fc1ed3b606815d8e7c276f0e3750a32f2412d602788ced3aec2d4ed912141f5a31a6c3c"}}, @measure_req={0x26, 0x1003, {0x1, 0x0, 0x9, "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"}}]}, @NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x4}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x81}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x65}]}, 0x2234}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000054) 04:36:55 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = dup(r0) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) connect(r2, &(0x7f0000000000)=@rc={0x1f, @any=[0x1d], 0x6}, 0x80) ioctl$BLKREPORTZONE(r1, 0xc0101282, &(0x7f0000000080)={0x81, 0x2, 0x0, [{0x1000, 0x331a, 0xffffffff, 0x3f, 0x80, 0x0, 0x7f}, {0xfffffffffffff000, 0xfffffffffffffe01, 0xd622, 0x2, 0x81, 0x1c, 0x7}]}) [ 307.948587] FAULT_INJECTION: forcing a failure. [ 307.948587] name failslab, interval 1, probability 0, space 0, times 0 [ 307.977825] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. 04:36:55 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 308.000939] CPU: 0 PID: 21528 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 308.008849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 308.018221] Call Trace: [ 308.020812] dump_stack+0x1b2/0x283 [ 308.024450] should_fail.cold+0x10a/0x154 [ 308.028608] should_failslab+0xd6/0x130 [ 308.032592] kmem_cache_alloc_trace+0x29a/0x3d0 [ 308.037269] ? v9fs_session_init+0xad1/0x1540 [ 308.041781] v9fs_cache_session_get_cookie+0x103/0x1c0 [ 308.047060] v9fs_session_init+0xc92/0x1540 04:36:55 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xb7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28012, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc87,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f00000004c0)='lo\x00\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00y.\xfc*_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7f\r\xb2\xcf\x8a\xc9(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0-\x96\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc50xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000340)=[&(0x7f0000000040)=',\x00', &(0x7f0000000080)='bridge\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='[*#[:(\x00', &(0x7f0000000180)='bridge\x00', &(0x7f00000001c0)='bridge\x00', &(0x7f0000000200)='bridge\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)='({{\x00', &(0x7f00000002c0)='bridge\x00'], &(0x7f00000005c0)=[&(0x7f00000003c0)='#]&\'{:\x00', &(0x7f0000000400)='bridge\x00', &(0x7f0000000440)='bridge\x00', &(0x7f0000000480)='^$-$:!]*:[\x00', &(0x7f00000004c0)='bridge\x00', &(0x7f0000000500)='(\xa2.*\x00'], 0x100) [ 308.436970] FAULT_INJECTION: forcing a failure. [ 308.436970] name failslab, interval 1, probability 0, space 0, times 0 [ 308.520328] CPU: 0 PID: 21568 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 308.528243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 308.537596] Call Trace: [ 308.540191] dump_stack+0x1b2/0x283 [ 308.543848] should_fail.cold+0x10a/0x154 [ 308.547995] should_failslab+0xd6/0x130 [ 308.551962] kmem_cache_alloc+0x28e/0x3c0 [ 308.556106] __fscache_acquire_cookie+0xd6/0x41c [ 308.560855] v9fs_cache_session_get_cookie+0x95/0x1c0 [ 308.566052] v9fs_session_init+0xc92/0x1540 [ 308.570373] ? v9fs_show_options+0x6b0/0x6b0 [ 308.574775] ? retint_kernel+0x2d/0x2d [ 308.578662] v9fs_mount+0x73/0x860 [ 308.582194] ? alloc_pages_current+0x15d/0x260 [ 308.586763] ? __lockdep_init_map+0x100/0x560 [ 308.591249] mount_fs+0x92/0x2a0 [ 308.594628] vfs_kern_mount.part.0+0x5b/0x470 [ 308.599114] do_mount+0xe53/0x2a00 [ 308.602650] ? retint_kernel+0x2d/0x2d [ 308.606532] ? copy_mount_string+0x40/0x40 [ 308.610777] ? __sanitizer_cov_trace_pc+0x4a/0x50 [ 308.615612] ? copy_mount_options+0x1fa/0x2f0 [ 308.620098] ? copy_mnt_ns+0xa30/0xa30 [ 308.623979] SyS_mount+0xa8/0x120 [ 308.627421] ? copy_mnt_ns+0xa30/0xa30 [ 308.631299] do_syscall_64+0x1d5/0x640 [ 308.635183] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 308.640363] RIP: 0033:0x45e0f9 [ 308.643541] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 308.651236] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 308.658495] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 308.665772] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 308.673030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000024 [ 308.680288] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 04:36:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000140)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x68, r0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x24, 0x7, 'system_u:object_r:var_lock_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0x40c00c1}, 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x48, 0x10, 0x300, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}, @IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x7}]}]}, 0x48}}, 0x0) 04:36:56 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000, 0x0, &(0x7f0000c87000/0x2000)=nil) mmap(&(0x7f00008da000/0x1000)=nil, 0x1000, 0x0, 0xb5972, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46000) ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, 0x0) io_setup(0x2349, &(0x7f0000000240)=0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r2) ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f0000000000)=0x400) bpf$ENABLE_STATS(0x20, 0x0, 0x0) semctl$GETVAL(0x0, 0x0, 0xc, 0x0) io_submit(r1, 0x732, &(0x7f0000000540)=[&(0x7f00000000c0)={0xfffffffb, 0x0, 0x80000000000000, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) 04:36:56 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x803, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x84}}, 0x0) getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@ipv4_newaddr={0x18, 0x10, 0x0, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r3}}, 0x18}}, 0x0) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8916, &(0x7f0000000080)={'veth1_to_hsr\x00', {0x2, 0x0, @broadcast}}) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') sendfile(r5, r5, 0x0, 0xffff) r6 = socket(0x10, 0x803, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r9, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0xfc, 0x0, 0x0, r9}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) sendmsg$MPTCP_PM_CMD_GET_ADDR(r5, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x5c, 0x0, 0x10, 0x70bd26, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_ADDR={0x30, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r9}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, [], 0x10}}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0xd000) 04:36:56 executing program 3 (fault-call:5 fault-nth:37): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:56 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000180)) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x11, 0x800000003, 0x0) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) bind(r0, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x76, 0x4) ioctl$KVM_GET_PIT(0xffffffffffffffff, 0xc048ae65, &(0x7f0000000040)) ioctl$EVIOCGSND(0xffffffffffffffff, 0x8040451a, &(0x7f0000000080)=""/33) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, 0x0, 0x0) name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1400) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0xf52d) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f134b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfed4, 0x20c49a, 0x0, 0x27) 04:36:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS32(r2, 0xc0245720, &(0x7f0000000000)={0x1}) [ 308.868634] FAULT_INJECTION: forcing a failure. [ 308.868634] name failslab, interval 1, probability 0, space 0, times 0 [ 308.890082] CPU: 0 PID: 21593 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 308.898026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 308.907391] Call Trace: [ 308.909980] dump_stack+0x1b2/0x283 [ 308.913613] should_fail.cold+0x10a/0x154 [ 308.917767] should_failslab+0xd6/0x130 [ 308.921747] kmem_cache_alloc+0x28e/0x3c0 [ 308.925908] __fscache_acquire_cookie+0xd6/0x41c [ 308.930670] v9fs_cache_session_get_cookie+0x95/0x1c0 [ 308.935864] v9fs_session_init+0xc92/0x1540 [ 308.940196] ? v9fs_show_options+0x6b0/0x6b0 [ 308.944614] ? v9fs_mount+0x54/0x860 [ 308.948329] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 308.953784] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 308.958802] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 308.963645] v9fs_mount+0x73/0x860 [ 308.967189] ? alloc_pages_current+0x15d/0x260 [ 308.971770] ? __lockdep_init_map+0x100/0x560 [ 308.976269] mount_fs+0x92/0x2a0 [ 308.979647] vfs_kern_mount.part.0+0x5b/0x470 [ 308.984160] do_mount+0xe53/0x2a00 [ 308.987712] ? copy_mount_string+0x40/0x40 [ 308.991947] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 308.996966] ? copy_mnt_ns+0xa30/0xa30 [ 309.000855] ? copy_mount_options+0x1fa/0x2f0 [ 309.005379] ? copy_mnt_ns+0xa30/0xa30 [ 309.009291] SyS_mount+0xa8/0x120 [ 309.012767] ? copy_mnt_ns+0xa30/0xa30 [ 309.016656] do_syscall_64+0x1d5/0x640 [ 309.020553] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 309.025742] RIP: 0033:0x45e0f9 [ 309.028925] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 309.036633] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 309.043896] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 309.051189] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 309.058459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000025 04:36:56 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x3, &(0x7f0000000080)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17}, {&(0x7f0000000280)="53595a4b414c4c44522020080000e780325132510000e780325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffb247ff46494c202020209186", 0x49, 0x60}, {0x0, 0x0, 0x10e00}], 0x922000, &(0x7f0000000140)) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0) [ 309.065730] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:56 executing program 3 (fault-call:5 fault-nth:38): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:56 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 309.132574] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 04:36:57 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 309.199367] FAULT_INJECTION: forcing a failure. [ 309.199367] name failslab, interval 1, probability 0, space 0, times 0 [ 309.244797] CPU: 0 PID: 21623 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 309.252721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.262099] Call Trace: [ 309.264699] dump_stack+0x1b2/0x283 [ 309.268347] should_fail.cold+0x10a/0x154 [ 309.272501] should_failslab+0xd6/0x130 [ 309.276481] kmem_cache_alloc+0x28e/0x3c0 [ 309.280639] __fscache_acquire_cookie+0xd6/0x41c [ 309.285403] v9fs_cache_session_get_cookie+0x95/0x1c0 [ 309.290601] v9fs_session_init+0xc92/0x1540 [ 309.294934] ? v9fs_show_options+0x6b0/0x6b0 [ 309.299342] ? v9fs_mount+0x54/0x860 [ 309.303074] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 309.308506] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 309.313512] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 309.318358] v9fs_mount+0x73/0x860 [ 309.321879] ? alloc_pages_current+0x15d/0x260 [ 309.326439] ? __lockdep_init_map+0x100/0x560 [ 309.331030] mount_fs+0x92/0x2a0 [ 309.334388] vfs_kern_mount.part.0+0x5b/0x470 [ 309.338890] do_mount+0xe53/0x2a00 [ 309.342425] ? do_raw_spin_unlock+0x164/0x220 [ 309.346904] ? copy_mount_string+0x40/0x40 [ 309.351119] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 309.356132] ? copy_mnt_ns+0xa30/0xa30 [ 309.360003] ? copy_mount_options+0x1fa/0x2f0 [ 309.364479] ? copy_mnt_ns+0xa30/0xa30 [ 309.368368] SyS_mount+0xa8/0x120 [ 309.371815] ? copy_mnt_ns+0xa30/0xa30 [ 309.375703] do_syscall_64+0x1d5/0x640 [ 309.379601] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 309.384789] RIP: 0033:0x45e0f9 [ 309.387975] RSP: 002b:00007f4d7865cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 309.395682] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 309.402957] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 309.410277] RBP: 00007f4d7865cca0 R08: 0000000020000280 R09: 0000000000000000 [ 309.417554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000026 [ 309.424831] R13: 00007fff680eeecf R14: 00007f4d7865d9c0 R15: 000000000119bf8c 04:36:57 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000100)={0x28, 0x0, 0x2710}, 0x10, 0x800) fdatasync(r0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x8003, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(cast5)\x00'}, 0x58) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5}, @IFLA_BR_PRIORITY={0x6}]}}}]}, 0x44}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$UHID_INPUT2(r4, &(0x7f0000000000)={0xc, {0x82, "5f6aaa452687947bf642127398b56358a9247d3ff3b0e40795ee03cc790a5ffe575e96740417611dc742a3afe9756402737bd0f1501bbcf0549fe200d3e5ec1ce2f1a65f930a13f0fe8101441c33f3e0a6cbc2e62905a3bbe160dc9627b86c893d2e07023e0df5337b1e6f606db2aa88cb6d7e601b8242b8921040b682a6be3ad6e2"}}, 0x88) 04:36:57 executing program 3 (fault-call:5 fault-nth:39): r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u='version=9p2000.u'}]}}) 04:36:57 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000, 0x0, &(0x7f0000c87000/0x2000)=nil) mmap(&(0x7f00008da000/0x1000)=nil, 0x1000, 0x0, 0xb5972, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46000) ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, 0x0) io_setup(0x2349, &(0x7f0000000240)=0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r2) ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f0000000000)=0x400) bpf$ENABLE_STATS(0x20, 0x0, 0x0) semctl$GETVAL(0x0, 0x0, 0xc, 0x0) io_submit(r1, 0x732, &(0x7f0000000540)=[&(0x7f00000000c0)={0xfffffffb, 0x0, 0x80000000000000, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) [ 309.574206] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 309.704567] FAULT_INJECTION: forcing a failure. [ 309.704567] name failslab, interval 1, probability 0, space 0, times 0 [ 309.719746] CPU: 0 PID: 21661 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 309.727635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.736987] Call Trace: [ 309.739578] dump_stack+0x1b2/0x283 [ 309.743211] should_fail.cold+0x10a/0x154 [ 309.747397] should_failslab+0xd6/0x130 [ 309.751373] __kmalloc+0x2c1/0x400 [ 309.754918] ? register_shrinker+0x1ab/0x220 [ 309.759329] register_shrinker+0x1ab/0x220 [ 309.763563] sget_userns+0x9aa/0xc10 [ 309.767301] ? v9fs_kill_super+0x90/0x90 [ 309.771362] ? v9fs_kill_super+0x90/0x90 [ 309.775419] sget+0xd1/0x110 [ 309.778439] v9fs_mount+0x9e/0x860 [ 309.782002] ? alloc_pages_current+0x15d/0x260 [ 309.786607] ? __lockdep_init_map+0x100/0x560 [ 309.791101] mount_fs+0x92/0x2a0 [ 309.794498] vfs_kern_mount.part.0+0x5b/0x470 [ 309.799003] do_mount+0xe53/0x2a00 [ 309.802550] ? copy_mount_string+0x40/0x40 [ 309.806786] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 309.811803] ? copy_mnt_ns+0xa30/0xa30 [ 309.815695] ? copy_mount_options+0x1fa/0x2f0 [ 309.820192] ? copy_mnt_ns+0xa30/0xa30 [ 309.824082] SyS_mount+0xa8/0x120 [ 309.827557] ? copy_mnt_ns+0xa30/0xa30 [ 309.831448] do_syscall_64+0x1d5/0x640 [ 309.835343] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 309.840527] RIP: 0033:0x45e0f9 [ 309.843710] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 04:36:57 executing program 4: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="02000000030000000400000030000f", 0xf, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000300)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/bluetooth/6lowpan_control\x00', 0x2, 0x0) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r2, 0x80089419, &(0x7f00000000c0)) ftruncate(r1, 0x800) lseek(r1, 0x1200, 0x0) r3 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) r4 = accept4$llc(r1, &(0x7f0000000140), &(0x7f0000000180)=0x10, 0x80800) ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f00000001c0)={{r4}, {@void, @max='max'}}) sendfile(r1, r3, 0x0, 0x8400fffffffa) [ 309.851420] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 309.858689] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 309.865957] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 309.873225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000027 [ 309.880493] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 [ 309.893455] 9pnet: Found fid 0 not clunked [ 309.898528] ================================================================== [ 309.906063] BUG: KASAN: use-after-free in p9_client_clunk+0x1fc/0x240 [ 309.912658] Read of size 8 at addr ffff8880b040d200 by task syz-executor.3/21661 [ 309.920195] [ 309.921828] CPU: 0 PID: 21661 Comm: syz-executor.3 Not tainted 4.14.211-syzkaller #0 [ 309.929707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.939056] Call Trace: [ 309.941644] dump_stack+0x1b2/0x283 [ 309.945278] print_address_description.cold+0x54/0x1d3 [ 309.950564] kasan_report_error.cold+0x8a/0x194 [ 309.955240] ? p9_client_clunk+0x1fc/0x240 [ 309.959483] __asan_report_load8_noabort+0x68/0x70 [ 309.964432] ? p9_client_clunk+0x1fc/0x240 [ 309.968668] p9_client_clunk+0x1fc/0x240 [ 309.972743] v9fs_mount+0x69f/0x860 [ 309.976377] ? alloc_pages_current+0x15d/0x260 [ 309.980960] ? __lockdep_init_map+0x100/0x560 [ 309.985458] mount_fs+0x92/0x2a0 [ 309.988830] vfs_kern_mount.part.0+0x5b/0x470 [ 309.993332] do_mount+0xe53/0x2a00 [ 309.997288] ? copy_mount_string+0x40/0x40 [ 310.001529] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 310.006594] ? copy_mnt_ns+0xa30/0xa30 [ 310.010494] ? copy_mount_options+0x1fa/0x2f0 [ 310.015142] ? copy_mnt_ns+0xa30/0xa30 [ 310.019035] SyS_mount+0xa8/0x120 [ 310.022524] ? copy_mnt_ns+0xa30/0xa30 [ 310.026398] do_syscall_64+0x1d5/0x640 [ 310.030287] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 310.035461] RIP: 0033:0x45e0f9 [ 310.038640] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 310.046348] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 310.053599] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 310.060851] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 310.068099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000027 [ 310.075437] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 [ 310.082844] [ 310.084479] Allocated by task 21661: [ 310.088183] kasan_kmalloc+0xeb/0x160 [ 310.091986] kmem_cache_alloc_trace+0x131/0x3d0 [ 310.092017] audit: type=1804 audit(1607488617.703:13): pid=21672 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.4" name="/root/syzkaller-testdir489398452/syzkaller.vgELWY/292/bus" dev="sda1" ino=16526 res=1 [ 310.096645] p9_fid_create+0x47/0x3a0 [ 310.096659] p9_client_attach+0x6d/0x750 [ 310.096669] v9fs_session_init+0xc03/0x1540 [ 310.096677] v9fs_mount+0x73/0x860 [ 310.096685] mount_fs+0x92/0x2a0 [ 310.096694] vfs_kern_mount.part.0+0x5b/0x470 [ 310.096702] do_mount+0xe53/0x2a00 [ 310.096709] SyS_mount+0xa8/0x120 [ 310.096718] do_syscall_64+0x1d5/0x640 [ 310.096733] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 310.157230] [ 310.158853] Freed by task 21661: [ 310.162220] kasan_slab_free+0xc3/0x1a0 [ 310.166193] kfree+0xc9/0x250 [ 310.169305] p9_client_destroy.cold+0x67/0xaa [ 310.173802] v9fs_session_close+0x45/0x2c0 [ 310.178060] v9fs_kill_super+0x49/0x90 [ 310.181943] deactivate_locked_super+0x6c/0xd0 [ 310.186519] sget_userns+0x9c4/0xc10 [ 310.190227] sget+0xd1/0x110 [ 310.193242] v9fs_mount+0x9e/0x860 [ 310.196776] mount_fs+0x92/0x2a0 [ 310.200143] vfs_kern_mount.part.0+0x5b/0x470 [ 310.204633] do_mount+0xe53/0x2a00 [ 310.208193] SyS_mount+0xa8/0x120 [ 310.211641] do_syscall_64+0x1d5/0x640 [ 310.215528] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 310.220708] [ 310.222331] The buggy address belongs to the object at ffff8880b040d200 [ 310.222331] which belongs to the cache kmalloc-96 of size 96 [ 310.234811] The buggy address is located 0 bytes inside of [ 310.234811] 96-byte region [ffff8880b040d200, ffff8880b040d260) [ 310.246420] The buggy address belongs to the page: [ 310.251348] page:ffffea0002c10340 count:1 mapcount:0 mapping:ffff8880b040d000 index:0xffff8880b040da00 [ 310.260789] flags: 0xfff00000000100(slab) [ 310.264936] raw: 00fff00000000100 ffff8880b040d000 ffff8880b040da00 0000000100000019 [ 310.272841] raw: ffffea00027a8be0 ffffea00024ea660 ffff88813fe804c0 0000000000000000 [ 310.280711] page dumped because: kasan: bad access detected [ 310.286409] [ 310.288028] Memory state around the buggy address: [ 310.292975] ffff8880b040d100: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 310.300331] ffff8880b040d180: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 310.307689] >ffff8880b040d200: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 310.315039] ^ [ 310.318400] ffff8880b040d280: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 310.325752] ffff8880b040d300: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc [ 310.333126] ================================================================== [ 310.340567] Disabling lock debugging due to kernel taint 04:36:58 executing program 5: setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x7, &(0x7f00000000c0), 0x4) write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], 0xa) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)) r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x18, 0x0, 0x1bb3, 0x0, 0x0, 0xffffffffffffffff, 0x2, [], 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x2}, 0x40) r1 = socket$kcm(0x2, 0x200000000000001, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000002c0)='\'!]]\x00') sendmsg$inet(r1, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x24000844) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) sendmsg(r1, &(0x7f0000000680)={0x0, 0x13000003, &(0x7f00000000c0)=[{&(0x7f0000000080)='f', 0xffffff1f}], 0x8, 0x0, 0x0, 0xf00}, 0x780f8) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x20000000) sendmsg(0xffffffffffffffff, &(0x7f0000001200)={&(0x7f0000000340)=@phonet={0x23, 0x5, 0x1c, 0x6}, 0x80, &(0x7f0000001180)=[{&(0x7f0000000a40)="04dc7c2b474604b844801c5ebc8dc3830a9472c13292c2ba465f0f8ee5b3c04e9bb515cf7beec795a9372aa0eed03f5b72004032cc375d17e1f608f4e61e21f8fd0f83a2821a729fff998a5ccfa886017fead41729ade94a15c4182f68a43fcd3d8511a7495e02cd2585cd9f697664ab2716e8a20be57b58e878ddcdb2c22185aee8eb0a0d4920160fd72ab17dea3c3474927cffb7d26540dcf6e4b596dfff18695bb0", 0xa3}, {&(0x7f0000001480)="c2abc39d3d0c3ccd8bc43a50971016a77e006260990a9384180451313dcd936b1554b62967421178077d6e9923", 0x2d}, {&(0x7f00000014c0)="3b2785ffffffff0684e3769d0b3e626b66f5f88bfd26289cdb2e55973913b5582ac0be8c17502d8fc6b1ad42485c8843d9d771695e2e72f6d3c1c38a1b4728c3ae7651c9c307ca675dadb24f94208f2b4868cb062078275b0e07ad580130a041e16f2085d6b03cc92af37381f7cc89eef661693793195d6a27d5c800940e6e1484a1600729cbe0c57c7e71803df65fdaf8d31a4d86338e0b6cbad1a7f8252eb24d19f5eeb3eb83efa796af60edf441d8bd5b020000002f4c54e5eb08474765e1f16e70f817fa24148ad7dd5bfb4223084a75153baf5497010446e994e649f51458f6db8a98f93121c5137be12478f90f7b77a212c8419a2733d1702dbdb3", 0xfe}, {&(0x7f0000001000)="5ca09238609cde8d29166150cad9ca70d3995e51ece2f597c1aaea3879c07d939d08aefd0468d5e523a7", 0x2a}, {&(0x7f0000001040)="b420b42eb9db1a6fceaba67a0acf488a6d1c04c9db3baa18d3829dd11e54739b0680351f822a98149521e1937459a34bf3a21ca277128179c3f0e90a484403f839f9e6d6638909162981031b03c74b3b930fc9f0", 0x54}, {&(0x7f00000010c0)="188c50886bb2cbdee4649b0fc1d193d6c0ebd1b5bc38cb2d93b38d03abda345ad51463b24a03fa5f9273feef0fe3acd29b7af4bec8f007da0569410cea584038baab", 0x42}], 0x6}, 0x800) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f00000003c0)="023e94731cb7bd0bbc80524e0dcb89142e45ae4f194f20ae778e60de41e18c2ab0cb7f23b6bd94921cf6f8c399403b7db03c87b45da0bf9f18f9fcb1c27aca6272258932f764656582fdd662f7a98e08d35428cb422661de9e1a", 0x5a}, {&(0x7f00000001c0)}, {&(0x7f0000000300)="d87cd820970a30e830a617", 0xb}, {0x0}, {&(0x7f0000000c00)="d7ad1166cab1479d855adee684459f2c6e0707ac9ce96f8a86fd755fe0d6a2a61d6f6ff9c121febe731d2f57241a6ededbad263cee02e5369c0fe2e3c660aa78637263c2ecfb44ae1377157296cef5383f1fba4e10e5486b25ec9942bf9b44505bf51b1ffc547a95fb92f1e1370e557c4cf76b8e277e082a8f30b971d6cdf31158e113dc360cf39a55bab66e1876f089b900fc44820110e4a59b613577180221039a51f83678e53f3041aff33e64df2c9f7d9b9a9e31dd94283bf94f5ad54200ceb214acb905dce2af083144de9fd3a8a97f7517", 0xd4}], 0x5}, 0x0) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc87,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000009c0)={&(0x7f00000003c0)='mm_vmscan_wakeup_kswapd\x00'}, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f00000001c0)=@l2={0x1f, 0x7000, @any, 0x3, 0x2}, 0x80, &(0x7f0000001280)=[{&(0x7f0000000440)="f491800a32425916ecb19a56c4f6528ec56ecf5b4d832e53ba50f93c68b09dfbd203d727181e7c93069100720a0dd8b85ca4079af7fb5c006f12062f2be9b4dd5faf0d9543ff782bc528422e100c0a8108ab59c907208f2476eb4f0c47d02b7fc05b10ce6b8202e90bce716b36cca0c0e0a38eb7134a", 0x76}, {&(0x7f0000000780)="4fec20a6f3a6027d55f17eaae9fe01c1b3535b732fc7a7f7fe25715fd1722291901cd2bf318cefa43f70c9", 0x2b}, {&(0x7f00000007c0)="8c05d8e7f217a31fe17cd450fce03a15b8f2946fca6bb3305822c618b911dece67c31a7a317bde2ab8a69270804f78cba354b00c0878b7c38ab882550f57466b502ed32a1f167fd43016a3ea25ce600a56c129396c786cb3f0dce65fb65a9d216473201ba31f115cfdbc8a2c4ee2d2aba16dd801aa5f2e584ca69b7f30f2c212731843023aa868aefe1fba9fb9d447002ca4897cdb59e0637ebf8b623d6f8bbcca8fb52175f095ad3301965b322a9192e55262f1b2878208e120152d0df75c50d06afbcdb8fc490277a76060be16e47b7d5193ae398ba6ea24a61ecdf314a2baadefbcf1e6380ab593bb32f68f6cf4daf26d3cde0eb9f7", 0xf7}, {&(0x7f00000008c0)="9ec1c156b3175439823ad1f1c32a4756394d062d23a29ba6b9185af18b8d090e2f393babc9a207fc08df400df0696bee21f0cbcbf2797e0dffa0983c21934954d54866a05eaf0380fb5c9cc3f7b8182845141f860a900ae031cd12bd7766a52cbee82d5159643dc480d7e8b71ee3c4ea23b096bbeaed6171246c50409d87b212d28393b7ebafd29bea14935b621bad406a835d7ef0f3992251e989528432975f4aaba99fdf48f2a85a4605dd402550ea98ff6f8e583d9c568d069ab5160ca1c482a18e7584a77e96edb8b6a8d910cd4fef70", 0xd2}, {&(0x7f00000009c0)="b00a20633735699944d57a7f8878dc9277810e5105b846645f47c9aeb8c4ee71a32ac0f6ec1d", 0x26}, {&(0x7f0000000b00)="1543c9c8398fe4209f1ab06bef1bc479a3332c67c9e1e6d88d3f898f82a11c42eba26708b889300dae6917254e26924b6dac9ce74d852809cd57e8288533b4f3e6c0e0a09bb4caf33a32615b13c704c98b477947a737138140949dcd1ccd50e65c58980e91397d9795e3c724e4b5dc59e27a7dbac967661157d2334a439be777068b02ddc1748a52b07ceb55e72f6b552d448252d20c838e0382a8f38d4a1fecd3309579daa4e940226c4c71000926b4493b49707909a9360a1ce2c7be7190300136494e590dafbcb0bd713125ac1113c82cf1d0836020251557989717e40126b769cf1f633da39a", 0xe8}, {&(0x7f0000000a00)="9edf9e1798639019385dc0ddbf1b0a8b2d5f99aae21fd22beb2850ab3b33e0e16bdc", 0x22}, {&(0x7f0000001240)="e9ab9efcf2ca22ca72010c62f37123a599b861395f2631b642890d428bcba493", 0x20}], 0x8, &(0x7f0000001300)=[{0xc8, 0x118, 0x674, "f28c7a90fbf03fd6f98a48cf6190e948ae19b66f0d8f8ebc6177106f150b628b9c29093a9d5b4e67bbc3cf6ebedff7973d95a59e3cb5db193d4ffb22167042e56812b4b866930a6e0e5fb1745834045365277ccda8b4ee095fb01d849209c2b4a9038ce9f231bb870ffedf45b7840337141944b400e434f421533a5f2e7770cce1072476c1d36ee6fa8af4ca7edd55551a24e6e00a44fa112dd429c272c233c3259aaf84886e0ff2c1ff6b2cf37affae6621ec2c9d53"}, {0x50, 0x104, 0x7, "c2d73c08d0677650910aa0befbcdb7d29b79808d4792c1e67c20f3be1fe56b4d2c717772a0615fbac20bcc82f1f58829dcca86d73cd7a6c042ab25"}], 0x118}, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f00000004c0)='lo\x00\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00y.\xfc*_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7f\r\xb2\xcf\x8a\xc9(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0-\x96\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc50xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) [ 310.363422] Bluetooth: hci1 command 0x0405 tx timeout 04:36:58 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r3, &(0x7f0000000480)="b0a3cdef47f59ec515de0fcb5dfc761cf7120c4312b2054efdc0cf574f65329a05d03a24674b1d94d072b4bd702c576dc1d6e4fef97bdd899d359dadcfe32ba24fb1e152533e4df2c20324dda85d95c102000000d81d2b9bea7f9e468b3da19d62e9913b2f7cd488de25886811470818af91afd3bce1422670d6f2d054d8b16374e3617a22b1c70e7e3104b814e24e6e7b62256ae8faaae5f59f840c029418a34c", 0xffffff47) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0/file0\x00', &(0x7f0000000340)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) truncate(&(0x7f00000002c0)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') open(&(0x7f00000000c0)='./file0\x00', 0x3fd, 0x0) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffff, 0x84) 04:36:58 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028005002b00000000000600060000000000"], 0x44}}, 0x0) [ 310.426453] Kernel panic - not syncing: panic_on_warn set ... [ 310.426453] [ 310.433853] CPU: 1 PID: 21661 Comm: syz-executor.3 Tainted: G B 4.14.211-syzkaller #0 [ 310.442937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 310.452307] Call Trace: [ 310.454893] dump_stack+0x1b2/0x283 [ 310.458521] panic+0x1f9/0x42d [ 310.461711] ? add_taint.cold+0x16/0x16 [ 310.465680] ? ___preempt_schedule+0x16/0x18 [ 310.470094] kasan_end_report+0x43/0x49 [ 310.474060] kasan_report_error.cold+0xa7/0x194 [ 310.478732] ? p9_client_clunk+0x1fc/0x240 [ 310.482959] __asan_report_load8_noabort+0x68/0x70 [ 310.487882] ? p9_client_clunk+0x1fc/0x240 [ 310.492114] p9_client_clunk+0x1fc/0x240 [ 310.496173] v9fs_mount+0x69f/0x860 [ 310.499794] ? alloc_pages_current+0x15d/0x260 [ 310.504394] ? __lockdep_init_map+0x100/0x560 [ 310.508884] mount_fs+0x92/0x2a0 [ 310.512244] vfs_kern_mount.part.0+0x5b/0x470 [ 310.516732] do_mount+0xe53/0x2a00 [ 310.520268] ? copy_mount_string+0x40/0x40 [ 310.524495] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 310.529507] ? copy_mnt_ns+0xa30/0xa30 [ 310.533396] ? copy_mount_options+0x1fa/0x2f0 [ 310.537973] ? copy_mnt_ns+0xa30/0xa30 [ 310.541860] SyS_mount+0xa8/0x120 [ 310.545310] ? copy_mnt_ns+0xa30/0xa30 [ 310.549202] do_syscall_64+0x1d5/0x640 [ 310.553099] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 310.558283] RIP: 0033:0x45e0f9 [ 310.561467] RSP: 002b:00007f4d7863bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 310.569167] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000045e0f9 [ 310.576433] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 310.583703] RBP: 00007f4d7863bca0 R08: 0000000020000280 R09: 0000000000000000 [ 310.590980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000027 [ 310.598242] R13: 00007fff680eeecf R14: 00007f4d7863c9c0 R15: 000000000119c034 [ 310.605970] Kernel Offset: disabled [ 310.609587] Rebooting in 86400 seconds..